$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: q5TmfWLp2dB+lKAM9Xxhru1uKAr0AU9Mm+RCSHME4cA= Subject key identifier: 6B:72:4E:E5:3C:47:8D:84:97:45:3E:F9:54:22:FF:5F:E3:51:2F:CD Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0E62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0D35 Signing time: Wed 14 May 2025 19:13:49 +0000 Manifest this update: Wed 14 May 2025 19:13:48 +0000 Manifest next update: Wed 21 May 2025 19:13:48 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: 6mLdRS9vb2WKas2+UBLK5w4EAmoOhKHMLcHdmAlDRJg=) 2: 1CC3EA9EF83911EF9736296CC4F9AE02.roa (hash: rtOih4tGat6KeLY6zKfdNO70U6kTTlONd0lpNgSRDHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: May 14 19:13:48 2025 GMT Not After : May 21 19:13:48 2025 GMT Subject: CN=6824eb6c-640b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:40:25:13:59:91:3c:6a:29:67:38:21:e6: fb:92:c8:9f:46:a9:a5:73:ac:19:39:b4:ef:52:a8: 00:81:9d:a6:00:51:59:ac:1f:ee:6e:f1:40:91:8e: 2e:a8:d7:c2:c5:fd:c7:c8:c4:88:d1:ae:6d:a8:41: 21:17:5e:60:d3:c3:55:5b:6f:78:c0:ca:43:fa:16: b1:4a:7d:61:aa:b0:86:30:fc:21:b1:91:dc:35:66: eb:65:b8:2c:1b:7f:91:09:52:a8:c1:ac:8a:8a:ad: de:9e:01:1d:20:61:c7:10:fb:e9:ac:73:2f:a5:3e: f4:92:36:a8:12:fc:91:10:3e:99:af:d5:88:32:39: 2e:52:77:89:9e:15:e5:59:c2:b0:7b:2e:95:f8:4e: 17:7c:a1:38:69:14:70:62:7f:cf:f7:2f:06:a8:40: 51:6f:40:66:b7:0a:bd:18:e1:d8:f4:2e:1a:50:24: 59:5c:ec:c0:39:6b:7c:e3:9d:68:88:3a:8b:4f:e7: 83:57:a4:09:63:59:cd:b0:2a:19:8b:63:e4:c8:7d: 9e:bf:aa:eb:d5:7f:be:37:40:98:43:45:d5:79:49: 89:f7:3d:e6:87:22:8e:28:c0:8c:3d:79:34:d8:34: e1:bb:2c:86:46:33:72:af:8c:f3:09:a0:4a:6f:3e: 57:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:72:4E:E5:3C:47:8D:84:97:45:3E:F9:54:22:FF:5F:E3:51:2F:CD X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:cb:0c:74:2c:b6:99:64:da:90:38:a2:0c:1a:00:0d:96:5b: fc:ef:c4:28:bd:0c:96:8d:b5:f9:b8:19:32:ba:14:a9:c9:ce: 14:9e:03:ec:a5:65:ad:fb:46:49:8d:48:ac:67:54:09:e0:32: 42:7a:2a:2c:4a:02:1f:10:af:be:3c:5a:94:de:f7:a9:c7:fd: 59:d6:94:a3:01:47:af:f6:4c:57:e7:b1:a9:0d:a6:58:60:25: 13:2b:0a:a9:24:75:60:ce:cf:c6:64:c3:dd:32:0f:93:41:62: 2b:79:fc:e3:9d:59:ff:30:7c:57:48:19:8d:1f:2b:07:9c:59: b6:9c:fa:1a:c8:b4:47:23:13:42:9a:23:11:1f:b1:52:6f:a3: 45:a0:40:f1:30:4c:ea:cd:fc:3e:37:b2:42:c7:5d:76:2d:c2: 0a:6b:7b:a5:68:37:99:8c:d0:99:0c:c1:8c:2b:15:ee:71:4e: cd:91:4f:09:f1:ab:2c:10:93:b9:21:69:a0:d4:d1:0a:06:25: 48:b2:a7:3b:95:fa:46:76:51:1c:53:be:ea:24:b0:4f:6c:b5: 44:7e:ff:85:9f:4a:49:85:d3:0c:a3:54:00:7c:c9:6c:63:ee: 93:3a:5d:d2:62:d2:ef:ef:a6:07:d9:3d:08:f1:02:b0:49:37: 32:90:f7:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUwNTE0MTkxMzQ4WhcNMjUwNTIxMTkxMzQ4WjAYMRYwFAYD VQQDEw02ODI0ZWI2Yy02NDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVZAJRNZkTxqKWc4Ieb7ksifRqmlc6wZObTvUqgAgZ2mAFFZrB/ubvFAkY4u qNfCxf3HyMSI0a5tqEEhF15g08NVW294wMpD+haxSn1hqrCGMPwhsZHcNWbrZbgs G3+RCVKowayKiq3engEdIGHHEPvprHMvpT70kjaoEvyRED6Zr9WIMjkuUneJnhXl WcKwey6V+E4XfKE4aRRwYn/P9y8GqEBRb0Bmtwq9GOHY9C4aUCRZXOzAOWt8451o iDqLT+eDV6QJY1nNsCoZi2PkyH2ev6rr1X++N0CYQ0XVeUmJ9z3mhyKOKMCMPXk0 2DThuyyGRjNyr4zzCaBKbz5XwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtyTuU8 R42El0U++VQi/1/jUS/NMB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/ywx0LLaZZNqQOKIMGgANllv878QovQyWjbX5uBkyuhSpyc4UngPs pWWt+0ZJjUisZ1QJ4DJCeiosSgIfEK++PFqU3vepx/1Z1pSjAUev9kxX57GpDaZY YCUTKwqpJHVgzs/GZMPdMg+TQWIrefzjnVn/MHxXSBmNHysHnFm2nPoayLRHIxNC miMRH7FSb6NFoEDxMEzqzfw+N7JCx112LcIKa3ulaDeZjNCZDMGMKxXucU7NkU8J 8assEJO5IWmg1NEKBiVIsqc7lfpGdlEcU77qJLBPbLVEfv+Fn0pJhdMMo1QAfMls Y+6TOl3SYtLv76YH2T0I8QKwSTcykPdH -----END CERTIFICATE-----Generated at Fri May 16 08:11:52 2025 by rpki-client