$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft File: DKQH8N1TBy-ooGCBaRkpbmV31oI.mft (raw, json) Hash identifier: khjOaB0sbVwJRLkS/GSA/6md3GEZ2pJUV34FBTfDjF8= Subject key identifier: 41:CF:6A:33:7E:E6:A3:7D:C5:B8:27:F1:C5:89:36:EF:06:7B:53:4F Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0C59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft Manifest number: 0C4C Signing time: Wed 02 Jul 2025 18:43:54 +0000 Manifest this update: Wed 02 Jul 2025 18:43:53 +0000 Manifest next update: Wed 09 Jul 2025 18:43:53 +0000 Files and hashes: 1: DKQH8N1TBy-ooGCBaRkpbmV31oI.crl (hash: b8fyDQ6O4O4KuQaAV1IfgTM2EFbEJGIEh77fa4CI2cA=) 2: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (hash: YiyWCIvNLdPDV222FaDBu9f6FoqEAO4drbd6AsmezW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3161 (0xc59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE, serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: Jul 2 18:43:53 2025 GMT Not After : Jul 9 18:43:53 2025 GMT Subject: CN=68657de9-506b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:db:6a:5c:af:d6:96:87:72:ae:4a:fc:4f:d7: 3d:f5:3f:ee:8a:6b:24:26:2a:13:89:bc:44:fa:fd: 1f:65:7c:9b:74:28:e6:09:6b:be:77:91:ae:cd:b9: 97:de:b8:d3:b9:cf:0e:f0:e5:65:bb:1a:24:cf:e2: bb:f0:b7:a6:38:21:dd:a6:75:f8:eb:f7:4f:db:88: 9d:db:f8:0e:62:a2:4d:b1:d2:69:91:62:a7:f4:75: 4d:7c:b2:3f:28:41:db:c9:de:11:54:41:e7:dc:9d: 76:cf:f6:12:52:a4:d6:c6:37:2e:f5:26:25:df:a1: c8:12:05:1a:60:0e:d9:08:f2:ab:6b:da:d4:ed:01: e5:d1:00:92:ac:81:0c:23:7b:60:6c:5e:af:4f:58: 78:1a:e1:fe:4d:98:0f:e0:ee:2f:bf:d1:aa:b8:fa: 7d:c7:dc:56:7e:a7:f3:b4:4e:83:33:8c:5c:08:83: 56:1b:f8:d1:4c:3a:d2:7c:8e:6a:d0:97:2e:6b:31: 1e:5f:a6:9e:c3:c9:75:3d:8f:6c:c0:99:c8:0c:28: cf:b1:72:1b:48:dd:2d:f5:14:68:ab:a8:c0:2f:a2: c6:eb:a1:65:76:7d:ec:2b:29:1c:f6:a7:e6:0d:dc: 37:c2:cb:af:be:c7:ce:f9:81:df:fe:42:40:f0:d0: 21:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CF:6A:33:7E:E6:A3:7D:C5:B8:27:F1:C5:89:36:EF:06:7B:53:4F X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:80:37:c0:9a:9f:5e:1d:f7:0d:d9:ea:89:a5:47:7a:f1:79: 4b:61:5a:6d:e0:a2:a3:85:17:96:f4:af:6a:d5:a5:00:e4:24: ca:1b:3a:65:96:35:df:77:92:10:16:5c:69:56:76:57:ca:3a: 82:89:52:3c:de:5a:c2:79:29:cf:ff:5b:4b:c0:cb:82:a3:ed: ac:a1:e5:7b:44:c3:e0:5a:23:31:f7:98:01:28:25:25:37:d0: d2:e0:27:ec:91:35:41:40:b3:82:3b:95:e3:3e:2d:f7:76:2d: 47:ff:1a:17:1e:9b:4f:6f:03:17:d0:e5:9c:8a:40:6b:af:46: f7:9c:b1:e7:ad:7d:5b:73:d6:6e:1f:93:ed:d0:c4:2c:d1:46: d4:22:f4:6d:55:54:41:a3:ea:72:75:11:59:41:cd:9a:7d:48: da:da:e6:90:d2:6f:70:62:40:8b:ba:46:ff:57:68:03:7b:6e: d4:1b:3c:3e:34:d4:8d:90:bd:bd:09:50:84:1d:fb:7e:9b:ea: 39:f2:a8:73:45:fd:c8:d5:b5:07:75:d7:a4:f9:66:e4:6b:2b: 62:5e:24:a9:80:ba:6e:05:55:e8:1b:20:85:0d:c2:b0:b1:82: e4:6c:6c:91:8f:4b:e1:91:f8:00:56:c5:2f:25:dd:86:57:6a: 71:c3:5a:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjUwNzAyMTg0MzUzWhcNMjUwNzA5MTg0MzUzWjAYMRYwFAYD VQQDEw02ODY1N2RlOS01MDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyttqXK/Wlodyrkr8T9c99T/uimskJioTibxE+v0fZXybdCjmCWu+d5GuzbmX 3rjTuc8O8OVluxokz+K78LemOCHdpnX46/dP24id2/gOYqJNsdJpkWKn9HVNfLI/ KEHbyd4RVEHn3J12z/YSUqTWxjcu9SYl36HIEgUaYA7ZCPKra9rU7QHl0QCSrIEM I3tgbF6vT1h4GuH+TZgP4O4vv9GquPp9x9xWfqfztE6DM4xcCINWG/jRTDrSfI5q 0JcuazEeX6aew8l1PY9swJnIDCjPsXIbSN0t9RRoq6jAL6LG66Fldn3sKykc9qfm Ddw3wsuvvsfO+YHf/kJA8NAhIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHPajN+ 5qN9xbgn8cWJNu8Ge1NPMB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0JERS81MEE5MEUzNjA4MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5 LW9vR0NCYVJrcGJtVjMxb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVgDfAmp9eHfcN2eqJpUd68XlLYVpt4KKjhReW9K9q1aUA5CTKGzpl ljXfd5IQFlxpVnZXyjqCiVI83lrCeSnP/1tLwMuCo+2soeV7RMPgWiMx95gBKCUl N9DS4CfskTVBQLOCO5XjPi33di1H/xoXHptPbwMX0OWcikBrr0b3nLHnrX1bc9Zu H5Pt0MQs0UbUIvRtVVRBo+pydRFZQc2afUja2uaQ0m9wYkCLukb/V2gDe27UGzw+ NNSNkL29CVCEHft+m+o58qhzRf3I1bUHddek+WbkaytiXiSpgLpuBVXoGyCFDcKw sYLkbGyRj0vhkfgAVsUvJd2GV2pxw1qu -----END CERTIFICATE-----Generated at Thu Jul 3 09:50:52 2025 by rpki-client