$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft File: dmhXuj98cotoBSWsQfp84qHwCS0.mft (raw, json) Hash identifier: H/gHrrlCbkDoSYhgXq9DxQ02T4pDHBNNH/tJu/zqn6I= Subject key identifier: 09:47:A0:44:68:BE:BB:F0:DF:65:04:E0:D3:44:81:C8:04:A9:2D:95 Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft Manifest number: 0143 Signing time: Tue 15 Apr 2025 03:16:55 +0000 Manifest this update: Tue 15 Apr 2025 03:16:55 +0000 Manifest next update: Tue 22 Apr 2025 03:16:55 +0000 Files and hashes: 1: dmhXuj98cotoBSWsQfp84qHwCS0.crl (hash: JzvW/zQKIAIKxlg6+AkN9nG5x4VGsf62A7o2QIcBeFI=) 2: 5D313B1C31DA11EEBE28A546C4F9AE02.roa (hash: FoAylNmdesRHU3oexctbCd7CtqneWbl6QUSlHnFcNTI=) 3: 47854B9031DB11EEA02CF647C4F9AE02.roa (hash: ILe+omtD9enCtMD3zyN9u23MElv4YiFIQdXMJ2ToBto=) 4: 5C9259B631DA11EEBE28A546C4F9AE02.roa (hash: V/GHEmcZXIPqnvjusU9+mbGUzJT92uVcYMqnl8YTyFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 03:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC0, serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Validity Not Before: Apr 15 03:16:55 2025 GMT Not After : Apr 22 03:16:55 2025 GMT Subject: CN=67fdcfa7-57c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4c:e1:90:d1:3c:45:c5:0b:35:e5:a8:cc:f5: 00:20:f9:34:69:f2:91:ae:8b:5e:5e:88:3f:d1:a4: 48:17:b2:79:54:e8:db:cb:9c:05:b5:51:db:83:a0: c3:f4:3c:76:6a:f2:ee:bf:c3:5a:41:c1:0f:40:9b: 7c:fe:c9:e2:fc:d0:5f:49:15:2d:a4:65:3e:ab:ee: c6:65:b5:c5:9f:ed:0b:68:cf:c6:59:ed:c5:56:ee: 6c:5f:8f:f7:14:f9:13:5b:35:00:fe:11:57:19:7a: b2:1e:9a:33:a6:55:09:c8:21:d6:76:27:32:1a:62: b3:08:1d:4a:19:d0:eb:25:b0:06:67:05:4c:56:80: 29:5e:a2:95:0e:18:b2:80:bb:4b:3f:69:ef:a6:6c: 95:9e:ea:e3:89:de:21:17:da:54:f4:5d:3b:ee:f3: 9b:d3:37:eb:78:9d:f2:b6:c2:9d:ea:f7:ef:b7:93: e2:e8:4a:47:2d:25:7f:9f:47:2b:eb:45:c3:9e:c5: 82:dd:c0:46:7d:c8:89:8d:df:1a:76:d7:ba:9f:0a: 56:f0:79:45:76:f5:ff:ed:1e:8b:9d:fe:80:07:56: ed:bf:5c:3e:d4:22:18:4a:36:ec:dc:13:ec:3b:2b: b4:a0:a6:f3:13:7d:6a:76:5f:f6:18:ce:e9:be:de: 3b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:47:A0:44:68:BE:BB:F0:DF:65:04:E0:D3:44:81:C8:04:A9:2D:95 X509v3 Authority Key Identifier: keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d6:64:bb:56:fb:e8:8b:64:68:55:c2:03:d4:b2:29:3d:54: ac:18:8b:f3:1f:bc:60:67:35:5e:b6:f3:31:72:1b:85:c0:91: 5d:22:93:8a:23:8c:c1:57:09:df:f5:f0:69:3a:ca:6e:6a:a3: e9:df:17:1c:28:cb:d5:2f:69:f6:a9:db:68:4f:5d:e9:b4:d6: bd:00:da:af:07:1b:8e:d4:72:f2:c1:74:e8:7b:4f:95:ed:e8: 0e:7a:c7:e2:fc:c3:59:9d:57:da:95:b3:d4:8a:cf:8d:2f:67: d8:4e:e0:42:1a:7e:5d:40:fa:0d:03:e1:0c:18:e7:0a:12:75: db:53:aa:73:db:25:af:6a:58:ba:47:c0:45:bf:77:7d:3b:8b: 1b:85:e4:a2:98:eb:36:cc:50:08:08:45:d0:77:17:86:e3:f8: 7f:dd:53:e4:e4:2f:0a:54:2e:a2:0e:00:3e:64:61:33:f3:6a: d4:d8:29:31:12:c7:cd:91:a5:d9:95:6e:b2:10:3a:db:2a:47: dc:bb:80:16:27:fb:24:48:07:7f:ba:a8:4f:1f:d8:60:c8:e0: ad:32:2e:e8:39:a3:7f:2b:d4:c1:49:7b:ea:ca:5a:f4:15:e5: 57:b8:7c:49:76:ac:40:d0:b8:7c:a6:7b:31:86:e6:41:09:9a: 19:69:cc:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzAxMTAvBgNVBAUTKDc2Njg1N0JBM0Y3QzcyOEI2ODA1MjVBQzQxRkE3Q0Uy QTFGMDA5MkQwHhcNMjUwNDE1MDMxNjU1WhcNMjUwNDIyMDMxNjU1WjAYMRYwFAYD VQQDEw02N2ZkY2ZhNy01N2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkzhkNE8RcULNeWozPUAIPk0afKRroteXog/0aRIF7J5VOjby5wFtVHbg6DD 9Dx2avLuv8NaQcEPQJt8/sni/NBfSRUtpGU+q+7GZbXFn+0LaM/GWe3FVu5sX4/3 FPkTWzUA/hFXGXqyHpozplUJyCHWdicyGmKzCB1KGdDrJbAGZwVMVoApXqKVDhiy gLtLP2nvpmyVnurjid4hF9pU9F077vOb0zfreJ3ytsKd6vfvt5Pi6EpHLSV/n0cr 60XDnsWC3cBGfciJjd8adte6nwpW8HlFdvX/7R6Lnf6AB1btv1w+1CIYSjbs3BPs Oyu0oKbzE31qdl/2GM7pvt47DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlHoERo vrvw32UE4NNEgcgEqS2VMB8GA1UdIwQYMBaAFHZoV7o/fHKLaAUlrEH6fOKh8Akt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDMC9FNEVENTM5NDMx RDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNvdG9CU1dzUWZwODRxSHdD UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtaFh1ajk4Y290b0JTV3NRZnA4NHFId0NTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEFDMC9FNEVENTM5NDMxRDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNv dG9CU1dzUWZwODRxSHdDUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+1mS7Vvvoi2RoVcID1LIpPVSsGIvzH7xgZzVetvMxchuFwJFdIpOK I4zBVwnf9fBpOspuaqPp3xccKMvVL2n2qdtoT13ptNa9ANqvBxuO1HLywXToe0+V 7egOesfi/MNZnVfalbPUis+NL2fYTuBCGn5dQPoNA+EMGOcKEnXbU6pz2yWvali6 R8BFv3d9O4sbheSimOs2zFAICEXQdxeG4/h/3VPk5C8KVC6iDgA+ZGEz82rU2Ckx EsfNkaXZlW6yEDrbKkfcu4AWJ/skSAd/uqhPH9hgyOCtMi7oOaN/K9TBSXvqylr0 FeVXuHxJdqxA0Lh8pnsxhuZBCZoZacw7 -----END CERTIFICATE-----Generated at Thu Apr 17 06:26:31 2025 by rpki-client