$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft File: dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft (raw, json) Hash identifier: d0MGTRUfpnjUg/5uIPEdb2WZyifXwr6Ku+LeBXTHvME= Subject key identifier: D6:35:B5:2E:BA:D2:29:30:0F:A9:BA:39:4E:A7:A8:6D:E6:B1:AB:D3 Authority key identifier: 75:9A:6E:03:F0:CE:7D:7C:2D:DA:80:48:FB:A8:13:3E:CC:66:3E:ED Certificate issuer: /CN=A91E85C5/serialNumber=759A6E03F0CE7D7C2DDA8048FBA8133ECC663EED Certificate serial: 03E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft Manifest number: 03DB Signing time: Sun 11 May 2025 00:07:45 +0000 Manifest this update: Sun 11 May 2025 00:07:44 +0000 Manifest next update: Sun 18 May 2025 00:07:44 +0000 Files and hashes: 1: dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl (hash: tCrZtNlb1JQN06nfupkH1q/4hnZedhBO+EsLtcYx36c=) 2: 14AD3D427E9D11EC914D4A6DC4F9AE02.roa (hash: 8BQNN/QNIWAJlkiQOUN0UFHd3tX4uQeluOnMm/rMf64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 992 (0x3e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85C5, serialNumber=759A6E03F0CE7D7C2DDA8048FBA8133ECC663EED Validity Not Before: May 11 00:07:44 2025 GMT Not After : May 18 00:07:44 2025 GMT Subject: CN=681fea51-f87a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2b:7b:3b:7e:3c:e8:ce:c9:e7:d0:05:5e:e3: 1d:62:ba:69:e2:20:20:dc:a2:42:b7:76:30:c6:4c: 77:5d:0b:df:68:5a:42:6f:9b:ea:14:bf:53:d7:ae: f7:10:37:38:1b:3b:3e:7c:f7:8c:a5:4a:5a:29:0c: 38:dd:66:18:f0:19:76:1f:88:de:0c:a9:6c:2e:00: 39:85:3a:cd:5c:84:fe:3a:14:82:40:af:6c:ee:45: 89:57:47:e6:a1:e1:5b:0c:1a:cd:cc:3d:6c:34:7b: c1:c9:02:96:b8:e8:95:44:8a:7b:90:ef:9f:0d:47: 64:72:39:8b:bc:c0:a6:73:bd:ca:49:40:a7:93:3e: d6:27:a2:7a:a8:26:86:cc:a9:1c:bb:a2:09:4f:6b: 67:bb:7e:fb:7b:21:d8:f7:c1:93:9f:a0:81:39:83: 60:d8:27:dd:b5:da:a6:3f:c6:0e:1a:4b:3c:05:27: 75:28:33:d3:2b:fe:5f:2a:d4:eb:05:2a:8e:1d:bb: 55:f0:c9:00:bf:35:ce:6c:1b:41:be:b9:ef:e7:0d: dc:79:21:31:0f:be:88:c5:6b:cb:3b:95:fe:d7:77: e0:85:6c:8c:b8:ba:ff:82:26:54:8b:69:73:a0:6c: 35:6d:80:33:5c:cc:d9:86:29:97:23:52:4d:02:e6: 81:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:35:B5:2E:BA:D2:29:30:0F:A9:BA:39:4E:A7:A8:6D:E6:B1:AB:D3 X509v3 Authority Key Identifier: keyid:75:9A:6E:03:F0:CE:7D:7C:2D:DA:80:48:FB:A8:13:3E:CC:66:3E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:41:97:5f:8a:7e:30:d2:2f:3e:11:41:7d:c0:f6:b5:fa:e0: 92:48:2d:79:d0:07:0b:b8:1a:66:a8:fc:f0:fd:99:15:64:f0: bc:8d:92:69:91:a3:09:a5:4b:0e:29:2d:b2:d7:84:a8:07:91: 0b:74:7e:54:b2:41:dc:af:af:0d:77:6c:a9:f5:16:28:ec:f3: 5b:14:c2:0e:fc:08:4c:d9:cb:fd:b0:dd:76:a5:00:69:bf:0b: 9a:bc:4d:92:41:a8:02:19:5c:a2:87:d7:08:bc:05:39:e1:91: 89:70:80:dd:46:cb:91:fb:35:09:00:3a:1d:4a:bf:95:4e:46: de:ae:2c:c7:80:2b:5b:2e:55:d8:23:64:11:4b:3a:42:77:b6: b3:ee:2f:aa:4e:0b:0b:70:20:d0:af:78:de:b0:59:28:ea:02: 37:d9:86:18:5c:a7:79:ab:16:a8:80:98:8b:5d:6a:10:ef:6a: 65:5b:b4:46:6a:1a:87:d6:be:dc:f7:49:cf:c9:48:60:3c:85: 5f:f7:d8:7d:75:f8:74:cd:c3:1f:af:32:46:5c:a9:9a:85:cc: b4:d3:c4:da:65:61:11:6e:f1:41:36:a4:a1:56:1c:8d:3b:fd: 22:54:cc:bd:7e:7c:cd:71:e2:18:d2:43:4e:88:f2:e1:fb:e1: 99:d4:fc:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1QzUxMTAvBgNVBAUTKDc1OUE2RTAzRjBDRTdEN0MyRERBODA0OEZCQTgxMzNF Q0M2NjNFRUQwHhcNMjUwNTExMDAwNzQ0WhcNMjUwNTE4MDAwNzQ0WjAYMRYwFAYD VQQDEw02ODFmZWE1MS1mODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ct7O3486M7J59AFXuMdYrpp4iAg3KJCt3Ywxkx3XQvfaFpCb5vqFL9T1673 EDc4Gzs+fPeMpUpaKQw43WYY8Bl2H4jeDKlsLgA5hTrNXIT+OhSCQK9s7kWJV0fm oeFbDBrNzD1sNHvByQKWuOiVRIp7kO+fDUdkcjmLvMCmc73KSUCnkz7WJ6J6qCaG zKkcu6IJT2tnu377eyHY98GTn6CBOYNg2CfdtdqmP8YOGks8BSd1KDPTK/5fKtTr BSqOHbtV8MkAvzXObBtBvrnv5w3ceSExD76IxWvLO5X+13fghWyMuLr/giZUi2lz oGw1bYAzXMzZhimXI1JNAuaBtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNY1tS66 0ikwD6m6OU6nqG3msavTMB8GA1UdIwQYMBaAFHWabgPwzn18LdqASPuoEz7MZj7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVDNS84OTNDNjRGNjdF OUExMUVDQTVBRDY3NkJDNEY5QUUwMi9kWnB1QV9ET2ZYd3Qyb0JJLTZnVFBzeG1Q dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RacHVBX0RPZlh3dDJvQkktNmdUUHN4bVB1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVDNS84OTNDNjRGNjdFOUExMUVDQTVBRDY3NkJDNEY5QUUwMi9kWnB1QV9ET2ZY d3Qyb0JJLTZnVFBzeG1QdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeQZdfin4w0i8+EUF9wPa1+uCSSC150AcLuBpmqPzw/ZkVZPC8jZJp kaMJpUsOKS2y14SoB5ELdH5UskHcr68Nd2yp9RYo7PNbFMIO/AhM2cv9sN12pQBp vwuavE2SQagCGVyih9cIvAU54ZGJcIDdRsuR+zUJADodSr+VTkberizHgCtbLlXY I2QRSzpCd7az7i+qTgsLcCDQr3jesFko6gI32YYYXKd5qxaogJiLXWoQ72plW7RG ahqH1r7c90nPyUhgPIVf99h9dfh0zcMfrzJGXKmahcy008TaZWERbvFBNqShVhyN O/0iVMy9fnzNceIY0kNOiPLh++GZ1Pz3 -----END CERTIFICATE-----Generated at Mon May 12 16:10:08 2025 by rpki-client