$ rpki-client -vvf rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft File: dQVeDYzbFO-fBPi5XayLiclozd0.mft (raw, json) Hash identifier: vgdpejfOMtSDjn5F4XCLPQ+Gr/MCW936lemGWmITufU= Subject key identifier: E2:CC:13:76:F4:02:91:87:9F:C1:DC:DD:49:CB:E9:93:E2:AA:5F:BF Authority key identifier: 75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD Certificate issuer: /CN=A912C4DB/serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft Manifest number: 0C4B Signing time: Fri 04 Jul 2025 18:50:01 +0000 Manifest this update: Fri 04 Jul 2025 18:50:00 +0000 Manifest next update: Fri 11 Jul 2025 18:50:00 +0000 Files and hashes: 1: dQVeDYzbFO-fBPi5XayLiclozd0.crl (hash: sMlhnx2soGaP65fxl573ix8h0MfHzvzLWmiyDOdIYKA=) 2: 3E0EDBC83E0111ECA3AF5462C4F9AE02.roa (hash: MeK9ET7gmT0HXM7WrsCFabf5Xt6ViCVNKTA3zZ5Z6Ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C4DB, serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Validity Not Before: Jul 4 18:50:00 2025 GMT Not After : Jul 11 18:50:00 2025 GMT Subject: CN=68682259-a109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b6:3d:5e:55:47:2e:52:e7:f1:d0:c6:b1:2c: 89:72:d5:42:96:0e:21:ea:1a:6a:72:52:68:19:9b: 5b:9e:2c:b1:23:3e:38:25:93:a3:2a:ca:ee:9a:52: 0d:b2:a5:59:f9:67:7a:00:31:e0:28:67:3a:a2:ce: 1c:25:e8:87:fd:11:f7:16:9c:98:43:39:5f:55:7e: bf:cb:49:33:aa:25:53:99:ee:02:a5:ba:57:de:97: 4c:b3:b4:b7:97:e2:3f:87:61:7e:02:95:0f:a4:8a: a3:23:0f:93:56:6b:78:19:ed:f6:bf:92:0a:cf:f9: 59:88:26:99:92:2a:be:e2:61:98:fd:ac:1a:a7:1b: 6d:2c:cf:32:50:12:4b:68:fe:1a:39:4e:e9:aa:91: 73:90:d0:cd:1c:2d:9c:ae:c2:0e:5c:c2:29:25:40: e6:58:d5:76:b7:d4:22:ce:ae:e6:b0:46:3a:4e:65: 3b:2d:cd:c5:0f:eb:ae:96:6e:fa:9e:55:4e:72:b4: 63:12:fa:aa:81:80:9a:56:48:e6:70:80:df:2b:95: 72:5c:32:eb:c4:5f:75:f3:bb:47:dc:95:51:ce:13: 4d:64:ea:76:a8:15:b3:b3:a0:29:a0:7c:7a:27:10: ae:12:6e:5a:14:2c:ee:f2:f9:39:e3:ea:00:c7:91: 41:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CC:13:76:F4:02:91:87:9F:C1:DC:DD:49:CB:E9:93:E2:AA:5F:BF X509v3 Authority Key Identifier: keyid:75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:34:33:29:50:c4:ad:ef:61:53:0b:cb:48:d1:7f:ed:68:13: 95:cb:aa:db:72:54:93:30:17:36:2a:dc:2d:15:9d:1b:77:94: 48:2c:0d:11:7a:e9:49:21:49:d2:92:43:94:c9:6d:07:e4:b2: 67:e6:87:89:c9:83:d3:bb:00:07:53:80:9b:f4:68:0d:1e:10: 35:51:c2:56:cf:28:9f:de:fa:a5:c7:82:20:57:5e:d4:b5:2c: c7:26:fb:9c:1f:33:fd:5d:f9:d0:7b:77:f1:d0:45:3e:90:2d: c9:8a:84:86:a1:14:fd:3b:fb:5d:e0:02:75:e0:d7:33:81:50: f8:84:65:ec:18:44:39:0d:a6:c0:0f:1f:b3:ba:25:e9:d6:66: cc:b5:94:ad:e2:97:3b:32:15:4e:28:22:ad:f0:26:2e:e4:d5: df:df:5f:06:4c:e6:3f:61:3f:c4:a7:32:4c:fd:7e:61:89:03: fb:0c:30:74:1f:e5:53:d2:e0:98:b5:fa:97:de:4c:eb:c2:6a: 50:55:aa:24:0b:28:da:26:ed:ad:4e:a7:28:fd:6d:42:a6:6c: bd:18:45:b0:8c:36:77:4e:41:1d:f7:a1:9b:c4:f1:80:c9:9e: f1:05:d3:0e:80:53:fd:6a:f6:df:c8:0b:c1:70:18:88:dc:52: 82:86:e8:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM0REIxMTAvBgNVBAUTKDc1MDU1RTBEOENEQjE0RUY5RjA0RjhCOTVEQUM4Qjg5 Qzk2OENEREQwHhcNMjUwNzA0MTg1MDAwWhcNMjUwNzExMTg1MDAwWjAYMRYwFAYD VQQDEw02ODY4MjI1OS1hMTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbY9XlVHLlLn8dDGsSyJctVClg4h6hpqclJoGZtbniyxIz44JZOjKsrumlIN sqVZ+Wd6ADHgKGc6os4cJeiH/RH3FpyYQzlfVX6/y0kzqiVTme4CpbpX3pdMs7S3 l+I/h2F+ApUPpIqjIw+TVmt4Ge32v5IKz/lZiCaZkiq+4mGY/awapxttLM8yUBJL aP4aOU7pqpFzkNDNHC2crsIOXMIpJUDmWNV2t9Qizq7msEY6TmU7Lc3FD+uulm76 nlVOcrRjEvqqgYCaVkjmcIDfK5VyXDLrxF9187tH3JVRzhNNZOp2qBWzs6ApoHx6 JxCuEm5aFCzu8vk54+oAx5FBtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLME3b0 ApGHn8Hc3UnL6ZPiql+/MB8GA1UdIwQYMBaAFHUFXg2M2xTvnwT4uV2si4nJaM3d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzREQi9EN0RGRDZDQTA4 RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZPLWZCUGk1WGF5TGljbG96 ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRVmVEWXpiRk8tZkJQaTVYYXlMaWNsb3pkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzREQi9EN0RGRDZDQTA4RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZP LWZCUGk1WGF5TGljbG96ZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWNDMpUMSt72FTC8tI0X/taBOVy6rbclSTMBc2KtwtFZ0bd5RILA0R eulJIUnSkkOUyW0H5LJn5oeJyYPTuwAHU4Cb9GgNHhA1UcJWzyif3vqlx4IgV17U tSzHJvucHzP9XfnQe3fx0EU+kC3JioSGoRT9O/td4AJ14NczgVD4hGXsGEQ5DabA Dx+zuiXp1mbMtZSt4pc7MhVOKCKt8CYu5NXf318GTOY/YT/EpzJM/X5hiQP7DDB0 H+VT0uCYtfqX3kzrwmpQVaokCyjaJu2tTqco/W1Cpmy9GEWwjDZ3TkEd96GbxPGA yZ7xBdMOgFP9avbfyAvBcBiI3FKChugc -----END CERTIFICATE-----Generated at Sun Jul 6 01:05:55 2025 by rpki-client