$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: bcyX5z37Bb33JJU+xzgNMq4bkM9eXb8vxRYaD8Z6bkM= Subject key identifier: 06:E8:4F:22:98:92:C7:5F:C2:51:EB:4B:FE:78:C2:9B:C8:7A:47:B7 Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 0576 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 0572 Signing time: Sat 10 May 2025 22:55:26 +0000 Manifest this update: Sat 10 May 2025 22:55:25 +0000 Manifest next update: Sat 17 May 2025 22:55:25 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: THF1ATqR1AX6zn0G9zshhOsf2lPW0uLAiF3goEtFeG0=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: RmQ8zbwrgPfWmABubjovTPZFuV0KwF8EcH+Qm23I29E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1398 (0x576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: May 10 22:55:25 2025 GMT Not After : May 17 22:55:25 2025 GMT Subject: CN=681fd95e-dd35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7e:82:9e:e9:15:56:8d:7c:83:77:e8:86:4f: 9f:de:34:ae:c4:be:59:d2:7a:87:43:8f:05:5e:1e: 97:6c:df:23:1b:41:69:ea:32:7a:67:e5:c8:f7:a9: 7e:b6:66:e6:d8:f9:7f:f3:1f:60:79:95:d5:b5:11: 7c:b5:5b:5b:36:d2:6f:f4:39:b6:a8:68:cb:e9:c6: af:d2:23:26:ef:83:2e:e6:4b:87:cb:71:5a:6a:77: cb:11:7e:38:78:a2:f6:40:14:51:32:c1:e1:6c:1f: ae:63:59:22:7f:f6:32:c8:ec:cb:79:36:68:e0:30: 42:69:5d:fb:bd:da:ee:d3:7e:90:9a:63:4a:66:96: 6e:16:6e:96:d9:36:58:8e:1c:23:4c:f1:5c:f5:50: c7:fc:5a:57:00:0b:d7:11:d0:31:8f:5c:18:df:2c: e3:3e:d0:1c:08:d5:fe:68:fd:d7:25:77:8d:fe:43: c8:f1:45:d7:18:1a:07:a7:e4:87:17:d6:8f:65:f9: 6e:49:63:6e:f5:79:e1:23:27:ab:14:8a:a8:5c:9f: 96:f7:52:6c:c0:46:88:27:b9:1e:bc:3d:b8:fa:a2: 15:2b:e7:ba:03:11:81:69:19:00:db:e0:1f:81:19: ad:45:11:ea:7f:cf:23:99:e8:b2:e9:33:b8:1f:4f: 2e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E8:4F:22:98:92:C7:5F:C2:51:EB:4B:FE:78:C2:9B:C8:7A:47:B7 X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:86:a5:44:58:9f:e1:d0:fa:af:52:cf:1e:b9:7b:1e:d8:fb: b2:70:ae:18:a4:8f:25:58:0a:7d:9a:36:a1:8f:91:51:b4:ff: 08:b1:ac:15:d7:83:f3:a7:fd:8e:e7:d6:25:1f:86:32:2a:ec: 65:e9:e3:3e:45:4e:93:d6:49:fd:44:37:d1:ab:9d:a6:c8:ea: 33:e7:5c:eb:66:f9:e2:89:b7:30:ed:9e:27:4e:99:31:01:65: 3d:67:29:a4:8d:3e:30:2c:2e:1f:f9:48:84:67:c5:20:8b:3c: 84:b6:60:e3:7b:8a:2e:10:3c:0e:0c:53:b3:56:c8:71:8c:5a: 9f:54:d5:f2:33:fe:00:0e:84:db:25:38:64:c4:c4:89:e5:73: 86:37:4c:f1:4a:35:e5:91:21:41:ef:c3:de:3e:3f:40:0a:3d: 1a:d6:b5:1b:a7:da:f5:ad:e6:64:c3:83:c2:6c:23:05:58:b7: 84:eb:26:62:cb:77:83:9a:32:8e:cc:6f:9b:9f:8f:48:c7:cf: 95:6d:7a:8b:af:1f:78:46:ee:f8:b0:3f:b6:7d:32:57:55:b3: 36:0d:1e:41:84:8c:3e:c3:fa:6a:10:44:15:4a:3d:e5:a9:46: e7:b0:e0:c4:fb:fb:d9:58:23:aa:39:5a:87:f3:70:1f:24:51: a0:11:90:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUwNTEwMjI1NTI1WhcNMjUwNTE3MjI1NTI1WjAYMRYwFAYD VQQDEw02ODFmZDk1ZS1kZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx36CnukVVo18g3fohk+f3jSuxL5Z0nqHQ48FXh6XbN8jG0Fp6jJ6Z+XI96l+ tmbm2Pl/8x9geZXVtRF8tVtbNtJv9Dm2qGjL6cav0iMm74Mu5kuHy3FaanfLEX44 eKL2QBRRMsHhbB+uY1kif/YyyOzLeTZo4DBCaV37vdru036QmmNKZpZuFm6W2TZY jhwjTPFc9VDH/FpXAAvXEdAxj1wY3yzjPtAcCNX+aP3XJXeN/kPI8UXXGBoHp+SH F9aPZfluSWNu9XnhIyerFIqoXJ+W91JswEaIJ7kevD24+qIVK+e6AxGBaRkA2+Af gRmtRRHqf88jmeiy6TO4H08uyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAboTyKY ksdfwlHrS/54wpvIeke3MB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7hqVEWJ/h0PqvUs8euXse2PuycK4YpI8lWAp9mjahj5FRtP8IsawV 14Pzp/2O59YlH4YyKuxl6eM+RU6T1kn9RDfRq52myOoz51zrZvniibcw7Z4nTpkx AWU9ZymkjT4wLC4f+UiEZ8UgizyEtmDje4ouEDwODFOzVshxjFqfVNXyM/4ADoTb JThkxMSJ5XOGN0zxSjXlkSFB78PePj9ACj0a1rUbp9r1reZkw4PCbCMFWLeE6yZi y3eDmjKOzG+bn49Ix8+VbXqLrx94Ru74sD+2fTJXVbM2DR5BhIw+w/pqEEQVSj3l qUbnsODE+/vZWCOqOVqH83AfJFGgEZBQ -----END CERTIFICATE-----Generated at Sun May 11 23:03:49 2025 by rpki-client