$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: o+Ai2pR58aw5hGDcVGyrtDG75F6yyD/Zb+wMVyxRunk= Subject key identifier: 06:8F:1B:6F:FD:59:8B:DD:19:AB:8A:BA:61:CC:23:98:1A:F6:9F:92 Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 0840 Signing time: Wed 14 May 2025 20:52:24 +0000 Manifest this update: Wed 14 May 2025 20:52:23 +0000 Manifest next update: Wed 21 May 2025 20:52:23 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: PNTRVRNq6oXITBdhBhAL51NpsG/vVUmS8qaVHlFAaDs=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: Orts9nJAHIeXwpDUPuUMiOuSaf1VvGVbpuD8ge8k//4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48, serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: May 14 20:52:23 2025 GMT Not After : May 21 20:52:23 2025 GMT Subject: CN=68250288-eae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fc:bd:55:fe:78:9a:db:c0:0d:11:85:42:2c: 86:20:6e:f5:3f:ee:28:c7:1a:7e:7e:02:cf:d1:a3: 12:69:58:9d:a3:1a:a1:e8:4c:79:d0:3a:dc:6a:42: d2:bc:22:90:25:22:a1:f7:35:94:30:08:05:71:d6: 73:5c:d2:a0:30:bf:24:1f:85:b0:a7:e1:18:a7:29: 0f:d2:38:4a:af:e5:2a:e9:31:5a:2f:de:a5:44:c4: 8a:f8:4e:35:34:5c:48:ff:a0:a2:35:b7:db:5a:9a: ee:b7:f4:7f:b9:a7:71:db:46:d5:e3:05:64:4b:a9: 38:a4:56:5a:fe:b6:47:39:79:19:a2:3b:fb:a6:c3: 0e:93:98:a4:98:77:08:41:cc:35:83:82:7c:3d:a2: ed:e6:f3:83:7a:c5:40:e5:44:1e:07:c5:58:db:d6: be:02:7d:c6:ce:a1:cb:cf:24:c4:c9:e9:0e:05:81: 35:ad:fc:5f:82:a8:01:0e:6f:92:43:b3:a7:a4:89: 45:76:9e:63:c0:50:62:fd:51:f2:62:d1:4c:4e:3e: 8b:17:bd:e5:39:ba:89:e3:cb:b5:f7:cd:87:05:65: 8e:52:c0:0d:0d:34:a3:47:90:9a:3d:f0:7e:6c:49: 10:78:ff:40:af:72:14:24:5f:4a:a4:6d:a2:c5:65: 72:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8F:1B:6F:FD:59:8B:DD:19:AB:8A:BA:61:CC:23:98:1A:F6:9F:92 X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:6a:38:d9:87:6b:65:2c:d4:a6:ed:98:ed:65:4d:00:b9:26: 6a:84:e5:71:a8:ca:28:d9:ea:16:3e:0d:40:df:f8:d5:d8:24: 65:7c:bc:90:fc:e1:da:14:91:06:6a:81:21:9f:8b:12:77:10: e8:f9:2b:82:40:08:ed:6e:c8:36:d7:f0:db:13:6b:e6:4a:26: 6c:90:df:e6:30:ab:ac:d9:45:bd:1d:8a:b4:c1:1b:bf:73:25: a8:21:ce:73:0b:4a:4e:40:69:41:a8:70:97:3d:89:d4:e4:17: 7d:10:4b:38:04:8f:b3:1e:23:5f:69:c8:b0:5a:19:3e:27:d0: 2d:6c:fe:c6:1c:c5:ca:8f:f1:29:1a:be:b4:89:b4:17:ae:a3: 9e:c4:09:55:1b:8a:60:ac:8c:c7:00:7e:10:58:31:00:7d:4b: aa:01:c5:b1:17:8f:1a:c2:a8:61:c0:4f:56:39:63:7b:57:65: e8:e8:01:cf:9b:bf:6b:9b:8a:74:f5:c4:82:b8:a0:6b:83:f6: fe:fe:7c:76:20:d8:62:f8:c5:02:93:90:8f:f2:63:89:59:28: fd:f2:80:8d:26:98:c9:30:d9:65:37:c3:77:ce:f5:99:b3:22: b1:11:91:11:82:9f:17:f0:e4:37:d2:96:98:ff:34:81:b0:7f: 6e:8b:f3:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjUwNTE0MjA1MjIzWhcNMjUwNTIxMjA1MjIzWjAYMRYwFAYD VQQDEw02ODI1MDI4OC1lYWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fy9Vf54mtvADRGFQiyGIG71P+4oxxp+fgLP0aMSaVidoxqh6Ex50DrcakLS vCKQJSKh9zWUMAgFcdZzXNKgML8kH4Wwp+EYpykP0jhKr+Uq6TFaL96lRMSK+E41 NFxI/6CiNbfbWprut/R/uadx20bV4wVkS6k4pFZa/rZHOXkZojv7psMOk5ikmHcI Qcw1g4J8PaLt5vODesVA5UQeB8VY29a+An3GzqHLzyTEyekOBYE1rfxfgqgBDm+S Q7OnpIlFdp5jwFBi/VHyYtFMTj6LF73lObqJ48u1982HBWWOUsANDTSjR5CaPfB+ bEkQeP9Ar3IUJF9KpG2ixWVyzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaPG2/9 WYvdGauKumHMI5ga9p+SMB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGajjZh2tlLNSm7ZjtZU0AuSZqhOVxqMoo2eoWPg1A3/jV2CRlfLyQ /OHaFJEGaoEhn4sSdxDo+SuCQAjtbsg21/DbE2vmSiZskN/mMKus2UW9HYq0wRu/ cyWoIc5zC0pOQGlBqHCXPYnU5Bd9EEs4BI+zHiNfaciwWhk+J9AtbP7GHMXKj/Ep Gr60ibQXrqOexAlVG4pgrIzHAH4QWDEAfUuqAcWxF48awqhhwE9WOWN7V2Xo6AHP m79rm4p09cSCuKBrg/b+/nx2INhi+MUCk5CP8mOJWSj98oCNJpjJMNllN8N3zvWZ syKxEZERgp8X8OQ30paY/zSBsH9ui/M7 -----END CERTIFICATE-----Generated at Fri May 16 07:13:37 2025 by rpki-client