$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft File: _dkd0w6bH-o7t-Eq73YhZigSmyM.mft (raw, json) Hash identifier: iYAUfRZ1N9pF1ac9y+Cl0Updo58WlPijcOqrqyoUIfw= Subject key identifier: 08:7A:AA:43:1C:CD:B2:62:BD:FE:CD:9C:4F:EC:69:1C:A6:B2:6E:DE Authority key identifier: FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 Certificate issuer: /CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft Manifest number: 0111 Signing time: Wed 11 Jun 2025 04:19:02 +0000 Manifest this update: Wed 11 Jun 2025 04:19:01 +0000 Manifest next update: Wed 18 Jun 2025 04:19:01 +0000 Files and hashes: 1: _dkd0w6bH-o7t-Eq73YhZigSmyM.crl (hash: /vo1a+DVcx3QrdFVLxQzP1N3mBjp9A52RQcC3Y4fMWM=) 2: DECE1662A87D11EE882D7B6EC4F9AE02.roa (hash: C77jJoshdfxzPcbWVGuVdmC/Yt4X5b0+J8bsZe99ndM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 04:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192B86, serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Validity Not Before: Jun 11 04:19:01 2025 GMT Not After : Jun 18 04:19:01 2025 GMT Subject: CN=684903b5-00e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:79:50:49:b7:e9:b8:35:55:8e:a4:2b:f6:43: ea:fa:3d:1a:5e:d8:da:07:a8:54:aa:93:11:9a:d1: 65:94:25:37:3d:07:d4:1b:86:db:54:58:1f:22:c9: 0e:25:fe:d2:3d:4d:32:ef:21:13:17:62:58:ff:8f: b6:3b:3a:77:26:34:5c:bd:65:0c:6e:d7:91:fd:0c: b9:ea:1e:4e:1e:64:23:30:99:ff:a4:72:38:0b:5b: ba:01:67:ae:51:62:49:cd:f9:0f:ac:e4:d9:3d:68: 7d:cd:5e:8f:5d:63:cb:86:bc:f4:dc:5c:cf:b5:ee: 85:31:62:89:d4:2c:26:63:23:79:ad:47:c5:b1:37: 29:ff:88:e6:02:c6:fb:18:54:ab:3e:b9:6b:06:5c: 48:28:26:3c:35:4f:be:85:11:54:61:bd:fc:c9:66: d3:a7:62:0a:15:8f:4c:c7:5f:a8:ed:f7:cd:da:72: 55:e3:b2:08:84:9c:8a:7d:ef:d2:0e:de:3c:bf:75: f6:e3:14:18:64:75:fb:e7:9f:71:9c:fb:9c:dd:5b: cb:9c:d1:8e:f6:ab:ee:a2:72:80:f0:a1:ff:08:6a: 6e:d2:6a:ee:72:ac:ac:c8:10:c7:c2:45:68:56:08: 4e:52:07:e5:15:b2:f1:65:d7:bf:1a:d5:40:8b:b9: 38:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7A:AA:43:1C:CD:B2:62:BD:FE:CD:9C:4F:EC:69:1C:A6:B2:6E:DE X509v3 Authority Key Identifier: keyid:FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:d7:80:8b:3a:c6:a3:61:4b:af:0f:3a:1b:2a:ba:12:a5:db: 26:05:ff:f4:0b:a8:a5:17:90:70:c5:6d:28:47:a4:01:82:0b: 33:e7:b8:c8:0d:59:b2:5b:db:69:26:d3:95:44:02:cf:50:73: 60:b5:3e:1b:21:66:38:91:19:60:d9:dc:41:cc:94:6b:3f:97: 68:d3:f9:5c:fe:5d:5c:0d:03:59:a3:b3:99:d5:78:54:43:c8: c0:f1:6d:bb:cb:03:1a:c3:1e:db:47:ae:a5:a4:c4:54:3c:3c: ae:a6:86:93:cb:7c:ef:10:ee:26:12:af:f3:f4:e5:dd:d6:d5: f6:b5:5e:3e:1b:7d:ac:6d:15:87:fb:b8:a1:75:60:71:1c:b5: 44:af:11:fb:b7:35:60:a3:f8:4c:03:ec:10:f5:8e:30:0d:87: 71:18:b6:22:87:ec:46:83:e0:5f:f3:49:71:2f:7b:57:ba:30: c6:02:a9:21:07:5d:aa:b4:fa:a1:27:95:8a:26:5c:c3:18:9e: c9:55:a2:e7:f2:34:85:9f:5d:c2:61:9d:3d:5a:85:62:60:1a: ea:a5:f6:63:f9:a8:63:0e:68:a1:93:67:8f:ae:01:4c:e6:d9: 9b:25:8f:f7:9f:ca:60:7c:f7:5b:1a:8b:a9:01:14:19:1e:76: 5a:e1:32:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCODYxMTAvBgNVBAUTKEZERDkxREQzMEU5QjFGRUEzQkI3RTEyQUVGNzYyMTY2 MjgxMjlCMjMwHhcNMjUwNjExMDQxOTAxWhcNMjUwNjE4MDQxOTAxWjAYMRYwFAYD VQQDEw02ODQ5MDNiNS0wMGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXlQSbfpuDVVjqQr9kPq+j0aXtjaB6hUqpMRmtFllCU3PQfUG4bbVFgfIskO Jf7SPU0y7yETF2JY/4+2Ozp3JjRcvWUMbteR/Qy56h5OHmQjMJn/pHI4C1u6AWeu UWJJzfkPrOTZPWh9zV6PXWPLhrz03FzPte6FMWKJ1CwmYyN5rUfFsTcp/4jmAsb7 GFSrPrlrBlxIKCY8NU++hRFUYb38yWbTp2IKFY9Mx1+o7ffN2nJV47IIhJyKfe/S Dt48v3X24xQYZHX7559xnPuc3VvLnNGO9qvuonKA8KH/CGpu0mrucqysyBDHwkVo VghOUgflFbLxZde/GtVAi7k4AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAh6qkMc zbJivf7NnE/saRymsm7eMB8GA1UdIwQYMBaAFP3ZHdMOmx/qO7fhKu92IWYoEpsj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkI4Ni84NkU5NzdDQUE4 N0QxMUVFOUZBNTVBNkRDNEY5QUUwMi9fZGtkMHc2Ykgtbzd0LUVxNzNZaFppZ1Nt eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ka2QwdzZiSC1vN3QtRXE3M1loWmlnU215TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkI4Ni84NkU5NzdDQUE4N0QxMUVFOUZBNTVBNkRDNEY5QUUwMi9fZGtkMHc2Ykgt bzd0LUVxNzNZaFppZ1NteU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT14CLOsajYUuvDzobKroSpdsmBf/0C6ilF5BwxW0oR6QBggsz57jI DVmyW9tpJtOVRALPUHNgtT4bIWY4kRlg2dxBzJRrP5do0/lc/l1cDQNZo7OZ1XhU Q8jA8W27ywMawx7bR66lpMRUPDyupoaTy3zvEO4mEq/z9OXd1tX2tV4+G32sbRWH +7ihdWBxHLVErxH7tzVgo/hMA+wQ9Y4wDYdxGLYih+xGg+Bf80lxL3tXujDGAqkh B12qtPqhJ5WKJlzDGJ7JVaLn8jSFn13CYZ09WoViYBrqpfZj+ahjDmihk2ePrgFM 5tmbJY/3n8pgfPdbGoupARQZHnZa4TIB -----END CERTIFICATE-----Generated at Thu Jun 12 14:03:15 2025 by rpki-client