$ rpki-client -vvf rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft File: dK-15U8HPzwgdjJdKsf3AA4uaoY.mft (raw, json) Hash identifier: St+exSafRpPtYxS9mpvVvZgBRdflMOx52QDstORDM3g= Subject key identifier: 50:7D:47:28:DB:0E:49:56:70:F3:A6:65:C8:82:99:E8:B8:61:FD:7D Authority key identifier: 74:AF:B5:E5:4F:07:3F:3C:20:76:32:5D:2A:C7:F7:00:0E:2E:6A:86 Certificate issuer: /CN=A916EDC2/serialNumber=74AFB5E54F073F3C2076325D2AC7F7000E2E6A86 Certificate serial: 0341 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft Manifest number: 033D Signing time: Fri 13 Jun 2025 00:35:33 +0000 Manifest this update: Fri 13 Jun 2025 00:35:33 +0000 Manifest next update: Fri 20 Jun 2025 00:35:33 +0000 Files and hashes: 1: dK-15U8HPzwgdjJdKsf3AA4uaoY.crl (hash: ihUjaE1bmfVZP/H4hQV4fgJU5zrTy9ECQ8d2pDuQnMM=) 2: 5E8E08E8C26211ECBFC22B20C4F9AE02.roa (hash: w37S3Bt2sSTPCiMAqtrHuEG6jTfY7XCc/TsnG1ZQfsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.crl rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EDC2, serialNumber=74AFB5E54F073F3C2076325D2AC7F7000E2E6A86 Validity Not Before: Jun 13 00:35:33 2025 GMT Not After : Jun 20 00:35:33 2025 GMT Subject: CN=684b7255-c346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:30:22:50:bd:5b:31:0e:c0:8b:19:b4:e0:59: 44:16:2b:35:62:2e:a5:13:ed:f4:16:d1:8c:99:88: 5c:a1:a9:2f:78:1d:73:e9:30:c2:1b:8d:12:d5:bd: ed:67:8e:80:12:a0:d1:20:51:4a:c1:27:46:86:94: 5c:a1:74:73:ea:88:34:b3:15:68:a5:13:53:de:f1: d7:8a:17:ed:89:9f:86:85:30:e4:16:f4:87:55:62: 36:bf:63:c1:18:78:48:b0:b7:e6:02:94:e3:8c:57: 76:d2:5c:d1:e2:98:a8:4b:40:18:c5:61:fc:7f:34: 19:49:fd:43:12:d3:ed:41:a9:b9:42:0d:ca:1a:0c: 0e:31:f6:fc:dd:e4:92:14:dd:a9:00:c8:27:59:81: 0a:6c:1f:6b:4f:0e:2f:44:8a:31:d7:5f:25:ee:50: 7a:8f:a5:2f:11:d6:ee:58:26:b1:a8:a8:ff:73:8a: a9:b0:7d:4d:d3:93:10:cc:05:c6:ee:bb:d8:15:3b: 9f:6f:58:f4:22:ea:66:a1:91:17:f2:81:67:f0:b0: ea:8f:df:d0:21:b5:22:6e:53:6d:67:b9:73:64:34: d1:0a:93:61:12:dc:7f:8f:2b:65:04:cb:7c:72:74: d9:d1:7d:a9:2b:8f:a2:36:77:37:0d:75:91:ac:df: a3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:7D:47:28:DB:0E:49:56:70:F3:A6:65:C8:82:99:E8:B8:61:FD:7D X509v3 Authority Key Identifier: keyid:74:AF:B5:E5:4F:07:3F:3C:20:76:32:5D:2A:C7:F7:00:0E:2E:6A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:53:a6:66:c2:b4:be:cf:be:8e:a0:b0:1b:27:d9:35:e1:80: 24:b2:60:bd:1f:7e:99:b1:2e:83:62:e3:46:cc:d4:84:7c:df: c8:26:48:4f:d3:3e:aa:44:04:6d:ce:f8:54:84:1e:0c:91:68: a1:4f:85:df:14:b0:92:b4:9f:37:6c:04:3a:4a:71:ee:e5:4c: 6b:c1:bf:98:c9:f9:d2:18:09:40:d0:9c:58:9f:ad:47:08:2d: 2d:2c:32:b9:42:6a:12:6b:a5:d8:72:1b:94:c3:c9:d6:85:e5: 85:3b:ed:e3:8a:3f:3c:bc:3a:9c:b3:02:1c:d3:44:21:1f:e8: f5:06:74:b3:8b:e3:64:1b:19:6f:4e:e8:11:df:fe:b4:1d:18: 63:44:0b:c9:af:29:7e:08:76:17:fb:88:eb:30:ce:f7:97:f2: 2a:f6:1e:0a:67:0e:2f:22:c2:3a:cf:e1:88:c5:8c:2c:c8:b3: 17:f2:67:18:b7:fd:cb:55:25:7b:af:c6:7f:89:36:3d:45:23: 10:30:3a:ca:f3:0f:08:20:97:cb:d3:ae:66:3b:ef:e9:7d:59: 72:3a:08:f2:78:3f:ec:5a:1f:6f:be:43:8f:c4:75:d3:99:7d: b3:57:93:59:d6:77:63:aa:e3:ae:34:da:af:d0:1b:2b:4a:d5: ca:fc:b2:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEQzIxMTAvBgNVBAUTKDc0QUZCNUU1NEYwNzNGM0MyMDc2MzI1RDJBQzdGNzAw MEUyRTZBODYwHhcNMjUwNjEzMDAzNTMzWhcNMjUwNjIwMDAzNTMzWjAYMRYwFAYD VQQDEw02ODRiNzI1NS1jMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDAiUL1bMQ7Aixm04FlEFis1Yi6lE+30FtGMmYhcoakveB1z6TDCG40S1b3t Z46AEqDRIFFKwSdGhpRcoXRz6og0sxVopRNT3vHXihftiZ+GhTDkFvSHVWI2v2PB GHhIsLfmApTjjFd20lzR4pioS0AYxWH8fzQZSf1DEtPtQam5Qg3KGgwOMfb83eSS FN2pAMgnWYEKbB9rTw4vRIox118l7lB6j6UvEdbuWCaxqKj/c4qpsH1N05MQzAXG 7rvYFTufb1j0IupmoZEX8oFn8LDqj9/QIbUiblNtZ7lzZDTRCpNhEtx/jytlBMt8 cnTZ0X2pK4+iNnc3DXWRrN+jLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFB9Ryjb DklWcPOmZciCmei4Yf19MB8GA1UdIwQYMBaAFHSvteVPBz88IHYyXSrH9wAOLmqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RURDMi8zNkVCMjMyOEMy NUYxMUVDOEMzQjAwMURDNEY5QUUwMi9kSy0xNVU4SFB6d2dkakpkS3NmM0FBNHVh b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RLLTE1VThIUHp3Z2RqSmRLc2YzQUE0dWFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RURDMi8zNkVCMjMyOEMyNUYxMUVDOEMzQjAwMURDNEY5QUUwMi9kSy0xNVU4SFB6 d2dkakpkS3NmM0FBNHVhb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjU6ZmwrS+z76OoLAbJ9k14YAksmC9H36ZsS6DYuNGzNSEfN/IJkhP 0z6qRARtzvhUhB4MkWihT4XfFLCStJ83bAQ6SnHu5Uxrwb+YyfnSGAlA0JxYn61H CC0tLDK5QmoSa6XYchuUw8nWheWFO+3jij88vDqcswIc00QhH+j1BnSzi+NkGxlv TugR3/60HRhjRAvJryl+CHYX+4jrMM73l/Iq9h4KZw4vIsI6z+GIxYwsyLMX8mcY t/3LVSV7r8Z/iTY9RSMQMDrK8w8IIJfL065mO+/pfVlyOgjyeD/sWh9vvkOPxHXT mX2zV5NZ1ndjquOuNNqv0BsrStXK/LJd -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:05 2025 by rpki-client