$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: g+lXkDtD2zK3504pdM6W6ICaUNmoCJ+DTWdWSh5ywfM= Subject key identifier: BE:02:2F:FE:40:B1:C8:37:10:87:A8:B8:39:4E:4E:05:DA:1C:FD:42 Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: 8E Signing time: Sun 11 May 2025 05:12:03 +0000 Manifest this update: Sun 11 May 2025 05:12:02 +0000 Manifest next update: Sun 18 May 2025 05:12:02 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: nVQCgkr+2Z6PNTlLNSouEfjr8x2dLeFjfPeya20nwD4=) 2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: May 11 05:12:02 2025 GMT Not After : May 18 05:12:02 2025 GMT Subject: CN=682031a3-ca5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:83:ed:1c:b0:b2:5f:a7:4b:97:d4:04:8c:66: f3:d0:4a:21:cf:bd:db:1c:ad:51:d4:67:72:cc:35: 17:db:b7:57:62:70:12:e8:5c:02:04:cd:63:0b:65: 24:78:29:85:ba:af:ab:22:0d:d3:51:6d:6d:ba:8e: ec:c2:79:1d:f5:cb:62:d0:9d:2b:0e:0b:d8:be:f9: 9d:9b:3e:3b:bf:ab:b0:d0:f7:ae:dd:39:74:c2:68: 88:d8:0c:87:2e:0d:e0:37:0f:85:ed:ea:94:a8:34: f1:d7:92:16:f8:83:d3:12:26:04:7f:de:a9:d5:e7: 5c:69:cc:83:bd:8b:17:50:fc:8b:7d:52:9d:a1:ba: 34:ca:67:61:9a:e2:0d:15:03:48:ce:66:6d:0f:66: 8f:91:06:e7:68:93:73:26:82:55:a8:e5:1e:2c:d6: 68:bb:d5:47:54:f6:3c:70:64:6a:ca:4b:b5:43:2b: 1f:09:c5:37:cd:54:1b:a7:51:65:21:21:ef:0d:d5: ed:54:6e:4d:bf:9c:17:43:e7:58:15:ec:45:01:56: 0c:e6:fc:a4:10:7a:c0:0c:87:7c:5d:e7:08:6d:e8: dc:f5:aa:0f:b7:c0:1b:54:59:52:5f:21:a7:df:ef: bb:c0:11:ee:bc:ca:55:35:ff:c0:17:42:37:6b:d6: e1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:02:2F:FE:40:B1:C8:37:10:87:A8:B8:39:4E:4E:05:DA:1C:FD:42 X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1e:8a:2a:d5:a6:e1:e7:a0:45:9e:da:61:84:38:97:21:76: eb:10:96:92:35:d7:51:9a:c2:49:b4:08:c8:77:c1:35:cb:6a: 40:12:4c:bf:c2:a2:1e:fc:dd:89:be:1c:c2:5a:51:d3:78:7a: e3:7e:1c:80:b5:9d:e7:66:4b:c6:72:fd:f4:d8:15:5a:96:a1: 17:c1:70:d8:a4:e3:07:6c:b6:70:c3:67:e6:ac:6a:92:1c:96: 9b:6b:1c:17:59:9b:5d:c6:e8:f1:55:4d:6b:a7:d4:61:9d:bf: 6b:67:32:47:88:5b:a0:48:b1:a3:40:28:7d:83:32:0f:c0:a6: 5f:23:80:36:6d:30:39:e1:9b:ed:c8:66:b3:b3:98:77:5d:34: 8b:22:61:27:39:92:66:5d:ac:83:f9:1e:df:39:dd:b1:6c:fb: 94:08:80:10:27:69:28:6e:89:0d:f5:62:80:5a:ba:28:f4:af: 27:8b:96:84:ca:3a:97:61:6a:ff:15:fe:5c:90:c8:ce:91:66: d5:ab:b9:bb:e2:a2:76:9e:95:a4:f6:0c:7d:7d:06:92:03:82: c2:e5:95:02:d9:57:9e:e6:b0:f0:16:78:15:1b:1f:10:04:aa: 30:e5:6e:5c:e0:13:16:eb:53:25:04:dc:66:ba:45:58:ff:90: de:9a:a6:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjUwNTExMDUxMjAyWhcNMjUwNTE4MDUxMjAyWjAYMRYwFAYD VQQDEw02ODIwMzFhMy1jYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIPtHLCyX6dLl9QEjGbz0Eohz73bHK1R1GdyzDUX27dXYnAS6FwCBM1jC2Uk eCmFuq+rIg3TUW1tuo7swnkd9cti0J0rDgvYvvmdmz47v6uw0Peu3Tl0wmiI2AyH Lg3gNw+F7eqUqDTx15IW+IPTEiYEf96p1edcacyDvYsXUPyLfVKdobo0ymdhmuIN FQNIzmZtD2aPkQbnaJNzJoJVqOUeLNZou9VHVPY8cGRqyku1QysfCcU3zVQbp1Fl ISHvDdXtVG5Nv5wXQ+dYFexFAVYM5vykEHrADId8XecIbejc9aoPt8AbVFlSXyGn 3++7wBHuvMpVNf/AF0I3a9bheQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4CL/5A scg3EIeouDlOTgXaHP1CMB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJu ZmhpYlViNG00bHlSVTR4VncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaHooq1abh56BFntphhDiXIXbrEJaSNddRmsJJtAjId8E1y2pAEky/ wqIe/N2JvhzCWlHTeHrjfhyAtZ3nZkvGcv302BValqEXwXDYpOMHbLZww2fmrGqS HJabaxwXWZtdxujxVU1rp9Rhnb9rZzJHiFugSLGjQCh9gzIPwKZfI4A2bTA54Zvt yGazs5h3XTSLImEnOZJmXayD+R7fOd2xbPuUCIAQJ2kobokN9WKAWroo9K8ni5aE yjqXYWr/Ff5ckMjOkWbVq7m74qJ2npWk9gx9fQaSA4LC5ZUC2Vee5rDwFngVGx8Q BKow5W5c4BMW61MlBNxmukVY/5Demqaq -----END CERTIFICATE-----Generated at Mon May 12 12:28:34 2025 by rpki-client