$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft File: dCWq4W3bRko-K0ecekDJkCODa6A.mft (raw, json) Hash identifier: ssbEKQpMemn7dPjSbyyVMBvKx8Pi4EXxyjRwL2m2tLw= Subject key identifier: 9C:B1:F2:C3:7D:7E:75:FE:6D:9E:B3:08:E7:7B:4F:18:33:2B:D4:83 Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 02CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft Manifest number: 02B7 Signing time: Thu 03 Jul 2025 01:58:39 +0000 Manifest this update: Thu 03 Jul 2025 01:58:39 +0000 Manifest next update: Thu 10 Jul 2025 01:58:39 +0000 Files and hashes: 1: dCWq4W3bRko-K0ecekDJkCODa6A.crl (hash: Z2d0LAg4Xw9BVk/kCPNwgoeRbzujF491+Wc54Hhkc5I=) 2: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (hash: oF4weljdyCKoRiSGG2z17wTaQsEcpMts8sv9D62jJPE=) 3: A3C1A64E020811EF900CC60CC4F9AE02.roa (hash: D7GG+9V9VetFTo3WS2746v47jcVH9mGxmAznj65oILQ=) 4: 1EA5984A0BE111ED9E3AA135C4F9AE02.roa (hash: TJ9ECbrNmrbj5mhfI5HTyIvIslW5iwcIqu2ptc1cXhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 719 (0x2cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: Jul 3 01:58:39 2025 GMT Not After : Jul 10 01:58:39 2025 GMT Subject: CN=6865e3cf-84e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:70:19:96:fe:fc:9e:d0:de:f4:f8:6d:6e:e8: ce:6c:24:78:73:34:bb:9e:a8:1b:e0:ca:de:0f:ab: eb:be:55:7c:f1:6c:f7:22:38:12:34:4e:18:08:fb: 03:5d:a4:34:08:56:2e:86:03:0d:27:aa:75:55:48: dc:af:5c:1c:17:7b:ee:93:e1:61:04:1a:e7:17:d4: c3:15:07:42:d1:20:4b:71:56:5d:d9:76:76:3d:35: fb:a3:41:0a:82:0a:64:ae:4d:95:b6:21:b0:cc:3c: 16:c1:23:93:e9:f1:a5:5b:da:ad:1d:da:11:96:3c: d9:02:f1:a9:1c:0d:a5:ad:d2:05:35:03:39:7d:d1: cd:b4:57:ce:30:a2:43:cc:7e:72:6f:8d:2a:c0:87: 0a:99:d4:a9:07:a2:b6:73:9b:16:4f:f0:d7:73:ec: 97:c5:7c:86:ce:1a:4c:01:b0:ff:22:e2:5e:a4:5b: 47:cb:97:a9:70:6b:5d:8d:d3:ee:b6:69:ce:47:03: 12:25:7b:55:38:0b:e0:ff:0c:53:63:9e:83:39:a8: 03:d5:16:23:6f:64:cf:0f:95:67:d1:4e:f6:b1:71: 83:08:7b:c0:07:93:64:08:b4:c6:3e:1e:7c:56:0b: a1:a2:7d:9e:82:90:a5:34:8e:48:56:b6:d2:1d:21: a1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B1:F2:C3:7D:7E:75:FE:6D:9E:B3:08:E7:7B:4F:18:33:2B:D4:83 X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:87:2b:95:45:8d:4b:73:a8:52:61:e8:18:6a:2d:fb:bd:1b: b4:a7:81:19:57:5d:a0:13:71:f9:7a:37:ec:51:a9:33:92:ca: b0:93:16:c6:52:31:ef:bd:be:35:08:1c:aa:0e:5d:2f:d6:80: c9:2e:0d:61:af:7a:f9:7d:d3:eb:f4:76:34:6e:9a:7a:35:30: c0:f5:91:29:fa:61:69:6b:94:dd:9a:e0:0e:5e:6d:b3:51:34: 9b:0d:2a:0c:4f:8a:a1:a0:06:eb:be:bb:59:0e:b3:3d:f5:7c: 7d:98:ac:e4:5c:39:4a:82:b7:c0:e7:ca:bb:cf:54:2b:c3:f8: db:83:a8:63:82:32:da:2d:3e:18:f5:00:40:eb:c8:d2:ec:1d: 2c:06:a0:c3:60:ce:38:8b:5e:d9:91:2f:e7:fa:91:13:a9:fa: a8:cf:02:a4:b3:51:4c:cd:8b:dd:eb:96:b2:60:07:be:8f:4e: 5c:bb:1f:a8:26:fc:f9:0e:64:99:43:e3:5e:49:e0:91:49:a3: b1:19:28:a0:49:1a:09:c6:5e:be:87:92:54:29:96:3c:65:92: 22:19:4d:33:b5:45:61:08:bd:42:35:eb:43:be:08:e8:bd:11: 3f:91:e0:a4:45:cd:aa:c4:31:bd:a4:ce:5f:ed:bc:30:0b:d6: 75:a9:b9:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjUwNzAzMDE1ODM5WhcNMjUwNzEwMDE1ODM5WjAYMRYwFAYD VQQDEw02ODY1ZTNjZi04NGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXAZlv78ntDe9PhtbujObCR4czS7nqgb4MreD6vrvlV88Wz3IjgSNE4YCPsD XaQ0CFYuhgMNJ6p1VUjcr1wcF3vuk+FhBBrnF9TDFQdC0SBLcVZd2XZ2PTX7o0EK ggpkrk2VtiGwzDwWwSOT6fGlW9qtHdoRljzZAvGpHA2lrdIFNQM5fdHNtFfOMKJD zH5yb40qwIcKmdSpB6K2c5sWT/DXc+yXxXyGzhpMAbD/IuJepFtHy5epcGtdjdPu tmnORwMSJXtVOAvg/wxTY56DOagD1RYjb2TPD5Vn0U72sXGDCHvAB5NkCLTGPh58 Vguhon2egpClNI5IVrbSHSGh4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyx8sN9 fnX+bZ6zCOd7TxgzK9SDMB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Mzk5OC8zMENDMDg0QTA4REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJr by1LMGVjZWtESmtDT0RhNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAphyuVRY1Lc6hSYegYai37vRu0p4EZV12gE3H5ejfsUakzksqwkxbG UjHvvb41CByqDl0v1oDJLg1hr3r5fdPr9HY0bpp6NTDA9ZEp+mFpa5TdmuAOXm2z UTSbDSoMT4qhoAbrvrtZDrM99Xx9mKzkXDlKgrfA58q7z1Qrw/jbg6hjgjLaLT4Y 9QBA68jS7B0sBqDDYM44i17ZkS/n+pETqfqozwKks1FMzYvd65ayYAe+j05cux+o Jvz5DmSZQ+NeSeCRSaOxGSigSRoJxl6+h5JUKZY8ZZIiGU0ztUVhCL1CNetDvgjo vRE/keCkRc2qxDG9pM5f7bwwC9Z1qbkt -----END CERTIFICATE-----Generated at Thu Jul 3 16:45:48 2025 by rpki-client