$ rpki-client -vvf rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft File: DcXOSilPLJOAqRNe4fBTByikzaY.mft (raw, json) Hash identifier: S174ngbudd3HX9BbrN6kOvpMCALEY62wXHsQ8Qhb524= Subject key identifier: EB:42:62:34:E1:CE:30:A4:56:E1:D6:15:C4:E3:0C:56:4D:5C:73:2B Authority key identifier: 0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 Certificate issuer: /CN=A912B4DB/serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Certificate serial: 34BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft Manifest number: 34B3 Signing time: Wed 06 Aug 2025 15:17:16 +0000 Manifest this update: Wed 06 Aug 2025 15:17:16 +0000 Manifest next update: Wed 13 Aug 2025 15:17:16 +0000 Files and hashes: 1: DcXOSilPLJOAqRNe4fBTByikzaY.crl (hash: rpu395JUZdl7zKeTpN3UxhIgAzun/Y/gZ+/KLZ16Tx8=) 2: 7FE5F2CEDB9411E9832A463AC4F9AE02.roa (hash: Sw4ihe/uH6fmIDPdKoxmP7xAVXuq4ul6aZ2AD9s5AWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13501 (0x34bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B4DB, serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Validity Not Before: Aug 6 15:17:16 2025 GMT Not After : Aug 13 15:17:16 2025 GMT Subject: CN=689371fc-115b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c0:69:f1:6d:1f:42:d2:f2:1e:a1:06:1b:b9: cd:91:20:15:1f:c7:34:0a:42:6b:44:1f:87:77:cc: ed:0e:b0:34:0a:38:c1:84:12:cf:52:83:36:5a:d7: 30:04:ca:6d:9f:2a:ab:d0:94:6a:f5:bd:eb:19:23: b8:a9:e0:9b:c0:35:ec:a6:ef:11:63:5c:af:99:78: 61:ed:21:83:0b:97:70:cf:c3:44:2f:9a:c1:6a:fb: 2d:0d:b8:69:38:1d:6c:f5:f2:db:f0:3b:7c:3d:a9: 8b:e1:71:8f:86:14:ed:13:aa:43:0a:9d:ef:0b:06: 05:0b:a1:e5:a9:5b:ed:13:cb:de:fa:12:54:33:e7: ba:d3:72:e3:40:77:df:68:6c:43:4a:e5:fb:a3:35: 3a:15:64:d5:64:0e:24:3c:8d:26:61:f7:5a:af:e1: 45:df:72:5c:64:67:eb:94:45:7c:a0:84:d4:e4:0d: 52:b8:96:a5:2a:42:33:9c:9e:8b:99:4e:5a:af:2e: 0f:27:5d:50:33:25:1e:75:af:64:08:d9:e6:61:c4: bc:c0:66:f0:c6:43:24:6a:2b:8d:2a:bc:72:5e:e8: f5:f0:55:3c:00:77:47:ec:bc:41:d3:bb:ea:f8:f7: 5f:dc:84:c6:51:c8:93:da:25:c8:a8:54:93:33:79: 25:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:42:62:34:E1:CE:30:A4:56:E1:D6:15:C4:E3:0C:56:4D:5C:73:2B X509v3 Authority Key Identifier: keyid:0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:8d:c7:3d:72:2b:d7:27:4a:e2:c4:d0:cb:f4:b2:fc:e3:60: bd:69:07:8f:49:4c:92:e6:d9:de:3d:a7:be:71:71:ce:94:8d: ad:d7:c1:da:2d:65:2d:7e:74:8c:3a:62:82:b3:73:2d:1d:d4: 8b:74:76:9f:96:e2:5f:a4:74:38:55:6e:f5:61:dc:60:c1:a1: d7:5f:57:93:ae:63:20:84:4d:41:ef:e1:22:76:1c:84:32:3c: 7d:df:da:bf:a6:a8:95:c8:a7:6d:7f:b8:5d:e6:e8:63:c5:df: 88:b6:b1:36:e4:9b:db:db:53:46:45:25:75:1c:3e:c9:7d:e4: 07:2b:57:b1:03:96:8c:30:f7:20:a1:92:e6:d9:17:16:2f:b5: 67:09:bb:69:16:27:19:c2:0b:9f:60:f6:59:a0:71:dd:7d:57: 46:7b:90:0e:a6:df:a8:df:f9:92:e2:ea:2f:12:e4:34:f8:05: 80:2d:fe:87:d2:ca:2f:4e:18:20:5f:16:ea:53:ce:c7:22:6c: 65:05:90:92:aa:01:09:c4:b1:b4:26:1c:95:3c:4b:83:9a:9d: 47:62:ce:74:a4:3c:ca:94:d0:15:19:8b:cb:b4:32:4e:55:ab: fd:ca:61:9e:6f:c6:28:e6:ee:db:3d:82:29:2a:78:8d:c4:c6: 8c:b1:d7:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI0REIxMTAvBgNVBAUTKDBEQzVDRTRBMjk0RjJDOTM4MEE5MTM1RUUxRjA1MzA3 MjhBNENEQTYwHhcNMjUwODA2MTUxNzE2WhcNMjUwODEzMTUxNzE2WjAYMRYwFAYD VQQDEw02ODkzNzFmYy0xMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMBp8W0fQtLyHqEGG7nNkSAVH8c0CkJrRB+Hd8ztDrA0CjjBhBLPUoM2Wtcw BMptnyqr0JRq9b3rGSO4qeCbwDXspu8RY1yvmXhh7SGDC5dwz8NEL5rBavstDbhp OB1s9fLb8Dt8PamL4XGPhhTtE6pDCp3vCwYFC6HlqVvtE8ve+hJUM+e603LjQHff aGxDSuX7ozU6FWTVZA4kPI0mYfdar+FF33JcZGfrlEV8oITU5A1SuJalKkIznJ6L mU5ary4PJ11QMyUeda9kCNnmYcS8wGbwxkMkaiuNKrxyXuj18FU8AHdH7LxB07vq +Pdf3ITGUciT2iXIqFSTM3kl4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtCYjTh zjCkVuHWFcTjDFZNXHMrMB8GA1UdIwQYMBaAFA3FzkopTyyTgKkTXuHwUwcopM2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjREQi81QzUwMjk2QzFE QTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExKT0FxUk5lNGZCVEJ5aWt6 YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RjWE9TaWxQTEpPQXFSTmU0ZkJUQnlpa3phWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjREQi81QzUwMjk2QzFEQTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExK T0FxUk5lNGZCVEJ5aWt6YVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2jcc9civXJ0rixNDL9LL842C9aQePSUyS5tnePae+cXHOlI2t18Ha LWUtfnSMOmKCs3MtHdSLdHafluJfpHQ4VW71YdxgwaHXX1eTrmMghE1B7+EidhyE Mjx939q/pqiVyKdtf7hd5uhjxd+ItrE25Jvb21NGRSV1HD7JfeQHK1exA5aMMPcg oZLm2RcWL7VnCbtpFicZwgufYPZZoHHdfVdGe5AOpt+o3/mS4uovEuQ0+AWALf6H 0sovThggXxbqU87HImxlBZCSqgEJxLG0JhyVPEuDmp1HYs50pDzKlNAVGYvLtDJO Vav9ymGeb8Yo5u7bPYIpKniNxMaMsdcV -----END CERTIFICATE-----Generated at Thu Aug 7 05:14:06 2025 by rpki-client