$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: BEDrt1mRJh4V1KFuwfTikCHEx/ilAKieVcaX1V9twWA= Subject key identifier: D8:AB:2B:61:AD:E4:F7:AC:AE:3D:8D:C9:15:44:DC:37:05:04:90:18 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0B7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0B76 Signing time: Wed 14 May 2025 19:10:55 +0000 Manifest this update: Wed 14 May 2025 19:10:55 +0000 Manifest next update: Wed 21 May 2025 19:10:55 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: X4dHGQqSEGnDcsHmqkiew1TuN1bKh+TwojhTJbhB2nQ=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: VUxxRKza4YtkY3CW36/yWhqdjkRvkusFphcVpxC9+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2940 (0xb7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: May 14 19:10:55 2025 GMT Not After : May 21 19:10:55 2025 GMT Subject: CN=6824eabf-50aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c7:3e:54:fd:34:2d:d9:34:5f:44:ee:4a:c9: e0:58:fc:65:7c:1b:22:ff:34:95:f9:98:17:76:fe: 0f:65:0e:5d:fd:d8:b6:56:df:dc:79:90:74:45:fc: cd:7c:58:a7:d0:bd:66:e4:0d:a9:a0:07:f0:8e:e6: 27:7d:da:98:b3:8e:cc:c5:86:91:ca:97:06:af:ea: 69:36:f1:2a:22:81:67:d6:cd:cc:a6:9f:61:9d:7b: fa:98:06:3b:31:33:3b:e1:51:b6:03:47:76:c4:8e: 59:e6:27:51:51:d6:6f:fc:ba:64:ad:ec:9a:16:e6: be:82:76:cf:1b:8d:b1:ad:49:42:71:bd:9d:71:b8: 43:b5:f0:69:d7:fa:dc:75:b5:50:01:73:09:53:38: 7c:6b:17:c9:24:19:6b:c4:5f:8d:d9:80:39:d6:f9: 0d:8b:a7:6f:13:0e:54:3e:cf:0b:af:36:f2:19:36: 0e:5e:a6:ec:17:40:7d:89:22:33:40:99:58:2b:d5: 7a:76:db:5f:1b:43:d9:af:c9:24:c4:ec:41:29:27: 9d:2b:90:8e:ff:64:a0:0a:58:2e:27:10:8a:6e:41: 10:ae:97:b4:86:21:7e:c8:88:bd:cb:52:a6:32:d9: 06:e9:7c:a5:7b:a1:31:da:4c:d6:ef:69:b8:be:56: cc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:AB:2B:61:AD:E4:F7:AC:AE:3D:8D:C9:15:44:DC:37:05:04:90:18 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:84:d5:f3:f9:b6:4f:a1:96:0f:d9:43:ec:ff:d5:52:c6:f5: d5:1e:16:2c:82:c3:af:9f:9a:d7:aa:d6:0b:f2:54:09:3d:9a: 1d:9e:3d:89:92:2c:17:4c:36:8e:9b:0d:3e:3c:af:70:3a:1b: 38:ec:fd:3f:36:77:1c:d2:a2:07:05:d4:c4:70:f2:bd:25:15: a8:33:75:8a:37:c5:1f:bf:34:74:1b:48:4a:70:7b:ee:90:b3: c4:d4:d3:54:5b:55:c7:81:a0:de:0b:4a:ae:7b:60:a8:1f:85: 77:3c:a0:24:70:61:62:86:a6:9a:53:5b:57:69:bc:53:4e:8d: f9:13:1e:d6:0c:eb:8f:87:2d:85:44:10:e9:29:fe:79:c4:d4: ad:45:c5:17:c3:5c:ac:51:5d:ed:33:36:7a:40:07:c6:f3:1d: 12:a7:cf:76:ac:0c:0d:04:bf:81:9c:16:09:16:87:6c:d6:83: 9d:66:97:13:82:4f:ed:4b:59:37:35:ec:35:29:0f:dc:fd:ca: 4a:eb:1d:e9:6c:ca:01:a1:62:c3:2b:76:fb:9c:43:cf:df:f5: a8:af:17:c7:00:63:05:d6:ad:55:42:98:a9:f6:e7:b2:4e:df: 96:2a:59:73:28:01:c7:fe:34:d6:43:a9:a8:8f:5c:c6:e7:fa: 7c:21:de:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUwNTE0MTkxMDU1WhcNMjUwNTIxMTkxMDU1WjAYMRYwFAYD VQQDEw02ODI0ZWFiZi01MGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28c+VP00Ldk0X0TuSsngWPxlfBsi/zSV+ZgXdv4PZQ5d/di2Vt/ceZB0RfzN fFin0L1m5A2poAfwjuYnfdqYs47MxYaRypcGr+ppNvEqIoFn1s3Mpp9hnXv6mAY7 MTM74VG2A0d2xI5Z5idRUdZv/LpkreyaFua+gnbPG42xrUlCcb2dcbhDtfBp1/rc dbVQAXMJUzh8axfJJBlrxF+N2YA51vkNi6dvEw5UPs8LrzbyGTYOXqbsF0B9iSIz QJlYK9V6dttfG0PZr8kkxOxBKSedK5CO/2SgClguJxCKbkEQrpe0hiF+yIi9y1Km MtkG6Xyle6Ex2kzW72m4vlbMJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNirK2Gt 5Pesrj2NyRVE3DcFBJAYMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfhNXz+bZPoZYP2UPs/9VSxvXVHhYsgsOvn5rXqtYL8lQJPZodnj2J kiwXTDaOmw0+PK9wOhs47P0/Nncc0qIHBdTEcPK9JRWoM3WKN8UfvzR0G0hKcHvu kLPE1NNUW1XHgaDeC0que2CoH4V3PKAkcGFihqaaU1tXabxTTo35Ex7WDOuPhy2F RBDpKf55xNStRcUXw1ysUV3tMzZ6QAfG8x0Sp892rAwNBL+BnBYJFods1oOdZpcT gk/tS1k3New1KQ/c/cpK6x3pbMoBoWLDK3b7nEPP3/WorxfHAGMF1q1VQpip9uey Tt+WKllzKAHH/jTWQ6moj1zG5/p8Id6Y -----END CERTIFICATE-----Generated at Fri May 16 03:18:04 2025 by rpki-client