$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: gNrVQ632MswHVQNs+6iludWrrbAGPEkpn20KOlhxiPc= Subject key identifier: 51:3C:54:79:31:E5:70:2E:86:D9:8E:EE:C8:E8:5A:47:2C:B6:25:67 Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 01D9 Signing time: Tue 13 May 2025 04:32:36 +0000 Manifest this update: Tue 13 May 2025 04:32:36 +0000 Manifest next update: Tue 20 May 2025 04:32:36 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: oRbChuWT6cKlLGZYrmEjPO3x/8k8SQxux84BTLF2UqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: May 13 04:32:36 2025 GMT Not After : May 20 04:32:36 2025 GMT Subject: CN=6822cb64-969b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c7:6b:35:a2:6a:2c:f8:d1:22:b8:d3:cb:62: 8d:e5:22:76:89:f6:44:67:50:17:66:be:81:3a:d9: d7:f2:c7:1a:1d:18:d0:ea:32:9d:2c:93:e6:ea:d1: ee:1d:83:f7:97:27:13:da:a8:7b:73:53:fa:b0:a2: 2e:5d:8e:33:a7:d7:fc:bd:90:b1:d1:2b:e9:41:68: 9d:2b:1e:22:02:11:8d:e7:17:b3:07:c9:bd:f7:90: 11:57:0c:3a:01:a7:bc:bd:b9:04:81:b2:dc:1c:64: 4a:ab:21:6d:da:1c:b6:49:de:da:bd:6e:2a:92:5e: 79:40:eb:16:5d:5a:09:09:33:d8:55:4f:9f:1a:8a: 6e:ba:6e:cc:50:08:fc:b2:14:17:61:45:4f:ab:68: e1:81:ae:4a:48:b7:5b:c1:d2:03:5c:41:d5:97:62: 71:7a:a3:21:48:ee:1c:3e:8c:ac:27:c3:13:6f:01: 3b:1d:ec:fb:81:bf:7b:4a:27:86:9c:63:f4:8b:0d: 7d:04:ee:8d:e9:31:23:33:14:04:bf:4c:81:2c:58: 6b:a0:b7:0d:5e:a7:35:0b:6e:12:d4:0c:56:be:e2: 77:47:4e:72:15:42:12:0c:bf:a2:21:f4:64:19:dc: e7:39:aa:04:0a:41:a5:b2:9a:a6:68:5b:3c:54:5d: cf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:3C:54:79:31:E5:70:2E:86:D9:8E:EE:C8:E8:5A:47:2C:B6:25:67 X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:0b:d0:59:00:fc:03:37:4b:a7:e2:45:01:1f:ab:54:9c:5d: 8d:d2:c8:36:28:6e:e0:9a:cc:52:09:51:5a:ff:61:7a:db:23: a1:cd:6b:69:2c:f4:62:92:10:67:27:16:82:9c:de:b3:00:62: 36:76:31:26:c9:93:e2:d1:e8:09:a1:5a:06:2f:df:86:6a:42: 99:a2:59:77:63:80:6b:c0:8d:95:8f:1e:a5:9c:16:1f:68:cc: d3:dc:39:fc:03:7c:f9:00:f3:ae:6d:95:fd:8e:3d:4e:51:76: 06:64:bc:64:37:b2:f1:c3:6a:ed:5e:b2:a6:2c:07:e1:f0:3e: 8e:a3:f8:df:1f:c9:68:2f:c0:cc:63:a7:33:cc:69:b2:7f:b7: 6b:ad:23:57:2b:e5:45:07:ce:02:f6:66:d8:08:d7:07:a5:2a: d6:a0:00:e5:95:2f:21:eb:55:96:86:83:03:56:cc:26:62:f9: 3c:73:51:df:c4:e3:af:d8:51:ac:76:ec:30:2d:d8:10:fc:4c: 94:ad:47:e7:90:5e:5a:ab:00:50:27:55:bb:d4:0c:19:8b:a8: cb:c9:0e:0b:18:b6:de:19:8b:af:4f:63:bd:8d:5a:d5:4a:9d: 31:33:a7:83:6d:f8:e9:b0:ed:2f:24:f0:23:de:bc:ed:07:02: cf:60:59:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjUwNTEzMDQzMjM2WhcNMjUwNTIwMDQzMjM2WjAYMRYwFAYD VQQDEw02ODIyY2I2NC05NjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMdrNaJqLPjRIrjTy2KN5SJ2ifZEZ1AXZr6BOtnX8scaHRjQ6jKdLJPm6tHu HYP3lycT2qh7c1P6sKIuXY4zp9f8vZCx0SvpQWidKx4iAhGN5xezB8m995ARVww6 Aae8vbkEgbLcHGRKqyFt2hy2Sd7avW4qkl55QOsWXVoJCTPYVU+fGopuum7MUAj8 shQXYUVPq2jhga5KSLdbwdIDXEHVl2JxeqMhSO4cPoysJ8MTbwE7Hez7gb97SieG nGP0iw19BO6N6TEjMxQEv0yBLFhroLcNXqc1C24S1AxWvuJ3R05yFUISDL+iIfRk GdznOaoECkGlspqmaFs8VF3PNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFE8VHkx 5XAuhtmO7sjoWkcstiVnMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlC9BZAPwDN0un4kUBH6tUnF2N0sg2KG7gmsxSCVFa/2F62yOhzWtp LPRikhBnJxaCnN6zAGI2djEmyZPi0egJoVoGL9+GakKZoll3Y4BrwI2Vjx6lnBYf aMzT3Dn8A3z5APOubZX9jj1OUXYGZLxkN7Lxw2rtXrKmLAfh8D6Oo/jfH8loL8DM Y6czzGmyf7drrSNXK+VFB84C9mbYCNcHpSrWoADllS8h61WWhoMDVswmYvk8c1Hf xOOv2FGsduwwLdgQ/EyUrUfnkF5aqwBQJ1W71AwZi6jLyQ4LGLbeGYuvT2O9jVrV Sp0xM6eDbfjpsO0vJPAj3rztBwLPYFnT -----END CERTIFICATE-----Generated at Wed May 14 15:14:59 2025 by rpki-client