$ rpki-client -vvf rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft File: DDegHLYzYjRPtzlnYP2U2cm5fHo.mft (raw, json) Hash identifier: x4ugMVLDpiWwA58bH937u6RniTXUAaiWkW2Y6Byi31g= Subject key identifier: DE:E1:C6:20:EB:59:F6:99:69:EA:E2:10:62:39:BE:E4:87:4D:E3:9A Authority key identifier: 0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A Certificate issuer: /CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft Manifest number: 013F Signing time: Sun 11 May 2025 03:13:26 +0000 Manifest this update: Sun 11 May 2025 03:13:25 +0000 Manifest next update: Sun 18 May 2025 03:13:25 +0000 Files and hashes: 1: DDegHLYzYjRPtzlnYP2U2cm5fHo.crl (hash: Wyk4QFPd/YYLG7QeNL9sb52ZITf/FNaigaad6Mw+DSs=) 2: 865B3F7C467C11EEBDE3D43CC4F9AE02.roa (hash: MTq717nmucrc35Yd/8a9v/UNjUpnghaYXRqZ7x8/L7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B64D, serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Validity Not Before: May 11 03:13:25 2025 GMT Not After : May 18 03:13:25 2025 GMT Subject: CN=682015d5-111d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:aa:56:7e:17:81:12:cc:b1:a2:9d:4a:15:24: 59:31:27:47:81:3c:cb:f0:f9:86:dd:03:5a:6c:61: e2:ff:aa:f6:53:10:38:64:6e:5c:8e:bb:29:94:1f: 77:51:45:b2:84:78:b3:95:a5:fd:6a:79:24:7a:b6: da:8f:75:3b:ba:e6:91:6e:14:90:c5:17:64:11:3e: 5e:56:06:98:e9:a1:ef:7e:00:7a:9e:01:d4:65:bc: 48:c5:df:bd:8e:01:f3:3b:60:41:ee:fb:b3:c8:72: ae:7b:8e:df:5f:2b:ee:bb:dc:5b:91:ca:49:2c:4e: b0:f1:6e:11:02:a7:28:6d:06:75:b1:46:25:ce:33: 72:23:b1:c0:d4:a4:af:e0:c9:29:84:f3:f8:7e:80: 3c:d7:80:04:dc:e0:68:68:da:71:14:9d:0d:13:02: a5:2c:f2:74:f0:98:e9:9e:74:0c:29:43:b2:63:11: 87:93:25:4d:9f:49:35:15:21:b0:93:48:88:1f:18: 41:5f:02:ba:06:73:2d:a5:dc:e2:e5:29:be:37:95: f6:4f:df:7d:6b:60:1c:7a:43:82:f3:b6:79:e5:05: 37:42:ba:1e:46:5c:6b:22:79:8d:3b:7b:f6:08:77: ea:fe:fd:c7:a7:5a:83:12:f5:b0:cb:08:e5:3b:f5: 90:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E1:C6:20:EB:59:F6:99:69:EA:E2:10:62:39:BE:E4:87:4D:E3:9A X509v3 Authority Key Identifier: keyid:0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:b4:fa:74:7e:31:cb:57:65:29:cd:13:1a:d0:24:4f:ba:72: b1:83:da:c6:f8:45:29:0d:1a:89:61:fa:8b:10:80:32:b1:ec: 49:f6:dd:8e:8c:9f:ac:e9:f7:2f:19:f6:fa:8f:31:2b:4d:2e: e4:28:60:2a:90:e5:38:cd:a3:0a:1d:31:b0:19:e7:8e:79:e5: 1c:19:9b:00:fb:86:b7:e5:d7:58:ee:6f:cd:47:4a:b6:b5:e1: 8b:8d:26:ac:10:09:5a:28:11:0a:60:98:13:41:36:59:c1:4e: 4a:9f:77:24:49:f6:39:3a:eb:95:b2:7f:b3:52:8d:bf:83:cd: 21:53:b9:ed:6a:13:2a:c8:76:da:04:e9:04:41:46:76:ad:4e: 12:8a:58:aa:ed:a4:a0:98:6c:44:2b:67:dc:10:eb:49:02:c0: e8:27:e5:6b:de:4c:7a:ea:d2:f2:f8:6b:0c:98:08:a3:c5:e0: f8:e5:fc:ae:c6:a9:cd:f1:53:f4:e0:8c:59:66:4a:d9:22:11: 7e:51:6a:bb:f4:63:2c:8a:46:6c:23:a9:51:cd:4b:e1:37:83: df:b4:6f:00:76:98:4f:dc:64:7d:d9:ff:8c:e2:f2:78:11:5b: 97:3f:d2:9b:84:08:31:8d:7d:7e:90:4f:c4:cc:99:4a:e3:92: 85:11:e9:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2NEQxMTAvBgNVBAUTKDBDMzdBMDFDQjYzMzYyMzQ0RkI3Mzk2NzYwRkQ5NEQ5 QzlCOTdDN0EwHhcNMjUwNTExMDMxMzI1WhcNMjUwNTE4MDMxMzI1WjAYMRYwFAYD VQQDEw02ODIwMTVkNS0xMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArapWfheBEsyxop1KFSRZMSdHgTzL8PmG3QNabGHi/6r2UxA4ZG5cjrsplB93 UUWyhHizlaX9ankkerbaj3U7uuaRbhSQxRdkET5eVgaY6aHvfgB6ngHUZbxIxd+9 jgHzO2BB7vuzyHKue47fXyvuu9xbkcpJLE6w8W4RAqcobQZ1sUYlzjNyI7HA1KSv 4MkphPP4foA814AE3OBoaNpxFJ0NEwKlLPJ08JjpnnQMKUOyYxGHkyVNn0k1FSGw k0iIHxhBXwK6BnMtpdzi5Sm+N5X2T999a2AcekOC87Z55QU3QroeRlxrInmNO3v2 CHfq/v3Hp1qDEvWwywjlO/WQPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7hxiDr WfaZaeriEGI5vuSHTeOaMB8GA1UdIwQYMBaAFAw3oBy2M2I0T7c5Z2D9lNnJuXx6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjY0RC8yQkJFNDAxNDQ2 N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellqUlB0emxuWVAyVTJjbTVm SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0REZWdITFl6WWpSUHR6bG5ZUDJVMmNtNWZIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjY0RC8yQkJFNDAxNDQ2N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellq UlB0emxuWVAyVTJjbTVmSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDgtPp0fjHLV2UpzRMa0CRPunKxg9rG+EUpDRqJYfqLEIAysexJ9t2O jJ+s6fcvGfb6jzErTS7kKGAqkOU4zaMKHTGwGeeOeeUcGZsA+4a35ddY7m/NR0q2 teGLjSasEAlaKBEKYJgTQTZZwU5Kn3ckSfY5OuuVsn+zUo2/g80hU7ntahMqyHba BOkEQUZ2rU4Siliq7aSgmGxEK2fcEOtJAsDoJ+Vr3kx66tLy+GsMmAijxeD45fyu xqnN8VP04IxZZkrZIhF+UWq79GMsikZsI6lRzUvhN4PftG8AdphP3GR92f+M4vJ4 EVuXP9KbhAgxjX1+kE/EzJlK45KFEelL -----END CERTIFICATE-----Generated at Mon May 12 04:35:12 2025 by rpki-client