$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft File: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json) Hash identifier: X7m/OogswzjdmhPg+4CN8tzen0blFhiMlXT2K1/wjjo= Subject key identifier: 8C:14:46:06:0A:5D:E8:C5:1C:EE:B2:94:C9:76:AD:7B:E4:B1:3A:04 Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft Manifest number: 0161 Signing time: Tue 01 Jul 2025 04:26:39 +0000 Manifest this update: Tue 01 Jul 2025 04:26:38 +0000 Manifest next update: Tue 08 Jul 2025 04:26:38 +0000 Files and hashes: 1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: Yxw3ESs3sLBhBaUEUOid4wEaOE3uqLaGfLH1ur8p1bM=) 2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: YBS7N1V85GEsKAdkA8SgTeGUq7xGqu6t+13xBrFpNlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1, serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: Jul 1 04:26:38 2025 GMT Not After : Jul 8 04:26:38 2025 GMT Subject: CN=6863637e-a717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c0:65:1e:5c:b3:d0:54:63:a1:08:6c:a1:18: 91:a8:fe:0e:fc:73:45:b2:cc:b4:69:a4:aa:04:3d: 98:62:7b:21:22:d1:2a:49:bb:4b:8d:a8:bc:18:4b: 78:99:3c:dc:c4:ce:7a:01:65:e0:61:eb:07:dc:d3: db:36:5a:48:23:3a:73:f1:9a:b1:c8:39:fc:60:f5: c0:d3:15:ec:5d:cc:75:a2:5c:aa:44:24:04:91:69: 43:80:a7:29:34:51:e4:54:13:11:32:c3:ce:fa:fa: 20:75:42:9c:80:fd:89:2b:23:ed:c0:f6:a9:f8:b9: 81:32:06:37:51:01:01:f1:c0:7e:37:58:2f:79:75: 06:8a:0c:76:f4:38:54:37:7e:8d:78:77:5e:00:cd: 92:ba:78:f0:97:05:77:db:96:27:93:e9:cb:71:07: 0a:ee:45:94:43:d6:bc:9e:2c:40:71:90:f5:2b:3b: ca:8e:06:14:58:18:8a:3a:1a:d5:07:d4:2c:1c:8e: c8:37:4a:74:ae:33:67:73:be:4b:05:45:31:c0:a8: 52:42:99:0e:99:b4:af:28:9c:b1:29:a7:1f:da:87: a7:dc:48:f7:55:74:f5:97:93:23:fe:a1:07:ee:94: 2f:b4:04:ec:c2:d9:4c:eb:4c:4c:30:89:66:30:74: 4b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:14:46:06:0A:5D:E8:C5:1C:EE:B2:94:C9:76:AD:7B:E4:B1:3A:04 X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6f:b8:4d:45:e2:be:af:35:8c:fb:5f:7f:92:3a:d4:60:9c: cf:1a:43:d3:10:e0:72:f1:15:36:2e:34:44:72:de:9b:58:7b: f5:9c:a4:7b:40:c5:11:f2:cc:18:9d:cb:5e:41:54:11:a1:26: 11:e2:25:4e:75:1e:eb:db:f1:bc:2b:fc:95:12:a6:06:31:f6: 63:aa:e7:a4:75:28:57:d3:18:c2:41:fa:21:ee:46:4e:81:ef: 41:a7:c1:a4:1c:ec:0d:c1:bb:81:b3:4b:50:54:8e:4a:60:cf: a6:3e:3b:89:ac:b2:54:a3:45:89:e1:38:91:53:90:f9:86:e2: d7:32:69:64:5d:74:ff:af:02:d7:28:22:e5:c1:cb:3b:5c:c0: d9:42:48:b6:ca:dc:4e:01:3f:ef:6b:ef:5e:93:21:64:67:5f: 99:00:74:15:9f:22:fb:ec:f7:96:da:57:df:cc:f9:ba:b5:27: d5:a7:36:68:3e:4e:85:87:16:4f:22:21:42:e3:3e:04:cb:04: b3:0f:cd:c2:d5:ce:d5:34:14:4d:36:16:c8:21:b4:d0:52:78: b8:4c:b1:7c:56:62:29:ad:e1:cf:4e:78:08:86:b6:09:9d:c7: c5:75:3d:3f:40:cc:59:26:27:8f:fc:5d:f0:8f:0c:8e:b4:8e: c2:4f:2a:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FERDExMTAvBgNVBAUTKDc2NTJBMjJGQzI1MEZBQUFFM0FCMkMwQzJBRkREMDRF MzA0N0U1MDcwHhcNMjUwNzAxMDQyNjM4WhcNMjUwNzA4MDQyNjM4WjAYMRYwFAYD VQQDEw02ODYzNjM3ZS1hNzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsBlHlyz0FRjoQhsoRiRqP4O/HNFssy0aaSqBD2YYnshItEqSbtLjai8GEt4 mTzcxM56AWXgYesH3NPbNlpIIzpz8ZqxyDn8YPXA0xXsXcx1olyqRCQEkWlDgKcp NFHkVBMRMsPO+vogdUKcgP2JKyPtwPap+LmBMgY3UQEB8cB+N1gveXUGigx29DhU N36NeHdeAM2SunjwlwV325Ynk+nLcQcK7kWUQ9a8nixAcZD1KzvKjgYUWBiKOhrV B9QsHI7IN0p0rjNnc75LBUUxwKhSQpkOmbSvKJyxKacf2oen3Ej3VXT1l5Mj/qEH 7pQvtATswtlM60xMMIlmMHRLywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwURgYK XejFHO6ylMl2rXvksToEMB8GA1UdIwQYMBaAFHZSoi/CUPqq46ssDCr90E4wR+UH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUREMS9EMDA2QzBERTM3 RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1xcmpxeXdNS3YzUVRqQkg1 UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1x cmpxeXdNS3YzUVRqQkg1UWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXb7hNReK+rzWM+19/kjrUYJzPGkPTEOBy8RU2LjREct6bWHv1nKR7 QMUR8swYncteQVQRoSYR4iVOdR7r2/G8K/yVEqYGMfZjquekdShX0xjCQfoh7kZO ge9Bp8GkHOwNwbuBs0tQVI5KYM+mPjuJrLJUo0WJ4TiRU5D5huLXMmlkXXT/rwLX KCLlwcs7XMDZQki2ytxOAT/va+9ekyFkZ1+ZAHQVnyL77PeW2lffzPm6tSfVpzZo Pk6FhxZPIiFC4z4EywSzD83C1c7VNBRNNhbIIbTQUni4TLF8VmIpreHPTngIhrYJ ncfFdT0/QMxZJieP/F3wjwyOtI7CTyoZ -----END CERTIFICATE-----Generated at Wed Jul 2 06:47:11 2025 by rpki-client