$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft File: DL7Sere2gbyZZqziRPy_KX5lyhk.mft (raw, json) Hash identifier: v8P+Bbehlw1vW7tibEvdzuPOtWkwmSj/P3GSBm/l6FI= Subject key identifier: 87:B5:D2:A0:37:CF:35:70:34:D4:FB:9E:F5:20:8E:EE:B0:D8:E2:1D Authority key identifier: 0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 Certificate issuer: /CN=A9163BEF/serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Certificate serial: 04D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft Manifest number: 04CE Signing time: Sat 14 Jun 2025 23:31:34 +0000 Manifest this update: Sat 14 Jun 2025 23:31:33 +0000 Manifest next update: Sat 21 Jun 2025 23:31:33 +0000 Files and hashes: 1: DL7Sere2gbyZZqziRPy_KX5lyhk.crl (hash: 9Nccec6Qd+Yar3XBzO+28ehXqNV7GTILoh7PCWGhxa4=) 2: 8A9545AE6D1011EFA13D6E2BC4F9AE02.roa (hash: 6texudPJbHfd6J0MPN1D5Oqp/jznw5zyBOIDtk3K0JM=) 3: 8A190AB66D1011EFA13D6E2BC4F9AE02.roa (hash: JXwBxiGEkFaFWVz8HbHFVp2nlp17eTZBvyxAVrqYWhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1236 (0x4d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BEF, serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Validity Not Before: Jun 14 23:31:33 2025 GMT Not After : Jun 21 23:31:33 2025 GMT Subject: CN=684e0656-fb4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ff:27:79:13:7e:eb:2f:21:52:2e:c4:2d:e7: ba:a1:67:20:71:7a:41:eb:bc:95:49:bd:3d:67:26: 3c:9e:93:ec:29:81:2e:11:76:6b:92:4c:76:a9:17: 37:6c:e6:c0:d9:59:65:e9:6a:67:5a:6d:28:0e:27: 3c:d8:fc:3a:e8:dd:96:bf:f2:8c:2b:e3:56:aa:31: 60:08:32:d5:eb:14:23:9f:63:7f:01:7b:88:82:37: 6f:5d:dc:1b:b0:29:62:3d:fb:f1:ad:80:b1:11:06: f2:2f:69:59:bd:22:0c:b6:f8:fc:5b:cb:ba:5f:07: 1d:cb:cf:6c:b1:77:4f:7e:86:2f:81:b9:ee:52:57: 3b:fc:a9:f4:02:4d:d3:c4:25:7d:41:09:34:cb:a4: e8:03:70:11:b5:50:8e:c0:1a:39:96:87:6c:92:1d: 43:33:23:ac:13:4c:79:18:3f:3d:4c:06:60:d4:0d: 86:72:0f:6d:45:46:0f:b1:0e:be:9f:2c:c3:a9:b3: f3:60:1a:c9:d2:57:71:dc:a5:7d:de:55:fc:f7:fa: d9:c7:68:cf:1a:23:22:f3:c0:97:e6:72:52:64:6d: d7:d5:92:13:b2:f4:37:d6:41:a5:e3:8d:8b:51:3a: b6:db:50:b2:e3:94:af:dc:fe:21:94:54:37:03:22: 61:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B5:D2:A0:37:CF:35:70:34:D4:FB:9E:F5:20:8E:EE:B0:D8:E2:1D X509v3 Authority Key Identifier: keyid:0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:dc:66:5a:95:33:89:5e:19:c4:c7:33:52:79:84:15:46:98: 24:e8:a1:db:09:f4:3c:b3:a9:ee:0a:a0:0f:a3:5a:a5:f7:d6: 78:50:2c:f5:7d:dd:2f:7e:a4:e7:a1:8e:58:f8:70:0c:53:53: 37:5e:fd:76:45:93:15:ae:27:8b:19:1e:0e:d8:30:6e:4f:ff: a1:d7:5e:14:1a:26:f6:ef:64:e8:75:12:03:d5:6a:ec:f8:ca: 11:7f:6b:f3:c5:f7:cc:2a:91:af:55:56:a8:c3:67:c5:13:06: fc:ad:ea:05:b4:2b:64:01:e1:44:08:a5:e0:d5:da:a8:ac:0e: f6:d8:60:be:e6:6c:ac:6e:19:8f:e3:dc:8c:be:7c:88:da:13: 13:84:9f:17:c5:ee:29:90:24:2d:9d:e4:2b:8e:12:00:61:e1: b4:a7:41:8d:f9:14:84:10:98:ee:eb:d1:ac:63:29:09:38:19: 6f:b5:4b:53:e0:72:7b:9d:31:0b:ac:5c:e2:d7:aa:31:5b:ae: 50:d6:f5:e2:8c:77:1f:bd:98:2f:6c:f4:70:3d:71:f1:f1:bd: 80:01:05:0e:21:d4:e7:a5:02:dd:bf:78:e0:8e:a4:5e:fe:4f: e2:82:99:69:d4:7d:36:08:d9:56:c0:93:d6:ea:82:4f:a6:30: 1e:c8:ba:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRUYxMTAvBgNVBAUTKDBDQkVEMjdBQjdCNjgxQkM5OTY2QUNFMjQ0RkNCRjI5 N0U2NUNBMTkwHhcNMjUwNjE0MjMzMTMzWhcNMjUwNjIxMjMzMTMzWjAYMRYwFAYD VQQDEw02ODRlMDY1Ni1mYjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/8neRN+6y8hUi7ELee6oWcgcXpB67yVSb09ZyY8npPsKYEuEXZrkkx2qRc3 bObA2Vll6WpnWm0oDic82Pw66N2Wv/KMK+NWqjFgCDLV6xQjn2N/AXuIgjdvXdwb sCliPfvxrYCxEQbyL2lZvSIMtvj8W8u6Xwcdy89ssXdPfoYvgbnuUlc7/Kn0Ak3T xCV9QQk0y6ToA3ARtVCOwBo5lodskh1DMyOsE0x5GD89TAZg1A2Gcg9tRUYPsQ6+ nyzDqbPzYBrJ0ldx3KV93lX89/rZx2jPGiMi88CX5nJSZG3X1ZITsvQ31kGl442L UTq221Cy45Sv3P4hlFQ3AyJhnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIe10qA3 zzVwNNT7nvUgju6w2OIdMB8GA1UdIwQYMBaAFAy+0nq3toG8mWas4kT8vyl+ZcoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JFRi84QUFGRTI4QzI1 Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdieVpacXppUlB5X0tYNWx5 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RMN1NlcmUyZ2J5WlpxemlSUHlfS1g1bHloay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0JFRi84QUFGRTI4QzI1Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdi eVpacXppUlB5X0tYNWx5aGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp3GZalTOJXhnExzNSeYQVRpgk6KHbCfQ8s6nuCqAPo1ql99Z4UCz1 fd0vfqTnoY5Y+HAMU1M3Xv12RZMVrieLGR4O2DBuT/+h114UGib272TodRID1Wrs +MoRf2vzxffMKpGvVVaow2fFEwb8reoFtCtkAeFECKXg1dqorA722GC+5mysbhmP 49yMvnyI2hMThJ8Xxe4pkCQtneQrjhIAYeG0p0GN+RSEEJju69GsYykJOBlvtUtT 4HJ7nTELrFzi16oxW65Q1vXijHcfvZgvbPRwPXHx8b2AAQUOIdTnpQLdv3jgjqRe /k/igplp1H02CNlWwJPW6oJPpjAeyLo9 -----END CERTIFICATE-----Generated at Sun Jun 15 09:50:56 2025 by rpki-client