$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: T1Rukvpw4SZsfp32A22YkMBUKtY0R+zhXTnUqaQwkLU= Subject key identifier: 11:01:CA:4D:8F:67:F8:D1:4F:C8:78:84:B4:F1:A9:5C:5F:CD:DA:21 Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 40 Signing time: Thu 15 May 2025 06:46:38 +0000 Manifest this update: Thu 15 May 2025 06:46:38 +0000 Manifest next update: Thu 22 May 2025 06:46:38 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: o+ZDs09XS/jvtrOHYEhZtu8IkNgQznSCXktmsSkmwgM=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: May 15 06:46:38 2025 GMT Not After : May 22 06:46:38 2025 GMT Subject: CN=68258dce-faf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dd:29:86:51:9f:a2:9c:92:e2:5a:1b:28:54: 53:a1:af:0e:f5:7e:ea:32:57:48:c0:fa:d3:27:f0: 8e:65:14:71:12:48:84:06:3f:35:3d:0e:89:c5:d1: 04:b3:03:f4:bc:5d:1a:3e:01:46:3b:e0:54:e6:88: 5f:fd:df:cc:3d:5a:97:81:80:73:1d:ce:44:78:b0: 0e:9c:a0:dc:65:4a:9f:57:36:aa:4b:e5:5c:04:ad: 05:06:db:d9:0c:f8:76:b0:34:98:b7:7f:3c:87:3b: 70:d0:dd:5b:1e:90:3c:69:16:d7:e0:76:f7:e9:d6: 3d:9c:3e:d9:dc:26:46:fc:86:34:5e:bc:71:30:3e: 5c:1b:b0:03:4d:76:25:ed:8b:43:e1:7e:ce:0e:04: b8:32:e7:df:3b:52:db:aa:48:c5:11:cd:38:17:97: 1d:50:4a:82:48:78:38:0c:f5:8a:86:d1:92:b4:1d: 88:32:11:30:76:76:27:90:9b:e4:65:70:ce:14:af: c8:e2:07:f8:7f:7f:d2:27:09:1e:25:ab:7c:37:94: 13:bf:08:6d:e9:ad:92:0e:35:24:82:0d:d3:e4:1b: 87:64:40:08:9e:68:ec:b7:b0:2e:8d:52:b8:97:d5: c7:1a:73:52:6c:af:bf:33:e2:67:27:42:54:db:b0: a0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:01:CA:4D:8F:67:F8:D1:4F:C8:78:84:B4:F1:A9:5C:5F:CD:DA:21 X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f0:65:4f:a1:bf:31:cc:39:4b:35:af:65:5c:a0:01:be:f9: 35:fb:57:c4:ea:5d:03:69:1d:c2:88:e8:0a:79:e4:1e:e2:a2: b6:5d:68:00:46:71:df:08:78:68:72:c7:02:54:04:27:13:74: 58:06:fa:58:f4:25:87:cb:6a:f1:4f:ae:eb:fb:20:b3:b5:3d: 8c:d9:39:64:77:3d:f5:8c:21:f6:9e:1a:64:d6:e4:64:8e:98: ca:1c:fc:4a:94:78:b4:f4:ca:b0:3e:2c:60:34:91:2d:fb:0a: 3a:cd:a3:67:41:61:31:3a:77:1f:ba:96:b1:4e:d3:a0:dd:e9: e6:75:93:56:96:f2:f3:69:c7:82:17:07:5d:ed:dc:10:de:ce: e7:ae:08:d9:23:1b:ac:da:14:7d:10:86:77:81:2f:ef:4a:09: 02:a9:65:7a:0a:13:30:e1:d8:85:b7:04:98:05:be:72:f3:41: 6e:47:c7:57:56:82:6f:39:b5:48:9b:03:be:2c:3f:ab:9b:c2: 75:47:2c:22:28:bb:61:3e:f2:47:3b:f1:6e:c9:97:f7:5d:89: 45:e4:3d:86:75:47:8d:56:67:e4:17:cf:3b:ef:3d:f3:35:9f: 99:ea:39:30:63:01:df:4d:92:43:5f:ee:0e:65:b0:10:e7:c2: f8:12:07:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNzYyMDI2NkI5ODkxQTIxOEMwRTVGMkVGMjg4Rjc4MkQ1 NzE3RjJCQzAeFw0yNTA1MTUwNjQ2MzhaFw0yNTA1MjIwNjQ2MzhaMBgxFjAUBgNV BAMTDTY4MjU4ZGNlLWZhZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB3SmGUZ+inJLiWhsoVFOhrw71fuoyV0jA+tMn8I5lFHESSIQGPzU9DonF0QSz A/S8XRo+AUY74FTmiF/938w9WpeBgHMdzkR4sA6coNxlSp9XNqpL5VwErQUG29kM +HawNJi3fzyHO3DQ3VsekDxpFtfgdvfp1j2cPtncJkb8hjRevHEwPlwbsANNdiXt i0Phfs4OBLgy5987UtuqSMURzTgXlx1QSoJIeDgM9YqG0ZK0HYgyETB2dieQm+Rl cM4Ur8jiB/h/f9InCR4lq3w3lBO/CG3prZIONSSCDdPkG4dkQAieaOy3sC6NUriX 1ccac1Jsr78z4mcnQlTbsKA5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEQHKTY9n +NFPyHiEtPGpXF/N2iEwHwYDVR0jBBgwFoAUdiAma5iRohjA5fLvKI94LVcX8rww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwL0Y5ODcxMURBRDI0 MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZGlBbWE1aVJvaGpBNWZMdktJOTRMVmNYOHJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwL0Y5ODcxMURBRDI0MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hq QTVmTHZLSTk0TFZjWDhydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGTwZU+hvzHMOUs1r2VcoAG++TX7V8TqXQNpHcKI6Ap55B7iorZdaABG cd8IeGhyxwJUBCcTdFgG+lj0JYfLavFPruv7ILO1PYzZOWR3PfWMIfaeGmTW5GSO mMoc/EqUeLT0yrA+LGA0kS37CjrNo2dBYTE6dx+6lrFO06Dd6eZ1k1aW8vNpx4IX B13t3BDezueuCNkjG6zaFH0QhneBL+9KCQKpZXoKEzDh2IW3BJgFvnLzQW5Hx1dW gm85tUibA74sP6ubwnVHLCIou2E+8kc78W7Jl/ddiUXkPYZ1R41WZ+QXzzvvPfM1 n5nqOTBjAd9NkkNf7g5lsBDnwvgSB04= -----END CERTIFICATE-----Generated at Fri May 16 09:33:29 2025 by rpki-client