$ rpki-client -vvf rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft File: DWTFbg5hGlzB01iGdsV03iLVdQE.mft (raw, json) Hash identifier: BRsbRte8imsYlJOk1XRDRiSFUmXNkG5N8J9Lp/C9orc= Subject key identifier: D9:C5:BC:C7:9F:E9:C3:70:2B:7A:08:45:E8:75:EB:A9:CF:03:A7:DC Authority key identifier: 0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 Certificate issuer: /CN=A9128D30/serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft Manifest number: 0118 Signing time: Tue 17 Jun 2025 03:52:21 +0000 Manifest this update: Tue 17 Jun 2025 03:52:20 +0000 Manifest next update: Tue 24 Jun 2025 03:52:20 +0000 Files and hashes: 1: DWTFbg5hGlzB01iGdsV03iLVdQE.crl (hash: c2pd/5sfAd81deRDyrngAQinsw+v9GXOUiyYI6Awms0=) 2: 7D28601A9FD211EEAC56900AC4F9AE02.roa (hash: zd1TDezrr156c4EY6JDMzWwdgb+33lD768j6PJBUhL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128D30, serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Validity Not Before: Jun 17 03:52:20 2025 GMT Not After : Jun 24 03:52:20 2025 GMT Subject: CN=6850e675-1b12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:00:33:b8:d1:90:f8:c3:00:ee:e8:d6:6c:52: b9:06:fd:8b:70:2a:8f:0e:e8:76:7f:73:79:60:9c: 40:ac:f1:1c:97:1b:34:6e:19:d0:a0:57:54:1c:46: d6:05:cf:39:22:48:04:9d:8c:89:a3:7b:b4:d3:a1: 25:f1:f9:4e:6f:78:06:14:f9:70:58:61:24:93:6f: e5:cb:52:09:3b:d1:06:a6:aa:aa:d9:78:80:ed:78: 9b:fa:b2:9e:8f:9c:97:a5:59:de:97:f6:82:23:11: dd:f6:04:87:45:92:ff:ef:bd:29:c7:dd:fa:77:7b: 2f:e0:72:23:dd:20:28:33:e2:86:fb:9b:dd:b1:38: 30:ae:70:22:db:71:4f:7e:3a:08:05:7f:24:74:ad: a3:65:df:7f:4a:c8:01:6c:0e:93:a4:6a:27:86:70: 13:c6:0e:8e:07:c3:2b:ad:64:9a:9f:ef:5c:c0:90: 9b:33:a4:f9:56:f6:04:68:e0:63:32:b9:18:0d:e7: d8:3b:38:c9:44:1f:cc:69:49:8b:76:b0:21:f4:7e: 4b:b9:52:2a:b3:ae:b1:a6:e8:17:66:e7:14:2e:95: 95:3c:d0:ed:28:6e:f3:2b:76:09:97:5a:24:b4:75: 1e:d2:c7:33:ec:93:10:a1:4b:17:86:09:37:38:40: 13:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C5:BC:C7:9F:E9:C3:70:2B:7A:08:45:E8:75:EB:A9:CF:03:A7:DC X509v3 Authority Key Identifier: keyid:0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:54:b8:0a:4f:bb:8a:27:43:f1:66:97:5f:48:ef:e0:f4:59: f6:fb:ad:d5:85:33:44:37:8a:09:8d:37:d1:66:fd:37:43:17: 05:a5:1f:0c:d1:dc:ba:d5:5b:a2:da:12:22:f3:c9:08:29:ab: 4c:c5:88:bc:37:63:93:53:0c:8c:24:bc:eb:ae:f6:de:9b:f2: 2b:f7:fa:d1:e7:8d:c9:76:a3:13:5d:48:72:49:e9:fb:1e:a8: ca:8c:43:b8:83:75:5a:ad:1e:0d:5a:ce:fd:34:fb:4b:5a:4d: 1f:28:51:58:12:97:d6:c3:35:f6:75:13:8c:c5:12:da:62:b9: 46:8e:93:e8:89:c0:0e:c5:d3:1c:c8:45:6e:65:1f:fb:01:33: da:5c:4c:d1:d8:db:c4:3a:ba:b7:9e:e7:0c:54:1d:e7:1f:b7: 9a:17:63:02:9d:66:ea:dc:38:2f:b3:29:fd:83:84:e7:b8:cc: be:ce:9c:3d:67:62:f2:f5:62:92:4f:bd:21:04:cb:c8:f7:ab: 02:a0:78:9e:56:fd:32:f5:c5:3d:9b:6e:45:a1:33:8c:74:64: ef:be:78:15:92:ae:ef:13:e4:97:78:c7:78:24:d1:59:ed:8d: 26:25:12:58:a9:d8:05:03:4a:dc:72:b9:d3:7b:7e:27:d4:e0: ba:4d:0a:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhEMzAxMTAvBgNVBAUTKDBENjRDNTZFMEU2MTFBNUNDMUQzNTg4Njc2QzU3NERF MjJENTc1MDEwHhcNMjUwNjE3MDM1MjIwWhcNMjUwNjI0MDM1MjIwWjAYMRYwFAYD VQQDEw02ODUwZTY3NS0xYjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQAzuNGQ+MMA7ujWbFK5Bv2LcCqPDuh2f3N5YJxArPEclxs0bhnQoFdUHEbW Bc85IkgEnYyJo3u006El8flOb3gGFPlwWGEkk2/ly1IJO9EGpqqq2XiA7Xib+rKe j5yXpVnel/aCIxHd9gSHRZL/770px936d3sv4HIj3SAoM+KG+5vdsTgwrnAi23FP fjoIBX8kdK2jZd9/SsgBbA6TpGonhnATxg6OB8MrrWSan+9cwJCbM6T5VvYEaOBj MrkYDefYOzjJRB/MaUmLdrAh9H5LuVIqs66xpugXZucULpWVPNDtKG7zK3YJl1ok tHUe0scz7JMQoUsXhgk3OEATQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnFvMef 6cNwK3oIReh166nPA6fcMB8GA1UdIwQYMBaAFA1kxW4OYRpcwdNYhnbFdN4i1XUB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEQzMC9DRDgwQUFFNjlG RDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEdsekIwMWlHZHNWMDNpTFZk UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXVEZiZzVoR2x6QjAxaUdkc1YwM2lMVmRRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEQzMC9DRDgwQUFFNjlGRDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEds ekIwMWlHZHNWMDNpTFZkUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeVLgKT7uKJ0PxZpdfSO/g9Fn2+63VhTNEN4oJjTfRZv03QxcFpR8M 0dy61Vui2hIi88kIKatMxYi8N2OTUwyMJLzrrvbem/Ir9/rR543JdqMTXUhySen7 HqjKjEO4g3VarR4NWs79NPtLWk0fKFFYEpfWwzX2dROMxRLaYrlGjpPoicAOxdMc yEVuZR/7ATPaXEzR2NvEOrq3nucMVB3nH7eaF2MCnWbq3Dgvsyn9g4TnuMy+zpw9 Z2Ly9WKST70hBMvI96sCoHieVv0y9cU9m25FoTOMdGTvvngVkq7vE+SXeMd4JNFZ 7Y0mJRJYqdgFA0rccrnTe34n1OC6TQro -----END CERTIFICATE-----Generated at Wed Jun 18 13:57:00 2025 by rpki-client