$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: xm0Rg0bDbqIT3bq/gVDDJs2j3j2gDZCgHkspEOHaBc0= Subject key identifier: A2:C7:E3:13:74:C2:34:39:DC:6F:E9:95:99:8F:34:C5:DA:FA:61:EA Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 9C Signing time: Thu 15 May 2025 05:35:31 +0000 Manifest this update: Thu 15 May 2025 05:35:30 +0000 Manifest next update: Thu 22 May 2025 05:35:30 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: rJcOrdJA1ejzq5UqOgHNv77bhOcEFOt63RwBsfMHT9E=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: May 15 05:35:30 2025 GMT Not After : May 22 05:35:30 2025 GMT Subject: CN=68257d23-01d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e3:4e:fe:74:a3:d3:5b:63:69:d1:4a:fb:cf: 85:d2:8a:43:15:05:fc:3a:8c:33:4d:e2:a5:4b:35: af:b5:ce:4d:56:d0:54:07:bf:a0:46:af:84:97:9b: 14:bd:46:81:cc:3a:bd:33:2e:e7:fb:67:23:7d:82: 6c:d9:eb:57:77:8d:3a:b1:0d:e7:80:e7:3f:de:9b: 9d:f0:11:e3:42:2f:07:39:1f:9f:59:77:55:f4:b3: b4:4d:c7:71:56:7c:eb:fa:e8:50:af:02:e2:73:c1: fe:90:60:0f:9f:53:1e:cb:03:3c:ef:41:19:d4:d7: 2f:06:21:86:ea:6f:8f:fa:f4:97:53:fe:35:55:7d: bd:26:a3:34:63:7f:ec:9d:fd:98:7e:9f:9f:c8:c4: 25:17:a7:e3:81:e4:d1:a3:31:3b:f7:88:70:18:73: 9d:7f:c8:fc:71:20:88:4e:ed:d9:71:e3:93:40:06: aa:86:38:5f:35:07:b8:60:b2:37:d8:0a:c7:63:5e: 32:d8:b0:b5:4e:85:fe:67:b7:0f:f0:ba:e8:70:c6: 20:3a:00:dc:c7:b5:25:00:4f:b8:d3:b1:2e:0d:be: 56:5d:bc:ec:ee:f7:d0:c0:35:4d:90:04:e2:47:21: 18:84:20:34:f3:43:36:9d:74:0c:a4:3d:d6:4f:94: 17:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C7:E3:13:74:C2:34:39:DC:6F:E9:95:99:8F:34:C5:DA:FA:61:EA X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:1c:ea:fb:5d:de:3f:ea:fe:1f:35:4f:ce:00:01:9d:91:6e: 7a:64:f9:9d:24:a9:28:8e:76:ee:52:e9:02:d9:d9:06:b7:ef: ed:88:93:81:89:54:ef:45:07:8b:a6:4f:75:a8:9b:7f:92:b6: 00:bb:93:b1:f9:38:fb:c6:6d:94:ad:2d:b1:6c:35:48:12:64: 56:95:ee:a8:36:0a:c0:84:22:97:33:07:41:db:1b:7c:18:f5: cb:e2:58:ec:a1:c1:f2:06:ac:fc:e7:be:46:a0:c5:0e:36:bc: 90:0b:e1:f2:18:f8:f7:30:ea:25:d8:1f:16:a9:d1:b3:bb:f2: b4:05:ac:29:e5:09:46:b2:55:b9:7a:02:2d:00:52:45:7d:9f: f9:21:65:74:01:14:81:2b:8b:91:a9:9b:79:9f:b0:2e:56:70: 09:4b:b5:3e:6f:db:d7:f2:02:9f:74:91:3c:c8:28:60:e1:39: 72:30:f5:48:b2:b4:7c:29:90:15:ab:a7:37:7d:9b:37:48:3b: 09:19:28:60:a7:36:88:33:3c:a3:74:12:36:be:05:bf:63:8a: 7a:45:1d:09:ad:10:4c:30:f7:89:42:9f:ae:c6:8d:c9:05:11: e2:37:e1:b8:df:ec:a4:62:a8:80:9e:a4:19:18:19:9f:e2:d6: 39:a2:d0:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUwNTE1MDUzNTMwWhcNMjUwNTIyMDUzNTMwWjAYMRYwFAYD VQQDEw02ODI1N2QyMy0wMWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvONO/nSj01tjadFK+8+F0opDFQX8OowzTeKlSzWvtc5NVtBUB7+gRq+El5sU vUaBzDq9My7n+2cjfYJs2etXd406sQ3ngOc/3pud8BHjQi8HOR+fWXdV9LO0Tcdx Vnzr+uhQrwLic8H+kGAPn1MeywM870EZ1NcvBiGG6m+P+vSXU/41VX29JqM0Y3/s nf2Yfp+fyMQlF6fjgeTRozE794hwGHOdf8j8cSCITu3ZceOTQAaqhjhfNQe4YLI3 2ArHY14y2LC1ToX+Z7cP8LrocMYgOgDcx7UlAE+407EuDb5WXbzs7vfQwDVNkATi RyEYhCA080M2nXQMpD3WT5QXowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLH4xN0 wjQ53G/plZmPNMXa+mHqMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsHOr7Xd4/6v4fNU/OAAGdkW56ZPmdJKkojnbuUukC2dkGt+/tiJOB iVTvRQeLpk91qJt/krYAu5Ox+Tj7xm2UrS2xbDVIEmRWle6oNgrAhCKXMwdB2xt8 GPXL4ljsocHyBqz8575GoMUONryQC+HyGPj3MOol2B8WqdGzu/K0Bawp5QlGslW5 egItAFJFfZ/5IWV0ARSBK4uRqZt5n7AuVnAJS7U+b9vX8gKfdJE8yChg4TlyMPVI srR8KZAVq6c3fZs3SDsJGShgpzaIMzyjdBI2vgW/Y4p6RR0JrRBMMPeJQp+uxo3J BRHiN+G43+ykYqiAnqQZGBmf4tY5otC7 -----END CERTIFICATE-----Generated at Fri May 16 15:35:52 2025 by rpki-client