$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft File: DGlwyrnfjpvRDhw-kYkaCafojCA.mft (raw, json) Hash identifier: ssRUnapWYFJBOYyziv5BDV10oeO1s98Yz6H6/RE0JbQ= Subject key identifier: 88:91:2D:F9:F8:62:88:FF:B7:8E:2B:B2:85:2C:C7:A8:1D:39:3F:17 Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft Manifest number: 5F Signing time: Thu 03 Jul 2025 06:24:29 +0000 Manifest this update: Thu 03 Jul 2025 06:24:29 +0000 Manifest next update: Thu 10 Jul 2025 06:24:29 +0000 Files and hashes: 1: DGlwyrnfjpvRDhw-kYkaCafojCA.crl (hash: ERyxOxkbxnBhFP3myISBFQodvPJDjPXuuLV1q7RjDB4=) 2: D1C1AFB2135511F0976BA50CC4F9AE02.roa (hash: 4UcuR0Va16pIipTBZBi5kSdFR7fOLDQRz2cgCZTL1W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: Jul 3 06:24:29 2025 GMT Not After : Jul 10 06:24:29 2025 GMT Subject: CN=6866221d-93df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5e:a4:6e:32:0e:3a:6f:ab:8d:1d:18:d2:46: 10:2f:7b:a7:8f:12:84:2c:2c:9b:e1:34:ca:a4:71: 86:6b:14:6a:58:5f:30:78:1d:61:ce:bf:f0:98:2b: 56:90:9f:b0:b1:fa:a4:52:54:38:cc:47:a6:33:16: 83:8d:97:82:1c:9c:d7:09:d2:fb:fa:0b:0e:d2:2a: 5a:fa:6b:90:d9:cf:e9:3d:f6:17:4e:90:fd:09:ff: 42:65:dc:6f:c2:bb:bb:67:66:64:28:05:9d:e3:6e: 4e:a6:4a:db:0e:7d:04:72:a3:15:71:a5:2f:cf:d2: d2:c7:f9:47:b7:f7:59:60:7e:d6:35:0c:8e:6c:b2: 00:56:ac:f3:7f:4f:20:29:5b:ce:10:82:b3:5c:f5: 45:45:bc:6f:e9:ae:f6:d1:77:09:c7:eb:9a:95:10: 44:e9:f1:43:a1:1d:f0:a8:4d:8f:8c:bb:6e:f4:a3: 1a:06:52:16:ae:61:21:4c:0e:97:99:19:51:7c:23: 76:ad:37:bb:69:7b:58:2e:db:85:bc:10:2e:79:6c: ec:91:2a:83:99:4c:43:77:6b:c6:92:8c:40:87:a0: 99:1f:ce:c6:73:ce:cc:25:dd:e2:72:77:26:5d:f1: 23:91:a4:f4:31:0c:c3:59:de:58:d4:90:55:a1:8e: 1c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:91:2D:F9:F8:62:88:FF:B7:8E:2B:B2:85:2C:C7:A8:1D:39:3F:17 X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:e6:2d:05:52:32:ff:eb:f5:ae:21:c3:84:e8:d0:85:d5:90: d3:dd:57:2c:c4:55:a9:ee:0d:80:ef:6e:6c:83:d6:f0:a4:ad: af:52:58:0c:3d:25:91:f4:c0:36:44:5d:ad:c6:00:89:d9:de: 1b:e1:7b:88:90:60:12:be:4e:79:99:49:ea:40:67:46:75:b3: 9c:e0:68:36:94:0d:3a:57:2c:b0:7f:24:1a:9d:54:87:8c:68: 89:70:01:f7:56:93:db:4b:96:5d:27:3b:58:9d:0a:be:7b:16: e8:e0:54:20:80:e4:72:c9:95:ac:b4:5c:f4:3a:95:5a:c2:30: d5:cf:7f:f0:69:02:04:cd:f7:5d:e7:a2:a2:f3:6d:6d:80:fd: ee:05:f9:f1:dd:14:15:f9:f2:11:5d:3b:2d:12:d6:ab:5e:63: a2:a5:4c:80:f2:c0:b3:7e:22:3d:84:78:e4:07:72:89:85:fd: 1c:85:bc:2a:2f:59:bf:d3:ad:6e:21:95:7a:b3:ce:4f:13:3d: 99:35:a3:e3:81:8a:58:b7:c4:da:48:73:a2:78:06:c4:f1:c6: 97:8d:f7:6f:f0:3d:4c:86:03:94:e1:2c:e0:69:ee:b5:06:66: a9:5b:32:01:48:2d:fa:19:eb:4d:f1:89:4e:ca:41:9f:93:1d: dc:84:a7:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTY3MjExMC8GA1UEBRMoMEM2OTcwQ0FCOURGOEU5QkQxMEUxQzNFOTE4OTFBMDlB N0U4OEMyMDAeFw0yNTA3MDMwNjI0MjlaFw0yNTA3MTAwNjI0MjlaMBgxFjAUBgNV BAMTDTY4NjYyMjFkLTkzZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKXqRuMg46b6uNHRjSRhAve6ePEoQsLJvhNMqkcYZrFGpYXzB4HWHOv/CYK1aQ n7Cx+qRSVDjMR6YzFoONl4IcnNcJ0vv6Cw7SKlr6a5DZz+k99hdOkP0J/0Jl3G/C u7tnZmQoBZ3jbk6mStsOfQRyoxVxpS/P0tLH+Ue391lgftY1DI5ssgBWrPN/TyAp W84QgrNc9UVFvG/prvbRdwnH65qVEETp8UOhHfCoTY+Mu270oxoGUhauYSFMDpeZ GVF8I3atN7tpe1gu24W8EC55bOyRKoOZTEN3a8aSjECHoJkfzsZzzswl3eJydyZd 8SORpPQxDMNZ3ljUkFWhjhzVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiJEt+fhi iP+3jiuyhSzHqB05PxcwHwYDVR0jBBgwFoAUDGlwyrnfjpvRDhw+kYkaCafojCAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5NjcyLzg4QURDQTk4Q0JF RjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pD QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdsd3lybmZqcHZSRGh3LWtZa2FDYWZvakNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5 NjcyLzg4QURDQTk4Q0JFRjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2 UkRody1rWWthQ2Fmb2pDQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEDmLQVSMv/r9a4hw4To0IXVkNPdVyzEVanuDYDvbmyD1vCkra9SWAw9 JZH0wDZEXa3GAInZ3hvhe4iQYBK+TnmZSepAZ0Z1s5zgaDaUDTpXLLB/JBqdVIeM aIlwAfdWk9tLll0nO1idCr57FujgVCCA5HLJlay0XPQ6lVrCMNXPf/BpAgTN913n oqLzbW2A/e4F+fHdFBX58hFdOy0S1qteY6KlTIDywLN+Ij2EeOQHcomF/RyFvCov Wb/TrW4hlXqzzk8TPZk1o+OBili3xNpIc6J4BsTxxpeN92/wPUyGA5ThLOBp7rUG ZqlbMgFILfoZ603xiU7KQZ+THdyEp28= -----END CERTIFICATE-----Generated at Fri Jul 4 23:23:06 2025 by rpki-client