$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft File: DmxKtne94a1EYD_XN9olwGAcRZw.mft (raw, json) Hash identifier: j8yHmVwIGjUKbutyyYdWdY9JHkc8+Tu8wPtPpiV0CGs= Subject key identifier: FE:B8:22:21:DC:43:2D:9E:D1:F0:90:C6:D3:1C:89:E7:85:A6:8D:0E Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft Manifest number: 10 Signing time: Thu 03 Apr 2025 07:20:09 +0000 Manifest this update: Thu 03 Apr 2025 07:20:08 +0000 Manifest next update: Thu 10 Apr 2025 07:20:08 +0000 Files and hashes: 1: DmxKtne94a1EYD_XN9olwGAcRZw.crl (hash: TmNX30usI+diZU3ACptvbkV8fZVPKIeG1Sig7LU4oEQ=) 2: C488A080FB5911EFA827FD17C4F9AE02.roa (hash: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF Validity Not Before: Apr 3 07:20:08 2025 GMT Not After : Apr 10 07:20:08 2025 GMT Subject: CN=67ee36a8-9eda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cf:de:19:76:1f:8b:55:60:33:bd:fd:6c:f3: 7c:82:66:d2:57:44:6f:47:bf:a2:f8:65:8d:b5:a7: 1f:37:4f:ae:d3:83:c5:a7:58:32:22:78:78:a9:42: d9:e1:34:8b:93:2d:7e:63:ad:56:04:92:e1:48:12: 23:63:ae:e6:0a:72:8f:54:49:c8:f5:e4:ca:9c:ea: 6c:48:6e:c8:fa:48:7f:84:d9:6f:46:7c:58:4c:22: 51:d9:0b:cb:33:76:56:cd:91:16:9b:79:5f:51:ab: b2:1a:ca:35:6a:b7:1c:75:83:84:86:dd:0c:51:b5: 7f:3f:ec:b7:89:f3:84:0b:21:d9:1e:22:b3:55:fd: ee:e2:7d:f2:f3:e5:8f:6a:e4:1b:e6:02:0d:f8:17: f1:1e:cf:a3:62:aa:69:51:fd:df:41:28:88:93:43: 75:c6:5b:66:50:fb:81:bf:e7:62:be:0d:c2:f7:f2: 18:6e:06:1b:f0:31:4c:49:f6:55:f6:e2:a3:70:3f: 59:f9:e1:94:75:9e:e0:cb:50:7c:72:ce:9d:ec:57: 68:9a:33:30:6a:34:3d:07:1b:32:2c:ec:d0:db:12: f1:5a:2e:cc:c7:94:96:e0:8b:1b:57:bf:de:46:f9: 43:6c:e2:63:84:b4:51:d4:5d:ca:3c:4f:d5:d7:ce: bb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B8:22:21:DC:43:2D:9E:D1:F0:90:C6:D3:1C:89:E7:85:A6:8D:0E X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:38:db:de:f6:cc:e4:0f:0e:22:c6:b5:94:50:cc:80:19:ac: cb:2f:ad:14:72:a4:75:5d:34:0c:0a:61:62:be:14:e8:0e:d6: 19:00:9d:62:e1:47:0e:e2:ca:68:07:0a:64:95:ba:a6:1d:b5: d5:88:94:8c:1f:13:00:30:4c:2d:6d:ec:d4:52:39:84:7a:8f: 94:41:e7:03:78:72:7e:af:d0:2d:f1:aa:90:d0:99:82:90:8b: 40:d3:3b:58:12:a1:5a:06:b3:61:4b:19:2e:6a:6c:ba:90:cb: 1e:88:a9:74:e5:b1:a1:93:dc:1c:e1:80:95:02:24:0b:1e:96: 47:0c:c7:f2:e1:7d:03:9c:31:62:e8:5a:d4:fe:8b:a2:31:55: 19:95:b6:54:0c:e7:b3:1b:2d:ed:ea:93:a9:d8:18:2b:34:5c: 57:60:31:df:b7:1a:7b:4d:0a:81:b0:e9:8d:96:77:e0:62:76: bb:d1:b7:a3:dc:41:f3:97:d6:5a:61:9d:8b:fd:48:b1:78:41: 8e:c4:ee:a8:45:cc:f4:3f:4a:f8:f2:a9:ca:4d:c1:55:83:c1: b2:87:c7:3c:5c:3c:10:9f:e8:3f:ac:ea:ed:b4:dc:a9:89:e4: 6d:8d:69:d0:9c:38:a1:ba:2e:f9:99:af:94:a8:1e:ce:93:9b: 96:d1:9c:17 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzlDRjExMC8GA1UEBRMoMEU2QzRBQjY3N0JERTFBRDQ0NjAzRkQ3MzdEQTI1QzA2 MDFDNDU5QzAeFw0yNTA0MDMwNzIwMDhaFw0yNTA0MTAwNzIwMDhaMBgxFjAUBgNV BAMTDTY3ZWUzNmE4LTllZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwz94Zdh+LVWAzvf1s83yCZtJXRG9Hv6L4ZY21px83T67Tg8WnWDIieHipQtnh NIuTLX5jrVYEkuFIEiNjruYKco9UScj15Mqc6mxIbsj6SH+E2W9GfFhMIlHZC8sz dlbNkRabeV9Rq7IayjVqtxx1g4SG3QxRtX8/7LeJ84QLIdkeIrNV/e7iffLz5Y9q 5BvmAg34F/Eez6NiqmlR/d9BKIiTQ3XGW2ZQ+4G/52K+DcL38hhuBhvwMUxJ9lX2 4qNwP1n54ZR1nuDLUHxyzp3sV2iaMzBqND0HGzIs7NDbEvFaLszHlJbgixtXv95G +UNs4mOEtFHUXco8T9XXzruxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/rgiIdxD LZ7R8JDG0xyJ54WmjQ4wHwYDVR0jBBgwFoAUDmxKtne94a1EYD/XN9olwGAcRZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzOUNGLzU2RjMxRkI0RkI1 OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Ja dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRG14S3RuZTk0YTFFWURfWE45b2x3R0FjUlp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz OUNGLzU2RjMxRkI0RkI1OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGEx RVlEX1hOOW9sd0dBY1Jady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAII42972zOQPDiLGtZRQzIAZrMsvrRRypHVdNAwKYWK+FOgO1hkAnWLh Rw7iymgHCmSVuqYdtdWIlIwfEwAwTC1t7NRSOYR6j5RB5wN4cn6v0C3xqpDQmYKQ i0DTO1gSoVoGs2FLGS5qbLqQyx6IqXTlsaGT3BzhgJUCJAselkcMx/LhfQOcMWLo WtT+i6IxVRmVtlQM57MbLe3qk6nYGCs0XFdgMd+3GntNCoGw6Y2Wd+BidrvRt6Pc QfOX1lphnYv9SLF4QY7E7qhFzPQ/SvjyqcpNwVWDwbKHxzxcPBCf6D+s6u203KmJ 5G2NadCcOKG6LvmZr5SoHs6Tm5bRnBc= -----END CERTIFICATE-----Generated at Fri Apr 4 18:34:01 2025 by rpki-client