$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: 3BTJTpvpTP7yeG56l6U30ya5IjKyup7vhbPB6TP46iM= Subject key identifier: 21:F5:04:CA:35:17:6A:76:FB:67:A3:ED:4F:92:5D:31:07:2F:E5:D6 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 01BF Signing time: Tue 13 May 2025 02:26:22 +0000 Manifest this update: Tue 13 May 2025 02:26:22 +0000 Manifest next update: Tue 20 May 2025 02:26:22 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: Ew9V9vUSoCES1E3hiego4za0+Un63iCw1PeD40GfjL0=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: May 13 02:26:22 2025 GMT Not After : May 20 02:26:22 2025 GMT Subject: CN=6822adce-fa2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f7:26:32:04:9c:4f:16:5c:79:5b:bd:5e:84: f6:d0:12:d0:aa:da:89:25:17:9b:08:4b:eb:31:c7: 37:5c:bb:99:ca:18:26:df:a3:99:26:05:0e:13:ea: e6:ed:8e:12:9a:a7:a0:88:1d:57:19:87:bd:37:e4: f4:32:de:a9:4b:72:da:09:04:53:18:42:6e:43:b3: c3:a0:e1:3b:9a:4b:43:73:c3:b1:a5:fc:44:75:a8: 29:7c:56:1a:06:de:8a:26:8a:8c:8a:ea:66:16:f8: ee:c8:e8:c9:58:ac:e2:be:77:63:c6:19:5b:5b:c9: 6c:fe:5a:33:eb:81:27:57:2a:ff:74:d0:46:17:57: 98:b6:3b:ba:1f:19:f6:de:45:f3:ba:79:3a:46:f4: d7:35:0d:ae:66:ea:3e:c1:09:9f:97:b2:4e:03:12: 71:cd:6b:85:51:43:06:1a:fa:15:14:83:39:80:3d: 29:a9:08:e5:4e:00:9f:eb:9b:7f:61:51:53:8d:35: 2b:72:11:11:c7:db:dd:9f:83:4f:44:d8:8c:e4:8c: 00:c1:27:f5:23:18:19:6e:01:f9:1d:b0:9a:19:94: 56:67:bf:02:a1:a4:9f:0d:90:a6:9d:b5:35:9f:28: 15:9e:11:da:17:d5:74:42:60:6a:0d:3e:7f:8d:ed: 1b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F5:04:CA:35:17:6A:76:FB:67:A3:ED:4F:92:5D:31:07:2F:E5:D6 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:88:4c:e9:55:d1:dc:f9:3b:2c:70:04:14:22:7f:80:9f:00: d7:60:2b:e6:2a:6f:31:59:85:2c:64:33:46:45:c9:40:6b:37: cf:58:13:cd:45:1e:1c:b1:6f:95:49:1c:bc:ce:95:16:b5:a0: cb:ff:46:0f:db:b4:46:77:f0:b2:68:c0:6a:3c:45:f9:cb:21: e7:59:85:17:2d:df:83:44:78:98:63:ab:fd:51:d3:a4:1a:83: 8f:ea:77:e4:4e:a0:94:9e:55:fc:cc:25:d7:53:e3:05:5b:59: 9a:bb:8c:ea:fe:51:bd:fd:87:ad:13:c7:dc:fe:02:94:04:50: bc:65:e7:a7:88:28:a0:cf:59:d1:61:ec:ca:84:68:32:36:92: bf:7f:d2:ac:ba:b1:eb:17:44:58:f9:c4:f1:a5:95:0f:0e:61: 22:47:11:f4:31:b2:38:fa:da:ac:4c:60:5e:5f:18:f9:59:8f: 4f:1c:7c:2c:d9:5f:5d:ec:eb:af:ce:6b:e8:90:cd:70:2e:a2: e7:2d:4c:b5:fd:9b:9f:75:07:b8:38:7c:69:c1:29:43:39:42: 5b:01:58:a0:bd:56:38:9b:ae:5d:53:7a:d9:ba:67:a7:c0:f7: ff:98:2e:0f:46:6a:58:90:15:b3:24:9f:5d:67:5f:18:ca:dc: 72:3f:ce:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUwNTEzMDIyNjIyWhcNMjUwNTIwMDIyNjIyWjAYMRYwFAYD VQQDEw02ODIyYWRjZS1mYTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvcmMgScTxZceVu9XoT20BLQqtqJJRebCEvrMcc3XLuZyhgm36OZJgUOE+rm 7Y4SmqegiB1XGYe9N+T0Mt6pS3LaCQRTGEJuQ7PDoOE7mktDc8OxpfxEdagpfFYa Bt6KJoqMiupmFvjuyOjJWKzivndjxhlbW8ls/loz64EnVyr/dNBGF1eYtju6Hxn2 3kXzunk6RvTXNQ2uZuo+wQmfl7JOAxJxzWuFUUMGGvoVFIM5gD0pqQjlTgCf65t/ YVFTjTUrchERx9vdn4NPRNiM5IwAwSf1IxgZbgH5HbCaGZRWZ78CoaSfDZCmnbU1 nygVnhHaF9V0QmBqDT5/je0b6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCH1BMo1 F2p2+2ej7U+SXTEHL+XWMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhiEzpVdHc+TsscAQUIn+AnwDXYCvmKm8xWYUsZDNGRclAazfPWBPN RR4csW+VSRy8zpUWtaDL/0YP27RGd/CyaMBqPEX5yyHnWYUXLd+DRHiYY6v9UdOk GoOP6nfkTqCUnlX8zCXXU+MFW1mau4zq/lG9/YetE8fc/gKUBFC8ZeeniCigz1nR YezKhGgyNpK/f9KsurHrF0RY+cTxpZUPDmEiRxH0MbI4+tqsTGBeXxj5WY9PHHws 2V9d7OuvzmvokM1wLqLnLUy1/ZufdQe4OHxpwSlDOUJbAVigvVY4m65dU3rZumen wPf/mC4PRmpYkBWzJJ9dZ18YytxyP86d -----END CERTIFICATE-----Generated at Wed May 14 22:51:50 2025 by rpki-client