$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: hvgP18G8pLBgRguMqcJeD8Fga2Ls4hhFjMNHKhOtZB8= Subject key identifier: 2B:76:77:38:80:A6:12:92:5C:8A:91:43:E0:29:DA:0F:6B:28:3A:2A Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1D21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1D14 Signing time: Wed 14 May 2025 16:14:08 +0000 Manifest this update: Wed 14 May 2025 16:14:08 +0000 Manifest next update: Wed 21 May 2025 16:14:08 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: YYEh41zN5BP3Z0qeP6IlBskswfpk9z1Wuu3UmFoLXi0=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: QN4dhYeOYexv58OGwmZdyDg8Z4B86G7ksX83Qid7CHk=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: oh/v7iVJL2nmvk/qjcAVXe7OglXKPf/jEhdssMeYp/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7457 (0x1d21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: May 14 16:14:08 2025 GMT Not After : May 21 16:14:08 2025 GMT Subject: CN=6824c150-9a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:65:34:b0:98:d5:88:dd:32:84:d1:7e:47:4a: bc:1a:e8:ee:f6:58:c2:a1:4b:77:77:db:a5:f1:e1: ec:d8:f3:79:e5:52:44:46:58:66:85:10:b0:dc:80: 87:c8:e1:01:14:56:dd:db:b0:e6:40:7e:40:70:12: 5e:af:84:69:9d:77:43:1d:8f:71:02:17:8e:56:55: 20:fc:39:f5:40:27:4d:90:f8:bd:60:a6:d3:ff:9e: b0:84:d0:75:79:c9:84:19:59:d9:29:43:6a:0c:cb: ef:fc:b7:f3:53:05:c7:6b:f9:2f:0e:cb:40:f0:ba: f0:21:2e:1b:9c:c9:07:44:27:f2:4f:04:6b:b8:a1: ae:44:41:f7:66:b0:1f:d5:06:37:4c:9f:14:ad:a3: ee:f8:a7:31:61:15:e4:aa:66:16:8b:2b:39:6d:0f: a1:c6:da:6d:8d:24:4a:59:23:80:63:84:a2:6f:51: 9d:5f:10:4e:b8:57:81:cc:28:d6:7c:09:13:c8:be: b3:6e:cf:0f:11:2b:43:b8:60:a3:93:ce:17:1d:07: 29:01:c9:e7:85:13:04:9e:d3:e4:4e:11:96:7b:6c: 63:52:b3:4d:7c:f8:22:eb:12:fb:5a:88:28:78:c0: e3:e0:be:59:8a:7b:c2:90:8a:51:fb:59:03:b2:1e: 99:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:76:77:38:80:A6:12:92:5C:8A:91:43:E0:29:DA:0F:6B:28:3A:2A X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:8b:e0:37:80:97:67:46:1e:82:ca:a7:a5:28:66:6d:c5:01: f4:ac:63:10:71:86:e5:76:2b:b3:11:ce:5e:15:64:82:87:52: 01:9a:9f:e4:eb:e9:96:15:aa:dc:a5:bc:69:3d:bf:52:38:c0: 24:8f:d8:39:a0:b7:be:0e:c0:39:d7:25:1c:7e:c9:d4:03:fe: e3:a3:14:56:10:69:99:46:26:3d:ff:73:82:3f:ec:04:ce:62: a1:fb:2e:98:94:d4:41:9a:f2:39:05:3e:ae:9f:83:8b:2a:cf: d9:81:28:77:65:6b:d8:27:f9:e7:5e:10:57:20:50:9a:bf:4e: 14:ea:91:ff:49:f9:54:91:21:be:e9:1b:ea:5e:37:7f:5b:44: 14:e6:65:09:37:a8:c7:69:44:e6:7b:69:c7:01:97:55:06:df: 8b:d1:55:6e:96:db:89:29:33:3a:c6:34:87:96:f8:11:0d:52: 38:05:45:f9:41:a0:51:2d:f2:57:3a:e0:a5:fa:0f:66:46:4c: bc:fd:ad:c8:71:ed:2b:84:06:98:ad:50:ac:bb:2d:45:a7:ed: 5b:c6:f8:4d:b0:b0:55:14:18:25:95:8d:75:9b:3a:05:e3:d9: c3:e5:ff:1c:d1:c5:95:42:d5:54:d2:77:d2:b6:72:5c:78:52: 5f:11:76:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjUwNTE0MTYxNDA4WhcNMjUwNTIxMTYxNDA4WjAYMRYwFAYD VQQDEw02ODI0YzE1MC05YTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mU0sJjViN0yhNF+R0q8Guju9ljCoUt3d9ul8eHs2PN55VJERlhmhRCw3ICH yOEBFFbd27DmQH5AcBJer4RpnXdDHY9xAheOVlUg/Dn1QCdNkPi9YKbT/56whNB1 ecmEGVnZKUNqDMvv/LfzUwXHa/kvDstA8LrwIS4bnMkHRCfyTwRruKGuREH3ZrAf 1QY3TJ8UraPu+KcxYRXkqmYWiys5bQ+hxtptjSRKWSOAY4Sib1GdXxBOuFeBzCjW fAkTyL6zbs8PEStDuGCjk84XHQcpAcnnhRMEntPkThGWe2xjUrNNfPgi6xL7Wogo eMDj4L5ZinvCkIpR+1kDsh6ZSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCt2dziA phKSXIqRQ+Ap2g9rKDoqMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXi+A3gJdnRh6CyqelKGZtxQH0rGMQcYbldiuzEc5eFWSCh1IBmp/k 6+mWFarcpbxpPb9SOMAkj9g5oLe+DsA51yUcfsnUA/7joxRWEGmZRiY9/3OCP+wE zmKh+y6YlNRBmvI5BT6un4OLKs/ZgSh3ZWvYJ/nnXhBXIFCav04U6pH/SflUkSG+ 6RvqXjd/W0QU5mUJN6jHaUTme2nHAZdVBt+L0VVultuJKTM6xjSHlvgRDVI4BUX5 QaBRLfJXOuCl+g9mRky8/a3Ice0rhAaYrVCsuy1Fp+1bxvhNsLBVFBgllY11mzoF 49nD5f8c0cWVQtVU0nfStnJceFJfEXYe -----END CERTIFICATE-----Generated at Thu May 15 09:06:48 2025 by rpki-client