$ rpki-client -vvf rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft File: PDd12fh_DqopaGZ3TqYvYnTQZss.mft (raw, json) Hash identifier: Ej+FQcxBkixfkrj5v0kqWKqWepQ2M2YvDBj2f5hO2PY= Subject key identifier: D6:58:3A:5B:DA:C1:5C:27:73:90:0B:D9:C4:27:8C:F9:5D:07:E4:BA Authority key identifier: 3C:37:75:D9:F8:7F:0E:AA:29:68:66:77:4E:A6:2F:62:74:D0:66:CB Certificate issuer: /CN=A9193388/serialNumber=3C3775D9F87F0EAA296866774EA62F6274D066CB Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft Manifest number: 77 Signing time: Sat 31 May 2025 06:20:28 +0000 Manifest this update: Sat 31 May 2025 06:20:28 +0000 Manifest next update: Sat 07 Jun 2025 06:20:28 +0000 Files and hashes: 1: PDd12fh_DqopaGZ3TqYvYnTQZss.crl (hash: tYLSODtsNJQ7y5VtqE2ePgCHiqSsAIldBvpqtsZAyOE=) 2: 0C2CCB529B6D11EF9DC26822C4F9AE02.roa (hash: 3dvjbuMT8Y0qb48SF6bJUwqEnOmDrnVR3qZ9bmDelg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.crl rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193388, serialNumber=3C3775D9F87F0EAA296866774EA62F6274D066CB Validity Not Before: May 31 06:20:28 2025 GMT Not After : Jun 7 06:20:28 2025 GMT Subject: CN=683a9fac-f14e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:db:a1:ad:4f:74:c4:32:97:76:45:21:5d:14: f0:0c:4f:a2:30:5b:b1:f6:c9:a9:f8:13:20:9d:ef: 83:b8:34:e0:c9:b4:38:bd:de:78:30:e5:4c:28:3e: db:19:dc:87:f1:8f:c2:7b:b8:b0:f4:35:d3:89:29: f4:d3:bf:71:b9:b6:f1:2e:56:26:77:ad:be:f6:18: 51:79:ba:0e:60:be:57:5b:53:fe:86:25:66:12:23: 6e:68:37:b3:e3:dc:ca:0e:1f:f5:5c:f0:75:ea:54: 24:23:13:58:26:d6:f8:d7:14:1f:ca:77:8b:57:00: 1a:cd:da:cc:48:88:3b:0e:bc:2a:6f:d3:a0:80:f0: 6e:a1:cb:24:d2:5d:1b:d3:16:6f:62:76:2d:44:ec: ce:4e:23:eb:d1:24:db:b9:10:54:b4:33:e2:7a:31: 7c:57:ec:71:ad:9c:84:92:b2:d0:d6:0f:15:f6:25: 52:d5:58:40:34:76:6f:89:23:66:f9:81:64:16:02: 6a:2c:65:66:45:9a:36:f5:cb:67:c3:63:a6:0d:16: c4:d7:44:0f:c5:ae:c2:9f:ea:17:14:4a:d1:a0:e2: 17:e9:f4:53:f6:fa:a1:bd:ef:3a:19:30:02:8d:60: 71:96:b4:4a:41:e7:33:03:5d:0c:06:1f:5e:d6:e1: 46:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:58:3A:5B:DA:C1:5C:27:73:90:0B:D9:C4:27:8C:F9:5D:07:E4:BA X509v3 Authority Key Identifier: keyid:3C:37:75:D9:F8:7F:0E:AA:29:68:66:77:4E:A6:2F:62:74:D0:66:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:0f:24:5a:60:5f:3a:c7:4f:1f:fd:ca:4a:4e:8f:32:bb:14: 60:8f:88:7e:bc:50:53:b4:08:24:c7:43:f4:19:d4:16:ee:66: 8a:c9:18:3c:f0:1c:26:91:05:8b:a2:fe:b1:e6:97:f4:30:fc: c2:6c:4c:58:4c:3c:15:14:75:bd:ba:4f:ba:ab:69:a1:00:b3: 61:95:ba:0b:40:77:62:e6:5f:ea:80:32:2a:ea:9f:75:f5:29: a1:a3:80:87:49:68:17:f4:55:d0:27:31:8a:83:5e:a2:00:e3: 5c:09:b4:62:37:27:75:e9:c5:5e:17:11:ce:e1:8e:a6:c4:74: ed:1c:6a:74:b8:a5:3d:25:81:bc:7c:af:9b:17:ef:61:82:cd: 65:72:c1:36:62:10:01:bb:a4:36:76:e2:21:09:0c:32:79:b1: 87:2d:94:a3:70:5a:0b:5f:04:9c:f1:21:f4:e9:1f:4e:33:dc: 35:be:0d:0e:20:9c:3f:a8:97:12:7b:fe:45:ab:2c:ce:ba:2c: bc:1f:a8:9c:36:e0:19:7f:34:8e:5d:ea:10:c2:1d:00:37:10: 6b:51:41:09:9f:82:a3:40:19:d1:f8:31:27:20:bd:65:38:ea: 49:0c:ef:4a:91:7b:e5:58:c8:c5:29:9a:a5:bc:a9:94:df:ab: 73:9a:58:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzM4ODExMC8GA1UEBRMoM0MzNzc1RDlGODdGMEVBQTI5Njg2Njc3NEVBNjJGNjI3 NEQwNjZDQjAeFw0yNTA1MzEwNjIwMjhaFw0yNTA2MDcwNjIwMjhaMBgxFjAUBgNV BAMTDTY4M2E5ZmFjLWYxNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm26GtT3TEMpd2RSFdFPAMT6IwW7H2yan4EyCd74O4NODJtDi93ngw5UwoPtsZ 3Ifxj8J7uLD0NdOJKfTTv3G5tvEuViZ3rb72GFF5ug5gvldbU/6GJWYSI25oN7Pj 3MoOH/Vc8HXqVCQjE1gm1vjXFB/Kd4tXABrN2sxIiDsOvCpv06CA8G6hyyTSXRvT Fm9idi1E7M5OI+vRJNu5EFS0M+J6MXxX7HGtnISSstDWDxX2JVLVWEA0dm+JI2b5 gWQWAmosZWZFmjb1y2fDY6YNFsTXRA/FrsKf6hcUStGg4hfp9FP2+qG97zoZMAKN YHGWtEpB5zMDXQwGH17W4UZVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1lg6W9rB XCdzkAvZxCeM+V0H5LowHwYDVR0jBBgwFoAUPDd12fh/DqopaGZ3TqYvYnTQZssw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzMzg4L0UwRTczNjBBODlG NDExRUZBOTEzQjk1MkM0RjlBRTAyL1BEZDEyZmhfRHFvcGFHWjNUcVl2WW5UUVpz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUERkMTJmaF9EcW9wYUdaM1RxWXZZblRRWnNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz Mzg4L0UwRTczNjBBODlGNDExRUZBOTEzQjk1MkM0RjlBRTAyL1BEZDEyZmhfRHFv cGFHWjNUcVl2WW5UUVpzcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEUPJFpgXzrHTx/9ykpOjzK7FGCPiH68UFO0CCTHQ/QZ1BbuZorJGDzw HCaRBYui/rHml/Qw/MJsTFhMPBUUdb26T7qraaEAs2GVugtAd2LmX+qAMirqn3X1 KaGjgIdJaBf0VdAnMYqDXqIA41wJtGI3J3XpxV4XEc7hjqbEdO0canS4pT0lgbx8 r5sX72GCzWVywTZiEAG7pDZ24iEJDDJ5sYctlKNwWgtfBJzxIfTpH04z3DW+DQ4g nD+olxJ7/kWrLM66LLwfqJw24Bl/NI5d6hDCHQA3EGtRQQmfgqNAGdH4MScgvWU4 6kkM70qRe+VYyMUpmqW8qZTfq3OaWAU= -----END CERTIFICATE-----Generated at Sat May 31 17:46:31 2025 by rpki-client