$ rpki-client -vvf rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.mft File: DPzMWYD1fmvITfEbTFcZNdJdrMo.mft (raw, json) Hash identifier: CJKMW8UH+c6RWcZfThI4GYh49f6iu66C0TPe52H5+Bs= Subject key identifier: C8:A2:EF:59:27:FC:28:F9:7C:86:5A:CE:88:3F:13:89:EC:1E:54:BD Authority key identifier: 0C:FC:CC:59:80:F5:7E:6B:C8:4D:F1:1B:4C:57:19:35:D2:5D:AC:CA Certificate issuer: /CN=A91415AA/serialNumber=0CFCCC5980F57E6BC84DF11B4C571935D25DACCA Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DPzMWYD1fmvITfEbTFcZNdJdrMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.mft Manifest number: 1357 Signing time: Thu 12 Jun 2025 19:26:12 +0000 Manifest this update: Thu 12 Jun 2025 19:26:12 +0000 Manifest next update: Thu 19 Jun 2025 19:26:12 +0000 Files and hashes: 1: DPzMWYD1fmvITfEbTFcZNdJdrMo.crl (hash: eYHnQjDad14n1msdF/aq7Y06w0iJSx5J34MP3hmUsMU=) 2: CB04F4409BE611EF8AFF947CC4F9AE02.roa (hash: dpgju7iuP30Aavz0ylQpReDz9TYSxJYbLPo42YBL4vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.crl rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DPzMWYD1fmvITfEbTFcZNdJdrMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91415AA, serialNumber=0CFCCC5980F57E6BC84DF11B4C571935D25DACCA Validity Not Before: Jun 12 19:26:12 2025 GMT Not After : Jun 19 19:26:12 2025 GMT Subject: CN=684b29d4-201d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3d:14:06:25:57:74:b9:06:ff:c0:13:1d:78: 1f:12:55:9c:16:65:18:56:76:26:f6:60:e2:3a:de: 5c:c6:9a:54:fd:6d:55:ee:5d:db:f6:a2:5b:5b:48: d9:44:d7:a7:fa:f5:e8:4b:66:86:34:b5:09:c0:7d: 46:a2:4a:30:e4:b3:22:f3:64:8e:15:f9:cf:fe:17: b5:0c:96:64:6e:8d:cf:e0:ca:e9:5d:e3:d7:1d:92: 86:53:da:b2:ac:6e:38:d8:fc:8a:d1:4f:68:b6:eb: 4e:6f:f4:fe:1d:46:0b:7e:c4:18:18:06:66:2d:10: 0c:87:0e:ff:49:06:89:26:af:36:61:36:79:ef:03: 8f:ec:e4:97:f0:a3:c6:82:44:ce:01:50:54:c5:fd: 3b:7a:84:31:f2:13:6f:b6:14:db:44:3c:85:32:28: 15:29:95:b6:8c:53:93:c8:89:cd:8b:b4:d4:cd:9f: 00:d9:51:06:3f:40:f5:8c:a5:3f:30:8e:e1:e9:5e: 11:81:b6:ec:f9:32:53:82:1c:8f:e5:31:65:25:4c: b8:4d:99:57:2d:78:95:f9:ec:3a:6a:cc:b2:1d:25: 1f:2f:75:f9:73:61:a3:0b:96:6d:3c:f9:09:89:f9: 58:f0:6f:95:ae:85:ec:5d:3b:18:c9:5c:a9:ee:f3: 2a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A2:EF:59:27:FC:28:F9:7C:86:5A:CE:88:3F:13:89:EC:1E:54:BD X509v3 Authority Key Identifier: keyid:0C:FC:CC:59:80:F5:7E:6B:C8:4D:F1:1B:4C:57:19:35:D2:5D:AC:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DPzMWYD1fmvITfEbTFcZNdJdrMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:f0:c1:07:af:c3:ea:2e:ac:38:39:67:de:36:5c:a8:59:13: cf:10:ed:6c:f8:a6:ef:1a:9a:d3:10:42:10:58:c1:0a:6d:17: e0:d0:5c:a6:73:da:9d:ea:e5:ec:63:e0:ee:8f:d3:a9:57:e5: b8:9d:85:37:53:64:73:54:5f:d3:9d:8d:1c:54:f7:97:eb:90: 5a:13:ea:b5:ed:c0:09:4e:8d:02:eb:d0:25:fd:23:d2:75:b6: dd:d1:57:5b:17:32:65:34:17:77:06:0a:6f:cb:9b:bf:0d:bf: ad:b9:4e:50:d8:1b:ab:70:0c:9c:6e:15:02:7a:f5:1f:91:9b: 82:45:8d:54:eb:6c:a7:f1:f9:d0:d8:bd:c7:d8:cd:ec:43:46: 51:45:32:37:5b:c2:ac:d0:ff:53:86:df:f6:3e:3c:98:c0:dc: c3:80:12:e6:b4:66:c5:54:1a:de:ce:60:52:b8:34:2d:8d:83: 00:b4:11:86:51:61:03:29:a0:5f:84:a6:a9:2d:ca:bc:ba:83: db:1a:f2:90:e9:62:66:33:a4:d8:17:4b:11:28:d4:ef:56:44: 6e:1b:55:33:e8:8e:76:0f:23:e8:c9:c6:64:ba:a2:34:b6:06: 58:2d:85:cc:a9:31:54:c1:b8:86:57:96:55:c8:f5:06:51:47: dd:9a:25:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTVBQTExMC8GA1UEBRMoMENGQ0NDNTk4MEY1N0U2QkM4NERGMTFCNEM1NzE5MzVE MjVEQUNDQTAeFw0yNTA2MTIxOTI2MTJaFw0yNTA2MTkxOTI2MTJaMBgxFjAUBgNV BAMTDTY4NGIyOWQ0LTIwMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHPRQGJVd0uQb/wBMdeB8SVZwWZRhWdib2YOI63lzGmlT9bVXuXdv2oltbSNlE 16f69ehLZoY0tQnAfUaiSjDksyLzZI4V+c/+F7UMlmRujc/gyuld49cdkoZT2rKs bjjY/IrRT2i2605v9P4dRgt+xBgYBmYtEAyHDv9JBokmrzZhNnnvA4/s5Jfwo8aC RM4BUFTF/Tt6hDHyE2+2FNtEPIUyKBUplbaMU5PIic2LtNTNnwDZUQY/QPWMpT8w juHpXhGBtuz5MlOCHI/lMWUlTLhNmVcteJX57DpqzLIdJR8vdflzYaMLlm08+QmJ +Vjwb5WuhexdOxjJXKnu8yqNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyKLvWSf8 KPl8hlrOiD8TieweVL0wHwYDVR0jBBgwFoAUDPzMWYD1fmvITfEbTFcZNdJdrMow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxNUFBLzNFRkEyNDE0NjJF MDExRUFBNkQ1OUEyQ0M0RjlBRTAyL0RQek1XWUQxZm12SVRmRWJURmNaTmRKZHJN by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRFB6TVdZRDFmbXZJVGZFYlRGY1pOZEpkck1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx NUFBLzNFRkEyNDE0NjJFMDExRUFBNkQ1OUEyQ0M0RjlBRTAyL0RQek1XWUQxZm12 SVRmRWJURmNaTmRKZHJNby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHPwwQevw+ourDg5Z942XKhZE88Q7Wz4pu8amtMQQhBYwQptF+DQXKZz 2p3q5exj4O6P06lX5bidhTdTZHNUX9OdjRxU95frkFoT6rXtwAlOjQLr0CX9I9J1 tt3RV1sXMmU0F3cGCm/Lm78Nv625TlDYG6twDJxuFQJ69R+Rm4JFjVTrbKfx+dDY vcfYzexDRlFFMjdbwqzQ/1OG3/Y+PJjA3MOAEua0ZsVUGt7OYFK4NC2NgwC0EYZR YQMpoF+Epqktyry6g9sa8pDpYmYzpNgXSxEo1O9WRG4bVTPojnYPI+jJxmS6ojS2 BlgthcypMVTBuIZXllXI9QZRR92aJec= -----END CERTIFICATE-----Generated at Sat Jun 14 19:01:27 2025 by rpki-client