$ rpki-client -vvf rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft File: dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft (raw, json) Hash identifier: GCJPTm+Ez6v6j2d0dc5Spl9rxmeubk6BNZQI6FPxk8Q= Subject key identifier: 54:23:90:0B:DB:B3:16:79:6F:E4:CF:C7:7A:86:CA:BA:B6:9E:96:AC Authority key identifier: 74:66:07:3C:8D:20:FF:5B:0C:A8:8E:4A:3A:3F:C8:1D:3C:9F:67:9B Certificate issuer: /CN=A918CE56/serialNumber=7466073C8D20FF5B0CA88E4A3A3FC81D3C9F679B Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft Manifest number: 0216 Signing time: Tue 01 Jul 2025 02:40:21 +0000 Manifest this update: Tue 01 Jul 2025 02:40:20 +0000 Manifest next update: Tue 08 Jul 2025 02:40:20 +0000 Files and hashes: 1: dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl (hash: uzHm1s7KCNfixhZObV2dWtaUcO3DMEfouw/3OjZjRT0=) 2: BEB5E328397011EDA97F630EC4F9AE02.roa (hash: 7kPM/sKB4i8QHNZmGczzwn2v095e3qO6G9fcsHz4xRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:40:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CE56, serialNumber=7466073C8D20FF5B0CA88E4A3A3FC81D3C9F679B Validity Not Before: Jul 1 02:40:20 2025 GMT Not After : Jul 8 02:40:20 2025 GMT Subject: CN=68634a94-446a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:43:af:c7:58:7a:10:3f:ef:3d:fe:51:cd:b9: 0d:47:47:10:3c:0f:3a:1f:35:e8:e0:89:d3:11:1b: 6a:d5:b5:1a:d2:18:46:cb:b5:01:e7:20:9b:37:b7: 8e:c6:0d:0f:73:07:4d:5e:59:2d:d9:bb:f0:b0:d0: 0f:a7:2f:12:6e:00:eb:32:57:0c:6b:46:8f:7c:b3: 61:70:8c:08:27:84:e9:5c:a1:38:5e:fe:00:15:22: 02:ca:64:1e:62:7f:fa:39:e7:07:13:ee:ed:8d:7c: b7:b3:af:9a:c5:c9:34:bc:86:6e:4d:d5:e8:15:f3: 6c:95:1d:81:34:d8:e4:4b:24:88:87:ad:1b:af:4c: 41:11:32:39:ce:1a:8b:19:14:02:ca:45:8b:e5:05: 89:8e:9e:d2:29:77:a9:e6:e3:96:43:78:98:ff:0e: 9a:c6:a4:9f:32:ec:91:98:c9:bf:bd:b8:5c:61:af: ae:da:cc:f4:71:e3:dc:ed:df:01:c8:0f:78:22:ac: 62:d1:96:32:f3:63:4e:d9:a9:cc:af:eb:cc:42:35: b7:e1:06:1b:e3:b2:5c:fb:36:6f:41:aa:af:04:6b: 71:ec:2d:a6:ae:df:04:a7:ea:75:f4:30:ba:c7:33: f6:95:22:94:60:bc:e9:6a:64:cb:6d:56:bd:7e:97: 4a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:23:90:0B:DB:B3:16:79:6F:E4:CF:C7:7A:86:CA:BA:B6:9E:96:AC X509v3 Authority Key Identifier: keyid:74:66:07:3C:8D:20:FF:5B:0C:A8:8E:4A:3A:3F:C8:1D:3C:9F:67:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e2:a8:65:e5:6e:5a:30:f1:7f:1f:ff:61:8c:ac:a8:e5:ff: 17:82:d4:2a:53:3c:e0:0a:cc:f9:de:f7:76:09:1d:83:73:78: 0e:b1:38:88:b0:26:2a:39:02:57:29:bb:54:78:b9:1e:a3:4d: 23:55:7e:4c:92:d5:34:81:90:dd:3d:76:ac:74:5a:5a:f4:4c: 6c:2e:8c:4e:dd:26:c2:75:62:e6:fd:80:a8:b8:d0:f8:e6:30: 74:d4:21:31:8f:74:b6:46:f9:b4:1a:f1:04:41:b3:97:67:d6: 81:0f:e5:15:be:74:e2:4e:49:e1:62:a0:70:69:55:4a:19:85: 87:74:2c:bb:ff:04:3e:ba:2f:b0:e7:9b:6f:5b:a7:81:30:d2: 26:2b:61:94:f5:7f:1b:8a:5b:3e:7e:a0:fb:0c:47:fb:2a:c5: da:ce:23:01:c2:63:6d:89:0e:f2:79:57:81:47:37:30:3c:00: 82:28:63:f2:97:4e:6e:3d:0b:12:f9:e0:20:51:42:40:df:c8: b8:79:65:39:7e:1b:94:da:96:f9:98:a9:23:8b:a2:bf:0c:58: 4c:a8:fb:19:46:e1:53:88:0e:cd:18:52:9c:a6:7f:56:2e:ca: 49:5d:c1:40:9f:90:87:6e:c5:3d:e8:b6:ef:bf:7a:44:48:49: 92:f0:7b:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENFNTYxMTAvBgNVBAUTKDc0NjYwNzNDOEQyMEZGNUIwQ0E4OEU0QTNBM0ZDODFE M0M5RjY3OUIwHhcNMjUwNzAxMDI0MDIwWhcNMjUwNzA4MDI0MDIwWjAYMRYwFAYD VQQDEw02ODYzNGE5NC00NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30Ovx1h6ED/vPf5RzbkNR0cQPA86HzXo4InTERtq1bUa0hhGy7UB5yCbN7eO xg0PcwdNXlkt2bvwsNAPpy8SbgDrMlcMa0aPfLNhcIwIJ4TpXKE4Xv4AFSICymQe Yn/6OecHE+7tjXy3s6+axck0vIZuTdXoFfNslR2BNNjkSySIh60br0xBETI5zhqL GRQCykWL5QWJjp7SKXep5uOWQ3iY/w6axqSfMuyRmMm/vbhcYa+u2sz0cePc7d8B yA94Iqxi0ZYy82NO2anMr+vMQjW34QYb47Jc+zZvQaqvBGtx7C2mrt8Ep+p19DC6 xzP2lSKUYLzpamTLbVa9fpdK2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQjkAvb sxZ5b+TPx3qGyrq2npasMB8GA1UdIwQYMBaAFHRmBzyNIP9bDKiOSjo/yB08n2eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0U1Ni8yNjI2NEFGMDM5 NkUxMUVEQkZDMzEyMERDNEY5QUUwMi9kR1lIUEkwZ18xc01xSTVLT2pfSUhUeWZa NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RHWUhQSTBnXzFzTXFJNUtPal9JSFR5Zlo1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0U1Ni8yNjI2NEFGMDM5NkUxMUVEQkZDMzEyMERDNEY5QUUwMi9kR1lIUEkwZ18x c01xSTVLT2pfSUhUeWZaNXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ4qhl5W5aMPF/H/9hjKyo5f8XgtQqUzzgCsz53vd2CR2Dc3gOsTiI sCYqOQJXKbtUeLkeo00jVX5MktU0gZDdPXasdFpa9ExsLoxO3SbCdWLm/YCouND4 5jB01CExj3S2Rvm0GvEEQbOXZ9aBD+UVvnTiTknhYqBwaVVKGYWHdCy7/wQ+ui+w 55tvW6eBMNImK2GU9X8bils+fqD7DEf7KsXaziMBwmNtiQ7yeVeBRzcwPACCKGPy l05uPQsS+eAgUUJA38i4eWU5fhuU2pb5mKkji6K/DFhMqPsZRuFTiA7NGFKcpn9W LspJXcFAn5CHbsU96Lbvv3pESEmS8Hsc -----END CERTIFICATE-----Generated at Tue Jul 1 21:02:13 2025 by rpki-client