$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: rp86ZW761+ubCN93qBTkx15KJIIlHWYHv2AALYSalYQ= Subject key identifier: 26:A7:76:C1:57:40:1C:2D:81:EB:00:A2:45:DC:FB:08:4D:01:5D:2C Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0AE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0ACC Signing time: Fri 16 May 2025 19:42:33 +0000 Manifest this update: Fri 16 May 2025 19:42:33 +0000 Manifest next update: Fri 23 May 2025 19:42:33 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: nnC15MirBzFE4ZJo2ju7JSLf8fTVkr1diKWjokePy3Q=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:42:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2788 (0xae4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: May 16 19:42:33 2025 GMT Not After : May 23 19:42:33 2025 GMT Subject: CN=68279529-f3ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6c:ea:dc:4e:51:49:29:f8:86:99:4b:27:64: 27:c4:3e:3d:c6:ce:a9:23:42:24:62:20:83:33:82: 16:98:e6:5e:31:8d:c9:fa:bd:59:96:ea:41:00:2c: 72:00:24:90:49:a0:34:d0:48:32:2c:01:7d:d3:5c: 77:9b:85:ab:99:98:b7:31:c2:f1:f7:07:77:24:3a: 61:fd:2c:b5:f5:d3:ee:f4:a1:ea:69:33:e5:31:a6: fd:06:2d:0e:0f:28:6c:93:c5:bf:fb:6a:80:c9:33: 37:aa:42:3a:d5:e9:eb:70:87:e1:c4:9e:17:c7:d3: 5e:81:ec:17:07:55:9c:48:3e:8b:01:f5:46:69:78: 27:79:4a:b6:64:e3:7a:64:78:27:cb:01:b5:a3:68: 29:00:a8:15:0b:2c:ec:ea:e5:2c:0d:13:e4:bb:d5: 74:4f:bf:53:f9:97:3e:36:8e:fc:93:7b:3a:33:9a: 4e:cc:2e:b8:59:2a:80:85:55:66:d4:b9:60:67:a5: f0:93:ac:35:99:a6:94:73:34:e1:f2:0f:e0:82:8d: 95:0f:a9:a6:f5:73:a6:45:79:a9:6d:ef:80:bc:54: df:eb:21:46:0b:21:60:c9:e2:a2:37:23:c7:d7:de: 3e:94:b4:a5:79:5f:53:cc:ee:f7:52:52:fa:f1:4b: e7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A7:76:C1:57:40:1C:2D:81:EB:00:A2:45:DC:FB:08:4D:01:5D:2C X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:87:00:8e:90:37:f6:45:aa:27:11:3d:b3:47:ad:22:d9:23: a2:92:dc:92:b9:9f:c8:1b:da:ba:d4:35:63:87:19:a5:b0:8a: b9:a3:da:26:ce:50:19:91:fd:4b:ce:a5:d4:9d:e1:d7:9a:ad: e6:a9:bf:da:cc:47:a2:7d:20:23:52:da:ec:4d:84:b1:f5:2d: 0b:6d:65:3f:aa:57:60:20:89:0a:c8:cc:f0:a1:45:7d:24:31: e5:f0:cd:cb:9b:1a:1e:eb:e4:60:d2:a6:f8:f6:d2:6a:ed:54: b4:85:09:99:f1:2f:6e:3c:8b:ae:3d:d2:a4:42:e2:21:6e:4e: 20:56:ce:03:d8:69:c0:39:8e:c3:a3:a5:82:f3:f5:eb:76:52: 28:45:dd:f7:86:2a:e2:50:e4:f7:c2:8b:77:54:bb:8f:1b:dc: 15:e9:13:bd:6a:e6:d1:53:e9:2f:79:44:c9:e5:e9:02:43:3a: e4:08:e4:99:a1:13:c7:3c:2d:ea:7c:69:5e:77:18:f1:90:db: 86:bb:60:fd:16:c7:5f:d4:d6:49:4b:5c:a7:53:a5:fd:b6:ba: f0:2a:0f:d6:fc:02:c3:a9:48:d3:0d:71:58:28:51:95:8d:94: 37:ad:e9:62:6f:72:f9:dc:0c:3d:d8:3b:8c:12:3b:60:4f:4f: 53:7a:40:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUwNTE2MTk0MjMzWhcNMjUwNTIzMTk0MjMzWjAYMRYwFAYD VQQDEw02ODI3OTUyOS1mM2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Wzq3E5RSSn4hplLJ2QnxD49xs6pI0IkYiCDM4IWmOZeMY3J+r1ZlupBACxy ACSQSaA00EgyLAF901x3m4WrmZi3McLx9wd3JDph/Sy19dPu9KHqaTPlMab9Bi0O Dyhsk8W/+2qAyTM3qkI61enrcIfhxJ4Xx9NegewXB1WcSD6LAfVGaXgneUq2ZON6 ZHgnywG1o2gpAKgVCyzs6uUsDRPku9V0T79T+Zc+No78k3s6M5pOzC64WSqAhVVm 1LlgZ6Xwk6w1maaUczTh8g/ggo2VD6mm9XOmRXmpbe+AvFTf6yFGCyFgyeKiNyPH 194+lLSleV9TzO73UlL68Uvn7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCandsFX QBwtgesAokXc+whNAV0sMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNhwCOkDf2RaonET2zR60i2SOiktySuZ/IG9q61DVjhxmlsIq5o9om zlAZkf1LzqXUneHXmq3mqb/azEeifSAjUtrsTYSx9S0LbWU/qldgIIkKyMzwoUV9 JDHl8M3Lmxoe6+Rg0qb49tJq7VS0hQmZ8S9uPIuuPdKkQuIhbk4gVs4D2GnAOY7D o6WC8/XrdlIoRd33hiriUOT3wot3VLuPG9wV6RO9aubRU+kveUTJ5ekCQzrkCOSZ oRPHPC3qfGledxjxkNuGu2D9Fsdf1NZJS1ynU6X9trrwKg/W/ALDqUjTDXFYKFGV jZQ3relib3L53Aw92DuMEjtgT09TekBF -----END CERTIFICATE-----Generated at Sat May 17 18:17:17 2025 by rpki-client