$ rpki-client -vvf rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft File: dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft (raw, json) Hash identifier: KUZNILSHktx0S1e5FZrmUoERqkGO3N2IPd+RzfgZrWw= Subject key identifier: 62:8A:E8:EB:49:8A:F3:CA:B8:31:F9:A8:AC:E0:03:0F:CF:53:F9:1E Authority key identifier: 74:66:07:3C:8D:20:FF:5B:0C:A8:8E:4A:3A:3F:C8:1D:3C:9F:67:9B Certificate issuer: /CN=A918CE56/serialNumber=7466073C8D20FF5B0CA88E4A3A3FC81D3C9F679B Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft Manifest number: 0209 Signing time: Thu 05 Jun 2025 01:50:52 +0000 Manifest this update: Thu 05 Jun 2025 01:50:52 +0000 Manifest next update: Thu 12 Jun 2025 01:50:52 +0000 Files and hashes: 1: dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl (hash: uVE8znJ3JZvRftdQ7rXdotbCfgeaRkVqWdTXn/7Txlc=) 2: BEB5E328397011EDA97F630EC4F9AE02.roa (hash: 7kPM/sKB4i8QHNZmGczzwn2v095e3qO6G9fcsHz4xRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CE56, serialNumber=7466073C8D20FF5B0CA88E4A3A3FC81D3C9F679B Validity Not Before: Jun 5 01:50:52 2025 GMT Not After : Jun 12 01:50:52 2025 GMT Subject: CN=6840f7fc-5cbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0d:28:9c:5c:df:d3:db:3c:3d:50:9a:95:2f: 7f:c6:a0:e3:2a:20:f3:0b:e4:dd:6c:71:4a:c7:0a: aa:44:86:83:7b:18:29:fe:bd:86:b1:4e:43:ec:05: a8:fb:e4:03:4b:b7:b5:6c:1e:d9:3d:42:47:d6:e7: 82:bd:a9:2d:b2:b6:96:b3:d3:9e:09:40:c1:6d:be: 55:d9:5f:74:bd:b6:5d:74:3a:28:d8:d8:f7:9a:85: 3a:04:64:1c:f7:d6:74:19:b7:7f:2f:3f:37:8c:83: 8e:30:98:6c:94:20:e5:38:1b:7b:d9:3f:99:9f:3c: 35:0b:fb:c1:0f:4a:27:fc:02:77:d2:a6:76:b2:c4: 89:9f:1f:21:f4:26:33:7a:e0:39:ef:75:5e:d8:9d: cd:14:bf:1f:6c:6e:8e:97:84:38:3e:f2:c7:8e:80: b9:a0:7a:08:a6:1c:a0:2c:38:a1:c5:39:93:34:30: ab:dc:7f:f9:2d:37:ea:26:14:51:75:4f:64:dd:f3: 24:03:e7:6d:ae:b0:42:b9:c9:33:ed:f8:92:aa:21: 19:63:db:b2:f8:cd:fb:25:5a:c3:1a:10:9e:96:1a: 4c:0f:0d:ad:9d:e7:4d:74:f4:5c:87:51:21:a8:c7: c0:cc:34:8d:89:41:c9:5a:c9:46:1f:5d:56:8e:fc: 82:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8A:E8:EB:49:8A:F3:CA:B8:31:F9:A8:AC:E0:03:0F:CF:53:F9:1E X509v3 Authority Key Identifier: keyid:74:66:07:3C:8D:20:FF:5B:0C:A8:8E:4A:3A:3F:C8:1D:3C:9F:67:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:23:e5:df:38:c2:cb:7b:17:fa:0b:47:54:43:59:92:42:04: 32:cc:6a:b2:ad:5b:a7:fb:af:ef:9f:3e:96:82:58:74:03:c8: fa:a2:71:76:d0:e1:79:1d:aa:ce:50:73:ab:68:c3:90:a1:3c: 15:28:3a:63:ea:6e:52:8a:3b:e4:9e:13:2b:1a:bd:86:ad:93: 1b:3e:c0:af:55:46:21:ce:7e:51:35:79:70:b3:f5:1b:2c:01: e7:a1:1f:cd:fb:1e:25:03:1c:17:36:02:d8:5f:c8:d2:bb:ca: e9:1e:80:8c:7a:41:4b:d2:66:f7:ad:45:22:c8:10:d5:8a:b6: 04:b6:1f:c4:09:82:9c:e7:c9:67:13:77:0e:e5:2a:6f:c1:99: 2c:3e:75:2e:19:19:8a:02:86:14:52:9c:8f:6c:78:30:48:1c: d6:3c:8a:55:75:80:c6:ce:c5:04:fc:05:9a:5f:5b:b4:6f:51: 95:77:5c:21:b8:54:0d:08:44:75:fb:e5:10:70:4e:95:0f:b9: 5e:1a:13:d3:cb:d0:b7:bc:b2:62:1e:fd:02:67:d8:48:bc:5e: 78:4b:fb:80:2c:7f:26:32:93:7b:54:3b:28:56:ef:46:f5:ea: 99:38:99:fb:44:7f:4c:7c:dc:f7:de:a3:1f:25:db:b8:77:bc: 6c:5d:7f:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENFNTYxMTAvBgNVBAUTKDc0NjYwNzNDOEQyMEZGNUIwQ0E4OEU0QTNBM0ZDODFE M0M5RjY3OUIwHhcNMjUwNjA1MDE1MDUyWhcNMjUwNjEyMDE1MDUyWjAYMRYwFAYD VQQDEw02ODQwZjdmYy01Y2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAww0onFzf09s8PVCalS9/xqDjKiDzC+TdbHFKxwqqRIaDexgp/r2GsU5D7AWo ++QDS7e1bB7ZPUJH1ueCvaktsraWs9OeCUDBbb5V2V90vbZddDoo2Nj3moU6BGQc 99Z0Gbd/Lz83jIOOMJhslCDlOBt72T+Znzw1C/vBD0on/AJ30qZ2ssSJnx8h9CYz euA573Ve2J3NFL8fbG6Ol4Q4PvLHjoC5oHoIphygLDihxTmTNDCr3H/5LTfqJhRR dU9k3fMkA+dtrrBCuckz7fiSqiEZY9uy+M37JVrDGhCelhpMDw2tnedNdPRch1Eh qMfAzDSNiUHJWslGH11WjvyCMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKK6OtJ ivPKuDH5qKzgAw/PU/keMB8GA1UdIwQYMBaAFHRmBzyNIP9bDKiOSjo/yB08n2eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0U1Ni8yNjI2NEFGMDM5 NkUxMUVEQkZDMzEyMERDNEY5QUUwMi9kR1lIUEkwZ18xc01xSTVLT2pfSUhUeWZa NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RHWUhQSTBnXzFzTXFJNUtPal9JSFR5Zlo1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0U1Ni8yNjI2NEFGMDM5NkUxMUVEQkZDMzEyMERDNEY5QUUwMi9kR1lIUEkwZ18x c01xSTVLT2pfSUhUeWZaNXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6I+XfOMLLexf6C0dUQ1mSQgQyzGqyrVun+6/vnz6Wglh0A8j6onF2 0OF5HarOUHOraMOQoTwVKDpj6m5SijvknhMrGr2GrZMbPsCvVUYhzn5RNXlws/Ub LAHnoR/N+x4lAxwXNgLYX8jSu8rpHoCMekFL0mb3rUUiyBDVirYEth/ECYKc58ln E3cO5SpvwZksPnUuGRmKAoYUUpyPbHgwSBzWPIpVdYDGzsUE/AWaX1u0b1GVd1wh uFQNCER1++UQcE6VD7leGhPTy9C3vLJiHv0CZ9hIvF54S/uALH8mMpN7VDsoVu9G 9eqZOJn7RH9MfNz33qMfJdu4d7xsXX8L -----END CERTIFICATE-----Generated at Fri Jun 6 17:09:59 2025 by rpki-client