$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft File: dmhXuj98cotoBSWsQfp84qHwCS0.mft (raw, json) Hash identifier: hwGzTIpgU8ubatbtRsz7BXjJkGzeJRbBOhYS88ojKec= Subject key identifier: A7:AA:E8:63:72:5A:06:2A:DB:F8:D9:0B:23:73:06:34:56:07:B0:71 Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft Manifest number: 0169 Signing time: Tue 01 Jul 2025 04:23:42 +0000 Manifest this update: Tue 01 Jul 2025 04:23:41 +0000 Manifest next update: Tue 08 Jul 2025 04:23:41 +0000 Files and hashes: 1: dmhXuj98cotoBSWsQfp84qHwCS0.crl (hash: SeotQPHKZyU0RnRLar1NcpWSKAm+i4C4WglPRyeLnDY=) 2: 5D313B1C31DA11EEBE28A546C4F9AE02.roa (hash: FoAylNmdesRHU3oexctbCd7CtqneWbl6QUSlHnFcNTI=) 3: 47854B9031DB11EEA02CF647C4F9AE02.roa (hash: ILe+omtD9enCtMD3zyN9u23MElv4YiFIQdXMJ2ToBto=) 4: 5C9259B631DA11EEBE28A546C4F9AE02.roa (hash: V/GHEmcZXIPqnvjusU9+mbGUzJT92uVcYMqnl8YTyFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC0, serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Validity Not Before: Jul 1 04:23:41 2025 GMT Not After : Jul 8 04:23:41 2025 GMT Subject: CN=686362ce-0d8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:86:ba:b5:7c:48:d0:d4:c6:7e:ef:fd:36:d3: ac:4f:a2:57:b8:c8:33:43:a1:17:de:cb:de:15:a9: 45:1a:02:64:02:ea:57:be:69:86:b6:c4:23:4d:29: 28:6f:18:7b:ab:f5:7b:3c:bb:a2:e2:4f:dd:da:dc: 77:be:32:6f:5b:2e:20:81:6b:78:70:2c:b6:c3:9e: 90:a5:b9:36:e0:77:dc:56:6b:45:fd:5d:4d:30:b2: 77:9d:01:7b:98:24:ca:bd:2e:c9:ee:06:7d:86:14: 1e:18:b3:35:1e:ae:3d:12:51:bc:30:af:fd:41:96: e9:0a:04:2e:bb:b3:41:69:33:44:4f:54:94:d7:42: 72:5f:6c:d2:85:a9:0f:82:d8:09:47:61:cd:2f:18: 3d:dd:6f:00:81:44:fe:77:6f:80:ad:57:64:0c:0a: 5b:23:e2:88:f2:55:b9:bd:38:4f:f4:b6:5c:40:33: 89:bd:9c:8b:d0:85:d5:8e:57:80:f4:77:d6:d3:4a: 95:4a:43:6e:04:c8:57:51:54:8e:25:00:79:67:03: b2:a7:1f:2f:c2:c3:f1:90:85:36:10:c7:46:4c:97: a5:7f:64:61:14:de:82:15:95:a5:99:51:1b:b1:1d: 5c:ef:77:5f:68:64:b6:52:77:0d:6f:bd:17:0a:bf: 0f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:AA:E8:63:72:5A:06:2A:DB:F8:D9:0B:23:73:06:34:56:07:B0:71 X509v3 Authority Key Identifier: keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:fc:6d:99:ae:3a:73:83:b1:c7:ef:43:44:b3:19:6a:91:e7: 97:51:c2:45:a7:cd:e3:1f:f6:0b:02:5a:0d:4c:3f:f2:e5:97: c1:6c:da:50:aa:aa:d4:9b:25:62:1b:16:4c:98:8c:aa:38:46: a4:14:11:d6:b8:b2:0a:d9:8f:fd:5e:20:2d:af:dc:78:ac:ed: ea:9f:b3:73:26:3e:34:de:53:dc:c4:d0:9b:d2:38:4b:3e:42: 45:46:76:30:98:10:80:22:6c:7f:c6:71:fa:67:b3:b2:dd:19: cd:bf:82:b0:be:60:5d:3b:4a:1f:b0:12:e7:b6:2d:15:18:1f: a2:ba:e4:62:8a:f8:f5:23:01:9c:54:ff:25:28:64:c3:b8:a3: 17:1b:8f:8e:56:65:1e:d3:89:f5:2c:1f:10:de:d5:83:ba:ba: bb:aa:47:33:b0:16:64:e6:5a:ac:2c:f0:87:d6:fb:23:1b:14: ee:b9:c0:50:7c:c9:ca:18:61:5f:fd:be:fd:44:f8:06:5a:ed: 53:48:9d:a7:05:a7:e3:93:97:3a:6c:07:54:76:8c:03:e1:73: bd:95:42:33:d2:41:2f:26:40:02:44:ab:9b:6d:f8:34:c6:f3: 82:16:32:03:19:ca:55:f1:3f:0e:4a:a7:7e:65:4b:58:9f:9d: 53:67:5e:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzAxMTAvBgNVBAUTKDc2Njg1N0JBM0Y3QzcyOEI2ODA1MjVBQzQxRkE3Q0Uy QTFGMDA5MkQwHhcNMjUwNzAxMDQyMzQxWhcNMjUwNzA4MDQyMzQxWjAYMRYwFAYD VQQDEw02ODYzNjJjZS0wZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA84a6tXxI0NTGfu/9NtOsT6JXuMgzQ6EX3sveFalFGgJkAupXvmmGtsQjTSko bxh7q/V7PLui4k/d2tx3vjJvWy4ggWt4cCy2w56Qpbk24HfcVmtF/V1NMLJ3nQF7 mCTKvS7J7gZ9hhQeGLM1Hq49ElG8MK/9QZbpCgQuu7NBaTNET1SU10JyX2zShakP gtgJR2HNLxg93W8AgUT+d2+ArVdkDApbI+KI8lW5vThP9LZcQDOJvZyL0IXVjleA 9HfW00qVSkNuBMhXUVSOJQB5ZwOypx8vwsPxkIU2EMdGTJelf2RhFN6CFZWlmVEb sR1c73dfaGS2UncNb70XCr8P5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeq6GNy WgYq2/jZCyNzBjRWB7BxMB8GA1UdIwQYMBaAFHZoV7o/fHKLaAUlrEH6fOKh8Akt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDMC9FNEVENTM5NDMx RDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNvdG9CU1dzUWZwODRxSHdD UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtaFh1ajk4Y290b0JTV3NRZnA4NHFId0NTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEFDMC9FNEVENTM5NDMxRDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNv dG9CU1dzUWZwODRxSHdDUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB/G2Zrjpzg7HH70NEsxlqkeeXUcJFp83jH/YLAloNTD/y5ZfBbNpQ qqrUmyViGxZMmIyqOEakFBHWuLIK2Y/9XiAtr9x4rO3qn7NzJj403lPcxNCb0jhL PkJFRnYwmBCAImx/xnH6Z7Oy3RnNv4KwvmBdO0ofsBLnti0VGB+iuuRiivj1IwGc VP8lKGTDuKMXG4+OVmUe04n1LB8Q3tWDurq7qkczsBZk5lqsLPCH1vsjGxTuucBQ fMnKGGFf/b79RPgGWu1TSJ2nBafjk5c6bAdUdowD4XO9lUIz0kEvJkACRKubbfg0 xvOCFjIDGcpV8T8OSqd+ZUtYn51TZ15+ -----END CERTIFICATE-----Generated at Tue Jul 1 13:16:23 2025 by rpki-client