$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft File: dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft (raw, json) Hash identifier: e6bI6j+U4Qbss17sKiUAmoaKmmkmaQRCEcsTj/DHswk= Subject key identifier: 31:FF:2C:9E:C5:5D:8B:B6:66:46:A9:FD:3E:1E:19:91:F3:E4:02:77 Authority key identifier: 75:9A:6E:03:F0:CE:7D:7C:2D:DA:80:48:FB:A8:13:3E:CC:66:3E:ED Certificate issuer: /CN=A91E85C5/serialNumber=759A6E03F0CE7D7C2DDA8048FBA8133ECC663EED Certificate serial: 03FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft Manifest number: 03F7 Signing time: Thu 03 Jul 2025 01:04:24 +0000 Manifest this update: Thu 03 Jul 2025 01:04:24 +0000 Manifest next update: Thu 10 Jul 2025 01:04:24 +0000 Files and hashes: 1: dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl (hash: 2TAIFtX87Gy7YfD22j8VdY0b2X5j+zNmmqTys38O6UA=) 2: 14AD3D427E9D11EC914D4A6DC4F9AE02.roa (hash: iIiLthCmbedJRo28SgXjSnyh36vN7rpzHjXfoOnGfcE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1021 (0x3fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85C5, serialNumber=759A6E03F0CE7D7C2DDA8048FBA8133ECC663EED Validity Not Before: Jul 3 01:04:24 2025 GMT Not After : Jul 10 01:04:24 2025 GMT Subject: CN=6865d718-0654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4e:18:78:57:7a:65:ed:83:3c:e2:98:87:cb: 08:43:a6:7d:ab:e1:bf:0c:33:70:9d:8c:ec:bd:96: b8:5b:b2:bb:45:49:ce:e1:f1:30:ee:aa:00:e7:a0: d1:d6:88:e6:c8:8d:03:11:df:3b:8e:c8:32:9d:ee: 5b:a1:9e:30:be:69:e7:e4:5d:bb:f9:28:93:b8:d0: 5d:78:69:4c:51:ce:ce:20:18:7b:dc:b8:ba:a3:3f: 22:e9:9f:7d:6d:93:61:02:8c:c3:7a:3d:b6:e8:7c: 7e:44:80:54:eb:26:d3:f1:1e:69:d8:23:b8:1e:eb: 34:a8:34:47:6d:1c:de:82:94:2b:17:34:6e:7a:f6: 8d:cd:13:9d:14:6b:10:fa:db:49:41:e4:06:4f:4d: 59:1d:73:2c:4b:41:a5:3b:99:7a:44:e6:fb:94:e8: 65:36:a0:03:42:96:c0:ad:59:93:9a:af:3d:f8:63: e3:a8:1e:c5:17:7a:68:b9:fa:9e:42:13:71:0d:37: 91:de:b7:2d:19:07:ee:f7:4a:96:35:04:fa:93:ba: 07:a5:cb:0f:c0:b6:64:a2:8c:58:18:7c:11:d5:b6: 89:e8:4c:b5:77:6b:a1:57:4e:b8:e6:5f:2c:01:60: 2f:97:bb:6e:a9:15:88:8b:55:66:73:48:3a:0d:2f: 4d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FF:2C:9E:C5:5D:8B:B6:66:46:A9:FD:3E:1E:19:91:F3:E4:02:77 X509v3 Authority Key Identifier: keyid:75:9A:6E:03:F0:CE:7D:7C:2D:DA:80:48:FB:A8:13:3E:CC:66:3E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:7f:d0:34:13:b4:67:08:b7:73:82:a1:9a:8e:8f:00:bc:81: 48:54:3c:32:2a:d7:c6:4e:08:ef:f8:5f:3e:cb:4a:be:77:26: cc:e1:0e:bf:5a:44:6d:f5:bc:b5:9e:00:9c:e1:31:5d:cf:8f: 60:1f:69:6f:8b:a1:a8:02:27:af:b1:c7:d3:45:45:f6:a5:4f: 50:3a:f5:9d:0b:8a:b9:35:1f:7d:4d:79:7e:0e:56:e5:f2:8c: 1b:37:9c:37:15:ae:95:10:53:a0:e0:7f:e2:90:a2:5a:6f:6c: 04:54:1f:a6:bb:8b:5b:72:51:82:33:8b:84:24:8e:53:b9:19: cd:0c:22:95:81:62:c9:a1:f8:e0:d9:1c:b3:93:f3:75:03:0c: 78:f2:d4:3d:20:41:ae:db:9c:d5:19:37:f8:65:88:d9:90:4e: 12:07:ab:f4:ba:d5:bb:11:d5:97:20:96:01:61:2b:50:d4:15: 31:21:4f:08:be:80:a9:ec:59:88:a8:14:1f:0b:3c:b5:32:fb: 65:4e:65:15:07:d0:d5:8c:d5:d3:91:b0:73:9a:df:c0:eb:b4: d7:52:be:3f:70:c0:64:07:8e:b7:37:7a:8b:1a:ef:e4:84:e7: ac:aa:a3:af:6f:83:bc:f0:1c:5a:0d:b5:bb:bd:16:f9:e4:a8: 0c:04:97:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1QzUxMTAvBgNVBAUTKDc1OUE2RTAzRjBDRTdEN0MyRERBODA0OEZCQTgxMzNF Q0M2NjNFRUQwHhcNMjUwNzAzMDEwNDI0WhcNMjUwNzEwMDEwNDI0WjAYMRYwFAYD VQQDEw02ODY1ZDcxOC0wNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2U4YeFd6Ze2DPOKYh8sIQ6Z9q+G/DDNwnYzsvZa4W7K7RUnO4fEw7qoA56DR 1ojmyI0DEd87jsgyne5boZ4wvmnn5F27+SiTuNBdeGlMUc7OIBh73Li6oz8i6Z99 bZNhAozDej226Hx+RIBU6ybT8R5p2CO4Hus0qDRHbRzegpQrFzRuevaNzROdFGsQ +ttJQeQGT01ZHXMsS0GlO5l6ROb7lOhlNqADQpbArVmTmq89+GPjqB7FF3poufqe QhNxDTeR3rctGQfu90qWNQT6k7oHpcsPwLZkooxYGHwR1baJ6Ey1d2uhV0645l8s AWAvl7tuqRWIi1Vmc0g6DS9NCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDH/LJ7F XYu2Zkap/T4eGZHz5AJ3MB8GA1UdIwQYMBaAFHWabgPwzn18LdqASPuoEz7MZj7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVDNS84OTNDNjRGNjdF OUExMUVDQTVBRDY3NkJDNEY5QUUwMi9kWnB1QV9ET2ZYd3Qyb0JJLTZnVFBzeG1Q dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RacHVBX0RPZlh3dDJvQkktNmdUUHN4bVB1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVDNS84OTNDNjRGNjdFOUExMUVDQTVBRDY3NkJDNEY5QUUwMi9kWnB1QV9ET2ZY d3Qyb0JJLTZnVFBzeG1QdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWf9A0E7RnCLdzgqGajo8AvIFIVDwyKtfGTgjv+F8+y0q+dybM4Q6/ WkRt9by1ngCc4TFdz49gH2lvi6GoAievscfTRUX2pU9QOvWdC4q5NR99TXl+Dlbl 8owbN5w3Fa6VEFOg4H/ikKJab2wEVB+mu4tbclGCM4uEJI5TuRnNDCKVgWLJofjg 2Ryzk/N1Awx48tQ9IEGu25zVGTf4ZYjZkE4SB6v0utW7EdWXIJYBYStQ1BUxIU8I voCp7FmIqBQfCzy1MvtlTmUVB9DVjNXTkbBzmt/A67TXUr4/cMBkB463N3qLGu/k hOesqqOvb4O88BxaDbW7vRb55KgMBJdt -----END CERTIFICATE-----Generated at Thu Jul 3 03:51:46 2025 by rpki-client