$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: 5e5+ueOUgsMwNMF2nFfgrBH4h1VqS5KFi/wl2Qeash8= Subject key identifier: A5:03:80:3B:0A:AF:8A:95:41:06:B7:4F:3E:9A:B9:C0:E2:FB:84:81 Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 0724 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 071E Signing time: Mon 30 Jun 2025 22:08:43 +0000 Manifest this update: Mon 30 Jun 2025 22:08:43 +0000 Manifest next update: Mon 07 Jul 2025 22:08:43 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: fdqqtlHRWchXvQ1Pu0QQTZoK/VO4f1OLg2SQWkR4xAk=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: Vr7eqcQZAVOzBkNtRv4RGA5ST9LjW4Xtker8ajEEVvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1828 (0x724) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE, serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: Jun 30 22:08:43 2025 GMT Not After : Jul 7 22:08:43 2025 GMT Subject: CN=68630aeb-94ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7e:2f:ea:1c:ba:48:6f:d5:28:42:17:81:e7: 62:08:b5:a9:cb:6d:fa:d6:a7:79:a2:7d:cb:0f:6c: 81:9c:9e:48:ee:10:ca:1b:ff:29:54:6d:54:57:59: ba:83:c1:de:08:ea:3a:38:4b:8f:25:31:79:6d:d6: 29:da:46:9c:f4:d2:16:84:59:f4:5c:1f:06:d6:7b: 6e:16:9c:d1:7b:9f:db:af:ff:eb:ef:25:28:a6:b4: 42:0a:9c:bf:94:7d:6c:3f:b8:1f:d5:c9:fb:16:90: 51:69:b1:17:d3:6e:bb:4a:aa:cb:65:19:cf:e6:af: 2b:66:0d:ff:5f:96:fc:20:b5:fa:c5:1f:fa:f7:39: 32:4e:44:ca:b5:bc:52:f4:d6:7d:f7:5c:60:ed:90: f0:0b:d5:e9:53:30:be:8b:21:25:56:36:d6:46:8f: 01:7e:91:af:3c:33:e4:1c:8e:17:2a:a5:43:75:9f: 8b:4f:46:b7:1d:51:4a:de:59:1b:6b:e9:98:de:c0: 33:8c:27:e8:84:77:75:11:67:21:e3:0f:1e:f7:f5: c4:02:d9:5f:c4:e7:a9:94:79:55:72:2d:74:0e:57: 0d:ea:d5:81:64:74:b5:0c:e4:1b:89:5f:99:17:81: 23:c5:4d:c3:aa:69:31:c2:b9:fb:67:64:cf:0d:24: 82:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:03:80:3B:0A:AF:8A:95:41:06:B7:4F:3E:9A:B9:C0:E2:FB:84:81 X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:26:ec:43:d3:e8:c6:19:b5:0d:f7:12:93:1a:bd:e5:65:25: 58:9c:ca:09:2c:30:5f:79:54:17:ff:29:9e:9d:a0:ba:ee:13: 4e:64:c8:65:9c:a7:b3:a3:c2:7f:27:82:8c:e3:11:71:d0:81: c3:52:3e:d3:9a:8e:a6:18:f1:eb:65:f7:94:22:70:ee:16:ff: b1:e2:c6:ba:25:cb:d9:25:72:24:e3:95:1c:4b:80:c7:c9:0e: a2:c5:2c:eb:e3:80:86:2a:0f:2e:86:5c:cf:9c:3b:d7:27:b9: c1:b6:39:d7:6c:98:21:53:c1:42:0d:88:6d:49:cc:bd:09:44: 35:f5:67:7e:2f:49:cb:db:08:4b:d2:a6:c2:b3:82:9b:ec:50: b0:9f:32:88:a0:c7:2e:6f:86:68:75:3e:d7:8f:c6:38:e7:95: 78:4d:bc:75:d7:2e:1f:f4:e1:6a:1a:f1:4b:9a:e0:21:53:46: d9:f3:27:df:bc:bc:8e:91:42:b6:50:34:b9:de:a9:26:99:b7: a1:1c:16:50:08:c8:62:39:d8:02:e8:62:9f:02:f1:33:a9:ce: 0b:ed:c8:cc:08:4e:00:9d:a2:2c:a0:08:25:c9:d3:26:01:22: 28:9b:e0:25:57:34:1b:f1:04:34:7e:c7:06:d2:10:2d:f0:52: f9:b3:47:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjUwNjMwMjIwODQzWhcNMjUwNzA3MjIwODQzWjAYMRYwFAYD VQQDEw02ODYzMGFlYi05NGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA534v6hy6SG/VKEIXgediCLWpy2361qd5on3LD2yBnJ5I7hDKG/8pVG1UV1m6 g8HeCOo6OEuPJTF5bdYp2kac9NIWhFn0XB8G1ntuFpzRe5/br//r7yUoprRCCpy/ lH1sP7gf1cn7FpBRabEX0267SqrLZRnP5q8rZg3/X5b8ILX6xR/69zkyTkTKtbxS 9NZ991xg7ZDwC9XpUzC+iyElVjbWRo8BfpGvPDPkHI4XKqVDdZ+LT0a3HVFK3lkb a+mY3sAzjCfohHd1EWch4w8e9/XEAtlfxOeplHlVci10DlcN6tWBZHS1DOQbiV+Z F4EjxU3Dqmkxwrn7Z2TPDSSC/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUDgDsK r4qVQQa3Tz6aucDi+4SBMB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+JuxD0+jGGbUN9xKTGr3lZSVYnMoJLDBfeVQX/ymenaC67hNOZMhl nKezo8J/J4KM4xFx0IHDUj7Tmo6mGPHrZfeUInDuFv+x4sa6JcvZJXIk45UcS4DH yQ6ixSzr44CGKg8uhlzPnDvXJ7nBtjnXbJghU8FCDYhtScy9CUQ19Wd+L0nL2whL 0qbCs4Kb7FCwnzKIoMcub4ZodT7Xj8Y455V4Tbx11y4f9OFqGvFLmuAhU0bZ8yff vLyOkUK2UDS53qkmmbehHBZQCMhiOdgC6GKfAvEzqc4L7cjMCE4AnaIsoAglydMm ASIom+AlVzQb8QQ0fscG0hAt8FL5s0dS -----END CERTIFICATE-----Generated at Wed Jul 2 15:12:16 2025 by rpki-client