$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: VRYpf/XSHkOWVBD20XTk4NqlVyRRWUf3ItjK8VFq4t8= Subject key identifier: 7E:6E:D3:D5:87:2B:03:B0:8C:55:23:9F:6C:59:E5:09:E3:23:1D:FA Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 0178 Signing time: Tue 17 Jun 2025 02:49:55 +0000 Manifest this update: Tue 17 Jun 2025 02:49:55 +0000 Manifest next update: Tue 24 Jun 2025 02:49:55 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: MstSaLRSZPOFBhb+rx+l423B3cmAycwebede0sOVXnM=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: WMsnJeKRDE/E3eYU+nh3vcngfITTgAj3NVw90NWzGkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Jun 17 02:49:55 2025 GMT Not After : Jun 24 02:49:55 2025 GMT Subject: CN=6850d7d3-cc4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6b:9b:c2:02:21:17:17:4b:96:92:d8:c5:45: 37:bd:c3:80:b4:ab:33:8c:26:83:45:a1:bd:aa:aa: 75:9d:62:5a:17:b0:a9:7b:46:c4:35:ed:39:0d:77: 74:28:e4:41:2d:21:99:fe:c1:4e:4c:da:80:81:0c: ef:de:77:32:26:06:61:1b:a7:28:7b:51:4a:b1:33: 51:be:82:41:d9:3a:0b:52:89:63:53:6f:da:02:fd: ed:36:18:d6:c1:0a:ac:67:8b:a7:83:b4:03:2d:ba: 59:53:45:1f:fe:8b:6c:5c:17:b8:31:85:e6:f8:83: ed:63:95:cb:98:1e:86:2b:f4:03:c3:70:6d:10:75: a5:36:87:dd:17:db:7b:25:a6:4e:16:97:c3:7d:2e: d2:a9:94:81:f4:87:c9:87:de:b3:0b:66:03:bc:26: e3:53:99:23:37:f8:3c:ab:a6:29:4e:89:8a:01:e2: a6:f9:65:2d:6b:d4:ea:eb:61:9e:fb:4f:8f:d7:c6: 75:e5:54:b9:79:9c:29:71:d1:44:9f:5b:12:1f:0d: 31:ea:18:99:5c:95:37:6c:40:8e:30:e1:1a:b5:cf: 9d:3d:ca:95:7f:d3:80:dc:e2:43:99:08:12:7a:50: 2e:8d:c0:f1:f6:dc:2f:c4:b2:de:03:9d:6f:c9:9a: d8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6E:D3:D5:87:2B:03:B0:8C:55:23:9F:6C:59:E5:09:E3:23:1D:FA X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:74:03:2d:87:03:75:65:2c:db:17:c1:f2:06:d0:7b:b4:f8: d8:97:b1:5b:5d:41:bc:08:27:3f:bb:38:9c:61:7d:27:fa:a6: 3d:6f:61:88:12:83:16:77:1a:a3:6f:ee:11:cb:e2:f4:be:cb: 69:91:e9:b3:f2:5d:69:f0:b1:11:b8:ba:96:d8:4e:f5:17:95: 98:3a:73:8f:78:2d:48:c3:a1:6b:20:3d:d0:88:bb:58:d8:86: a1:53:f7:fb:20:9c:e4:21:13:60:c5:25:01:be:09:00:74:c8: b4:bb:b3:50:d9:68:85:7c:8b:8a:7f:c9:15:61:98:12:5e:e9: 5b:93:72:4d:7f:a4:01:1a:11:b6:04:5e:73:5b:11:82:2f:57: 61:2b:53:bb:bd:48:84:0f:74:ee:ec:04:e2:5f:e5:1b:f0:62: d8:9c:7c:b2:b7:d5:18:83:20:06:92:39:52:c3:28:df:e3:ac: f4:fb:39:47:a3:4a:42:8e:10:12:52:cb:3a:e5:d7:9e:43:ff: 3e:f6:42:b6:84:b8:cd:cf:b7:04:86:a6:05:5c:a9:c8:c3:82: 24:95:10:05:a2:67:66:a0:87:ee:fe:a8:04:db:22:b3:76:63: 75:4f:03:f9:28:e6:6b:78:ee:10:31:5e:7e:81:58:5e:18:ad: 51:1e:4e:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjUwNjE3MDI0OTU1WhcNMjUwNjI0MDI0OTU1WjAYMRYwFAYD VQQDEw02ODUwZDdkMy1jYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WubwgIhFxdLlpLYxUU3vcOAtKszjCaDRaG9qqp1nWJaF7Cpe0bENe05DXd0 KORBLSGZ/sFOTNqAgQzv3ncyJgZhG6coe1FKsTNRvoJB2ToLUoljU2/aAv3tNhjW wQqsZ4ung7QDLbpZU0Uf/otsXBe4MYXm+IPtY5XLmB6GK/QDw3BtEHWlNofdF9t7 JaZOFpfDfS7SqZSB9IfJh96zC2YDvCbjU5kjN/g8q6YpTomKAeKm+WUta9Tq62Ge +0+P18Z15VS5eZwpcdFEn1sSHw0x6hiZXJU3bECOMOEatc+dPcqVf9OA3OJDmQgS elAujcDx9twvxLLeA51vyZrYmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5u09WH KwOwjFUjn2xZ5QnjIx36MB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANdAMthwN1ZSzbF8HyBtB7tPjYl7FbXUG8CCc/uzicYX0n+qY9b2GI EoMWdxqjb+4Ry+L0vstpkemz8l1p8LERuLqW2E71F5WYOnOPeC1Iw6FrID3QiLtY 2IahU/f7IJzkIRNgxSUBvgkAdMi0u7NQ2WiFfIuKf8kVYZgSXulbk3JNf6QBGhG2 BF5zWxGCL1dhK1O7vUiED3Tu7ATiX+Ub8GLYnHyyt9UYgyAGkjlSwyjf46z0+zlH o0pCjhASUss65deeQ/8+9kK2hLjNz7cEhqYFXKnIw4IklRAFomdmoIfu/qgE2yKz dmN1TwP5KOZreO4QMV5+gVheGK1RHk4Q -----END CERTIFICATE-----Generated at Tue Jun 17 15:04:42 2025 by rpki-client