$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: LHx80T0rdZNGEi/6IatsmfT6LW/xbrkv3JH+5LCHywM= Subject key identifier: 31:97:E3:D4:A4:45:C8:8F:7E:F7:BB:39:16:01:8E:EA:63:5E:A5:5D Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 0592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 058D Signing time: Mon 30 Jun 2025 23:38:48 +0000 Manifest this update: Mon 30 Jun 2025 23:38:47 +0000 Manifest next update: Mon 07 Jul 2025 23:38:47 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: eVzKZprJ+ENsXxRshcPV8fLESJ2/k/syMQ+XiJJpwdY=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: pYihusS4UyoIsK9PCzKPk27dDaihl6ZYHFqiCUhf6Dc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:38:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Jun 30 23:38:47 2025 GMT Not After : Jul 7 23:38:47 2025 GMT Subject: CN=68632008-daf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e0:e4:15:63:c9:0e:80:90:88:c2:ee:6c:16: 82:99:04:f9:ec:21:7c:ba:96:c4:e1:c2:51:12:64: 1b:14:7b:49:bd:de:0f:7f:12:a5:9e:e9:f3:61:e6: 37:dc:55:5a:a1:35:ed:73:99:64:5e:5d:04:5f:8c: b1:7a:74:dc:ce:a5:b7:f2:e9:31:76:2d:3a:7d:ad: af:f1:52:2f:4b:b0:2e:42:e9:bd:f8:c4:ac:5b:b7: dd:a0:0d:77:be:d8:bd:f7:9c:c4:37:92:e0:54:fc: 4f:e9:e1:ed:08:03:48:72:ea:2c:d8:27:2a:c3:9d: 7f:d0:df:a1:4a:73:0e:38:bd:28:ad:81:56:37:e2: 1e:84:5a:f9:3a:9b:97:cd:20:ae:91:16:85:72:be: 75:b2:64:d8:de:3f:39:3b:03:85:c8:86:f2:cb:88: a1:58:e7:d8:b7:2e:35:b0:d6:c1:83:71:d7:9b:17: 81:1e:76:e9:1d:79:10:1f:d7:db:24:3d:2d:86:e3: 75:1f:1f:c6:bd:4f:87:08:1e:1c:5b:1d:c6:0b:8b: 66:fb:df:e2:b4:51:15:1b:a5:41:3e:46:e5:bd:df: 80:23:2c:03:1f:96:79:61:ab:64:16:3a:34:bf:a6: 3b:05:d2:96:9d:4d:4a:26:57:f7:f8:b2:84:79:7d: c9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:97:E3:D4:A4:45:C8:8F:7E:F7:BB:39:16:01:8E:EA:63:5E:A5:5D X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:10:a6:e1:dd:1f:10:53:10:36:08:7a:5a:56:f6:dd:ec:e8: a5:77:37:4c:2a:48:82:c1:4f:0a:7e:2c:a0:73:19:92:02:1c: a3:00:9a:c7:81:c8:23:76:0a:8c:df:5d:30:40:cd:46:c6:46: 28:22:cb:1b:79:06:87:a2:bb:56:13:fa:25:92:fd:fa:b2:91: aa:f7:f9:4e:dc:be:c5:1d:8d:15:d2:d0:05:08:2d:c0:01:e8: da:67:78:8e:62:35:61:ea:5e:16:54:cb:dd:af:55:c4:14:ce: b3:8e:87:2e:07:e2:73:68:26:80:ed:3d:11:8b:9a:72:f7:f6: d5:51:1e:7b:bd:0a:68:f4:16:fd:aa:7b:38:54:6c:b2:26:22: 77:7f:e9:ec:91:67:15:69:55:94:80:06:bd:76:9c:60:80:f7: c9:3c:9b:0b:6f:b6:7c:08:e3:24:25:7b:91:ec:54:13:9e:e7: 5d:a1:ce:b3:23:3c:9f:ff:7c:b8:f0:5b:5d:7d:7e:0e:e8:f9: a7:44:07:bc:c2:ca:5a:d7:d3:2c:5e:61:0f:38:e7:a2:e2:87: f0:5d:26:9f:3f:f2:94:57:bc:86:77:84:42:8a:32:47:9f:9f: 9f:c1:cf:5d:bc:35:34:49:de:fb:ae:d9:6a:e2:6e:95:08:22: cd:d0:cb:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUwNjMwMjMzODQ3WhcNMjUwNzA3MjMzODQ3WjAYMRYwFAYD VQQDEw02ODYzMjAwOC1kYWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneDkFWPJDoCQiMLubBaCmQT57CF8upbE4cJREmQbFHtJvd4PfxKlnunzYeY3 3FVaoTXtc5lkXl0EX4yxenTczqW38ukxdi06fa2v8VIvS7AuQum9+MSsW7fdoA13 vti995zEN5LgVPxP6eHtCANIcuos2Ccqw51/0N+hSnMOOL0orYFWN+IehFr5OpuX zSCukRaFcr51smTY3j85OwOFyIbyy4ihWOfYty41sNbBg3HXmxeBHnbpHXkQH9fb JD0thuN1Hx/GvU+HCB4cWx3GC4tm+9/itFEVG6VBPkblvd+AIywDH5Z5YatkFjo0 v6Y7BdKWnU1KJlf3+LKEeX3JewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGX49Sk RciPfve7ORYBjupjXqVdMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeEKbh3R8QUxA2CHpaVvbd7OildzdMKkiCwU8KfiygcxmSAhyjAJrH gcgjdgqM310wQM1GxkYoIssbeQaHortWE/olkv36spGq9/lO3L7FHY0V0tAFCC3A AejaZ3iOYjVh6l4WVMvdr1XEFM6zjocuB+JzaCaA7T0Ri5py9/bVUR57vQpo9Bb9 qns4VGyyJiJ3f+nskWcVaVWUgAa9dpxggPfJPJsLb7Z8COMkJXuR7FQTnuddoc6z Izyf/3y48FtdfX4O6PmnRAe8wspa19MsXmEPOOei4ofwXSafP/KUV7yGd4RCijJH n5+fwc9dvDU0Sd77rtlq4m6VCCLN0Mu4 -----END CERTIFICATE-----Generated at Wed Jul 2 03:56:17 2025 by rpki-client