$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: lgYnR+fEmYUTL4ulnzn5Ow86kaqayjefCmUhZbIXd9s= Subject key identifier: 35:81:12:83:25:0D:FB:A4:05:CB:09:30:58:03:D7:63:1F:B0:A0:48 Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0E74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0E6C Signing time: Mon 12 May 2025 17:37:16 +0000 Manifest this update: Mon 12 May 2025 17:37:15 +0000 Manifest next update: Mon 19 May 2025 17:37:15 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: ePiYV5iQCowwAK+cOfgNOcOE06WGfwMhGdDZfV15Dog=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: 0msFIFHq8Bi6Dy0orrBJDRYbRJioucs5FAZf2jEryJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:37:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3700 (0xe74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: May 12 17:37:15 2025 GMT Not After : May 19 17:37:15 2025 GMT Subject: CN=682231cc-2239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:19:b6:31:2d:7b:b1:c7:bb:70:9a:83:83:44: 52:4c:69:b0:f7:32:0f:92:5a:da:45:38:61:45:80: d9:ca:9b:8b:5d:9c:29:73:29:eb:82:95:c9:81:bc: 5a:aa:98:21:0c:81:51:d1:a8:07:ea:3a:50:b3:22: 99:ee:ca:63:0b:03:9b:5b:55:b2:56:3d:6c:1b:2f: 9b:3f:51:9f:90:fd:5a:6f:1c:be:4a:fa:44:63:41: 6e:3c:00:91:17:6b:fc:b3:83:94:e0:33:cf:8d:0d: 40:27:c2:48:40:96:e2:2d:21:d1:1c:1c:06:b2:05: 72:2e:7c:a9:29:89:9d:47:f9:6a:2e:8b:49:18:1e: 51:56:b6:1e:0d:4d:f6:68:f7:35:44:2a:39:0e:f0: e7:18:21:3b:8d:41:a0:7a:d3:88:b2:87:5b:92:8f: a6:42:bd:b3:45:70:cc:8e:cc:6e:b6:b8:a7:b4:86: dd:48:7a:17:75:96:2a:f6:63:60:6c:35:20:7b:91: b7:86:be:b6:61:73:66:a6:41:01:36:a0:36:1a:7d: 28:51:7a:c7:b6:b7:50:d1:01:a8:7f:dd:9b:7e:cd: 91:16:a2:7d:83:33:8f:97:b5:8b:54:7e:83:69:0b: cd:98:9a:c3:b9:d1:39:b8:fe:3a:06:f4:dc:a7:46: ba:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:81:12:83:25:0D:FB:A4:05:CB:09:30:58:03:D7:63:1F:B0:A0:48 X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a8:17:3c:4e:7f:de:ff:60:08:f7:b4:ed:d5:b8:0b:11:b3: 06:f0:22:98:77:27:7f:7c:17:4d:79:e1:73:5a:c7:be:fe:06: 16:38:db:99:88:e3:c6:35:64:79:c2:fc:6f:06:72:63:f8:df: 5a:37:f2:99:2d:bf:23:1c:44:56:b3:ff:58:18:b8:5c:f7:72: c0:db:ed:dd:e1:c7:46:8d:e5:d9:ce:c6:9e:db:07:ab:e7:d0: 8f:5d:6d:e7:bb:c9:d0:63:87:48:fc:8b:22:75:98:d1:a6:09: 2e:39:7b:f9:b3:dc:75:ec:1d:7d:ee:8b:d7:15:cf:3f:8a:74: 46:ef:6e:3a:3f:90:59:ba:1c:3c:48:ec:56:db:d0:46:00:66: 32:e6:62:7c:d0:4a:42:c3:92:cf:44:3e:36:3f:c3:a3:e5:04: 95:ac:90:0c:ea:49:66:b7:56:83:6c:51:2f:9f:2e:d5:c5:bb: 24:59:ab:e5:01:97:6b:75:86:da:3e:5d:f4:7b:82:be:b6:ad: f6:dd:58:66:23:dd:da:63:fe:9e:22:ff:d0:3a:ef:3e:cf:7a: 95:bb:09:8e:ea:ab:46:20:be:64:57:5f:d6:4d:00:f9:7b:e0: 43:84:c3:1b:aa:38:b1:bc:d1:b7:f7:7b:bc:01:a0:b6:38:90: 55:7a:f8:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjUwNTEyMTczNzE1WhcNMjUwNTE5MTczNzE1WjAYMRYwFAYD VQQDEw02ODIyMzFjYy0yMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hm2MS17sce7cJqDg0RSTGmw9zIPklraRThhRYDZypuLXZwpcynrgpXJgbxa qpghDIFR0agH6jpQsyKZ7spjCwObW1WyVj1sGy+bP1GfkP1abxy+SvpEY0FuPACR F2v8s4OU4DPPjQ1AJ8JIQJbiLSHRHBwGsgVyLnypKYmdR/lqLotJGB5RVrYeDU32 aPc1RCo5DvDnGCE7jUGgetOIsodbko+mQr2zRXDMjsxutrintIbdSHoXdZYq9mNg bDUge5G3hr62YXNmpkEBNqA2Gn0oUXrHtrdQ0QGof92bfs2RFqJ9gzOPl7WLVH6D aQvNmJrDudE5uP46BvTcp0a6XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWBEoMl DfukBcsJMFgD12MfsKBIMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaqBc8Tn/e/2AI97Tt1bgLEbMG8CKYdyd/fBdNeeFzWse+/gYWONuZ iOPGNWR5wvxvBnJj+N9aN/KZLb8jHERWs/9YGLhc93LA2+3d4cdGjeXZzsae2wer 59CPXW3nu8nQY4dI/IsidZjRpgkuOXv5s9x17B197ovXFc8/inRG7246P5BZuhw8 SOxW29BGAGYy5mJ80EpCw5LPRD42P8Oj5QSVrJAM6klmt1aDbFEvny7VxbskWavl AZdrdYbaPl30e4K+tq323VhmI93aY/6eIv/QOu8+z3qVuwmO6qtGIL5kV1/WTQD5 e+BDhMMbqjixvNG393u8AaC2OJBVevhD -----END CERTIFICATE-----Generated at Tue May 13 08:55:17 2025 by rpki-client