$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft File: DWjbrWAPi9kLNVuY9LI4-56aV_o.mft (raw, json) Hash identifier: 23htF1cXmnmrGzGGpblBmFFFFf9r/yQey9jOLnnLxf0= Subject key identifier: CA:FB:A2:BB:5D:D4:65:F0:10:A2:01:70:A9:B5:94:C7:D9:6C:13:B6 Authority key identifier: 0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA Certificate issuer: /CN=A91DBF0D/serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Certificate serial: 085F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft Manifest number: 0856 Signing time: Sat 14 Jun 2025 20:30:34 +0000 Manifest this update: Sat 14 Jun 2025 20:30:33 +0000 Manifest next update: Sat 21 Jun 2025 20:30:33 +0000 Files and hashes: 1: DWjbrWAPi9kLNVuY9LI4-56aV_o.crl (hash: AgWRj05dKEUgrOUj0PGlURsrDLaV/G1WcQYa2BnVsxY=) 2: 9D664600CB1211EAACC0E528C4F9AE02.roa (hash: UBw2PoTevAndZcrQq8icn0bOX1+H9RUk7B/v/OivD1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2143 (0x85f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0D, serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Validity Not Before: Jun 14 20:30:33 2025 GMT Not After : Jun 21 20:30:33 2025 GMT Subject: CN=684ddbe9-fd3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b8:11:76:63:35:ec:f4:46:7e:f0:1e:ac:c2: 2d:95:cb:d6:6b:43:a7:30:07:94:8b:2f:de:ec:a8: 74:2c:da:51:58:07:36:a2:58:be:a1:33:09:70:bd: 9e:27:21:02:ee:5c:88:f2:55:6b:e0:c2:d3:60:85: 44:da:cb:40:2b:4c:b8:82:e6:01:37:3f:a0:5f:02: 96:14:44:ff:24:d1:6a:4e:ee:1c:6d:8e:51:7d:82: 24:93:96:7a:48:1e:80:58:b2:18:07:ac:88:4f:cf: 5e:f9:07:e5:e8:28:84:84:26:7a:d5:b8:76:c1:5f: 20:6e:29:ff:fb:0d:cd:d8:c6:d4:9c:5e:b4:f8:06: 4e:c8:0e:4e:f5:25:d5:5d:ce:29:09:d1:7f:5f:00: 1b:b1:ed:7a:5e:89:00:00:3b:03:d0:53:f7:90:59: fc:e1:be:ad:fb:6b:8a:ac:83:82:6e:f6:0d:f8:d6: ea:9a:4c:7e:3a:16:1e:cb:27:76:ce:0e:61:77:f7: d7:bc:85:ab:27:ed:0d:dc:78:01:c4:6d:02:85:99: 89:91:c4:54:6f:3c:35:0f:fb:8b:bb:98:81:d8:fd: ed:66:70:d3:62:d8:e3:12:2d:1e:71:d8:c2:c2:2f: 44:46:23:0f:04:15:28:37:95:d9:f3:d6:00:73:16: 27:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FB:A2:BB:5D:D4:65:F0:10:A2:01:70:A9:B5:94:C7:D9:6C:13:B6 X509v3 Authority Key Identifier: keyid:0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:30:0b:4a:1a:f8:57:33:97:3f:86:95:9c:98:8e:d6:3f:7b: 68:2c:18:e3:da:8f:67:c3:d0:86:e3:6e:6f:7b:f7:e9:2b:a9: 59:54:a4:f4:48:b5:08:f8:6a:d9:f0:45:2d:f4:77:9d:09:86: 79:5a:50:89:7c:a1:bd:41:1f:30:d9:f5:3f:a3:c5:60:c7:65: bc:86:49:54:79:3d:0f:2c:6c:c7:96:49:10:20:9f:b8:cc:d3: 14:91:8e:a7:92:3d:5c:33:2f:8b:ad:8a:b4:fa:5c:95:25:75: 19:21:a1:a1:f9:3f:cf:e8:ca:ad:51:e3:1e:7e:af:df:36:05: 7a:5a:94:72:59:54:7a:d2:e8:6b:86:c8:4c:08:ba:d9:0b:ca: d3:bd:1a:a4:61:18:05:eb:87:86:b7:f5:2e:23:1b:3b:39:f9: 11:34:c6:64:ea:74:3a:a2:cb:32:45:af:5a:a6:7b:c6:87:ff: cc:00:94:85:83:90:fa:7a:7c:9f:e1:8f:92:d6:9b:77:22:e1: b0:c8:49:98:54:58:a3:4e:1e:f0:0a:df:0e:b3:d0:f2:a7:ec: 0c:68:22:75:49:e1:2b:d6:94:d5:e5:4d:79:85:1e:1b:87:5f: e2:fe:4a:06:0b:4d:c1:0a:cf:79:b4:69:7f:20:17:55:6c:3b: 19:90:5a:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEQxMTAvBgNVBAUTKDBENjhEQkFENjAwRjhCRDkwQjM1NUI5OEY0QjIzOEZC OUU5QTU3RkEwHhcNMjUwNjE0MjAzMDMzWhcNMjUwNjIxMjAzMDMzWjAYMRYwFAYD VQQDEw02ODRkZGJlOS1mZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8rgRdmM17PRGfvAerMItlcvWa0OnMAeUiy/e7Kh0LNpRWAc2oli+oTMJcL2e JyEC7lyI8lVr4MLTYIVE2stAK0y4guYBNz+gXwKWFET/JNFqTu4cbY5RfYIkk5Z6 SB6AWLIYB6yIT89e+Qfl6CiEhCZ61bh2wV8gbin/+w3N2MbUnF60+AZOyA5O9SXV Xc4pCdF/XwAbse16XokAADsD0FP3kFn84b6t+2uKrIOCbvYN+Nbqmkx+OhYeyyd2 zg5hd/fXvIWrJ+0N3HgBxG0ChZmJkcRUbzw1D/uLu5iB2P3tZnDTYtjjEi0ecdjC wi9ERiMPBBUoN5XZ89YAcxYnKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMr7ortd 1GXwEKIBcKm1lMfZbBO2MB8GA1UdIwQYMBaAFA1o261gD4vZCzVbmPSyOPuemlf6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwRC81Nzk2NEQ0QUNC MEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5a0xOVnVZOUxJNC01NmFW X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXamJyV0FQaTlrTE5WdVk5TEk0LTU2YVZfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwRC81Nzk2NEQ0QUNCMEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5 a0xOVnVZOUxJNC01NmFWX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSMAtKGvhXM5c/hpWcmI7WP3toLBjj2o9nw9CG425ve/fpK6lZVKT0 SLUI+GrZ8EUt9HedCYZ5WlCJfKG9QR8w2fU/o8Vgx2W8hklUeT0PLGzHlkkQIJ+4 zNMUkY6nkj1cMy+LrYq0+lyVJXUZIaGh+T/P6MqtUeMefq/fNgV6WpRyWVR60uhr hshMCLrZC8rTvRqkYRgF64eGt/UuIxs7OfkRNMZk6nQ6ossyRa9apnvGh//MAJSF g5D6enyf4Y+S1pt3IuGwyEmYVFijTh7wCt8Os9Dyp+wMaCJ1SeEr1pTV5U15hR4b h1/i/koGC03BCs95tGl/IBdVbDsZkFrt -----END CERTIFICATE-----Generated at Sun Jun 15 05:09:57 2025 by rpki-client