$ rpki-client -vvf rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft File: DcXOSilPLJOAqRNe4fBTByikzaY.mft (raw, json) Hash identifier: SCkywhD8r0sOINUqxJf1euIryFORV+pEw/yPLoudl5M= Subject key identifier: 05:9B:FD:3F:EA:1B:07:85:80:5E:D8:98:97:E7:4D:60:BF:E9:4B:63 Authority key identifier: 0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 Certificate issuer: /CN=A912B4DB/serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Certificate serial: 34A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft Manifest number: 3499 Signing time: Mon 16 Jun 2025 15:17:23 +0000 Manifest this update: Mon 16 Jun 2025 15:17:23 +0000 Manifest next update: Mon 23 Jun 2025 15:17:23 +0000 Files and hashes: 1: DcXOSilPLJOAqRNe4fBTByikzaY.crl (hash: uuoh5RfPUAupqdP03sb9PQyxkl134LHn5uNyLk7NFmQ=) 2: 7FE5F2CEDB9411E9832A463AC4F9AE02.roa (hash: Sw4ihe/uH6fmIDPdKoxmP7xAVXuq4ul6aZ2AD9s5AWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13475 (0x34a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B4DB, serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Validity Not Before: Jun 16 15:17:23 2025 GMT Not After : Jun 23 15:17:23 2025 GMT Subject: CN=68503583-a185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:89:be:5e:94:0f:db:53:0b:31:63:5f:6d:28: 43:0c:81:ae:c7:dd:9f:66:bf:66:dd:64:a8:0c:20: 72:4b:33:b4:85:be:cc:38:de:9d:ac:e4:30:cc:5e: e4:1d:5e:67:5d:22:c8:70:c9:83:ab:f0:32:c6:e2: f3:4c:b0:de:4a:6e:13:c9:d2:30:b1:9e:81:40:e7: 1a:e2:ec:37:44:51:8e:85:36:48:ff:55:73:d0:a9: 0e:13:f2:68:86:8a:c6:0b:3b:70:0b:8c:de:0d:b3: 31:55:90:64:a0:cc:1c:33:c0:3b:8e:f0:26:1b:11: 45:2e:c6:3b:7b:36:c1:e8:ca:aa:bd:28:6f:3f:22: 55:98:22:97:71:70:9f:cb:5d:d4:ed:88:b1:92:19: 35:1a:e1:b7:32:e5:62:bf:a1:35:97:be:08:b5:59: ff:10:07:9e:1b:24:c8:56:41:46:8f:65:bd:e5:60: 39:0f:45:88:9b:51:34:68:8b:d4:ae:32:02:0c:53: fe:f7:a8:b1:3b:e3:aa:2e:72:f8:3e:af:1a:2f:0d: f5:71:23:2e:c7:42:a9:b8:94:40:d4:07:41:b2:ff: 79:5c:fa:91:f5:3b:04:49:27:4d:7f:d4:32:31:f1: 66:4b:ad:dc:97:ea:b7:26:ce:ba:38:cb:59:bf:31: 17:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9B:FD:3F:EA:1B:07:85:80:5E:D8:98:97:E7:4D:60:BF:E9:4B:63 X509v3 Authority Key Identifier: keyid:0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:be:4c:ff:c3:29:73:10:17:d5:b2:05:84:77:3c:13:03:9d: 2a:aa:bf:04:d3:d2:c4:89:36:ee:b1:cf:f4:35:62:88:0c:42: c8:9c:72:14:b4:2d:a3:fa:98:94:c6:9f:06:40:f2:22:88:2f: c2:45:3c:53:db:b9:1b:2d:5e:34:1d:42:98:a9:d3:9a:26:50: fa:69:c5:54:e8:8d:9f:5b:3a:cd:83:12:4f:33:f1:aa:82:8e: 94:ac:f6:8a:a9:69:de:cb:92:d0:53:6b:cd:2f:85:68:22:c2: 83:c8:1c:ce:3c:92:ab:f4:0d:a3:1b:c1:b2:9d:5d:4c:66:38: 62:e0:e3:89:47:d7:7d:00:40:bf:54:8c:99:66:77:45:dc:e5: 71:5c:57:d0:ba:05:28:9c:d2:f5:f6:28:48:11:d0:17:f2:be: 67:7a:4b:c0:f0:5f:cb:d6:02:77:48:37:42:63:81:65:d3:d4: f5:bf:75:85:52:bd:63:e8:5d:f6:67:4f:96:65:3c:1e:5a:e0: b2:89:6a:e2:9a:e7:2f:fc:dd:69:08:d9:ab:b7:99:24:9f:a7: ea:19:4e:f7:a8:01:64:81:1f:cf:d8:cf:db:22:f3:22:3c:a7: 73:01:4e:71:fd:a2:09:9a:54:b6:6a:fa:6d:02:26:e6:a0:cb: ce:a2:6b:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI0REIxMTAvBgNVBAUTKDBEQzVDRTRBMjk0RjJDOTM4MEE5MTM1RUUxRjA1MzA3 MjhBNENEQTYwHhcNMjUwNjE2MTUxNzIzWhcNMjUwNjIzMTUxNzIzWjAYMRYwFAYD VQQDEw02ODUwMzU4My1hMTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Im+XpQP21MLMWNfbShDDIGux92fZr9m3WSoDCBySzO0hb7MON6drOQwzF7k HV5nXSLIcMmDq/AyxuLzTLDeSm4TydIwsZ6BQOca4uw3RFGOhTZI/1Vz0KkOE/Jo horGCztwC4zeDbMxVZBkoMwcM8A7jvAmGxFFLsY7ezbB6MqqvShvPyJVmCKXcXCf y13U7Yixkhk1GuG3MuViv6E1l74ItVn/EAeeGyTIVkFGj2W95WA5D0WIm1E0aIvU rjICDFP+96ixO+OqLnL4Pq8aLw31cSMux0KpuJRA1AdBsv95XPqR9TsESSdNf9Qy MfFmS63cl+q3Js66OMtZvzEXTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWb/T/q GweFgF7YmJfnTWC/6UtjMB8GA1UdIwQYMBaAFA3FzkopTyyTgKkTXuHwUwcopM2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjREQi81QzUwMjk2QzFE QTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExKT0FxUk5lNGZCVEJ5aWt6 YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RjWE9TaWxQTEpPQXFSTmU0ZkJUQnlpa3phWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjREQi81QzUwMjk2QzFEQTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExK T0FxUk5lNGZCVEJ5aWt6YVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZvkz/wylzEBfVsgWEdzwTA50qqr8E09LEiTbusc/0NWKIDELInHIU tC2j+piUxp8GQPIiiC/CRTxT27kbLV40HUKYqdOaJlD6acVU6I2fWzrNgxJPM/Gq go6UrPaKqWney5LQU2vNL4VoIsKDyBzOPJKr9A2jG8GynV1MZjhi4OOJR9d9AEC/ VIyZZndF3OVxXFfQugUonNL19ihIEdAX8r5nekvA8F/L1gJ3SDdCY4Fl09T1v3WF Ur1j6F32Z0+WZTweWuCyiWrimucv/N1pCNmrt5kkn6fqGU73qAFkgR/P2M/bIvMi PKdzAU5x/aIJmlS2avptAibmoMvOomsh -----END CERTIFICATE-----Generated at Tue Jun 17 06:17:49 2025 by rpki-client