$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: FvJUBR1VCqQGJxXOFQCIT5lb1gdYC7htnN8+Zc5mzqk= Subject key identifier: 5C:BD:3B:38:B4:B5:3F:56:98:5D:6A:85:28:42:00:6A:38:EF:86:93 Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 58 Signing time: Thu 15 May 2025 06:29:31 +0000 Manifest this update: Thu 15 May 2025 06:29:31 +0000 Manifest next update: Thu 22 May 2025 06:29:31 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: ymzIudPmGe/zsYPNx1tKeOIP2ioWRxBtphJGVE+EUOg=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: May 15 06:29:31 2025 GMT Not After : May 22 06:29:31 2025 GMT Subject: CN=682589cb-b239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cb:b7:64:a4:c8:f6:d0:35:90:8e:39:65:53: ee:72:6b:30:fb:a3:c4:f9:83:76:b4:35:85:9a:b3: 0c:3f:ad:ed:8e:f5:eb:da:14:3e:d6:1c:b5:ae:4e: 4d:69:ef:0b:73:a5:37:97:94:97:c9:66:b6:d1:3c: 47:1a:72:8a:83:37:5c:25:12:1a:28:c9:ba:0d:7c: fc:aa:4e:5e:7d:7c:3b:d7:1d:58:64:69:62:50:53: 29:2f:fc:4a:ca:7b:76:f0:a1:0b:d6:e4:17:fb:32: cc:bd:7d:f5:d8:79:c1:50:2c:3e:a6:65:e4:9a:6c: 0d:93:c4:e3:fa:83:0f:bb:7e:9f:2a:8f:f3:e8:68: b5:cd:31:12:ff:e9:fc:8c:f7:1c:a6:58:b7:f3:6e: 0f:4e:0f:79:81:9c:b2:a6:5a:04:11:e6:1e:a4:b2: 62:6a:de:5c:f7:66:19:6f:1a:20:1b:27:27:07:4b: 2a:41:78:71:fc:47:37:0d:e5:06:ac:db:ed:11:ac: 41:a5:31:43:ad:b0:49:05:7b:8e:37:ec:4a:ef:eb: 63:c7:3c:dd:3d:4a:a6:cc:c4:0d:94:20:5a:db:a3: 22:b9:a1:d3:4d:b7:c2:30:a6:d8:54:59:70:10:b0: 16:6e:a3:0d:c2:8f:c9:3b:0d:a5:5c:f7:49:2a:87: 5e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BD:3B:38:B4:B5:3F:56:98:5D:6A:85:28:42:00:6A:38:EF:86:93 X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:1c:00:24:13:f1:b7:0b:8e:83:86:45:44:f8:1b:ca:75:b8: 56:ac:d2:30:ba:17:a8:e8:46:c3:b8:49:25:18:3a:f9:40:16: 2e:99:71:6e:34:c0:fb:22:d7:b8:3e:ed:f0:32:0e:f8:6b:ca: 40:df:81:c8:17:9a:3e:fe:ab:aa:51:98:51:98:a0:61:76:11: 9f:1c:87:3b:be:ae:5a:17:cc:53:9d:9f:2a:ef:4a:b4:e6:1b: b1:e6:e9:98:56:41:62:84:f1:65:d3:c9:71:fd:9b:6e:3f:ca: 4c:ce:80:51:78:a4:8f:90:dc:a5:c5:4a:ee:17:ab:0e:e7:c6: c7:01:90:a8:a9:30:31:fb:18:b2:bd:bf:ce:30:ef:6f:09:ba: 9d:5b:06:ec:1c:8d:1c:b7:d1:0a:aa:21:e7:e1:eb:45:8f:e3: 54:db:69:d1:69:a2:3a:38:f7:2a:95:b5:d7:d9:61:14:26:0d: 45:9c:94:ce:36:02:6b:a9:b3:d6:62:4f:31:c6:57:ee:4a:27: 3e:98:71:99:2b:07:f7:32:79:68:63:ad:7a:66:58:33:a6:f1: cf:c1:a8:c4:e4:a4:07:1e:b6:8b:b1:95:58:cb:11:8d:b0:2e: 6f:c9:19:1a:50:20:66:fc:aa:02:9e:6f:46:8f:88:fc:44:66: 25:2e:e7:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMEZENDQzNzUyMURCNUMwQkM5OUU0NUI1OTc1NEZGN0I2 NzFGODZGMzAeFw0yNTA1MTUwNjI5MzFaFw0yNTA1MjIwNjI5MzFaMBgxFjAUBgNV BAMTDTY4MjU4OWNiLWIyMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCry7dkpMj20DWQjjllU+5yazD7o8T5g3a0NYWasww/re2O9evaFD7WHLWuTk1p 7wtzpTeXlJfJZrbRPEcacoqDN1wlEhooyboNfPyqTl59fDvXHVhkaWJQUykv/ErK e3bwoQvW5Bf7Msy9ffXYecFQLD6mZeSabA2TxOP6gw+7fp8qj/PoaLXNMRL/6fyM 9xymWLfzbg9OD3mBnLKmWgQR5h6ksmJq3lz3ZhlvGiAbJycHSypBeHH8RzcN5Qas 2+0RrEGlMUOtsEkFe4437Erv62PHPN09SqbMxA2UIFrboyK5odNNt8IwpthUWXAQ sBZuow3Cj8k7DaVc90kqh17dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXL07OLS1 P1aYXWqFKEIAajjvhpMwHwYDVR0jBBgwFoAUD9RDdSHbXAvJnkW1l1T/e2cfhvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0U5NjQ4OUFFQUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDlSRGRTSGJYQXZKbmtXMWwxVF9lMmNmaHZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0U5NjQ4OUFFQUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2 Sm5rVzFsMVRfZTJjZmh2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC0cACQT8bcLjoOGRUT4G8p1uFas0jC6F6joRsO4SSUYOvlAFi6ZcW40 wPsi17g+7fAyDvhrykDfgcgXmj7+q6pRmFGYoGF2EZ8chzu+rloXzFOdnyrvSrTm G7Hm6ZhWQWKE8WXTyXH9m24/ykzOgFF4pI+Q3KXFSu4Xqw7nxscBkKipMDH7GLK9 v84w728Jup1bBuwcjRy30QqqIefh60WP41TbadFpojo49yqVtdfZYRQmDUWclM42 Amups9ZiTzHGV+5KJz6YcZkrB/cyeWhjrXpmWDOm8c/BqMTkpAcetouxlVjLEY2w Lm/JGRpQIGb8qgKeb0aPiPxEZiUu5wc= -----END CERTIFICATE-----Generated at Fri May 16 22:52:38 2025 by rpki-client