$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: DoFa1L/JDz5c3z3wIxG0K4RW+6Z+qBiz/8wmzUfn8u0= Subject key identifier: 3B:54:C4:D6:E2:A1:A7:C4:3E:AD:CA:8A:67:DC:23:3B:C1:10:2C:B2 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 0134 Signing time: Tue 01 Jul 2025 05:03:49 +0000 Manifest this update: Tue 01 Jul 2025 05:03:48 +0000 Manifest next update: Tue 08 Jul 2025 05:03:48 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: yQqr0Rz+qvM+mvlWP2SXzxWQz5KZVpQoLRxjqQ23IgA=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: oBJXc8GYCJgJm/47m5fsAm6DbvpC1fTX4mDB8Bng8Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Jul 1 05:03:48 2025 GMT Not After : Jul 8 05:03:48 2025 GMT Subject: CN=68636c35-1672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:dc:e4:10:0d:22:fc:e5:d3:b1:ed:e2:eb:8c: a1:f2:d7:38:e8:35:f5:3b:91:91:67:4d:4f:04:7d: 45:c5:fa:16:6f:8a:dd:53:51:8a:bd:07:1d:43:54: c5:75:08:3d:31:8d:b7:ca:87:40:f2:81:6d:54:e3: 47:92:61:a4:85:d4:c3:e1:95:27:c7:6c:ab:1e:0e: 10:6a:d3:0c:a5:a9:3c:87:8d:0c:4f:e8:ab:c9:ac: 62:a5:fd:3d:13:ff:59:fc:d5:f0:58:76:2d:8d:b7: f1:94:14:87:5d:a8:3d:f7:cd:ac:ef:67:58:96:45: d9:dc:92:b7:fc:9d:30:63:24:1e:24:12:36:dd:78: 95:f7:ce:c3:96:c8:1f:c1:7b:b4:8b:54:84:7b:5c: 92:39:72:46:57:e6:d4:ab:4d:92:6c:5d:48:19:06: 11:93:8c:11:5e:d3:d2:e6:52:a0:b2:37:8e:e4:92: 6c:47:e0:dc:2b:a9:eb:3b:c9:49:2f:07:d1:b7:a3: d9:10:5b:e2:fe:71:b2:cf:71:4d:0b:54:75:92:66: b3:e6:93:c0:f3:05:31:fb:a4:3e:cd:d6:6e:8e:17: f0:51:7f:56:9b:8b:c9:d3:de:fe:2a:f5:a9:f0:98: cc:cf:72:1d:75:cd:fb:a2:c8:2f:e8:41:9e:dd:c2: 1f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:54:C4:D6:E2:A1:A7:C4:3E:AD:CA:8A:67:DC:23:3B:C1:10:2C:B2 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:75:84:23:ff:d2:3d:6a:3c:21:f0:a2:fa:7b:26:84:c8:78: 37:2c:ea:39:fd:7b:08:27:5f:4d:4b:38:5a:f5:ee:a9:5b:39: 37:3b:26:ae:96:50:89:15:f0:af:49:8a:4c:1a:aa:1a:e6:b6: 6b:92:38:3d:56:51:d9:ed:17:0f:e6:73:72:00:fe:4b:1b:f3: 4e:65:f8:4b:27:e9:9a:e1:ed:c5:51:d4:df:94:f1:c4:9f:e2: 6b:c4:35:6d:a4:fb:ae:d2:e6:2c:08:27:86:94:44:53:dd:d7: 9c:52:94:ab:be:28:f9:d1:46:0a:e8:2f:fe:a8:cc:bd:9b:f4: b6:07:76:29:fb:61:61:50:6c:d1:1f:30:c9:c0:84:76:34:fc: 79:67:c3:ef:cc:b5:de:fd:4e:db:39:3a:dd:2e:cd:0f:7b:69: f6:b5:df:0a:d8:25:eb:e1:42:f1:33:50:0a:74:12:15:0f:c5: ae:4a:1f:88:1c:61:eb:3e:ab:3b:32:c5:0d:0e:6b:fb:3f:9e: 92:b7:e3:27:78:a3:55:41:d4:1c:08:5e:64:24:e5:3a:7a:7b: b6:36:91:69:cb:a7:3c:24:c2:eb:c7:b6:1e:86:dd:69:b0:8c: e8:a5:cd:39:47:9b:38:c5:02:55:92:62:9a:e9:fd:a8:e1:c2: c2:e3:d4:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjUwNzAxMDUwMzQ4WhcNMjUwNzA4MDUwMzQ4WjAYMRYwFAYD VQQDEw02ODYzNmMzNS0xNjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotzkEA0i/OXTse3i64yh8tc46DX1O5GRZ01PBH1FxfoWb4rdU1GKvQcdQ1TF dQg9MY23yodA8oFtVONHkmGkhdTD4ZUnx2yrHg4QatMMpak8h40MT+iryaxipf09 E/9Z/NXwWHYtjbfxlBSHXag9982s72dYlkXZ3JK3/J0wYyQeJBI23XiV987Dlsgf wXu0i1SEe1ySOXJGV+bUq02SbF1IGQYRk4wRXtPS5lKgsjeO5JJsR+DcK6nrO8lJ LwfRt6PZEFvi/nGyz3FNC1R1kmaz5pPA8wUx+6Q+zdZujhfwUX9Wm4vJ097+KvWp 8JjMz3Iddc37osgv6EGe3cIfVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtUxNbi oafEPq3KimfcIzvBECyyMB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPdYQj/9I9ajwh8KL6eyaEyHg3LOo5/XsIJ19NSzha9e6pWzk3Oyau llCJFfCvSYpMGqoa5rZrkjg9VlHZ7RcP5nNyAP5LG/NOZfhLJ+ma4e3FUdTflPHE n+JrxDVtpPuu0uYsCCeGlERT3decUpSrvij50UYK6C/+qMy9m/S2B3Yp+2FhUGzR HzDJwIR2NPx5Z8PvzLXe/U7bOTrdLs0Pe2n2td8K2CXr4ULxM1AKdBIVD8WuSh+I HGHrPqs7MsUNDmv7P56St+MneKNVQdQcCF5kJOU6enu2NpFpy6c8JMLrx7Yeht1p sIzopc05R5s4xQJVkmKa6f2o4cLC49T3 -----END CERTIFICATE-----Generated at Wed Jul 2 21:46:19 2025 by rpki-client