$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: xkIfPC+rh3ItC5BXnD+ZmeDtE7vFiKQKUmKY5E/i0fs= Subject key identifier: 7E:B8:5F:5B:58:BC:E9:42:60:8E:28:7D:A7:5A:21:CF:3B:14:F2:48 Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: 15 Signing time: Thu 03 Jul 2025 08:16:43 +0000 Manifest this update: Thu 03 Jul 2025 08:16:43 +0000 Manifest next update: Thu 10 Jul 2025 08:16:43 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: 4vkZ/qbFJg/ndC9rFKIzYTJoqjUNo6BJvXxqm1Lv/Pw=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: k8LJciNO3nbjiZjsCJ8G57U38keqVi40DfjRW/V+QTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: Jul 3 08:16:43 2025 GMT Not After : Jul 10 08:16:43 2025 GMT Subject: CN=68663c6b-80a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b4:71:69:4f:52:3c:3d:89:56:62:2a:57:b3: e7:0e:d9:9c:95:a0:8c:ab:4b:15:79:7c:b1:01:ca: 1b:ae:cf:62:f3:43:24:a0:0a:0a:bb:da:d1:9d:56: 34:b5:34:f6:61:7a:ac:d7:c4:d2:55:f3:14:e5:d1: 2a:82:ee:22:57:e8:d3:3a:61:6f:18:58:bd:f5:db: c6:97:82:22:ca:ea:c1:d6:24:c9:30:9b:a1:77:3e: d3:59:b9:fb:2d:ab:af:d2:e3:f4:ba:83:2b:47:cd: df:f1:42:79:62:7a:4a:a5:f1:02:f4:61:27:ca:5a: 2a:b1:ec:7d:f3:88:47:4d:4a:4f:fe:d1:de:2f:43: 8a:ae:fc:17:63:6b:9f:e5:99:f8:7d:3b:26:d0:8a: 91:21:42:92:07:76:77:ae:1d:ce:d3:b6:76:05:79: 2b:e5:94:3c:fe:9a:13:0c:e3:72:0f:c2:bd:a0:22: bf:06:ac:da:b6:7c:40:a5:56:c8:a6:79:4d:04:8f: cd:63:e3:4a:74:c3:8c:f2:0b:37:e2:60:43:aa:b5: 47:fa:ea:62:2f:4c:b0:b5:97:bc:c2:67:ee:5a:7b: f1:d4:90:ea:b1:5a:50:cf:c3:9c:b2:26:ef:94:94: 1a:64:15:46:b3:c7:ce:8d:ec:d3:6f:df:f8:0f:d5: e7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B8:5F:5B:58:BC:E9:42:60:8E:28:7D:A7:5A:21:CF:3B:14:F2:48 X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:02:fa:5a:ef:42:cf:d1:40:45:dc:ef:81:c7:71:87:33:ea: 2b:63:c7:6b:aa:64:46:13:d2:4e:07:8b:ad:2d:f5:7f:a8:21: 52:7a:92:de:61:61:02:56:84:a9:49:ed:f0:8e:27:72:c8:c0: 55:7a:6d:58:31:b3:02:72:c4:92:c4:dc:70:03:c2:f7:9f:b2: d7:b0:b0:88:ca:e0:46:5a:cd:8f:3c:d9:6a:3d:8a:41:35:4c: 29:64:14:2a:f8:93:c7:bb:73:74:07:f8:25:7c:49:b5:52:f5: d2:48:f8:6a:10:70:28:4f:1b:25:e0:ad:ec:d9:37:9b:16:26: 31:92:f6:df:ab:12:25:ef:c5:df:06:13:35:d8:8c:ed:9d:fa: 6c:aa:cd:84:a4:ad:6b:99:56:b6:18:be:04:ef:0c:02:82:38: 58:71:5c:fa:9e:3a:57:4d:51:b8:01:bb:81:68:5d:c0:44:fe: 8f:72:67:77:b7:0d:b8:6f:2e:76:3b:fc:9a:d8:25:2c:1e:f7: e0:22:d6:f2:91:5e:f4:5e:0a:82:64:ae:e7:e7:1f:ff:5d:a2: 9d:04:bf:1e:92:8f:f6:d4:b6:1a:88:ae:85:80:ae:b0:d3:5f: cf:6c:b2:40:fc:25:75:e8:df:20:b9:86:28:7e:83:6c:2d:8d: 87:2f:6b:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDk3NTExMC8GA1UEBRMoMEM2ODU4MjI4QzMwMTc0ODJCREM3RjM5ODFFODk4Qjk1 NkRBQTAyOTAeFw0yNTA3MDMwODE2NDNaFw0yNTA3MTAwODE2NDNaMBgxFjAUBgNV BAMTDTY4NjYzYzZiLTgwYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCptHFpT1I8PYlWYipXs+cO2ZyVoIyrSxV5fLEByhuuz2LzQySgCgq72tGdVjS1 NPZheqzXxNJV8xTl0SqC7iJX6NM6YW8YWL3128aXgiLK6sHWJMkwm6F3PtNZufst q6/S4/S6gytHzd/xQnliekql8QL0YSfKWiqx7H3ziEdNSk/+0d4vQ4qu/Bdja5/l mfh9OybQipEhQpIHdneuHc7TtnYFeSvllDz+mhMM43IPwr2gIr8GrNq2fEClVsim eU0Ej81j40p0w4zyCzfiYEOqtUf66mIvTLC1l7zCZ+5ae/HUkOqxWlDPw5yyJu+U lBpkFUazx86N7NNv3/gP1ecjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfrhfW1i8 6UJgjih9p1ohzzsU8kgwHwYDVR0jBBgwFoAUDGhYIowwF0gr3H85geiYuVbaoCkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTc1LzY3QzdBNDJBM0Ey NjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9D ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdoWUlvd3dGMGdyM0g4NWdlaVl1VmJhb0NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw OTc1LzY3QzdBNDJBM0EyNjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBn cjNIODVnZWlZdVZiYW9Day5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIEC+lrvQs/RQEXc74HHcYcz6itjx2uqZEYT0k4Hi60t9X+oIVJ6kt5h YQJWhKlJ7fCOJ3LIwFV6bVgxswJyxJLE3HADwvefstewsIjK4EZazY882Wo9ikE1 TClkFCr4k8e7c3QH+CV8SbVS9dJI+GoQcChPGyXgrezZN5sWJjGS9t+rEiXvxd8G EzXYjO2d+myqzYSkrWuZVrYYvgTvDAKCOFhxXPqeOldNUbgBu4FoXcBE/o9yZ3e3 DbhvLnY7/JrYJSwe9+Ai1vKRXvReCoJkrufnH/9dop0Evx6Sj/bUthqIroWArrDT X89sskD8JXXo3yC5hih+g2wtjYcvazg= -----END CERTIFICATE-----Generated at Fri Jul 4 22:00:40 2025 by rpki-client