$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: mwrBTAEzw0FVtWmu87UF0Ls/IK6CFlVH9/LkmClaVr0= Subject key identifier: 7A:17:6F:02:40:62:27:49:75:82:D1:62:E5:13:AE:9D:0A:E0:63:EB Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: EF Signing time: Sat 10 May 2025 20:03:30 +0000 Manifest this update: Sat 10 May 2025 20:03:29 +0000 Manifest next update: Sat 17 May 2025 20:03:29 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: yArWQCBrz7FK0UXxYo38ejeVOgyEu/XUvL6AFBK17IQ=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: May 10 20:03:29 2025 GMT Not After : May 17 20:03:29 2025 GMT Subject: CN=681fb112-545e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:52:07:66:cb:2e:85:c8:1a:03:63:b3:f2:60: 0c:45:12:4a:ca:21:44:88:af:32:41:dc:4c:2b:c7: 82:fc:6c:c9:a7:97:d3:52:0e:69:e0:98:ca:97:2e: 30:ae:6c:fb:15:18:33:7c:1b:2a:6c:c3:59:7d:ef: c9:0a:5b:e2:cf:9a:e3:73:d4:5f:8a:8c:75:ab:09: af:59:67:b6:2f:e5:4f:57:77:8c:92:8b:60:09:b2: c8:5e:d3:85:3a:51:c4:58:72:fe:55:e9:db:9d:ee: 8d:b0:00:9a:3e:e1:f5:a3:ac:b6:27:db:9a:1b:5a: 2b:77:a2:4c:d9:78:e5:26:1d:5c:0f:f2:d0:a3:f0: f1:77:ce:51:c7:29:ea:2b:1a:d6:2d:6a:e7:79:64: 07:20:b0:32:db:16:a0:85:6a:93:01:1e:ad:2e:56: 2e:4b:e9:c6:95:01:71:0d:85:28:8f:5f:08:e0:64: 27:dd:56:f4:b4:24:56:cd:e6:99:4a:9b:6d:f5:ed: 20:86:a4:54:a9:75:34:06:b7:98:05:19:c9:32:73: ac:78:57:5b:06:0d:b1:5b:16:af:55:b3:ba:5a:8b: b5:12:43:9d:2d:b9:2a:2c:fe:07:ed:fb:f0:1b:05: 20:e5:b3:89:2f:a3:62:da:c0:9d:fc:e1:ee:ec:a1: a3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:17:6F:02:40:62:27:49:75:82:D1:62:E5:13:AE:9D:0A:E0:63:EB X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:52:b7:b5:7b:05:0a:32:a3:2f:97:c4:d5:82:25:8c:c5:57: ea:84:27:8d:cb:a3:5a:90:b4:43:7e:01:c1:0b:d7:95:5b:30: dc:e2:4c:c2:55:95:4b:97:c5:54:bf:11:1d:76:3b:fa:3a:a6: 44:5f:ba:1e:7b:78:a3:37:20:0f:85:96:1d:d2:f0:36:9b:9c: 06:c7:09:49:d3:21:44:f9:7c:13:f1:86:eb:25:53:b9:6d:2f: 79:91:be:81:17:e6:d4:63:82:02:08:5b:c8:70:c7:b7:47:0b: df:c6:9e:73:60:b2:04:61:23:9b:c7:b4:a4:32:b6:46:e3:22: 3b:23:ab:87:65:5b:91:5d:e9:b2:bd:45:ff:51:da:cf:e2:92: 11:c5:43:fe:48:1a:4f:06:91:96:8a:e4:ec:5d:c5:ae:72:c3: 4c:30:ef:f1:0d:5b:17:82:cb:b8:65:26:b0:56:c3:36:4d:01: 55:8b:ed:5b:e6:28:bc:0b:d8:3f:4c:f6:37:5e:00:23:37:ef: 50:1f:d6:1e:31:86:ea:0b:5b:a8:0b:5a:02:f7:d1:53:97:83: 94:e8:0f:06:c9:8f:b0:4c:2d:d8:16:76:ae:f2:7c:a8:14:0d: 2a:fc:c8:04:76:bb:22:90:16:69:12:cf:5f:f2:32:b5:4d:20: e8:4b:1e:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUwNTEwMjAwMzI5WhcNMjUwNTE3MjAwMzI5WjAYMRYwFAYD VQQDEw02ODFmYjExMi01NDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1IHZssuhcgaA2Oz8mAMRRJKyiFEiK8yQdxMK8eC/GzJp5fTUg5p4JjKly4w rmz7FRgzfBsqbMNZfe/JClviz5rjc9Rfiox1qwmvWWe2L+VPV3eMkotgCbLIXtOF OlHEWHL+Venbne6NsACaPuH1o6y2J9uaG1ord6JM2XjlJh1cD/LQo/Dxd85Rxynq KxrWLWrneWQHILAy2xaghWqTAR6tLlYuS+nGlQFxDYUoj18I4GQn3Vb0tCRWzeaZ Sptt9e0ghqRUqXU0BreYBRnJMnOseFdbBg2xWxavVbO6Wou1EkOdLbkqLP4H7fvw GwUg5bOJL6Ni2sCd/OHu7KGjQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoXbwJA YidJdYLRYuUTrp0K4GPrMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgUre1ewUKMqMvl8TVgiWMxVfqhCeNy6NakLRDfgHBC9eVWzDc4kzC VZVLl8VUvxEddjv6OqZEX7oee3ijNyAPhZYd0vA2m5wGxwlJ0yFE+XwT8YbrJVO5 bS95kb6BF+bUY4ICCFvIcMe3Rwvfxp5zYLIEYSObx7SkMrZG4yI7I6uHZVuRXemy vUX/UdrP4pIRxUP+SBpPBpGWiuTsXcWucsNMMO/xDVsXgsu4ZSawVsM2TQFVi+1b 5ii8C9g/TPY3XgAjN+9QH9YeMYbqC1uoC1oC99FTl4OU6A8GyY+wTC3YFnau8nyo FA0q/MgEdrsikBZpEs9f8jK1TSDoSx7I -----END CERTIFICATE-----Generated at Sun May 11 02:01:50 2025 by rpki-client