$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft File: dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft (raw, json) Hash identifier: fV1K97fW0XPwdqJ0zbYi9vpRcQiPTHPYnaGXPl5vWII= Subject key identifier: 4B:18:34:51:A9:0A:CB:07:E2:15:4C:0A:75:8D:82:59:FD:E3:F4:91 Authority key identifier: 76:D1:F6:6C:01:6D:C1:84:73:4E:6D:9B:E1:BE:E9:08:01:FF:A0:1F Certificate issuer: /CN=A91B7E17/serialNumber=76D1F66C016DC184734E6D9BE1BEE90801FFA01F Certificate serial: 064F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft Manifest number: 064A Signing time: Wed 14 May 2025 22:36:55 +0000 Manifest this update: Wed 14 May 2025 22:36:54 +0000 Manifest next update: Wed 21 May 2025 22:36:54 +0000 Files and hashes: 1: dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl (hash: adnOioS79y7JQJ66FSzArl8x6unDPFz5XmGHGLtqFOY=) 2: 87F6FDDC880911EB96D8882DC4F9AE02.roa (hash: HlAv5VKHlCkHYXAj9IKNWvazVRDv1+Tmr+7FuDlOMWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1615 (0x64f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7E17, serialNumber=76D1F66C016DC184734E6D9BE1BEE90801FFA01F Validity Not Before: May 14 22:36:54 2025 GMT Not After : May 21 22:36:54 2025 GMT Subject: CN=68251b07-8bb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8f:c3:71:ab:8a:16:9e:18:17:b5:51:28:74: 12:b5:c3:94:5f:7d:79:fd:00:f1:c3:eb:e6:89:6b: cd:29:c2:08:5e:c6:5f:5d:ba:cf:1f:9e:83:66:0c: 53:95:23:4d:64:30:12:1f:dc:b5:e4:1a:bb:8c:0f: 01:cc:f7:69:b0:5e:16:51:ee:51:47:72:08:24:1a: c5:d3:16:68:86:8f:2a:37:27:39:61:dd:30:b5:d1: 4c:78:96:b2:9b:6a:f3:1d:a3:58:8c:ac:54:88:f3: 66:0f:3d:93:58:ff:32:a8:b6:47:69:5f:f3:1a:0d: 78:54:0f:b6:41:cf:7e:a9:13:94:8c:a8:11:c7:31: a1:c6:75:fe:14:f5:3a:5f:80:0e:84:d6:3f:da:5a: ff:c3:b9:db:64:e1:f4:9d:5e:cf:76:74:7f:d4:73: b4:0b:85:b3:2f:62:64:09:98:fa:31:12:5f:19:da: 37:35:2b:d2:52:1b:e7:5e:74:f8:e7:7a:8b:d9:5c: 98:f0:60:3d:b1:41:4d:f1:1f:d4:f3:af:67:41:4f: bc:f1:e5:16:bc:87:d0:a2:b7:e8:26:5d:be:24:95: c1:61:98:4b:61:b9:68:5f:d3:09:eb:03:f7:03:3a: 6c:7c:98:e1:00:2a:db:b2:20:9f:79:a4:5c:e7:9f: 77:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:18:34:51:A9:0A:CB:07:E2:15:4C:0A:75:8D:82:59:FD:E3:F4:91 X509v3 Authority Key Identifier: keyid:76:D1:F6:6C:01:6D:C1:84:73:4E:6D:9B:E1:BE:E9:08:01:FF:A0:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:67:3e:3c:ed:14:4d:32:20:a5:80:b6:ab:d1:d9:6f:34:ed: 2b:e4:83:3a:b4:09:29:c0:60:98:aa:d0:15:c9:8f:6f:32:11: 2b:be:19:34:48:b3:fd:60:06:63:1b:2e:d6:10:78:4b:71:db: b3:9e:f0:2c:91:91:46:bd:8f:36:8d:bc:e0:3f:87:c0:ec:b9: 45:35:99:99:17:21:67:d5:a4:db:85:67:c1:4c:06:53:d7:0e: 00:67:e9:f8:20:68:5f:06:48:82:3e:c2:cc:14:e4:ea:58:3b: 99:e1:73:a3:33:a1:9e:29:fa:41:5f:be:c2:85:49:f6:29:37: e4:92:44:38:f2:98:cb:7c:0f:d2:ea:57:1c:31:fa:fd:4d:39: f3:a9:a3:e2:6e:1c:fb:79:c3:55:9e:0e:7a:a9:3d:be:72:3b: df:b6:2b:88:8f:b1:c5:a7:fb:24:c6:0c:9e:36:b8:53:a2:c4: 81:2c:72:40:d5:8e:c5:b1:68:e6:c8:d7:1a:2a:6d:3d:50:ab: c2:ec:1f:02:71:0b:89:37:4b:0a:44:ab:58:34:37:28:9d:2f: 99:15:7b:50:59:d3:21:c5:5d:e3:2d:e9:32:22:7c:64:16:9b: b2:e4:81:da:54:a7:a8:86:61:8b:5d:3a:d5:d7:d4:05:6b:7a: dc:a9:b7:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdFMTcxMTAvBgNVBAUTKDc2RDFGNjZDMDE2REMxODQ3MzRFNkQ5QkUxQkVFOTA4 MDFGRkEwMUYwHhcNMjUwNTE0MjIzNjU0WhcNMjUwNTIxMjIzNjU0WjAYMRYwFAYD VQQDEw02ODI1MWIwNy04YmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5o/DcauKFp4YF7VRKHQStcOUX315/QDxw+vmiWvNKcIIXsZfXbrPH56DZgxT lSNNZDASH9y15Bq7jA8BzPdpsF4WUe5RR3IIJBrF0xZoho8qNyc5Yd0wtdFMeJay m2rzHaNYjKxUiPNmDz2TWP8yqLZHaV/zGg14VA+2Qc9+qROUjKgRxzGhxnX+FPU6 X4AOhNY/2lr/w7nbZOH0nV7PdnR/1HO0C4WzL2JkCZj6MRJfGdo3NSvSUhvnXnT4 53qL2VyY8GA9sUFN8R/U869nQU+88eUWvIfQorfoJl2+JJXBYZhLYbloX9MJ6wP3 AzpsfJjhACrbsiCfeaRc55931QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsYNFGp CssH4hVMCnWNgln94/SRMB8GA1UdIwQYMBaAFHbR9mwBbcGEc05tm+G+6QgB/6Af MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0UxNy83QUIwQjU2Njg4 MDcxMUVCQTBBOUI2MkFDNEY5QUUwMi9kdEgyYkFGdHdZUnpUbTJiNGI3cENBSF9v QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0SDJiQUZ0d1lSelRtMmI0YjdwQ0FIX29COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0UxNy83QUIwQjU2Njg4MDcxMUVCQTBBOUI2MkFDNEY5QUUwMi9kdEgyYkFGdHdZ UnpUbTJiNGI3cENBSF9vQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjZz487RRNMiClgLar0dlvNO0r5IM6tAkpwGCYqtAVyY9vMhErvhk0 SLP9YAZjGy7WEHhLcduznvAskZFGvY82jbzgP4fA7LlFNZmZFyFn1aTbhWfBTAZT 1w4AZ+n4IGhfBkiCPsLMFOTqWDuZ4XOjM6GeKfpBX77ChUn2KTfkkkQ48pjLfA/S 6lccMfr9TTnzqaPibhz7ecNVng56qT2+cjvftiuIj7HFp/skxgyeNrhTosSBLHJA 1Y7FsWjmyNcaKm09UKvC7B8CcQuJN0sKRKtYNDconS+ZFXtQWdMhxV3jLekyInxk Fpuy5IHaVKeohmGLXTrV19QFa3rcqbfZ -----END CERTIFICATE-----Generated at Thu May 15 14:56:05 2025 by rpki-client