$ rpki-client -vvf rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft File: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft (raw, json) Hash identifier: Dm9PBqslFOOCPETunCDg8TsUjEKaQwmUs3mQHycjhT4= Subject key identifier: 72:E8:11:A0:CF:98:55:C1:06:87:61:D3:A1:F1:9E:72:22:0E:7B:E8 Authority key identifier: EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 Certificate issuer: /CN=A918D7D0/serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Certificate serial: 0C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft Manifest number: 144A Signing time: Fri 30 May 2025 18:32:14 +0000 Manifest this update: Fri 30 May 2025 18:32:13 +0000 Manifest next update: Fri 06 Jun 2025 18:32:13 +0000 Files and hashes: 1: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl (hash: y5t5hujPpW1GiPt3u2ZTbh5tM26u5ikQ6AwmDxYfzKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D7D0, serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Validity Not Before: May 30 18:32:13 2025 GMT Not After : Jun 6 18:32:13 2025 GMT Subject: CN=6839f9ad-ddb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:30:cf:bc:ea:38:e9:4e:8e:1e:d1:a7:fe:c6: 68:82:2a:89:f6:49:58:47:06:32:9f:a6:bd:20:53: 72:99:a1:39:e1:f3:62:4d:80:1f:f0:5e:20:0d:cc: 52:c7:6e:cd:63:da:c7:e9:ee:b8:62:79:17:8d:31: d3:9f:17:b8:b2:3d:3d:bd:b9:79:d3:79:41:31:5c: 7c:bc:de:b9:ad:ee:2b:11:1e:69:7c:68:7f:74:e2: 80:7a:68:80:ad:fd:78:f2:9d:9a:b4:1f:45:c5:58: cc:98:7b:33:d8:0b:71:df:e8:9d:78:71:97:e6:02: 0f:5f:b3:28:26:9b:24:b4:e4:ba:ff:e4:ea:9d:8f: 30:b7:93:4d:52:06:d7:e4:b9:35:4a:bd:e6:e5:84: 2d:3b:63:70:a3:2c:41:25:0c:f8:24:35:47:f6:a6: 1a:44:5c:54:8d:62:92:60:89:ad:e0:2b:eb:f1:e0: 23:c1:20:c2:6b:1a:b0:cc:8e:cf:d9:0b:4f:0b:92: 41:80:83:fb:59:6a:15:0a:b6:b6:7b:1c:4f:69:69: b4:d9:05:4e:d5:c7:09:59:22:b9:13:b3:d3:40:4f: e6:6a:40:03:dd:76:fa:f2:ff:02:23:a3:ba:a9:43: 83:45:e0:c5:48:6f:b4:2f:9f:d0:ec:7b:75:8a:f2: 01:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:E8:11:A0:CF:98:55:C1:06:87:61:D3:A1:F1:9E:72:22:0E:7B:E8 X509v3 Authority Key Identifier: keyid:EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:53:b2:4e:99:fb:a6:c0:ca:a8:dc:41:64:7e:b4:82:7d:53: d1:1f:55:1d:fa:06:55:4b:6d:4d:5f:c0:c6:d0:67:8f:0d:08: f7:0a:1d:b5:44:77:fa:48:30:85:ac:e2:32:c1:2a:07:d3:46: 8a:c4:ee:4c:15:c7:16:7e:63:f3:c2:89:21:f7:07:04:40:a7: 04:16:9e:d1:0a:0d:cd:8b:cf:4a:a1:a3:82:4b:c5:df:63:75: f2:3c:13:f0:69:fa:03:fe:f2:f6:dd:76:31:52:ee:84:28:1b: bd:8c:94:a7:a4:b5:6d:8e:39:f7:ba:15:8d:14:53:3b:92:58: 3f:6d:b3:8f:a3:3b:ea:a6:16:24:d9:d0:67:34:16:1c:a4:4a: a0:8d:49:10:35:b4:01:3e:6d:ea:79:ca:69:c0:84:92:24:ef: 53:80:9a:28:d4:8e:58:30:d1:43:4d:a1:df:8b:2f:12:a5:42: 51:cf:b4:b9:c3:1a:e8:11:ef:e6:72:15:90:16:8a:19:0e:e8: c3:67:74:65:8f:b0:da:fb:35:78:ea:f8:93:5d:27:ca:22:d7: 25:8f:d0:5b:88:9f:dc:9c:53:c8:86:ee:eb:5c:12:0f:81:9c: 66:29:76:c2:e3:74:0a:76:07:aa:c5:cf:6b:a0:12:d0:f8:69: 50:69:a1:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3RDAxMTAvBgNVBAUTKEVDM0I5MEMzNDg4NkZEMDkyOEUzMTI1NDYxRkJCNDE1 MkJFOTkxMzcwHhcNMjUwNTMwMTgzMjEzWhcNMjUwNjA2MTgzMjEzWjAYMRYwFAYD VQQDEw02ODM5ZjlhZC1kZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDDPvOo46U6OHtGn/sZogiqJ9klYRwYyn6a9IFNymaE54fNiTYAf8F4gDcxS x27NY9rH6e64YnkXjTHTnxe4sj09vbl503lBMVx8vN65re4rER5pfGh/dOKAemiA rf148p2atB9FxVjMmHsz2Atx3+ideHGX5gIPX7MoJpsktOS6/+TqnY8wt5NNUgbX 5Lk1Sr3m5YQtO2NwoyxBJQz4JDVH9qYaRFxUjWKSYImt4Cvr8eAjwSDCaxqwzI7P 2QtPC5JBgIP7WWoVCra2exxPaWm02QVO1ccJWSK5E7PTQE/makAD3Xb68v8CI6O6 qUODReDFSG+0L5/Q7Ht1ivIBswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLoEaDP mFXBBodh06HxnnIiDnvoMB8GA1UdIwQYMBaAFOw7kMNIhv0JKOMSVGH7tBUr6ZE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDdEMC85ODJCMkQ1QTAw ODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19Ra280eEpVWWZ1MEZTdnBr VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEdVF3MGlHX1FrbzR4SlVZZnUwRlN2cGtUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDdEMC85ODJCMkQ1QTAwODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19R a280eEpVWWZ1MEZTdnBrVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvU7JOmfumwMqo3EFkfrSCfVPRH1Ud+gZVS21NX8DG0GePDQj3Ch21 RHf6SDCFrOIywSoH00aKxO5MFccWfmPzwokh9wcEQKcEFp7RCg3Ni89KoaOCS8Xf Y3XyPBPwafoD/vL23XYxUu6EKBu9jJSnpLVtjjn3uhWNFFM7klg/bbOPozvqphYk 2dBnNBYcpEqgjUkQNbQBPm3qecppwISSJO9TgJoo1I5YMNFDTaHfiy8SpUJRz7S5 wxroEe/mchWQFooZDujDZ3Rlj7Da+zV46viTXSfKItclj9BbiJ/cnFPIhu7rXBIP gZxmKXbC43QKdgeqxc9roBLQ+GlQaaEl -----END CERTIFICATE-----Generated at Sat May 31 16:27:48 2025 by rpki-client