$ rpki-client -vvf rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft File: DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft (raw, json) Hash identifier: QgFWBOolRvtZ48xxKsyfFanS1741WuVIs8QOE6JD1qc= Subject key identifier: 32:3D:3D:80:EF:69:55:18:9A:3E:04:9B:A6:8E:BA:B0:A5:35:1E:70 Authority key identifier: 0C:EE:0D:96:77:3D:5D:DA:D4:67:9E:0E:83:9A:8D:C1:26:69:E2:32 Certificate issuer: /CN=A9132742/serialNumber=0CEE0D96773D5DDAD4679E0E839A8DC12669E232 Certificate serial: 03DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft Manifest number: 03DB Signing time: Fri 13 Jun 2025 00:08:07 +0000 Manifest this update: Fri 13 Jun 2025 00:08:07 +0000 Manifest next update: Fri 20 Jun 2025 00:08:07 +0000 Files and hashes: 1: DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl (hash: 9VRYTXKd7kjvy7KpREsP454caJ4TWYh1qgCRDR5PLLI=) 2: 41A312C684BB11EC95CF1D6DC4F9AE02.roa (hash: gOa0TpZKNAKtEp1z7Y7hA0Mkc96+IudmzfWq1Ab24PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132742, serialNumber=0CEE0D96773D5DDAD4679E0E839A8DC12669E232 Validity Not Before: Jun 13 00:08:07 2025 GMT Not After : Jun 20 00:08:07 2025 GMT Subject: CN=684b6be7-887a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7f:ff:a4:11:e3:90:93:4f:39:74:f0:93:5e: a3:8b:13:a6:59:8a:81:f8:18:2f:bf:b3:f9:61:c1: 0b:1a:d9:6c:9b:41:d1:ae:e3:5d:7f:17:66:64:29: 76:9e:2a:39:22:47:59:27:74:74:5a:a6:0f:b2:0d: 4a:43:ae:f6:01:ce:ed:c1:9c:dd:2b:60:bd:60:3b: 85:4a:31:22:61:e9:f9:45:a0:1f:90:27:54:da:21: 13:ce:51:09:ec:b1:0d:82:13:76:8b:62:4a:ab:f6: ca:ff:4a:e5:82:a5:24:6e:b6:60:dd:a2:8d:46:a8: 1b:d9:5e:10:a4:97:f6:55:40:1d:65:6f:dc:41:db: dd:73:3b:5a:14:5d:00:83:38:43:84:61:ec:f9:55: 17:fe:37:fa:0a:dd:b3:4e:49:48:08:5c:14:22:7b: 58:13:b4:00:a3:61:ad:81:d2:41:58:d7:ad:22:34: db:ca:b0:61:87:1a:24:0b:9e:ce:5e:c2:cf:7a:53: f3:ff:bf:e2:28:fb:2e:44:e8:dd:10:df:12:63:43: 34:e6:f4:53:03:be:f0:dd:6a:b7:00:78:77:05:43: c8:7d:af:56:a2:41:0c:93:2d:e7:57:d1:46:27:6c: 08:30:4a:f8:a3:bd:e4:e2:c1:e8:1b:b2:b3:8c:03: 8f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:3D:3D:80:EF:69:55:18:9A:3E:04:9B:A6:8E:BA:B0:A5:35:1E:70 X509v3 Authority Key Identifier: keyid:0C:EE:0D:96:77:3D:5D:DA:D4:67:9E:0E:83:9A:8D:C1:26:69:E2:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:b7:b9:ac:1a:1a:ba:a8:71:3f:f7:17:4e:e5:3c:02:27:cb: df:7e:71:44:44:9d:e8:1f:28:71:3f:fd:e8:2c:d1:97:32:f2: f7:39:5d:f3:39:2b:9e:af:31:29:54:f0:4e:4c:84:15:cd:1b: 55:c8:eb:4b:73:70:10:9f:7c:6d:98:ce:98:5d:59:0d:d5:4f: c2:34:a9:2c:c1:20:ab:33:23:54:a1:4a:9a:69:6d:2b:36:48: 9a:4d:a2:31:50:fa:88:90:8b:7b:5f:28:65:40:7b:e8:92:48: 93:41:69:30:22:66:24:55:7d:6a:de:b2:7f:bd:56:20:2c:b0: a0:3f:e0:4c:34:24:57:bd:f2:29:9e:f3:7f:f0:d9:f1:73:e3: fb:b5:cf:7f:62:5c:20:5f:c2:be:64:a6:24:b1:91:6b:fd:bb: e6:85:b7:1c:0d:78:53:7d:3c:32:16:6e:76:3e:6e:e1:d6:b0: bc:21:9a:99:55:4b:f1:41:d2:bd:fb:88:f8:6b:27:c2:da:9f: d1:35:4c:6c:87:31:98:0b:a3:a5:54:87:86:f2:3f:ce:90:07: 96:65:72:51:c5:26:ee:b5:45:7a:0c:62:cc:46:66:d1:16:bc: 37:b6:db:0a:ef:37:6e:3b:c2:83:ce:b0:3f:53:21:be:23:86: 47:52:6a:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3NDIxMTAvBgNVBAUTKDBDRUUwRDk2NzczRDVEREFENDY3OUUwRTgzOUE4REMx MjY2OUUyMzIwHhcNMjUwNjEzMDAwODA3WhcNMjUwNjIwMDAwODA3WjAYMRYwFAYD VQQDEw02ODRiNmJlNy04ODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnX//pBHjkJNPOXTwk16jixOmWYqB+Bgvv7P5YcELGtlsm0HRruNdfxdmZCl2 nio5IkdZJ3R0WqYPsg1KQ672Ac7twZzdK2C9YDuFSjEiYen5RaAfkCdU2iETzlEJ 7LENghN2i2JKq/bK/0rlgqUkbrZg3aKNRqgb2V4QpJf2VUAdZW/cQdvdcztaFF0A gzhDhGHs+VUX/jf6Ct2zTklICFwUIntYE7QAo2GtgdJBWNetIjTbyrBhhxokC57O XsLPelPz/7/iKPsuROjdEN8SY0M05vRTA77w3Wq3AHh3BUPIfa9WokEMky3nV9FG J2wIMEr4o73k4sHoG7KzjAOPiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDI9PYDv aVUYmj4Em6aOurClNR5wMB8GA1UdIwQYMBaAFAzuDZZ3PV3a1GeeDoOajcEmaeIy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc0Mi8wNDE1RDZGRTg0 QjcxMUVDQjVBNzFCNDJDNEY5QUUwMi9ETzRObG5jOVhkclVaNTRPZzVxTndTWnA0 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPNE5sbmM5WGRyVVo1NE9nNXFOd1NacDRqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc0Mi8wNDE1RDZGRTg0QjcxMUVDQjVBNzFCNDJDNEY5QUUwMi9ETzRObG5jOVhk clVaNTRPZzVxTndTWnA0akkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByt7msGhq6qHE/9xdO5TwCJ8vffnFERJ3oHyhxP/3oLNGXMvL3OV3z OSuerzEpVPBOTIQVzRtVyOtLc3AQn3xtmM6YXVkN1U/CNKkswSCrMyNUoUqaaW0r NkiaTaIxUPqIkIt7XyhlQHvokkiTQWkwImYkVX1q3rJ/vVYgLLCgP+BMNCRXvfIp nvN/8Nnxc+P7tc9/YlwgX8K+ZKYksZFr/bvmhbccDXhTfTwyFm52Pm7h1rC8IZqZ VUvxQdK9+4j4ayfC2p/RNUxshzGYC6OlVIeG8j/OkAeWZXJRxSbutUV6DGLMRmbR Frw3ttsK7zduO8KDzrA/UyG+I4ZHUmqP -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:19 2025 by rpki-client