$ rpki-client -vvf rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft File: 0DLgYUkj9KWCM463Y2w5aErtUe0.mft (raw, json) Hash identifier: gSrVMm4vP4OulDB9O9pilKz562e/T6dPEaXFkm4uTHA= Subject key identifier: 53:E4:0F:99:EA:65:C3:05:D7:0D:07:EE:04:0A:99:8B:6D:58:98:91 Authority key identifier: D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED Certificate issuer: /CN=A913559B/serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Certificate serial: 107E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft Manifest number: 1072 Signing time: Wed 02 Jul 2025 17:33:58 +0000 Manifest this update: Wed 02 Jul 2025 17:33:58 +0000 Manifest next update: Wed 09 Jul 2025 17:33:58 +0000 Files and hashes: 1: 0DLgYUkj9KWCM463Y2w5aErtUe0.crl (hash: fi1KfvGVdd/UBPY+8qB5gWteOBslUoAD6oB64yTFjQc=) 2: DBC08AD4457911E9BA84DA51C4F9AE02.roa (hash: 2WzkstGBbGRj/Y7Ml4qowog4ksR3on7JJQYm4a6p25I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4222 (0x107e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913559B, serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Validity Not Before: Jul 2 17:33:58 2025 GMT Not After : Jul 9 17:33:58 2025 GMT Subject: CN=68656d86-a3ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:82:8d:fb:98:b0:c0:b8:24:8e:72:df:18:76: 75:b3:e7:70:73:df:be:40:45:4e:85:fa:08:bc:68: ae:ed:05:6a:d0:57:a9:11:76:7e:da:89:59:08:f5: 84:94:2d:88:6b:59:9e:81:bf:14:34:a8:ba:2e:a1: 45:aa:9e:62:a5:f9:33:39:09:61:2e:18:0f:7d:85: f1:ea:79:b7:ca:14:00:b4:b7:b5:97:e4:3f:a1:73: d8:f9:eb:4c:5f:e2:76:34:1b:9a:5a:33:7b:80:ba: 14:dc:d4:0c:f9:fc:d1:16:f6:57:4c:e7:dd:fb:b8: d9:2a:75:85:be:7f:29:9a:07:42:0d:75:8c:b8:ea: 29:ce:1b:35:45:62:95:e0:8d:70:6e:37:14:26:51: a1:ab:a4:fb:17:ba:23:c1:8c:b2:27:ef:32:3b:08: 38:1c:65:b5:f0:a9:74:7a:07:33:76:9c:38:24:bf: 2e:e8:3c:f4:e9:24:4d:6f:f8:7e:e1:45:30:8b:9e: 39:0b:41:dc:3d:e7:b4:33:c4:68:ad:8c:c7:a2:a3: 0d:ef:8d:04:4b:56:de:30:96:c3:52:96:a9:68:48: 11:e8:35:6e:0a:d1:20:42:7f:ac:ff:d8:4d:5c:de: 52:68:ba:cf:b8:5e:ab:37:2b:e9:ab:28:42:b0:5f: 98:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E4:0F:99:EA:65:C3:05:D7:0D:07:EE:04:0A:99:8B:6D:58:98:91 X509v3 Authority Key Identifier: keyid:D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:e1:a0:c5:27:ef:1c:03:b5:a6:df:1c:1f:9a:cb:ed:56:bc: c3:67:6b:a0:82:42:cf:fe:82:5a:f2:5d:52:2a:10:b2:de:13: d7:f1:ca:4a:a9:61:17:89:50:fc:7c:79:6f:2a:ef:5f:63:ac: 14:ee:2b:b9:ac:98:61:55:14:03:e3:a7:a4:c5:ec:92:f4:6c: ce:22:fa:ee:9c:43:f2:76:5e:84:4e:87:98:c0:f2:d2:22:b7: 66:2d:84:13:cd:ec:1e:58:cc:09:f6:60:ff:a8:d6:c8:de:c1: 14:8a:4e:a7:92:6d:e6:53:a4:9a:8d:e0:5a:3e:73:d8:b1:01: 2f:df:76:68:f7:76:ca:c0:95:f3:e6:9e:3f:0e:c1:87:f1:01: ea:fc:64:3d:ad:78:52:2f:eb:18:75:35:b4:9d:8b:65:c5:a9: 91:87:18:cf:11:b2:30:f7:04:5c:02:8d:b2:88:66:12:56:f5: 7a:e9:ce:fc:6a:62:98:11:17:71:fc:da:b5:3e:d0:bc:92:fe: 45:cc:c8:15:26:f6:86:76:13:11:ac:43:c2:68:ab:01:6e:ed: 09:50:13:7c:fc:63:ae:27:64:92:89:4c:13:d2:51:15:20:40: 9e:38:a7:65:91:b0:85:10:41:fb:b9:7a:2a:e5:ee:c2:b2:27: a2:16:30:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU1OUIxMTAvBgNVBAUTKEQwMzJFMDYxNDkyM0Y0QTU4MjMzOEVCNzYzNkMzOTY4 NEFFRDUxRUQwHhcNMjUwNzAyMTczMzU4WhcNMjUwNzA5MTczMzU4WjAYMRYwFAYD VQQDEw02ODY1NmQ4Ni1hM2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYKN+5iwwLgkjnLfGHZ1s+dwc9++QEVOhfoIvGiu7QVq0FepEXZ+2olZCPWE lC2Ia1megb8UNKi6LqFFqp5ipfkzOQlhLhgPfYXx6nm3yhQAtLe1l+Q/oXPY+etM X+J2NBuaWjN7gLoU3NQM+fzRFvZXTOfd+7jZKnWFvn8pmgdCDXWMuOopzhs1RWKV 4I1wbjcUJlGhq6T7F7ojwYyyJ+8yOwg4HGW18Kl0egczdpw4JL8u6Dz06SRNb/h+ 4UUwi545C0HcPee0M8RorYzHoqMN740ES1beMJbDUpapaEgR6DVuCtEgQn+s/9hN XN5SaLrPuF6rNyvpqyhCsF+Y1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPkD5nq ZcMF1w0H7gQKmYttWJiRMB8GA1UdIwQYMBaAFNAy4GFJI/SlgjOOt2NsOWhK7VHt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTU5Qi82QzFBMEVGQTM2 N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlLV0NNNDYzWTJ3NWFFcnRV ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBETGdZVWtqOUtXQ000NjNZMnc1YUVydFVlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTU5Qi82QzFBMEVGQTM2N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlL V0NNNDYzWTJ3NWFFcnRVZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk4aDFJ+8cA7Wm3xwfmsvtVrzDZ2uggkLP/oJa8l1SKhCy3hPX8cpK qWEXiVD8fHlvKu9fY6wU7iu5rJhhVRQD46ekxeyS9GzOIvrunEPydl6EToeYwPLS IrdmLYQTzeweWMwJ9mD/qNbI3sEUik6nkm3mU6SajeBaPnPYsQEv33Zo93bKwJXz 5p4/DsGH8QHq/GQ9rXhSL+sYdTW0nYtlxamRhxjPEbIw9wRcAo2yiGYSVvV66c78 amKYERdx/Nq1PtC8kv5FzMgVJvaGdhMRrEPCaKsBbu0JUBN8/GOuJ2SSiUwT0lEV IECeOKdlkbCFEEH7uXoq5e7CsieiFjCk -----END CERTIFICATE-----Generated at Thu Jul 3 15:18:30 2025 by rpki-client