$ rpki-client -vvf rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft File: DcXOSilPLJOAqRNe4fBTByikzaY.mft (raw, json) Hash identifier: NTe7mN/zuB57xNzg9SSzmS9k5ECA2TBZLsDLrRVt/h0= Subject key identifier: A0:9B:3A:00:45:10:EE:B7:DC:6B:3A:F3:3A:57:C8:FB:7F:90:CA:4F Authority key identifier: 0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 Certificate issuer: /CN=A912B4DB/serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Certificate serial: 3485 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft Manifest number: 347C Signing time: Thu 24 Apr 2025 15:14:57 +0000 Manifest this update: Thu 24 Apr 2025 15:14:57 +0000 Manifest next update: Thu 01 May 2025 15:14:57 +0000 Files and hashes: 1: DcXOSilPLJOAqRNe4fBTByikzaY.crl (hash: B34bDHQnjd4EUdBSUip7FDXuSk+oG9AkHSUQdlPmmBA=) 2: 7FE5F2CEDB9411E9832A463AC4F9AE02.roa (hash: PN3PImrt+QJI7xYO7BeFUBTImo3X6zJHE8IHPHYYZKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13445 (0x3485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B4DB, serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Validity Not Before: Apr 24 15:14:57 2025 GMT Not After : May 1 15:14:57 2025 GMT Subject: CN=680a5571-a7ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d8:03:15:78:4e:dc:e2:d5:64:09:96:e3:02: d0:b8:10:99:7c:64:54:9a:70:b4:9e:55:f4:5c:04: 15:42:1d:be:9e:e8:d1:20:82:85:57:92:20:bf:d3: dc:a7:f0:13:da:30:5b:60:af:0f:51:22:c8:f3:d0: 6b:f5:e3:22:75:31:2f:d7:d5:21:54:84:0a:0d:7d: da:b6:4b:0e:8a:71:f6:5c:9c:a3:16:a2:f1:d0:27: 79:db:fa:e9:c6:3c:3c:f0:87:e1:e7:7b:02:2e:c3: 35:c0:4a:c8:43:ff:d5:b0:02:3f:96:23:6e:95:ef: d6:40:cd:81:b4:89:40:7c:ff:63:d2:af:74:99:7a: c1:12:84:00:d2:f4:6d:e9:99:a8:17:db:e7:bd:cc: e1:a6:5e:8d:02:13:bd:06:a5:4f:7b:ae:69:c7:99: 89:6a:d1:b8:a4:3e:3d:c1:28:e5:4b:01:55:03:78: bc:77:35:ca:56:d1:ba:55:64:7d:85:76:bc:44:ed: 5a:e8:53:ca:a2:33:24:39:87:84:65:b8:18:d7:34: d2:c3:3e:ae:9f:12:fa:09:ac:91:9d:c6:81:76:33: 86:9d:42:b2:c6:44:d3:14:75:c9:2e:b8:22:a5:9b: 2e:8f:76:92:45:b7:bd:20:9c:a0:2b:c2:00:4b:65: c6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:9B:3A:00:45:10:EE:B7:DC:6B:3A:F3:3A:57:C8:FB:7F:90:CA:4F X509v3 Authority Key Identifier: keyid:0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c7:49:79:b5:63:76:68:35:8f:80:e1:56:cb:16:02:34:90: a8:30:85:e8:96:fb:18:5e:a7:26:4d:71:e5:12:12:74:5a:80: 23:af:12:5f:7c:70:4f:ae:cc:a4:79:54:84:bc:cd:7f:90:0e: 08:1c:8b:14:99:89:fe:42:fd:1c:db:e7:bf:42:6d:10:2a:6d: e7:40:8e:2c:13:29:92:2c:29:e5:e4:ed:1d:07:01:8c:ad:3e: 1e:bf:98:71:a9:43:cf:80:93:94:36:35:37:0c:2a:c6:6e:14: 4a:ad:86:e2:9b:bb:09:c3:27:0f:48:90:91:f2:35:7f:99:d5: b4:64:e8:3c:fd:0a:1d:7c:7a:9f:cf:b5:50:d0:9f:47:ad:56: b5:30:99:8a:8a:0e:02:81:46:e6:b2:89:04:49:c3:13:26:83: 6d:fe:48:37:0c:f8:ae:40:b3:c3:ae:f7:c0:c7:48:18:6d:95: 86:be:7c:c3:13:68:a7:24:f8:b4:3a:37:7f:24:80:96:5b:84: 8e:e3:bc:81:73:82:b0:ab:24:40:11:4d:76:34:50:51:56:35: b8:af:e3:54:bf:5f:bb:20:07:cc:87:0a:9c:33:62:d8:e4:94: 0e:c1:36:1f:ff:4e:45:50:8e:8c:09:1c:30:24:47:89:d2:9a: 3b:25:af:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI0REIxMTAvBgNVBAUTKDBEQzVDRTRBMjk0RjJDOTM4MEE5MTM1RUUxRjA1MzA3 MjhBNENEQTYwHhcNMjUwNDI0MTUxNDU3WhcNMjUwNTAxMTUxNDU3WjAYMRYwFAYD VQQDEw02ODBhNTU3MS1hN2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NgDFXhO3OLVZAmW4wLQuBCZfGRUmnC0nlX0XAQVQh2+nujRIIKFV5Igv9Pc p/AT2jBbYK8PUSLI89Br9eMidTEv19UhVIQKDX3atksOinH2XJyjFqLx0Cd52/rp xjw88Ifh53sCLsM1wErIQ//VsAI/liNule/WQM2BtIlAfP9j0q90mXrBEoQA0vRt 6ZmoF9vnvczhpl6NAhO9BqVPe65px5mJatG4pD49wSjlSwFVA3i8dzXKVtG6VWR9 hXa8RO1a6FPKojMkOYeEZbgY1zTSwz6unxL6CayRncaBdjOGnUKyxkTTFHXJLrgi pZsuj3aSRbe9IJygK8IAS2XGnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCbOgBF EO633Gs68zpXyPt/kMpPMB8GA1UdIwQYMBaAFA3FzkopTyyTgKkTXuHwUwcopM2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjREQi81QzUwMjk2QzFE QTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExKT0FxUk5lNGZCVEJ5aWt6 YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RjWE9TaWxQTEpPQXFSTmU0ZkJUQnlpa3phWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjREQi81QzUwMjk2QzFEQTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExK T0FxUk5lNGZCVEJ5aWt6YVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcx0l5tWN2aDWPgOFWyxYCNJCoMIXolvsYXqcmTXHlEhJ0WoAjrxJf fHBPrsykeVSEvM1/kA4IHIsUmYn+Qv0c2+e/Qm0QKm3nQI4sEymSLCnl5O0dBwGM rT4ev5hxqUPPgJOUNjU3DCrGbhRKrYbim7sJwycPSJCR8jV/mdW0ZOg8/QodfHqf z7VQ0J9HrVa1MJmKig4CgUbmsokEScMTJoNt/kg3DPiuQLPDrvfAx0gYbZWGvnzD E2inJPi0Ojd/JICWW4SO47yBc4KwqyRAEU12NFBRVjW4r+NUv1+7IAfMhwqcM2LY 5JQOwTYf/05FUI6MCRwwJEeJ0po7Ja+s -----END CERTIFICATE-----Generated at Sat Apr 26 05:02:42 2025 by rpki-client