$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft File: DmxKtne94a1EYD_XN9olwGAcRZw.mft (raw, json) Hash identifier: WaKzN4reNmoT0ihUqvchaRJHjsc4KrNJk7dfuYyIGzI= Subject key identifier: 12:4C:92:18:75:51:DD:DA:9E:A4:A7:6C:36:66:35:32:ED:78:D1:41 Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft Manifest number: 25 Signing time: Thu 15 May 2025 07:06:52 +0000 Manifest this update: Thu 15 May 2025 07:06:51 +0000 Manifest next update: Thu 22 May 2025 07:06:51 +0000 Files and hashes: 1: DmxKtne94a1EYD_XN9olwGAcRZw.crl (hash: WrzZlDG17ELFgMOmoodRVlg8EOQt4LK4P780M/QYqlI=) 2: C488A080FB5911EFA827FD17C4F9AE02.roa (hash: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF, serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Validity Not Before: May 15 07:06:51 2025 GMT Not After : May 22 07:06:51 2025 GMT Subject: CN=6825928c-8ee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:91:17:46:8f:35:5f:96:4b:e6:95:a9:0f:46: c9:e3:e0:ca:d7:a2:44:39:62:ec:e1:cd:5e:b0:80: 09:74:de:3f:a8:c7:9e:3e:3b:a0:eb:a4:1c:f6:36: 12:75:f4:10:9b:3a:69:22:dd:0b:af:66:09:9e:de: 41:e9:0a:d2:b7:c4:8e:cf:81:20:db:e3:a3:2b:b3: f6:ec:35:93:a3:18:27:e5:99:05:11:4d:38:fc:f9: 2d:1e:60:be:f1:82:de:c4:c9:fd:db:c6:5d:d8:ea: ff:8b:25:32:8c:2e:dc:11:30:2a:56:02:2c:9a:89: 41:b3:8a:da:27:a5:99:63:f8:38:d8:24:83:a4:75: d2:42:4a:c2:ed:05:7c:5a:5c:d9:b4:2f:b7:6b:a0: 7e:27:c8:bd:a9:d5:42:8e:35:e3:ba:41:dd:ac:e3: 64:95:7b:4e:7a:04:2a:3e:56:a9:c3:3a:b5:ac:14: ff:2a:7d:d9:af:37:e7:d3:6b:eb:29:9e:0a:04:87: e8:cc:30:24:9d:4f:96:7a:92:cf:bc:f3:62:09:8d: 6f:ad:d0:8e:4d:f0:04:ab:51:9f:4c:49:fc:53:c7: c7:b7:fa:ab:ad:fa:69:82:79:3c:cf:a2:33:63:13: 2e:3c:e9:20:3f:ae:d6:95:a0:df:ac:96:6d:07:a0: 29:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4C:92:18:75:51:DD:DA:9E:A4:A7:6C:36:66:35:32:ED:78:D1:41 X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f3:1d:b5:aa:11:31:e4:20:9f:9e:0e:19:1c:c8:c3:05:21: 80:27:d1:d8:9f:4d:df:58:96:16:c7:fc:02:fb:17:59:da:4f: 73:81:9d:b5:6a:2e:52:c6:3c:35:4f:29:f1:6d:4e:1b:68:78: bd:84:c6:d1:f7:f7:75:b8:1b:d4:10:db:51:4b:89:2e:f8:61: 8e:73:27:a1:5e:92:a9:9f:a4:3b:4d:c4:09:c7:5d:94:c0:83: fb:40:b8:ce:89:12:a4:28:b5:3c:e5:27:f9:49:a6:3e:ff:93: 17:b4:eb:a1:b5:28:cd:ae:e4:a1:c8:24:6c:e4:80:df:f9:a0: be:71:07:fc:f1:0f:5d:10:79:89:9a:b0:45:31:ef:e4:9f:f1: 89:78:03:7f:5c:fc:88:54:c4:08:91:4a:c3:56:46:42:cd:ff: 51:0d:95:b9:28:2b:07:db:c7:d9:33:56:17:14:10:50:98:c7: 61:41:b3:47:2e:7a:04:9c:b7:18:46:86:79:60:11:11:1b:e5: f7:fa:84:3f:2f:36:53:cd:66:78:1d:7b:bc:97:6a:0c:07:58: 42:c1:bb:dd:40:b0:3b:6c:4e:a4:41:75:da:57:0c:88:54:70: 74:c9:6e:fd:3b:b1:2d:2d:27:57:2d:5a:82:f7:7f:b6:96:27: fd:a6:0d:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzlDRjExMC8GA1UEBRMoMEU2QzRBQjY3N0JERTFBRDQ0NjAzRkQ3MzdEQTI1QzA2 MDFDNDU5QzAeFw0yNTA1MTUwNzA2NTFaFw0yNTA1MjIwNzA2NTFaMBgxFjAUBgNV BAMTDTY4MjU5MjhjLThlZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrkRdGjzVflkvmlakPRsnj4MrXokQ5YuzhzV6wgAl03j+ox54+O6DrpBz2NhJ1 9BCbOmki3QuvZgme3kHpCtK3xI7PgSDb46Mrs/bsNZOjGCflmQURTTj8+S0eYL7x gt7Eyf3bxl3Y6v+LJTKMLtwRMCpWAiyaiUGzitonpZlj+DjYJIOkddJCSsLtBXxa XNm0L7droH4nyL2p1UKONeO6Qd2s42SVe056BCo+VqnDOrWsFP8qfdmvN+fTa+sp ngoEh+jMMCSdT5Z6ks+882IJjW+t0I5N8ASrUZ9MSfxTx8e3+qut+mmCeTzPojNj Ey486SA/rtaVoN+slm0HoCnfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEkySGHVR 3dqepKdsNmY1Mu140UEwHwYDVR0jBBgwFoAUDmxKtne94a1EYD/XN9olwGAcRZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzOUNGLzU2RjMxRkI0RkI1 OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Ja dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRG14S3RuZTk0YTFFWURfWE45b2x3R0FjUlp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz OUNGLzU2RjMxRkI0RkI1OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGEx RVlEX1hOOW9sd0dBY1Jady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHzzHbWqETHkIJ+eDhkcyMMFIYAn0difTd9YlhbH/AL7F1naT3OBnbVq LlLGPDVPKfFtThtoeL2ExtH393W4G9QQ21FLiS74YY5zJ6FekqmfpDtNxAnHXZTA g/tAuM6JEqQotTzlJ/lJpj7/kxe066G1KM2u5KHIJGzkgN/5oL5xB/zxD10QeYma sEUx7+Sf8Yl4A39c/IhUxAiRSsNWRkLN/1ENlbkoKwfbx9kzVhcUEFCYx2FBs0cu egSctxhGhnlgEREb5ff6hD8vNlPNZngde7yXagwHWELBu91AsDtsTqRBddpXDIhU cHTJbv07sS0tJ1ctWoL3f7aWJ/2mDZA= -----END CERTIFICATE-----Generated at Fri May 16 18:08:00 2025 by rpki-client