$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: gjzL3PE+/l3Itea2SS7GSQVuKoHjW4nmABc9tfXEixs= Subject key identifier: CC:34:81:6E:CB:0B:4E:74:E4:B5:17:70:E0:98:E5:AB:09:79:25:37 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0FC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0F9E Signing time: Wed 02 Jul 2025 17:44:29 +0000 Manifest this update: Wed 02 Jul 2025 17:44:29 +0000 Manifest next update: Wed 09 Jul 2025 17:44:29 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: ltsapLsG4reWlTKgshQG2hEffme20xTYeYJbS9tFd+E=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: Yxnc0WF7y7yG/Ke04997WUeH+aSKIu6WY3AiaujI7mg=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: fuYiIxAwDhO4bPXLu2NpIMN0ReUFHJNWZB+675RLxUg=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: 7y8BRBcxLZCZTnPYfc6VfQnaG4bxPBMAZ7uJUfKAC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4032 (0xfc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Jul 2 17:44:29 2025 GMT Not After : Jul 9 17:44:29 2025 GMT Subject: CN=68656ffd-f34b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:bf:03:61:61:a2:7d:ba:6f:2a:aa:73:db:25: 31:0c:a8:df:a1:15:28:18:84:f4:0a:2f:44:04:89: 00:db:a0:26:a6:d2:a6:83:d7:99:d6:a1:1f:0e:3b: fe:f2:ce:58:9c:54:1d:f8:39:25:c3:c5:2d:fd:f7: 00:97:ff:b8:03:80:e4:78:c2:2f:35:de:3c:0d:b3: 33:59:57:55:09:11:29:8b:9b:6f:39:94:7e:78:aa: 15:83:db:a8:e6:11:06:fd:32:29:c9:b1:77:65:56: 48:da:e7:cc:67:df:13:f4:8d:55:a0:03:af:72:18: 93:94:3e:ea:ab:19:10:77:e5:86:f9:6b:94:60:c3: c6:30:97:0c:3f:0f:a1:70:fa:f3:09:e5:ae:67:71: 61:d5:3d:8d:85:d5:e8:15:3a:ce:53:dc:b8:97:49: d2:82:6d:cf:93:bd:ae:41:55:d9:fe:94:9c:44:32: 4a:77:e6:f7:15:d9:66:60:6e:09:4b:82:e4:a9:0f: df:c8:ba:0d:99:1d:e9:2f:e4:bb:c9:ba:13:a1:9f: 1a:62:1c:56:e3:48:62:8b:d9:42:87:5a:01:1b:7f: 47:2e:22:f4:2e:2f:b5:64:5b:d5:be:44:fe:94:59: 3f:4d:ec:99:ce:c6:9e:4b:f4:56:a6:5c:49:fe:0d: a5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:34:81:6E:CB:0B:4E:74:E4:B5:17:70:E0:98:E5:AB:09:79:25:37 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:c7:6a:86:ab:a6:98:74:3b:3b:e0:a6:ad:23:91:49:19:b1: 2a:e4:5d:fb:9e:bc:22:da:a9:8b:38:ac:fd:1b:09:e6:54:f3: be:7d:a8:af:b5:94:46:5c:00:2f:7f:f9:86:6f:78:7f:e7:08: 47:3a:c0:fb:15:d7:7d:32:2a:fc:db:42:ea:0b:1f:32:f3:c8: f3:b7:47:2b:37:64:d0:30:8d:31:5e:da:9c:51:17:4f:d5:71: 9f:01:79:ba:2a:e6:6e:05:fa:c3:1e:f2:47:3a:ad:a8:6b:26: b3:6b:4a:75:5e:04:9b:e1:d7:c3:5f:40:24:ce:4d:29:13:9b: 93:6b:da:0c:3c:71:87:b1:25:d0:e4:90:0a:34:81:d2:c3:b5: eb:be:c3:dd:74:1c:66:2e:4b:db:81:7b:90:8f:6a:0a:df:5a: bc:e0:cd:6b:b6:66:1c:b0:91:11:2d:92:50:4d:91:fc:73:3d: f7:ac:21:0e:e3:5d:e3:b2:12:b9:44:7f:31:17:8a:e3:b1:36: 48:e0:e3:fa:e8:63:28:ff:b2:4e:24:a4:81:04:cf:ab:db:2a: 3c:aa:a9:08:f6:94:7b:db:46:d4:35:ab:d1:e2:6c:2d:bd:a4: 09:4c:a7:b6:af:f0:44:10:03:bd:7c:19:74:d5:86:19:41:9b: 90:96:97:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwNzAyMTc0NDI5WhcNMjUwNzA5MTc0NDI5WjAYMRYwFAYD VQQDEw02ODY1NmZmZC1mMzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8b8DYWGifbpvKqpz2yUxDKjfoRUoGIT0Ci9EBIkA26AmptKmg9eZ1qEfDjv+ 8s5YnFQd+Dklw8Ut/fcAl/+4A4DkeMIvNd48DbMzWVdVCREpi5tvOZR+eKoVg9uo 5hEG/TIpybF3ZVZI2ufMZ98T9I1VoAOvchiTlD7qqxkQd+WG+WuUYMPGMJcMPw+h cPrzCeWuZ3Fh1T2NhdXoFTrOU9y4l0nSgm3Pk72uQVXZ/pScRDJKd+b3FdlmYG4J S4LkqQ/fyLoNmR3pL+S7yboToZ8aYhxW40hii9lCh1oBG39HLiL0Li+1ZFvVvkT+ lFk/TeyZzsaeS/RWplxJ/g2lHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw0gW7L C0505LUXcOCY5asJeSU3MB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1x2qGq6aYdDs74KatI5FJGbEq5F37nrwi2qmLOKz9GwnmVPO+faiv tZRGXAAvf/mGb3h/5whHOsD7Fdd9Mir820LqCx8y88jzt0crN2TQMI0xXtqcURdP 1XGfAXm6KuZuBfrDHvJHOq2oayaza0p1XgSb4dfDX0Akzk0pE5uTa9oMPHGHsSXQ 5JAKNIHSw7XrvsPddBxmLkvbgXuQj2oK31q84M1rtmYcsJERLZJQTZH8cz33rCEO 413jshK5RH8xF4rjsTZI4OP66GMo/7JOJKSBBM+r2yo8qqkI9pR720bUNavR4mwt vaQJTKe2r/BEEAO9fBl01YYZQZuQlpfJ -----END CERTIFICATE-----Generated at Wed Jul 2 20:15:09 2025 by rpki-client