$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft File: dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft (raw, json) Hash identifier: O6E9O6iTaDtxIN/O89FDTuzBJK6Xw3gYvwJlUo2v8pk= Subject key identifier: 36:C3:27:DA:7D:69:C7:DB:F4:88:20:D8:46:B5:46:AA:3D:11:AD:8F Authority key identifier: 77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 Certificate issuer: /CN=A91557BA/serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Certificate serial: 0C5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft Manifest number: 0C52 Signing time: Sat 14 Jun 2025 18:16:25 +0000 Manifest this update: Sat 14 Jun 2025 18:16:25 +0000 Manifest next update: Sat 21 Jun 2025 18:16:25 +0000 Files and hashes: 1: dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl (hash: OThqBzHAhinygFPC2kxsKmceOhdXd+XPvEMRWFEkezg=) 2: D68289BE984B11ECB04DAB38C4F9AE02.roa (hash: 2GXsJ3lmpDTCyJ0+6RHbUPHuhr06/ng834HAohqlZ5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3164 (0xc5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Validity Not Before: Jun 14 18:16:25 2025 GMT Not After : Jun 21 18:16:25 2025 GMT Subject: CN=684dbc79-14a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:62:2d:22:30:25:aa:54:75:3c:26:55:a7: 16:e1:a8:7b:48:11:a8:ad:0d:d7:27:4a:50:cc:aa: de:6b:22:91:0e:72:52:eb:df:77:d9:b8:25:9c:93: 7a:04:f1:a8:f8:3e:7b:cd:ef:14:fa:a2:2d:18:df: 61:64:ed:dd:29:9e:4d:b3:25:8a:09:c9:19:6f:8a: 1a:6e:99:09:34:b2:22:12:35:79:a4:ed:0a:a3:93: 8b:47:aa:0a:37:27:2d:b2:e5:1a:1b:ed:ee:be:a0: 7b:9c:88:01:ed:22:af:30:7f:86:c0:34:b7:e3:8e: 44:94:e4:a0:4c:da:aa:ba:ab:e5:79:54:48:c1:b6: d9:b8:c3:f2:b5:bc:cf:ac:c9:48:2c:11:d9:e6:6d: d4:8d:a9:1d:70:33:5a:c1:ef:74:95:3f:01:c7:d2: 69:31:1a:12:c6:6d:cd:6d:ee:e0:13:6f:e4:5e:24: 21:92:0f:a4:c9:aa:2d:61:9b:d2:61:1c:77:2b:8d: 03:9e:31:ec:b7:75:b7:62:d7:fa:de:5e:84:c7:f2: 3e:eb:f4:4b:2a:85:82:ff:cf:8f:e7:17:dd:f4:cb: 38:7b:ef:23:1d:55:71:0b:f1:6f:68:66:c3:4e:03: ae:da:23:8e:c8:8c:09:de:db:55:c3:b4:b3:a5:8f: 3a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C3:27:DA:7D:69:C7:DB:F4:88:20:D8:46:B5:46:AA:3D:11:AD:8F X509v3 Authority Key Identifier: keyid:77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:57:47:d1:ba:d6:7e:b3:c3:33:81:16:25:89:54:c0:e5:38: ce:f2:91:ce:7d:0e:ee:b3:7a:dc:8a:9b:df:cb:55:89:02:85: b6:47:23:7f:9a:a9:05:d4:13:d6:a5:aa:aa:28:d3:e0:3e:18: bc:22:34:87:d2:2b:1f:3e:9b:1a:31:5c:2b:08:6d:ff:09:af: f7:93:64:2c:70:0a:51:36:45:53:87:bb:4f:1a:ce:4e:de:f3: 08:d9:5a:9d:1b:91:9c:17:ab:ad:d6:69:57:4b:52:62:92:a3: 2d:63:f4:fa:56:ce:4a:9a:18:6d:03:52:e1:9f:48:83:56:5f: 12:b7:40:48:1c:dd:16:26:72:05:a4:79:1c:8e:f0:c5:4b:26: 80:38:c3:a9:48:d8:a3:f7:e6:a2:3c:40:18:72:b6:7c:92:53: 77:8c:ab:43:32:be:32:cc:22:3b:a5:4f:d5:44:a1:83:17:be: 28:0a:7d:57:b5:81:5e:d1:d8:db:4e:22:77:3d:64:19:89:6a: e5:8f:be:70:92:8b:df:d9:a8:88:3d:2d:ce:d1:35:7f:da:a7: df:f7:05:0b:28:da:84:6f:e9:6d:cf:6f:be:e9:a8:1a:53:9a: c0:ce:0f:1a:f9:b5:48:31:0f:f0:ef:26:95:27:9a:86:0c:85: bd:c9:a1:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKDc3MDZEMDg4RTkyMURFOEIwMUVCQkEwNjIwMUQwNDE1 MEU4NjREMDQwHhcNMjUwNjE0MTgxNjI1WhcNMjUwNjIxMTgxNjI1WjAYMRYwFAYD VQQDEw02ODRkYmM3OS0xNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWZiLSIwJapUdTwmVacW4ah7SBGorQ3XJ0pQzKreayKRDnJS69932bglnJN6 BPGo+D57ze8U+qItGN9hZO3dKZ5NsyWKCckZb4oabpkJNLIiEjV5pO0Ko5OLR6oK NyctsuUaG+3uvqB7nIgB7SKvMH+GwDS3445ElOSgTNqquqvleVRIwbbZuMPytbzP rMlILBHZ5m3UjakdcDNawe90lT8Bx9JpMRoSxm3Nbe7gE2/kXiQhkg+kyaotYZvS YRx3K40DnjHst3W3Ytf63l6Ex/I+6/RLKoWC/8+P5xfd9Ms4e+8jHVVxC/FvaGbD TgOu2iOOyIwJ3ttVw7SzpY86VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbDJ9p9 acfb9Igg2Ea1Rqo9Ea2PMB8GA1UdIwQYMBaAFHcG0IjpId6LAeu6BiAdBBUOhk0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82RTc0OTUxMDA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNvc0I2N29HSUIwRUZRNkdU UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3YlFpT2toM29zQjY3b0dJQjBFRlE2R1RRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82RTc0OTUxMDA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNv c0I2N29HSUIwRUZRNkdUUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCV0fRutZ+s8MzgRYliVTA5TjO8pHOfQ7us3rcipvfy1WJAoW2RyN/ mqkF1BPWpaqqKNPgPhi8IjSH0isfPpsaMVwrCG3/Ca/3k2QscApRNkVTh7tPGs5O 3vMI2VqdG5GcF6ut1mlXS1JikqMtY/T6Vs5KmhhtA1Lhn0iDVl8St0BIHN0WJnIF pHkcjvDFSyaAOMOpSNij9+aiPEAYcrZ8klN3jKtDMr4yzCI7pU/VRKGDF74oCn1X tYFe0djbTiJ3PWQZiWrlj75wkovf2aiIPS3O0TV/2qff9wULKNqEb+ltz2++6aga U5rAzg8a+bVIMQ/w7yaVJ5qGDIW9yaF9 -----END CERTIFICATE-----Generated at Sun Jun 15 10:24:00 2025 by rpki-client