$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: sgtxQow95Dl6pJJTuaoPexrEwJd4j8HXK9Ft1XuA5rQ= Subject key identifier: 3D:50:97:3E:57:10:70:E4:6F:B1:3F:86:D3:3F:99:79:13:C5:9D:7D Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0FA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0F85 Signing time: Mon 12 May 2025 17:28:15 +0000 Manifest this update: Mon 12 May 2025 17:28:15 +0000 Manifest next update: Mon 19 May 2025 17:28:15 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: FGMFx3Y9gJOp1dBg0gb6rnJ2ATHpCYQ+1TDjU0d4Hlg=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: Yxnc0WF7y7yG/Ke04997WUeH+aSKIu6WY3AiaujI7mg=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: fuYiIxAwDhO4bPXLu2NpIMN0ReUFHJNWZB+675RLxUg=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: 7y8BRBcxLZCZTnPYfc6VfQnaG4bxPBMAZ7uJUfKAC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4007 (0xfa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: May 12 17:28:15 2025 GMT Not After : May 19 17:28:15 2025 GMT Subject: CN=68222faf-b6d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fb:83:33:21:7c:1e:92:8f:1e:c0:28:2a:33: 11:b1:40:89:39:2a:bd:94:ad:49:e2:40:66:a7:8b: 78:e4:89:51:ed:48:e6:da:ff:9f:64:70:b1:83:49: 3b:79:cd:d4:e3:b5:04:b0:8b:7e:82:a2:c7:07:7d: 20:ff:82:1c:20:32:03:7a:d8:61:61:cd:4d:fb:8e: 5e:ef:a6:59:64:81:12:7c:2a:89:1a:fb:e9:83:16: d7:83:76:dd:70:bd:3f:73:e2:52:3a:a0:67:d2:d8: 98:ee:25:67:73:00:d2:f1:32:43:b2:bc:bf:0c:32: ca:6f:8d:61:56:cc:b3:0b:f1:cf:9b:39:ab:58:c6: 26:95:28:a6:47:b8:85:a4:fa:94:8a:98:54:52:69: db:33:8a:eb:d8:47:a7:97:95:5e:4c:f8:5d:71:73: 5d:52:34:c7:8b:b1:05:82:01:13:48:ca:e9:6c:6e: f0:b1:1a:1b:32:88:12:72:fb:0a:51:23:e1:0b:82: c1:24:c5:07:46:06:c1:ee:9c:e6:da:76:c3:e4:92: a8:b8:5c:2b:ec:7e:28:bb:f9:9e:9a:4d:0f:60:4e: c2:54:6b:b2:be:11:92:7f:92:c9:e3:90:bb:49:2b: 56:50:ef:f4:e8:5f:86:e8:da:5d:98:9f:8a:f2:ed: 87:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:50:97:3E:57:10:70:E4:6F:B1:3F:86:D3:3F:99:79:13:C5:9D:7D X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:12:6b:56:06:65:4a:32:b3:c7:e8:e0:7a:f9:f1:0f:03:f0: b3:82:30:fe:bc:0f:00:79:58:c8:07:ed:8a:77:a5:21:30:64: e9:d1:35:9e:b7:7a:e9:a7:31:7c:a4:69:56:e2:35:44:4f:18: 88:a7:2d:33:34:9b:c7:a4:ac:37:0a:36:17:aa:c8:59:c8:0b: dd:a3:cf:09:10:f0:12:ec:34:e7:0d:45:f0:f1:1a:b5:f7:c1: 47:bf:07:b4:4e:80:fd:7a:cf:ab:7e:3e:ea:8d:23:4e:75:1d: 05:89:dc:b5:0c:7a:13:0c:bf:7d:d6:bf:b1:7e:f6:ca:24:93: d5:64:37:f1:c1:15:47:79:1d:f7:62:50:43:f6:eb:99:84:12: 70:23:7f:8c:ee:c6:93:6d:0d:dd:9f:c8:71:cd:3d:39:bd:83: d0:cf:6d:30:c8:7d:40:12:5d:af:91:84:af:16:a7:dd:7c:cf: 55:c2:93:18:8d:53:e9:16:3d:ba:78:1b:e6:20:44:0f:18:4c: c3:9d:b2:1d:ea:4f:e9:c1:e3:fa:d2:6c:16:38:a0:d9:80:45: d4:d4:46:03:99:41:f8:94:34:f0:c1:ea:5d:69:54:08:72:86: 82:33:46:79:69:2c:94:dc:1c:51:ff:53:98:74:75:98:26:65: 3b:d3:8f:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwNTEyMTcyODE1WhcNMjUwNTE5MTcyODE1WjAYMRYwFAYD VQQDEw02ODIyMmZhZi1iNmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/uDMyF8HpKPHsAoKjMRsUCJOSq9lK1J4kBmp4t45IlR7Ujm2v+fZHCxg0k7 ec3U47UEsIt+gqLHB30g/4IcIDIDethhYc1N+45e76ZZZIESfCqJGvvpgxbXg3bd cL0/c+JSOqBn0tiY7iVncwDS8TJDsry/DDLKb41hVsyzC/HPmzmrWMYmlSimR7iF pPqUiphUUmnbM4rr2Eenl5VeTPhdcXNdUjTHi7EFggETSMrpbG7wsRobMogScvsK USPhC4LBJMUHRgbB7pzm2nbD5JKouFwr7H4ou/memk0PYE7CVGuyvhGSf5LJ45C7 SStWUO/06F+G6NpdmJ+K8u2H3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1Qlz5X EHDkb7E/htM/mXkTxZ19MB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmEmtWBmVKMrPH6OB6+fEPA/CzgjD+vA8AeVjIB+2Kd6UhMGTp0TWe t3rppzF8pGlW4jVETxiIpy0zNJvHpKw3CjYXqshZyAvdo88JEPAS7DTnDUXw8Rq1 98FHvwe0ToD9es+rfj7qjSNOdR0Fidy1DHoTDL991r+xfvbKJJPVZDfxwRVHeR33 YlBD9uuZhBJwI3+M7saTbQ3dn8hxzT05vYPQz20wyH1AEl2vkYSvFqfdfM9VwpMY jVPpFj26eBvmIEQPGEzDnbId6k/pweP60mwWOKDZgEXU1EYDmUH4lDTwwepdaVQI coaCM0Z5aSyU3BxR/1OYdHWYJmU70488 -----END CERTIFICATE-----Generated at Tue May 13 10:32:28 2025 by rpki-client