$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft File: DmxKtne94a1EYD_XN9olwGAcRZw.mft (raw, json) Hash identifier: o2qJwipcaT5NvYbVmyBMkc4sVa4n+9klvgz+LiPgGCI= Subject key identifier: CD:47:0A:84:54:04:96:A7:47:8F:55:FE:BF:8D:4A:17:07:56:D0:48 Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft Manifest number: 3D Signing time: Thu 03 Jul 2025 07:45:23 +0000 Manifest this update: Thu 03 Jul 2025 07:45:22 +0000 Manifest next update: Thu 10 Jul 2025 07:45:22 +0000 Files and hashes: 1: DmxKtne94a1EYD_XN9olwGAcRZw.crl (hash: ESlAHaUgd5eUxxs1iC2GnCrn/YsaoTJNUmE9lz8kq5s=) 2: C488A080FB5911EFA827FD17C4F9AE02.roa (hash: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF, serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Validity Not Before: Jul 3 07:45:22 2025 GMT Not After : Jul 10 07:45:22 2025 GMT Subject: CN=68663513-232e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:32:1b:9a:c6:22:ef:d7:6c:5d:f3:7f:ff:a7: f6:e4:a6:cf:6b:b3:77:b9:8d:2c:30:2c:15:d6:78: 61:1c:89:5b:12:04:3f:4b:f6:98:74:dd:01:4a:4f: 49:e1:6a:9c:9f:c3:44:e8:12:01:ac:a3:0d:c8:81: c4:3d:67:fb:8f:f3:1a:47:4f:00:64:d0:c2:0f:b7: 0d:6a:4c:1a:5a:91:f6:91:f6:3f:a4:a2:0d:bc:84: 90:50:03:d9:b4:6d:72:f0:42:21:47:ec:67:75:13: 6d:e1:98:04:87:cc:20:35:61:b9:85:bf:03:0d:69: 87:50:58:67:ed:6e:99:19:8f:27:18:3b:a7:37:41: 8d:98:e5:0c:68:88:3b:a1:9e:9d:4b:77:3f:e6:15: 7b:9c:53:8a:c3:74:89:c2:d7:8f:87:a5:15:85:59: 3a:ce:1f:ac:5e:86:17:65:01:08:ab:5e:53:9e:6d: 24:93:86:df:13:36:3b:09:89:8d:01:72:9a:36:e1: d1:68:9f:3e:e3:b1:ee:7b:a0:f5:57:fd:a6:3d:38: eb:ad:3d:98:86:d8:4c:a2:15:a9:f3:9d:53:cc:fd: 32:11:67:59:21:88:0f:f0:45:13:94:ce:d3:bb:32: 66:5b:89:35:06:1d:10:91:7b:3d:8b:ff:a6:b9:ce: 62:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:47:0A:84:54:04:96:A7:47:8F:55:FE:BF:8D:4A:17:07:56:D0:48 X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:be:e9:12:f6:39:04:7d:5f:9d:04:0b:5a:7c:fe:8e:48:de: 0d:1f:7e:8c:ba:83:ca:bb:9e:85:21:5f:34:49:10:95:77:52: 3b:c4:bb:22:c2:03:6d:49:5b:7e:b1:12:cb:d0:1d:47:65:89: 30:eb:6a:1d:a8:24:81:21:ad:c6:b6:c5:ff:c4:0d:f6:aa:20: 46:6f:60:35:13:de:eb:0a:41:76:da:65:39:1c:e1:46:b4:1a: f1:40:5e:f8:ad:32:1b:16:f7:68:15:d0:35:4b:3e:7f:6d:20: 46:87:a3:23:ff:ed:2c:ef:bc:ba:81:52:cc:9f:36:05:f5:2a: 44:ba:04:27:98:4c:99:3c:75:9b:ee:02:2d:1b:7e:da:59:7f: 4a:4f:ed:57:06:ef:86:97:17:1f:9b:48:1d:44:60:3d:e2:17: ae:af:d7:93:bc:da:d5:aa:7d:92:06:fc:39:70:7e:31:f2:89: 81:00:61:a0:d6:51:ab:e6:a9:ef:22:b0:0f:14:3d:67:cc:33: 3a:9a:62:50:12:24:38:c4:d4:68:ad:02:c1:db:1a:0b:eb:85: d6:8c:0a:25:33:db:2e:59:7a:9d:35:bc:ac:aa:9d:22:cd:78: dd:90:18:58:98:d2:20:77:c6:ef:30:77:a5:26:5e:79:88:73: 7a:95:24:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzlDRjExMC8GA1UEBRMoMEU2QzRBQjY3N0JERTFBRDQ0NjAzRkQ3MzdEQTI1QzA2 MDFDNDU5QzAeFw0yNTA3MDMwNzQ1MjJaFw0yNTA3MTAwNzQ1MjJaMBgxFjAUBgNV BAMTDTY4NjYzNTEzLTIzMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrMhuaxiLv12xd83//p/bkps9rs3e5jSwwLBXWeGEciVsSBD9L9ph03QFKT0nh apyfw0ToEgGsow3IgcQ9Z/uP8xpHTwBk0MIPtw1qTBpakfaR9j+kog28hJBQA9m0 bXLwQiFH7Gd1E23hmASHzCA1YbmFvwMNaYdQWGftbpkZjycYO6c3QY2Y5QxoiDuh np1Ldz/mFXucU4rDdInC14+HpRWFWTrOH6xehhdlAQirXlOebSSTht8TNjsJiY0B cpo24dFonz7jse57oPVX/aY9OOutPZiG2EyiFanznVPM/TIRZ1khiA/wRROUztO7 MmZbiTUGHRCRez2L/6a5zmK7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzUcKhFQE lqdHj1X+v41KFwdW0EgwHwYDVR0jBBgwFoAUDmxKtne94a1EYD/XN9olwGAcRZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzOUNGLzU2RjMxRkI0RkI1 OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Ja dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRG14S3RuZTk0YTFFWURfWE45b2x3R0FjUlp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz OUNGLzU2RjMxRkI0RkI1OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGEx RVlEX1hOOW9sd0dBY1Jady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANm+6RL2OQR9X50EC1p8/o5I3g0ffoy6g8q7noUhXzRJEJV3UjvEuyLC A21JW36xEsvQHUdliTDrah2oJIEhrca2xf/EDfaqIEZvYDUT3usKQXbaZTkc4Ua0 GvFAXvitMhsW92gV0DVLPn9tIEaHoyP/7SzvvLqBUsyfNgX1KkS6BCeYTJk8dZvu Ai0bftpZf0pP7VcG74aXFx+bSB1EYD3iF66v15O82tWqfZIG/DlwfjHyiYEAYaDW Uavmqe8isA8UPWfMMzqaYlASJDjE1GitAsHbGgvrhdaMCiUz2y5Zep01vKyqnSLN eN2QGFiY0iB3xu8wd6UmXnmIc3qVJAg= -----END CERTIFICATE-----Generated at Thu Jul 3 21:34:28 2025 by rpki-client