$ rpki-client -vvf rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft File: _dVXSqazoje0NmmVfYUzlZPcHpo.mft (raw, json) Hash identifier: 2ijqu/88OZDG9/yZ2ZJ8HK/BSzwHOpFh+/Ililnb9Gg= Subject key identifier: 8D:DD:2A:70:96:7C:D1:D6:17:72:06:3B:E0:7A:8B:96:27:C9:71:42 Authority key identifier: FD:D5:57:4A:A6:B3:A2:37:B4:36:69:95:7D:85:33:95:93:DC:1E:9A Certificate issuer: /CN=A91F609C/serialNumber=FDD5574AA6B3A237B43669957D85339593DC1E9A Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft Manifest number: 0287 Signing time: Tue 13 May 2025 01:24:22 +0000 Manifest this update: Tue 13 May 2025 01:24:21 +0000 Manifest next update: Tue 20 May 2025 01:24:21 +0000 Files and hashes: 1: _dVXSqazoje0NmmVfYUzlZPcHpo.crl (hash: dmz1877fUVMCAOQ51tfrUbn5sYLf0mwM0lU7eo14Rts=) 2: 06E87B54046711ED95A3495FC4F9AE02.roa (hash: O80CPOj7379bSxSD9tMHO1NK7nDoOkP7AeQy26Fb7V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.crl rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F609C, serialNumber=FDD5574AA6B3A237B43669957D85339593DC1E9A Validity Not Before: May 13 01:24:21 2025 GMT Not After : May 20 01:24:21 2025 GMT Subject: CN=68229f45-52a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dd:96:27:63:7a:ae:e7:d8:36:16:bf:04:a1: 70:37:1f:82:5a:ee:f3:b5:74:57:c7:4b:e6:c8:38: 33:44:25:0a:1b:bb:fe:28:e9:1d:ea:a8:74:4b:31: c7:e0:a1:c5:91:98:37:3d:41:56:ac:d5:57:be:1c: 20:61:b4:63:f0:69:0b:98:5f:66:61:ab:17:39:79: 39:16:41:16:93:eb:f5:48:c7:1f:37:27:f3:fc:e0: 76:1d:2c:07:4c:6c:3d:66:73:61:a6:da:9b:17:10: e2:ff:b1:13:af:de:57:a5:44:be:04:92:08:e1:a6: e1:35:31:5c:89:f9:8f:a4:eb:cd:a7:4e:e3:e3:39: ac:b8:9f:8a:51:77:72:3c:54:cd:26:ea:8d:29:41: f3:80:cc:6f:00:1a:bd:80:ab:3f:4e:c4:b9:04:5a: 12:17:76:55:ac:29:0f:72:26:64:9f:82:01:1e:22: 7f:97:a0:8a:cc:8c:65:ce:b9:f3:37:b9:4d:6c:d8: 78:8d:9b:91:3e:2a:b3:4b:b2:89:04:7c:d2:12:67: 3c:cc:21:59:fd:bc:b9:56:6a:7e:36:0b:3b:90:f7: 67:54:4a:06:9c:0c:e6:45:34:c2:89:d4:b6:91:05: f2:ba:fc:e2:8f:f0:62:a8:36:95:59:d9:44:94:f5: 34:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:DD:2A:70:96:7C:D1:D6:17:72:06:3B:E0:7A:8B:96:27:C9:71:42 X509v3 Authority Key Identifier: keyid:FD:D5:57:4A:A6:B3:A2:37:B4:36:69:95:7D:85:33:95:93:DC:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:d3:30:0c:68:1b:65:76:0e:ee:68:9f:63:24:8d:1b:8a:13: a4:f2:45:0f:c7:f1:35:9e:fa:c7:cd:3c:4f:f8:9e:b3:67:97: 30:cc:4e:4b:c2:f2:34:b7:cd:dd:ed:ba:d2:6d:9c:37:1d:4b: 51:33:87:1e:f0:9c:38:e5:ca:53:01:d7:3f:07:6f:17:cf:ea: 49:48:c0:65:1b:26:ef:c5:d4:89:47:27:5b:0c:0d:f6:63:cb: a9:a5:89:6a:cf:13:f7:8b:16:25:90:fd:fc:8f:c6:9e:e1:93: 5f:08:91:8c:00:bd:5b:de:4d:48:e5:52:c0:52:8a:7c:72:74: 88:cb:47:ba:05:ee:46:48:8e:a0:35:76:3e:b9:1a:95:fe:45: 01:9e:b3:cc:c6:bc:72:bb:a2:18:9f:40:7d:dc:91:28:4c:c0: 5a:0a:2a:b1:ba:34:3d:5c:c7:88:63:de:2c:3c:da:9e:86:8d: 32:5d:7d:b5:87:71:46:c0:d5:dc:41:c5:64:00:1b:0d:5d:aa: 37:1e:42:fa:0a:cf:f3:5b:8e:84:6f:d9:58:3a:9e:cc:e3:52: 73:ed:a5:8c:7c:2e:f1:c9:02:0e:b1:5f:50:d0:d2:00:cc:a4: e8:86:6b:13:28:8b:d4:d2:85:47:c0:4c:e0:01:45:e5:e3:c9: c6:e8:fd:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwOUMxMTAvBgNVBAUTKEZERDU1NzRBQTZCM0EyMzdCNDM2Njk5NTdEODUzMzk1 OTNEQzFFOUEwHhcNMjUwNTEzMDEyNDIxWhcNMjUwNTIwMDEyNDIxWjAYMRYwFAYD VQQDEw02ODIyOWY0NS01MmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzN2WJ2N6rufYNha/BKFwNx+CWu7ztXRXx0vmyDgzRCUKG7v+KOkd6qh0SzHH 4KHFkZg3PUFWrNVXvhwgYbRj8GkLmF9mYasXOXk5FkEWk+v1SMcfNyfz/OB2HSwH TGw9ZnNhptqbFxDi/7ETr95XpUS+BJII4abhNTFcifmPpOvNp07j4zmsuJ+KUXdy PFTNJuqNKUHzgMxvABq9gKs/TsS5BFoSF3ZVrCkPciZkn4IBHiJ/l6CKzIxlzrnz N7lNbNh4jZuRPiqzS7KJBHzSEmc8zCFZ/by5Vmp+Ngs7kPdnVEoGnAzmRTTCidS2 kQXyuvzij/BiqDaVWdlElPU0QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3dKnCW fNHWF3IGO+B6i5YnyXFCMB8GA1UdIwQYMBaAFP3VV0qms6I3tDZplX2FM5WT3B6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA5Qy8wQUE1N0M2QzA0 NjUxMUVEOUM4NUYxNUVDNEY5QUUwMi9fZFZYU3Fhem9qZTBObW1WZllVemxaUGNI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19kVlhTcWF6b2plME5tbVZmWVV6bFpQY0hwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA5Qy8wQUE1N0M2QzA0NjUxMUVEOUM4NUYxNUVDNEY5QUUwMi9fZFZYU3Fhem9q ZTBObW1WZllVemxaUGNIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDA0zAMaBtldg7uaJ9jJI0bihOk8kUPx/E1nvrHzTxP+J6zZ5cwzE5L wvI0t83d7brSbZw3HUtRM4ce8Jw45cpTAdc/B28Xz+pJSMBlGybvxdSJRydbDA32 Y8uppYlqzxP3ixYlkP38j8ae4ZNfCJGMAL1b3k1I5VLAUop8cnSIy0e6Be5GSI6g NXY+uRqV/kUBnrPMxrxyu6IYn0B93JEoTMBaCiqxujQ9XMeIY94sPNqeho0yXX21 h3FGwNXcQcVkABsNXao3HkL6Cs/zW46Eb9lYOp7M41Jz7aWMfC7xyQIOsV9Q0NIA zKTohmsTKIvU0oVHwEzgAUXl48nG6P3u -----END CERTIFICATE-----Generated at Wed May 14 03:22:28 2025 by rpki-client