$ rpki-client -vvf rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft File: dQVeDYzbFO-fBPi5XayLiclozd0.mft (raw, json) Hash identifier: fJCORbHSoljovr8J0BviGWQXLRYW/HdBgguZLj3oeDE= Subject key identifier: 56:C5:04:7B:EA:5D:51:46:24:EF:B8:30:6E:4C:2D:28:E7:CC:67:68 Authority key identifier: 75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD Certificate issuer: /CN=A912C4DB/serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Certificate serial: 0C3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft Manifest number: 0C32 Signing time: Wed 14 May 2025 18:41:29 +0000 Manifest this update: Wed 14 May 2025 18:41:29 +0000 Manifest next update: Wed 21 May 2025 18:41:29 +0000 Files and hashes: 1: dQVeDYzbFO-fBPi5XayLiclozd0.crl (hash: cLajih7TZ/WuivSlsXKzdxNBM+Wu340f6V5Y3118TwA=) 2: 3E0EDBC83E0111ECA3AF5462C4F9AE02.roa (hash: MeK9ET7gmT0HXM7WrsCFabf5Xt6ViCVNKTA3zZ5Z6Ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3134 (0xc3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C4DB, serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Validity Not Before: May 14 18:41:29 2025 GMT Not After : May 21 18:41:29 2025 GMT Subject: CN=6824e3d9-be22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2a:4e:82:3a:28:38:dc:e0:d1:54:5e:38:1b: f8:5f:85:4d:97:91:d9:7e:84:2e:4b:88:45:a7:d8: 15:a6:e3:0c:3f:4a:e9:35:81:6b:e0:56:fb:0d:3b: a6:1d:8b:55:cf:1d:20:bf:fc:8a:fe:ce:ab:64:22: 9e:49:ab:9c:72:df:2a:d6:e6:42:7d:96:39:c5:b7: 0e:ba:4c:35:ef:2c:db:72:a1:27:3b:32:80:6f:bf: 20:7c:67:49:a1:44:1d:cd:00:14:3a:2b:82:68:65: 7f:be:7c:e5:49:12:7a:1e:cb:f9:9f:db:6f:ee:90: 4c:1f:89:f9:4c:ca:fa:e7:f3:e6:49:de:05:17:21: b0:61:cd:03:e2:50:c9:00:66:d3:73:39:f2:02:ae: 6a:a8:11:68:5d:00:52:7a:30:62:5e:b2:ac:79:0a: 8d:00:85:fc:16:a1:ce:3e:6a:5c:5b:ba:77:b2:8f: d6:aa:72:5c:e3:b9:bc:f6:14:fe:6a:92:61:97:2f: 44:a1:a2:3b:3b:df:a8:99:00:b1:aa:7c:6f:5d:22: 84:7b:75:df:62:f9:cb:22:55:56:51:49:f2:1c:0e: 62:45:11:8a:eb:fa:80:c4:f7:e2:31:63:6a:a6:b0: fa:b8:14:02:64:65:93:35:e8:45:19:b6:cd:1b:6f: 3e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C5:04:7B:EA:5D:51:46:24:EF:B8:30:6E:4C:2D:28:E7:CC:67:68 X509v3 Authority Key Identifier: keyid:75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:ac:b7:3f:0a:e5:d8:69:0e:68:c1:a5:f2:b3:09:ed:24:2c: 62:e7:ee:78:a0:4e:2f:35:27:4c:39:4b:24:32:ff:36:e9:d4: 91:c7:f8:f3:a7:23:01:22:3b:ad:47:1d:02:3a:7a:08:55:c8: 95:af:8c:05:ad:60:21:bf:b3:ce:47:80:30:6b:08:18:95:12: 33:06:e3:b5:f5:b9:b0:14:fa:54:e2:93:05:b0:1a:72:6f:09: bf:fd:4d:96:2c:c3:74:ec:5e:2e:04:17:05:a0:29:a1:e8:2a: ba:31:4e:d9:18:1d:9b:12:67:45:a2:27:62:b6:47:08:6d:2d: 70:d5:47:34:7b:96:f5:5f:29:08:44:ff:ce:63:03:4c:34:65: 39:9a:92:e2:2c:4b:16:89:3e:2b:2d:41:ec:5c:42:0a:ea:a9: 0c:72:00:d5:c4:35:36:b9:40:b6:7c:90:95:6e:4f:74:b3:1c: fc:df:e2:f6:f6:c6:e4:27:d8:6b:5f:d9:4a:53:3e:36:20:70: f3:4b:ae:13:b8:e0:48:5d:c0:4c:c0:78:60:1d:b7:cb:a3:ca: 9c:09:b0:8f:51:1d:13:19:82:97:a9:e8:3f:10:6b:f5:f1:aa: 7d:43:13:32:8a:b3:bf:b4:df:22:08:c5:ea:8c:8e:1d:4d:d5: e9:7f:05:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM0REIxMTAvBgNVBAUTKDc1MDU1RTBEOENEQjE0RUY5RjA0RjhCOTVEQUM4Qjg5 Qzk2OENEREQwHhcNMjUwNTE0MTg0MTI5WhcNMjUwNTIxMTg0MTI5WjAYMRYwFAYD VQQDEw02ODI0ZTNkOS1iZTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ipOgjooONzg0VReOBv4X4VNl5HZfoQuS4hFp9gVpuMMP0rpNYFr4Fb7DTum HYtVzx0gv/yK/s6rZCKeSaucct8q1uZCfZY5xbcOukw17yzbcqEnOzKAb78gfGdJ oUQdzQAUOiuCaGV/vnzlSRJ6Hsv5n9tv7pBMH4n5TMr65/PmSd4FFyGwYc0D4lDJ AGbTcznyAq5qqBFoXQBSejBiXrKseQqNAIX8FqHOPmpcW7p3so/WqnJc47m89hT+ apJhly9EoaI7O9+omQCxqnxvXSKEe3XfYvnLIlVWUUnyHA5iRRGK6/qAxPfiMWNq prD6uBQCZGWTNehFGbbNG28+GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbFBHvq XVFGJO+4MG5MLSjnzGdoMB8GA1UdIwQYMBaAFHUFXg2M2xTvnwT4uV2si4nJaM3d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzREQi9EN0RGRDZDQTA4 RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZPLWZCUGk1WGF5TGljbG96 ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRVmVEWXpiRk8tZkJQaTVYYXlMaWNsb3pkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzREQi9EN0RGRDZDQTA4RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZP LWZCUGk1WGF5TGljbG96ZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyrLc/CuXYaQ5owaXyswntJCxi5+54oE4vNSdMOUskMv826dSRx/jz pyMBIjutRx0COnoIVciVr4wFrWAhv7POR4AwawgYlRIzBuO19bmwFPpU4pMFsBpy bwm//U2WLMN07F4uBBcFoCmh6Cq6MU7ZGB2bEmdFoiditkcIbS1w1Uc0e5b1XykI RP/OYwNMNGU5mpLiLEsWiT4rLUHsXEIK6qkMcgDVxDU2uUC2fJCVbk90sxz83+L2 9sbkJ9hrX9lKUz42IHDzS64TuOBIXcBMwHhgHbfLo8qcCbCPUR0TGYKXqeg/EGv1 8ap9QxMyirO/tN8iCMXqjI4dTdXpfwX0 -----END CERTIFICATE-----Generated at Fri May 16 11:53:47 2025 by rpki-client