$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft File: DGlwyrnfjpvRDhw-kYkaCafojCA.mft (raw, json) Hash identifier: /DXKWNkAqKJUB9bD1LrW/sXCVSSiv9yGiRkagH9V1VI= Subject key identifier: B2:E9:B6:73:FC:31:5C:FE:AD:E6:C4:1C:CF:02:FD:38:87:18:03:AB Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft Manifest number: 48 Signing time: Sat 17 May 2025 06:00:30 +0000 Manifest this update: Sat 17 May 2025 06:00:30 +0000 Manifest next update: Sat 24 May 2025 06:00:30 +0000 Files and hashes: 1: DGlwyrnfjpvRDhw-kYkaCafojCA.crl (hash: Qg0dbuUin+B1c5hcZGYgrswpXGAT596IGtp06oIG91o=) 2: D1C1AFB2135511F0976BA50CC4F9AE02.roa (hash: 4UcuR0Va16pIipTBZBi5kSdFR7fOLDQRz2cgCZTL1W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: May 17 06:00:30 2025 GMT Not After : May 24 06:00:30 2025 GMT Subject: CN=682825fe-1daf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:38:c8:f6:54:7f:e2:b7:ce:3a:dc:bc:dc: 45:b0:4b:f6:9d:43:de:97:a8:50:52:d2:f3:11:fe: 0d:9d:a0:79:7f:25:53:ea:8e:91:41:95:4e:97:9c: b4:23:6d:82:f3:2a:a0:ec:b5:7e:ba:64:fc:c4:dc: 1e:c8:aa:7b:89:5c:12:c1:a7:39:b2:bc:52:e1:11: e0:a4:0b:7b:50:11:75:98:24:f4:43:54:e1:aa:9d: a7:99:44:38:c9:21:c1:d4:7f:dd:a3:1d:c9:89:41: 86:d0:21:67:ac:df:76:5f:a5:2d:05:92:83:82:34: 3c:dc:47:fb:15:3a:66:72:35:3c:00:3d:04:bf:60: 00:96:66:76:9c:9d:d6:4d:69:09:6f:19:7e:22:c2: 63:03:d3:97:e9:cf:ac:60:ea:25:6b:c4:91:99:34: c1:c3:82:6e:4e:b0:0d:9a:6f:79:a0:69:11:84:66: 21:86:3d:fd:15:75:d7:92:14:cc:a5:b1:22:83:02: 7f:7a:83:0c:4d:0e:80:f0:82:d8:e3:a3:60:19:92: 66:e6:77:a2:6a:5c:ea:35:c7:76:f4:ef:cd:dc:96: fd:0d:ea:98:6c:f8:c6:da:43:7f:a1:7b:b6:51:19: 06:a7:dc:fb:70:31:27:9f:87:a4:1d:e9:fa:13:d6: 42:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E9:B6:73:FC:31:5C:FE:AD:E6:C4:1C:CF:02:FD:38:87:18:03:AB X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:6a:36:d8:14:fe:5f:69:8f:9f:8d:84:e4:df:7e:2b:23:be: f2:22:e1:8e:87:c1:d5:98:d4:54:2b:7e:05:11:da:0f:52:d5: 45:77:4d:41:47:14:2a:67:21:85:f2:92:e3:a9:f9:df:d2:76: b7:e2:f6:7c:3f:33:7e:8c:f5:02:aa:a6:5d:96:24:3e:67:2e: b7:74:b2:e7:86:10:7b:16:60:b4:72:82:97:fa:4c:f1:5d:ac: 57:2a:3f:d3:6d:d2:45:d2:6f:96:d4:07:9d:ab:f2:50:f5:4d: ac:47:08:d3:09:ec:7f:03:15:ac:07:e1:e8:27:9f:a3:74:c1: 0d:b3:fe:f7:b0:7c:6e:3d:1d:49:c3:d8:2c:81:c7:3d:8c:d3: 04:a4:60:ec:34:a5:7b:f4:eb:fb:b1:93:41:0f:67:96:e7:e9: 56:c8:77:f0:17:81:2f:61:e6:de:ea:a0:b4:0a:f8:67:f6:0f: 02:cb:17:bd:3b:4c:30:6c:7a:46:b2:0f:15:8e:b6:36:ca:2f: 5a:6e:8c:f4:c4:29:cd:32:0e:a3:d3:97:4c:90:31:68:50:9a: 3c:29:b6:69:51:ae:cf:0f:57:78:95:b1:b3:12:c1:79:b6:3e: 22:97:58:c7:08:9e:8e:3c:52:15:15:dd:65:28:3c:ba:35:e0: 61:4e:9a:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTY3MjExMC8GA1UEBRMoMEM2OTcwQ0FCOURGOEU5QkQxMEUxQzNFOTE4OTFBMDlB N0U4OEMyMDAeFw0yNTA1MTcwNjAwMzBaFw0yNTA1MjQwNjAwMzBaMBgxFjAUBgNV BAMTDTY4MjgyNWZlLTFkYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKbjjI9lR/4rfOOty83EWwS/adQ96XqFBS0vMR/g2doHl/JVPqjpFBlU6XnLQj bYLzKqDstX66ZPzE3B7IqnuJXBLBpzmyvFLhEeCkC3tQEXWYJPRDVOGqnaeZRDjJ IcHUf92jHcmJQYbQIWes33ZfpS0FkoOCNDzcR/sVOmZyNTwAPQS/YACWZnacndZN aQlvGX4iwmMD05fpz6xg6iVrxJGZNMHDgm5OsA2ab3mgaRGEZiGGPf0VddeSFMyl sSKDAn96gwxNDoDwgtjjo2AZkmbmd6JqXOo1x3b0783clv0N6phs+MbaQ3+he7ZR GQan3PtwMSefh6Qd6foT1kI7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsum2c/wx XP6t5sQczwL9OIcYA6swHwYDVR0jBBgwFoAUDGlwyrnfjpvRDhw+kYkaCafojCAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5NjcyLzg4QURDQTk4Q0JF RjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pD QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdsd3lybmZqcHZSRGh3LWtZa2FDYWZvakNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5 NjcyLzg4QURDQTk4Q0JFRjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2 UkRody1rWWthQ2Fmb2pDQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB9qNtgU/l9pj5+NhOTffisjvvIi4Y6HwdWY1FQrfgUR2g9S1UV3TUFH FCpnIYXykuOp+d/Sdrfi9nw/M36M9QKqpl2WJD5nLrd0sueGEHsWYLRygpf6TPFd rFcqP9Nt0kXSb5bUB52r8lD1TaxHCNMJ7H8DFawH4egnn6N0wQ2z/vewfG49HUnD 2CyBxz2M0wSkYOw0pXv06/uxk0EPZ5bn6VbId/AXgS9h5t7qoLQK+Gf2DwLLF707 TDBsekayDxWOtjbKL1pujPTEKc0yDqPTl0yQMWhQmjwptmlRrs8PV3iVsbMSwXm2 PiKXWMcIno48UhUV3WUoPLo14GFOmjE= -----END CERTIFICATE-----Generated at Sat May 17 08:07:43 2025 by rpki-client