$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft File: DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft (raw, json) Hash identifier: ptYM1o7fcavIpHKkzHuLbAG/GSNoK0qtf+WP0y1D9lk= Subject key identifier: 44:5F:38:E0:00:BB:30:5B:57:0A:01:0C:56:52:BA:D3:20:FF:DB:C9 Authority key identifier: 0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 Certificate issuer: /CN=A91AA96A/serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft Manifest number: 8B Signing time: Sun 11 May 2025 05:23:34 +0000 Manifest this update: Sun 11 May 2025 05:23:33 +0000 Manifest next update: Sun 18 May 2025 05:23:33 +0000 Files and hashes: 1: DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl (hash: ZlnqQaG53AGnnV5LI0nTOt8+qhRj/LJKxiDhvj6Eg30=) 2: 6E7D3C16816811EF99DD7787C4F9AE02.roa (hash: GJjFHlhUrw3PK9n6h+pqP/cBSWFV8op0nahH1r+sT6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA96A, serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Validity Not Before: May 11 05:23:33 2025 GMT Not After : May 18 05:23:33 2025 GMT Subject: CN=68203456-b8d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0b:14:29:39:1d:bc:33:2f:0a:16:0c:ca:b2: af:2e:71:46:17:a7:ec:7e:06:a4:c2:a4:12:39:18: e8:14:5d:bc:c4:4c:08:85:f1:b8:7a:4e:d7:2a:09: 9d:c2:54:b6:67:ca:a8:4a:cb:33:cd:60:b1:3b:5b: b1:b0:dd:35:52:d1:00:44:46:10:08:7e:30:ba:54: cf:bc:34:73:43:2e:62:1b:90:7a:85:f1:3b:63:17: 59:db:a9:62:da:69:e8:00:77:0b:49:17:09:3a:cc: ef:22:14:6e:fb:cc:bd:60:82:e5:bd:7f:54:60:94: 93:3a:ab:7a:d3:cc:12:26:fd:11:4d:15:41:f9:e1: 08:ea:c7:1b:ad:a2:1c:1d:79:9f:c7:67:af:05:a9: 84:26:0c:d3:24:fd:03:d9:54:e8:ac:f6:30:51:52: 6d:a8:94:62:19:da:21:05:83:2b:d2:e4:2a:10:90: bd:e5:ca:03:73:a3:c8:04:35:69:11:38:34:79:49: bb:4a:cd:42:89:a2:ac:a4:3a:8a:78:54:54:29:0f: 08:1a:1e:91:78:6e:e9:7a:94:57:bf:4a:9f:9a:83: 5e:ef:f7:ad:25:c0:f9:8b:9a:2e:8b:50:4a:5f:0c: fb:44:99:63:4f:52:23:3a:97:ff:08:fc:8a:45:a6: 48:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:5F:38:E0:00:BB:30:5B:57:0A:01:0C:56:52:BA:D3:20:FF:DB:C9 X509v3 Authority Key Identifier: keyid:0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ab:3e:26:e6:ec:82:a7:a1:73:42:ea:0d:ed:34:e8:f2:17: d1:f5:86:08:67:ce:ca:08:c4:87:6b:94:24:8b:f5:f5:94:17: 4f:6c:87:ab:b6:78:6f:9a:65:09:6e:41:d3:ab:cc:ae:8e:f4: 36:b5:79:dd:f6:47:a0:d6:f8:ba:c4:51:11:d6:09:3f:f5:4a: 37:54:fa:02:31:0b:3c:84:3e:6d:d5:f0:fc:c1:16:f4:0e:de: 6e:20:c0:07:fd:e1:e1:80:51:1f:ed:e6:5c:ac:7d:90:2d:34: 3c:d5:62:76:ea:13:99:8e:1d:db:60:2c:8f:12:91:b1:8b:95: 7d:37:9d:ac:ca:8c:eb:68:60:1c:c2:fd:c3:22:9c:68:1c:3a: 13:6e:e0:04:dd:30:0a:25:6b:6f:35:e1:7c:4d:a4:6a:6e:10: 6b:9b:3d:7a:c5:6f:03:13:63:17:fd:44:a2:35:05:02:c9:30: bd:25:30:a6:49:68:d0:89:3c:48:ac:e7:91:63:dc:37:b8:8b: 52:66:a1:cc:d0:3e:7c:69:02:31:88:a7:2b:13:8d:aa:bc:59: 47:d1:fc:5e:38:fa:bc:9b:56:68:f2:56:e4:98:a9:c7:1b:a8: c6:45:5d:ef:bc:d4:76:af:eb:0f:ab:ad:da:e0:c2:eb:f7:02: 5d:52:3f:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE5NkExMTAvBgNVBAUTKDBDREQ1MDU4MzJFQThDOUE0RDIzQjEwNjM3MjAxRDc5 NDI5NTY0QzAwHhcNMjUwNTExMDUyMzMzWhcNMjUwNTE4MDUyMzMzWjAYMRYwFAYD VQQDEw02ODIwMzQ1Ni1iOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wsUKTkdvDMvChYMyrKvLnFGF6fsfgakwqQSORjoFF28xEwIhfG4ek7XKgmd wlS2Z8qoSsszzWCxO1uxsN01UtEAREYQCH4wulTPvDRzQy5iG5B6hfE7YxdZ26li 2mnoAHcLSRcJOszvIhRu+8y9YILlvX9UYJSTOqt608wSJv0RTRVB+eEI6scbraIc HXmfx2evBamEJgzTJP0D2VTorPYwUVJtqJRiGdohBYMr0uQqEJC95coDc6PIBDVp ETg0eUm7Ss1CiaKspDqKeFRUKQ8IGh6ReG7pepRXv0qfmoNe7/etJcD5i5oui1BK Xwz7RJljT1IjOpf/CPyKRaZI7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERfOOAA uzBbVwoBDFZSutMg/9vJMB8GA1UdIwQYMBaAFAzdUFgy6oyaTSOxBjcgHXlClWTA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTk2QS9ENEMxNjg4MjZB NkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpKcE5JN0VHTnlBZGVVS1Za TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROMVFXRExxakpwTkk3RUdOeUFkZVVLVlpNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTk2QS9ENEMxNjg4MjZBNkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpK cE5JN0VHTnlBZGVVS1ZaTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDqz4m5uyCp6FzQuoN7TTo8hfR9YYIZ87KCMSHa5Qki/X1lBdPbIer tnhvmmUJbkHTq8yujvQ2tXnd9keg1vi6xFER1gk/9Uo3VPoCMQs8hD5t1fD8wRb0 Dt5uIMAH/eHhgFEf7eZcrH2QLTQ81WJ26hOZjh3bYCyPEpGxi5V9N52syozraGAc wv3DIpxoHDoTbuAE3TAKJWtvNeF8TaRqbhBrmz16xW8DE2MX/USiNQUCyTC9JTCm SWjQiTxIrOeRY9w3uItSZqHM0D58aQIxiKcrE42qvFlH0fxeOPq8m1Zo8lbkmKnH G6jGRV3vvNR2r+sPq63a4MLr9wJdUj+n -----END CERTIFICATE-----Generated at Sun May 11 17:02:52 2025 by rpki-client