$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft File: dmhXuj98cotoBSWsQfp84qHwCS0.mft (raw, json) Hash identifier: 7msM9FoCR0gqoyzbsq1srEOk0RdrtESyx7YfFRidH7A= Subject key identifier: 59:9D:1D:E6:0A:A3:18:BE:17:57:FA:75:24:94:3B:E1:90:4E:C4:B0 Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft Manifest number: 0150 Signing time: Sun 11 May 2025 03:06:02 +0000 Manifest this update: Sun 11 May 2025 03:06:01 +0000 Manifest next update: Sun 18 May 2025 03:06:01 +0000 Files and hashes: 1: dmhXuj98cotoBSWsQfp84qHwCS0.crl (hash: DqTh8LRnu1ECiZfhtczZILXTymVAn6t8iVMoMwrjOa4=) 2: 5D313B1C31DA11EEBE28A546C4F9AE02.roa (hash: FoAylNmdesRHU3oexctbCd7CtqneWbl6QUSlHnFcNTI=) 3: 47854B9031DB11EEA02CF647C4F9AE02.roa (hash: ILe+omtD9enCtMD3zyN9u23MElv4YiFIQdXMJ2ToBto=) 4: 5C9259B631DA11EEBE28A546C4F9AE02.roa (hash: V/GHEmcZXIPqnvjusU9+mbGUzJT92uVcYMqnl8YTyFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC0, serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Validity Not Before: May 11 03:06:01 2025 GMT Not After : May 18 03:06:01 2025 GMT Subject: CN=6820141a-8b40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:45:4e:7a:d4:70:b3:79:be:5d:97:b3:d3:a7: ab:1e:1c:d6:c3:14:8e:37:ee:18:16:34:0d:62:94: aa:c8:71:3c:e3:63:99:46:f9:99:eb:93:dc:42:67: 6e:33:ad:39:4b:37:ed:cc:50:46:24:55:c0:c1:ed: c7:e4:9c:e4:07:d5:b6:0c:70:22:59:a6:6a:20:6a: a0:49:ba:ba:64:31:95:36:09:52:e2:0d:60:f5:51: 8a:a8:a9:c0:e4:ab:b9:2a:8d:02:f2:9a:dc:3b:b2: 60:5d:60:92:3b:2f:91:f7:aa:4d:4b:ed:41:7a:f2: d2:30:42:eb:45:c1:2a:09:3d:46:df:c3:cc:3c:0a: 67:dd:13:d1:0f:94:94:be:e0:db:02:90:ea:79:f4: 64:ef:88:48:00:44:1f:22:03:86:bc:0a:2c:96:7b: a9:74:19:cc:57:80:f4:b7:63:72:56:15:f3:84:da: e6:0b:41:e7:ba:32:32:a2:e8:5b:2b:cd:ad:f9:d1: eb:35:b7:05:da:90:60:d3:51:93:94:8c:96:90:ae: e7:a8:1a:3b:a6:1d:98:11:8f:64:35:46:c5:9d:10: 8d:53:4a:77:5b:78:86:a3:b1:b5:8c:b2:07:b7:32: c7:ec:14:94:9b:ac:09:4a:ad:88:51:1d:f7:e3:b2: cf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9D:1D:E6:0A:A3:18:BE:17:57:FA:75:24:94:3B:E1:90:4E:C4:B0 X509v3 Authority Key Identifier: keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:7f:9e:69:58:f3:ed:0a:b1:4c:cb:ce:99:43:49:32:3b:6d: 70:6a:9f:65:0a:46:bf:48:98:a1:89:c1:e6:08:a8:eb:e8:66: 6c:1c:3e:af:47:3b:93:dc:e0:ed:70:df:6d:ca:48:e0:1a:d3: 02:80:32:9b:9d:e4:d6:6f:cb:9a:47:79:f7:51:da:ba:59:26: a6:c1:40:f6:4b:1b:11:57:9b:9b:41:f8:d4:27:a7:1f:12:b3: 96:3a:9c:46:e8:ea:53:e9:ba:a6:28:76:fe:3c:9e:47:63:67: 9b:bb:04:71:a3:0f:a2:a4:27:38:2e:4a:e5:18:c5:12:1d:32: 79:5f:62:83:ac:66:4d:d8:b0:d7:5e:7c:84:7c:83:c4:a0:35: 09:c6:60:ca:f9:08:98:f6:e2:bb:4b:57:79:10:6d:42:50:22: 17:de:37:cb:9a:29:60:90:c5:a9:90:ad:7c:1d:77:d2:00:5d: a8:6e:3a:43:63:49:11:ed:6b:4e:0e:6a:1b:3a:f3:76:eb:5e: 9a:b1:d6:01:26:54:95:d1:9b:b5:85:07:59:82:19:fe:70:a7: a9:6d:e7:c2:a1:b0:dc:45:f3:97:df:31:ec:fd:b2:d3:54:00: 5e:d2:4d:ee:f3:dc:65:2d:f6:da:9e:03:bd:38:e8:48:48:2a: a7:63:bd:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzAxMTAvBgNVBAUTKDc2Njg1N0JBM0Y3QzcyOEI2ODA1MjVBQzQxRkE3Q0Uy QTFGMDA5MkQwHhcNMjUwNTExMDMwNjAxWhcNMjUwNTE4MDMwNjAxWjAYMRYwFAYD VQQDEw02ODIwMTQxYS04YjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UVOetRws3m+XZez06erHhzWwxSON+4YFjQNYpSqyHE842OZRvmZ65PcQmdu M605SzftzFBGJFXAwe3H5JzkB9W2DHAiWaZqIGqgSbq6ZDGVNglS4g1g9VGKqKnA 5Ku5Ko0C8prcO7JgXWCSOy+R96pNS+1BevLSMELrRcEqCT1G38PMPApn3RPRD5SU vuDbApDqefRk74hIAEQfIgOGvAoslnupdBnMV4D0t2NyVhXzhNrmC0HnujIyouhb K82t+dHrNbcF2pBg01GTlIyWkK7nqBo7ph2YEY9kNUbFnRCNU0p3W3iGo7G1jLIH tzLH7BSUm6wJSq2IUR3347LPrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmdHeYK oxi+F1f6dSSUO+GQTsSwMB8GA1UdIwQYMBaAFHZoV7o/fHKLaAUlrEH6fOKh8Akt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDMC9FNEVENTM5NDMx RDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNvdG9CU1dzUWZwODRxSHdD UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtaFh1ajk4Y290b0JTV3NRZnA4NHFId0NTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEFDMC9FNEVENTM5NDMxRDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNv dG9CU1dzUWZwODRxSHdDUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKf55pWPPtCrFMy86ZQ0kyO21wap9lCka/SJihicHmCKjr6GZsHD6v RzuT3ODtcN9tykjgGtMCgDKbneTWb8uaR3n3Udq6WSamwUD2SxsRV5ubQfjUJ6cf ErOWOpxG6OpT6bqmKHb+PJ5HY2ebuwRxow+ipCc4LkrlGMUSHTJ5X2KDrGZN2LDX XnyEfIPEoDUJxmDK+QiY9uK7S1d5EG1CUCIX3jfLmilgkMWpkK18HXfSAF2objpD Y0kR7WtODmobOvN2616asdYBJlSV0Zu1hQdZghn+cKepbefCobDcRfOX3zHs/bLT VABe0k3u89xlLfbangO9OOhISCqnY73v -----END CERTIFICATE-----Generated at Sun May 11 04:37:13 2025 by rpki-client