$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft File: DKQH8N1TBy-ooGCBaRkpbmV31oI.mft (raw, json) Hash identifier: JGZEInKH5fZtRrOvLlIGRv0v7qOIt3Kx9WQICypBWvs= Subject key identifier: E3:62:8D:31:DE:69:F8:6C:86:80:50:E7:02:56:82:DE:F8:F4:71:95 Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0C41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft Manifest number: 0C34 Signing time: Wed 14 May 2025 18:40:57 +0000 Manifest this update: Wed 14 May 2025 18:40:56 +0000 Manifest next update: Wed 21 May 2025 18:40:56 +0000 Files and hashes: 1: DKQH8N1TBy-ooGCBaRkpbmV31oI.crl (hash: hTqBOZqcwu8dm1MvMKUS9s02DDhM6nfr9SEET0fOtUw=) 2: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (hash: YiyWCIvNLdPDV222FaDBu9f6FoqEAO4drbd6AsmezW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:40:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3137 (0xc41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE, serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: May 14 18:40:56 2025 GMT Not After : May 21 18:40:56 2025 GMT Subject: CN=6824e3b9-cb9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:01:50:bb:fc:af:55:56:b1:23:41:ae:8b:6e: cf:c5:5d:20:4d:09:81:08:86:ea:52:a9:45:d4:fc: b3:8c:0e:bc:15:4a:9c:67:70:c7:4c:2b:0d:79:db: 55:d9:67:d2:51:3e:98:8c:77:b4:d6:80:98:c1:7c: 67:46:c6:e8:c3:01:60:76:94:ce:0c:7f:62:ac:7b: 94:c0:05:60:de:24:83:aa:48:dc:a1:88:53:eb:11: 1e:48:33:46:47:08:05:ef:1b:7a:72:06:a8:87:af: 06:5f:4f:00:2e:29:0d:e3:da:81:14:fa:da:f4:80: 77:d9:3c:eb:2f:24:39:b4:5d:b7:51:19:99:7a:9c: 36:1e:4f:cd:29:57:b5:39:18:a2:b4:93:a3:35:e7: 7b:66:f2:0a:8e:02:a0:8b:e0:65:72:39:40:55:e7: 55:f5:57:5f:ac:d7:cf:05:d8:5f:65:a1:93:b9:28: 05:bb:2d:b7:78:cd:dc:73:45:77:9f:20:b2:a1:16: 61:34:75:c4:e2:f1:4c:0c:32:40:91:e0:ac:01:21: 10:a1:cd:5c:d5:e4:61:51:6f:30:4b:e2:01:22:bd: c8:2f:b4:21:c1:c0:f6:dd:4a:f5:a7:b9:c9:9d:a4: 7e:b8:78:7a:05:e7:2d:14:67:a0:3b:54:45:9d:0f: 2b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:62:8D:31:DE:69:F8:6C:86:80:50:E7:02:56:82:DE:F8:F4:71:95 X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b5:96:ef:80:a7:1d:ea:43:bd:24:24:3c:ab:ee:80:ab:c7: 6e:8c:32:44:e6:d3:24:65:15:d2:38:0f:3a:23:69:7b:7b:b0: 59:2b:05:5e:7b:b8:56:bc:01:ba:c5:47:e7:a6:7c:53:f4:2e: dd:62:f5:bc:67:cc:29:04:83:81:55:d6:47:23:14:28:c0:6e: 4e:9a:1c:0a:c3:12:30:06:04:26:be:ff:2e:24:11:37:1b:33: 86:11:6b:08:58:b0:64:3c:89:10:18:2d:ab:99:ba:b6:4e:ca: b0:2c:d4:e1:dc:8c:a7:a4:20:c5:48:76:61:5a:e6:84:ad:f0: cc:78:18:46:e3:eb:f0:b9:68:9f:54:63:54:c8:24:8a:03:07: 90:84:4a:50:d1:0c:93:eb:2a:37:d8:9e:c1:2a:c2:ed:1a:6e: 0e:9e:7c:9e:13:ba:0d:a2:15:5d:70:94:7e:02:18:86:79:dd: 2e:33:4e:65:bb:c7:23:9c:d8:0d:16:bb:54:b9:d3:c8:e6:09: 50:91:53:06:59:58:2a:60:c5:14:02:b1:19:d7:e7:b5:bd:f0: 44:13:eb:6e:37:d9:c5:49:ce:83:22:60:ad:fa:2b:b6:81:59: ed:bc:2f:a3:3a:bc:89:40:4b:08:df:da:ba:55:b7:19:e3:ac: 45:58:b6:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjUwNTE0MTg0MDU2WhcNMjUwNTIxMTg0MDU2WjAYMRYwFAYD VQQDEw02ODI0ZTNiOS1jYjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AFQu/yvVVaxI0Gui27PxV0gTQmBCIbqUqlF1PyzjA68FUqcZ3DHTCsNedtV 2WfSUT6YjHe01oCYwXxnRsbowwFgdpTODH9irHuUwAVg3iSDqkjcoYhT6xEeSDNG RwgF7xt6cgaoh68GX08ALikN49qBFPra9IB32TzrLyQ5tF23URmZepw2Hk/NKVe1 ORiitJOjNed7ZvIKjgKgi+BlcjlAVedV9VdfrNfPBdhfZaGTuSgFuy23eM3cc0V3 nyCyoRZhNHXE4vFMDDJAkeCsASEQoc1c1eRhUW8wS+IBIr3IL7QhwcD23Ur1p7nJ naR+uHh6BectFGegO1RFnQ8r3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONijTHe afhshoBQ5wJWgt749HGVMB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0JERS81MEE5MEUzNjA4MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5 LW9vR0NCYVJrcGJtVjMxb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhtZbvgKcd6kO9JCQ8q+6Aq8dujDJE5tMkZRXSOA86I2l7e7BZKwVe e7hWvAG6xUfnpnxT9C7dYvW8Z8wpBIOBVdZHIxQowG5OmhwKwxIwBgQmvv8uJBE3 GzOGEWsIWLBkPIkQGC2rmbq2TsqwLNTh3IynpCDFSHZhWuaErfDMeBhG4+vwuWif VGNUyCSKAweQhEpQ0QyT6yo32J7BKsLtGm4OnnyeE7oNohVdcJR+AhiGed0uM05l u8cjnNgNFrtUudPI5glQkVMGWVgqYMUUArEZ1+e1vfBEE+tuN9nFSc6DImCt+iu2 gVntvC+jOryJQEsI39q6VbcZ46xFWLaY -----END CERTIFICATE-----Generated at Fri May 16 19:34:41 2025 by rpki-client