$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft File: DtUqdvMcJCF0oq0ZSByVcDty4jY.mft (raw, json) Hash identifier: p60u84GlilKwJXkRRz9imtEt0ZwkO9T3/ymkWZ1NHTI= Subject key identifier: 81:C3:8E:AF:F4:94:12:2D:3F:9F:24:1F:3E:1F:5D:4A:17:30:24:E8 Authority key identifier: 0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 Certificate issuer: /CN=A91E33D7/serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Certificate serial: 0E14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft Manifest number: 0E0B Signing time: Wed 02 Jul 2025 18:02:49 +0000 Manifest this update: Wed 02 Jul 2025 18:02:48 +0000 Manifest next update: Wed 09 Jul 2025 18:02:48 +0000 Files and hashes: 1: DtUqdvMcJCF0oq0ZSByVcDty4jY.crl (hash: QPGym8+FTFf1UuhepkqGhUU+nwQ0KBCQUNRTos9T9pA=) 2: C26576D4F4ED11E9ACC51713C4F9AE02.roa (hash: leeMqNjzFzLxyR/PuwyeZTmIKl73aTot0VdgEtIi1fo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3604 (0xe14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33D7, serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Validity Not Before: Jul 2 18:02:48 2025 GMT Not After : Jul 9 18:02:48 2025 GMT Subject: CN=68657448-5ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:51:e8:da:31:eb:d5:96:39:91:26:e1:ce: 0c:04:34:75:74:fe:fb:05:18:96:6c:49:e0:68:d0: ab:e3:3d:7b:62:9d:fa:6a:e5:be:33:d7:a5:ac:3e: 4d:fc:84:dd:15:8c:d0:cd:4a:fc:b4:dd:d4:c6:1a: 7d:9d:9a:38:73:39:bd:bd:2b:82:94:bf:09:44:2d: 87:16:1e:fb:d9:9c:a2:94:66:3b:ef:b6:20:6d:c1: 3b:ea:09:aa:10:08:8a:80:a4:6f:ec:f1:f5:3e:5c: d1:eb:0a:fc:45:06:0f:cf:da:f9:c4:48:ae:95:e2: 7e:a0:96:ba:39:64:67:e1:2a:86:02:03:b0:8f:79: 33:c8:c6:bb:1a:22:f2:45:85:01:79:9d:57:83:4d: 07:11:a2:f7:3d:a4:ad:2c:ce:c8:d1:51:3c:45:d8: 39:8b:02:2b:b4:87:78:fd:45:f1:e1:85:98:e9:7a: db:68:c7:ff:9c:d4:8e:08:d1:fa:80:93:0e:aa:da: 46:84:fd:60:74:32:d1:0d:d9:69:44:a5:ae:57:51: 8c:b2:e5:91:5b:79:03:b0:5e:8e:6e:52:f1:97:a6: 3a:24:74:e5:3d:c9:3b:74:82:e5:e6:16:0f:6a:1c: 37:a6:2b:a7:f9:62:7f:12:2d:09:15:1b:b3:b8:1c: 5a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C3:8E:AF:F4:94:12:2D:3F:9F:24:1F:3E:1F:5D:4A:17:30:24:E8 X509v3 Authority Key Identifier: keyid:0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:60:c7:56:4e:c2:c3:ba:55:ee:8f:70:dc:ce:5d:dd:10:b0: 0a:2e:88:7c:ad:78:4c:5a:27:59:c5:9d:ee:b6:41:1b:0c:4d: fa:30:c1:20:75:73:91:53:a9:6f:73:1d:04:ec:55:db:f4:57: e1:79:eb:58:be:ad:ac:d4:41:83:78:3f:89:dd:86:c9:6e:41: 19:60:6f:0d:59:b3:26:e7:34:d5:e8:35:2a:64:eb:02:91:b6: 4f:60:76:e1:a4:b4:51:b9:39:56:42:04:d8:37:ab:18:53:af: da:e4:d9:ff:f0:22:4f:b1:6f:11:ae:de:99:06:fa:5f:9c:35: ad:fb:1b:f2:5b:a0:b6:e4:25:ac:65:57:34:34:b6:0e:b0:49: 0e:52:67:ab:90:25:36:92:a1:93:a5:35:b5:9e:df:6d:5f:f6: 4a:aa:1c:22:94:41:ba:f1:65:db:f2:f9:57:5a:a4:ba:82:97: 1e:fc:db:8d:4f:02:65:a1:ab:0a:6c:e0:69:71:da:70:69:18: 7b:7f:42:b0:ca:cd:e6:ea:39:fc:7f:3d:3f:9c:fa:4e:6b:19: eb:f4:01:ff:5f:a6:ff:c1:ea:c6:c3:60:fa:97:bb:f3:87:2a: 84:e7:5f:42:dd:53:62:9b:3d:ca:11:5c:98:ce:1d:db:07:b2: 17:de:60:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzRDcxMTAvBgNVBAUTKDBFRDUyQTc2RjMxQzI0MjE3NEEyQUQxOTQ4MUM5NTcw M0I3MkUyMzYwHhcNMjUwNzAyMTgwMjQ4WhcNMjUwNzA5MTgwMjQ4WjAYMRYwFAYD VQQDEw02ODY1NzQ0OC01ZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupBR6Nox69WWOZEm4c4MBDR1dP77BRiWbEngaNCr4z17Yp36auW+M9elrD5N /ITdFYzQzUr8tN3Uxhp9nZo4czm9vSuClL8JRC2HFh772ZyilGY777YgbcE76gmq EAiKgKRv7PH1PlzR6wr8RQYPz9r5xEiuleJ+oJa6OWRn4SqGAgOwj3kzyMa7GiLy RYUBeZ1Xg00HEaL3PaStLM7I0VE8Rdg5iwIrtId4/UXx4YWY6XrbaMf/nNSOCNH6 gJMOqtpGhP1gdDLRDdlpRKWuV1GMsuWRW3kDsF6OblLxl6Y6JHTlPck7dILl5hYP ahw3piun+WJ/Ei0JFRuzuBxa+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHDjq/0 lBItP58kHz4fXUoXMCToMB8GA1UdIwQYMBaAFA7VKnbzHCQhdKKtGUgclXA7cuI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzNENy9EQzdEODg2NEFF QjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pDRjBvcTBaU0J5VmNEdHk0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R0VXFkdk1jSkNGMG9xMFpTQnlWY0R0eTRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzNENy9EQzdEODg2NEFFQjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pD RjBvcTBaU0J5VmNEdHk0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAYMdWTsLDulXuj3Dczl3dELAKLoh8rXhMWidZxZ3utkEbDE36MMEg dXORU6lvcx0E7FXb9FfheetYvq2s1EGDeD+J3YbJbkEZYG8NWbMm5zTV6DUqZOsC kbZPYHbhpLRRuTlWQgTYN6sYU6/a5Nn/8CJPsW8Rrt6ZBvpfnDWt+xvyW6C25CWs ZVc0NLYOsEkOUmerkCU2kqGTpTW1nt9tX/ZKqhwilEG68WXb8vlXWqS6gpce/NuN TwJloasKbOBpcdpwaRh7f0Kwys3m6jn8fz0/nPpOaxnr9AH/X6b/werGw2D6l7vz hyqE519C3VNimz3KEVyYzh3bB7IX3mBe -----END CERTIFICATE-----Generated at Fri Jul 4 18:19:34 2025 by rpki-client