$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: 8CznEDuJRiXxj7GhoVv4jec5u/qyFlIsM1HYgtKQ3QY= Subject key identifier: F0:51:8E:A9:D8:35:E6:F2:D4:C6:13:30:8F:AF:82:35:A0:83:CE:43 Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 349E Signing time: Sat 10 May 2025 14:49:21 +0000 Manifest this update: Sat 10 May 2025 14:49:21 +0000 Manifest next update: Sat 17 May 2025 14:49:21 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: IBoMKGJby0uWdkPHutnbZEKGhMN3zN/2/WQCvKr4+XM=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: May 10 14:49:21 2025 GMT Not After : May 17 14:49:21 2025 GMT Subject: CN=681f6771-1e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bc:ee:a2:56:de:ae:cb:58:01:c7:e0:9c:c3: 96:d0:57:1f:59:38:bd:79:28:82:2b:75:6b:79:83: a0:7f:f6:59:22:31:da:a4:96:fa:0a:06:a4:d0:5f: e7:28:b8:86:a4:65:35:d4:f5:a7:3e:c3:e6:e5:a7: b8:41:6b:a0:e2:11:93:26:58:6a:ee:4f:b5:ac:c4: 41:1a:6e:18:06:8d:9c:0d:da:61:2e:42:6d:26:3e: 19:d0:7c:6c:6d:0d:23:68:18:ed:16:14:b2:59:6c: 9a:2c:c1:c9:68:e4:5d:f3:a0:1c:c6:82:db:b7:c4: 3b:20:57:48:c1:6c:32:c7:ee:83:97:2b:93:61:c7: 23:71:a6:ee:3b:58:2f:4f:c4:1f:63:81:bf:b8:51: 66:c0:65:e4:5e:80:7a:49:39:3f:4c:a0:47:ea:35: 65:ed:43:5a:9d:37:b5:f6:77:aa:64:06:e1:11:ee: e8:4b:f1:c7:5e:e9:1c:6e:99:52:b9:00:42:77:0c: fa:2b:b0:52:10:bf:06:cd:c3:ab:b6:d4:c7:b7:93: 94:e5:c3:89:67:9c:ab:2c:eb:31:68:18:97:66:ab: 05:62:59:58:0b:17:2c:50:19:8f:be:5b:7a:96:82: 85:fe:51:5d:2b:68:1d:d4:8d:a4:12:bd:38:27:a5: c5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:51:8E:A9:D8:35:E6:F2:D4:C6:13:30:8F:AF:82:35:A0:83:CE:43 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:10:4b:00:cc:39:3a:55:a2:c2:d9:e6:be:6c:ae:b4:7b:95: 78:26:06:81:7a:d4:a0:a9:f3:ae:4f:6a:11:9a:e1:4f:e3:3c: e2:ac:ed:9a:d8:61:6c:0c:f4:42:27:b3:65:7d:98:2e:82:64: 8c:c2:74:7b:6a:7b:6e:dd:3a:78:c9:13:ca:56:7b:d2:45:97: c9:db:e3:c3:6b:96:e6:a0:49:b0:49:8f:62:64:17:ff:22:7c: b9:ef:36:f0:9e:c2:9a:95:ca:7d:59:99:f1:84:c3:7b:cd:36: 4a:74:82:9f:f3:33:f1:f1:85:1c:73:73:0b:8e:62:6c:f1:c3: 78:a3:d9:8e:28:40:ab:e3:70:2f:10:8f:96:53:27:40:50:76: 03:38:9e:c9:f4:cd:8f:42:47:b4:b9:cb:7d:21:02:7b:1c:21: 1e:39:15:fd:7b:79:1d:ec:c0:18:36:fe:13:d6:9b:8d:99:c7: 26:a5:6f:d4:fc:bd:36:28:91:5f:67:f2:2e:5e:fd:95:a5:98: 5d:d8:2f:b1:29:18:e4:ab:cc:36:ff:4a:a4:4a:a9:06:ca:55: 5b:3a:df:83:fe:4f:2c:b0:2e:7c:e1:c6:05:41:0a:49:1b:2a: 00:dc:dd:24:35:f2:c3:86:d9:21:a2:42:05:1e:b5:de:e6:0e: 97:ca:dc:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUwNTEwMTQ0OTIxWhcNMjUwNTE3MTQ0OTIxWjAYMRYwFAYD VQQDEw02ODFmNjc3MS0xZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLzuolberstYAcfgnMOW0FcfWTi9eSiCK3VreYOgf/ZZIjHapJb6Cgak0F/n KLiGpGU11PWnPsPm5ae4QWug4hGTJlhq7k+1rMRBGm4YBo2cDdphLkJtJj4Z0Hxs bQ0jaBjtFhSyWWyaLMHJaORd86AcxoLbt8Q7IFdIwWwyx+6DlyuTYccjcabuO1gv T8QfY4G/uFFmwGXkXoB6STk/TKBH6jVl7UNanTe19neqZAbhEe7oS/HHXukcbplS uQBCdwz6K7BSEL8GzcOrttTHt5OU5cOJZ5yrLOsxaBiXZqsFYllYCxcsUBmPvlt6 loKF/lFdK2gd1I2kEr04J6XF5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBRjqnY Neby1MYTMI+vgjWgg85DMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaEEsAzDk6VaLC2ea+bK60e5V4JgaBetSgqfOuT2oRmuFP4zzirO2a 2GFsDPRCJ7NlfZgugmSMwnR7antu3Tp4yRPKVnvSRZfJ2+PDa5bmoEmwSY9iZBf/ Iny57zbwnsKalcp9WZnxhMN7zTZKdIKf8zPx8YUcc3MLjmJs8cN4o9mOKECr43Av EI+WUydAUHYDOJ7J9M2PQke0uct9IQJ7HCEeORX9e3kd7MAYNv4T1puNmccmpW/U /L02KJFfZ/IuXv2VpZhd2C+xKRjkq8w2/0qkSqkGylVbOt+D/k8ssC584cYFQQpJ GyoA3N0kNfLDhtkhokIFHrXe5g6Xytzu -----END CERTIFICATE-----Generated at Mon May 12 04:00:00 2025 by rpki-client