$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft File: DtUqdvMcJCF0oq0ZSByVcDty4jY.mft (raw, json) Hash identifier: 4k7mSjt8UggihP4iTzZsUNBqUoDagN80cAwVqgB5vP0= Subject key identifier: 15:40:92:98:BD:46:45:E8:51:60:96:34:10:82:74:3E:F2:21:C6:9F Authority key identifier: 0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 Certificate issuer: /CN=A91E33D7/serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Certificate serial: 0DFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft Manifest number: 0DF3 Signing time: Wed 14 May 2025 17:58:48 +0000 Manifest this update: Wed 14 May 2025 17:58:47 +0000 Manifest next update: Wed 21 May 2025 17:58:47 +0000 Files and hashes: 1: DtUqdvMcJCF0oq0ZSByVcDty4jY.crl (hash: RmQIiBGdxcGHDCZ3vQEcPcuqTRtA4mHc78+KWIChQ5A=) 2: C26576D4F4ED11E9ACC51713C4F9AE02.roa (hash: leeMqNjzFzLxyR/PuwyeZTmIKl73aTot0VdgEtIi1fo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3580 (0xdfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33D7, serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Validity Not Before: May 14 17:58:47 2025 GMT Not After : May 21 17:58:47 2025 GMT Subject: CN=6824d9d7-af2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:02:25:48:69:b9:65:a2:2d:bb:c2:0f:b8: 84:9e:b9:04:6a:90:a7:3e:60:33:0e:36:f3:28:03: 56:c4:37:ca:ff:4e:d4:cf:50:7b:d2:64:5e:28:fe: f7:eb:16:02:6d:92:2c:52:fa:b2:13:dc:c0:fa:e6: bf:53:fe:8e:42:13:fb:91:74:fd:bc:5d:8d:19:ff: 25:30:3f:ec:8e:e7:38:13:51:9a:b6:02:df:f3:30: af:04:1e:cc:77:8d:cd:8d:8c:83:18:cb:38:a0:93: 8d:b8:f7:4e:fb:48:df:66:bc:7c:c4:aa:2e:ab:87: 71:f6:7e:ec:a2:5b:ae:12:88:d6:53:a6:37:d6:68: d4:c8:5b:fc:b0:fb:4c:75:e5:0e:1d:96:b4:16:05: f9:80:46:79:c3:5e:42:43:9f:e8:17:f7:49:6f:21: 56:13:00:2d:c2:fa:bd:cc:29:2c:16:0d:7c:17:7e: da:31:17:22:be:c5:7a:fd:45:ab:dd:92:f0:28:62: b8:a8:f0:d6:68:9f:62:2b:89:b8:5a:3e:e9:b6:e8: bb:8b:8a:36:8e:29:b5:d8:86:41:25:e0:49:fb:df: 7a:2b:45:ed:d4:fa:bc:55:2e:7f:df:98:73:91:af: fe:df:17:06:53:df:33:f3:f6:f3:fc:f8:c1:e5:a1: 2d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:40:92:98:BD:46:45:E8:51:60:96:34:10:82:74:3E:F2:21:C6:9F X509v3 Authority Key Identifier: keyid:0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:a6:dd:e9:24:4d:d0:ac:33:c0:f0:3b:cf:39:16:d2:d4:e8: 33:13:d1:72:5d:6b:0a:dd:ee:83:53:93:ca:26:e2:fa:32:83: ee:66:a9:30:a1:67:63:7c:b2:97:f0:fe:aa:2e:6f:f6:75:25: 0a:fb:7d:90:73:d0:2f:f4:7a:94:6f:b9:c5:b0:bc:da:bd:f6: 2d:6d:5b:3b:ff:18:e5:36:58:ea:29:cf:5e:a9:e4:bb:54:d1: a8:9b:41:6a:52:e6:92:fb:69:93:fe:d0:af:d3:15:ce:aa:26: 28:40:5f:4d:9f:46:65:3e:6e:46:0e:0a:33:13:30:b4:ef:6a: 37:f4:29:c5:11:8b:ae:fd:2c:84:8e:e8:7c:dd:ce:36:af:47: bb:79:19:f5:ba:97:31:40:12:28:18:a9:51:40:69:c1:5d:84: 6c:f4:e8:c2:92:71:4d:70:25:92:ad:fd:1c:62:7c:66:48:60: cc:3b:df:fd:53:94:95:85:89:c4:1a:74:e1:e9:8a:a2:a0:a7: c8:69:d5:65:88:8b:8e:e4:29:fa:7f:3d:fb:ed:ad:60:ca:52: f5:fa:fd:b8:00:2c:90:64:28:3a:a7:39:ff:c9:97:40:4d:59: 20:09:b1:83:5a:8b:4f:4f:30:05:94:d9:71:54:c9:4c:4d:9e: 73:38:c7:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzRDcxMTAvBgNVBAUTKDBFRDUyQTc2RjMxQzI0MjE3NEEyQUQxOTQ4MUM5NTcw M0I3MkUyMzYwHhcNMjUwNTE0MTc1ODQ3WhcNMjUwNTIxMTc1ODQ3WjAYMRYwFAYD VQQDEw02ODI0ZDlkNy1hZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNECJUhpuWWiLbvCD7iEnrkEapCnPmAzDjbzKANWxDfK/07Uz1B70mReKP73 6xYCbZIsUvqyE9zA+ua/U/6OQhP7kXT9vF2NGf8lMD/sjuc4E1GatgLf8zCvBB7M d43NjYyDGMs4oJONuPdO+0jfZrx8xKouq4dx9n7soluuEojWU6Y31mjUyFv8sPtM deUOHZa0FgX5gEZ5w15CQ5/oF/dJbyFWEwAtwvq9zCksFg18F37aMRcivsV6/UWr 3ZLwKGK4qPDWaJ9iK4m4Wj7ptui7i4o2jim12IZBJeBJ+996K0Xt1Pq8VS5/35hz ka/+3xcGU98z8/bz/PjB5aEtKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVAkpi9 RkXoUWCWNBCCdD7yIcafMB8GA1UdIwQYMBaAFA7VKnbzHCQhdKKtGUgclXA7cuI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzNENy9EQzdEODg2NEFF QjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pDRjBvcTBaU0J5VmNEdHk0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R0VXFkdk1jSkNGMG9xMFpTQnlWY0R0eTRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzNENy9EQzdEODg2NEFFQjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pD RjBvcTBaU0J5VmNEdHk0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhpt3pJE3QrDPA8DvPORbS1OgzE9FyXWsK3e6DU5PKJuL6MoPuZqkw oWdjfLKX8P6qLm/2dSUK+32Qc9Av9HqUb7nFsLzavfYtbVs7/xjlNljqKc9eqeS7 VNGom0FqUuaS+2mT/tCv0xXOqiYoQF9Nn0ZlPm5GDgozEzC072o39CnFEYuu/SyE juh83c42r0e7eRn1upcxQBIoGKlRQGnBXYRs9OjCknFNcCWSrf0cYnxmSGDMO9/9 U5SVhYnEGnTh6YqioKfIadVliIuO5Cn6fz377a1gylL1+v24ACyQZCg6pzn/yZdA TVkgCbGDWotPTzAFlNlxVMlMTZ5zOMdD -----END CERTIFICATE-----Generated at Thu May 15 09:00:42 2025 by rpki-client