$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: gk+NRq/qOJpzk1xVrLdwsGEPNqeK6QaPjHIde/BEuuY= Subject key identifier: 8A:99:75:AF:C9:8C:7E:9D:62:AB:6A:9B:9B:15:16:92:58:1C:72:21 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0F94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0F72 Signing time: Fri 04 Apr 2025 17:40:29 +0000 Manifest this update: Fri 04 Apr 2025 17:40:29 +0000 Manifest next update: Fri 11 Apr 2025 17:40:29 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: VdLQNcmYeEyBFSdJAlF5F7fEIpR53ja8C3T+XZ22PeM=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: Yxnc0WF7y7yG/Ke04997WUeH+aSKIu6WY3AiaujI7mg=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: fuYiIxAwDhO4bPXLu2NpIMN0ReUFHJNWZB+675RLxUg=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: 7y8BRBcxLZCZTnPYfc6VfQnaG4bxPBMAZ7uJUfKAC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3988 (0xf94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1 Validity Not Before: Apr 4 17:40:29 2025 GMT Not After : Apr 11 17:40:29 2025 GMT Subject: CN=67f0198d-c54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:28:f1:4d:c9:39:ab:d0:45:cd:47:fb:25:bf: a7:f5:6b:59:15:e4:3b:23:7c:e6:69:9a:c3:06:ce: 27:a6:7f:63:c0:7b:22:4b:1a:9a:21:fa:23:61:ba: 56:1b:a0:c2:ed:3a:fd:52:74:6e:a0:6b:f3:9a:62: b3:07:42:41:9e:2f:8b:f9:42:8d:1a:a2:78:7a:24: 6a:0f:16:d3:1e:96:45:22:02:ae:e4:da:db:d9:ac: ed:41:d6:c2:2b:42:f1:d5:58:83:8a:1d:a0:b6:8a: 67:ef:a5:85:ec:38:91:90:8e:e0:e4:85:56:fa:e9: 24:51:1c:5d:1c:bb:e7:f0:13:72:b0:56:ff:98:cf: 79:db:ca:bd:9b:9b:99:c2:d3:ef:f1:7a:ad:b9:a8: fa:76:94:15:ca:14:35:9b:2e:e9:c3:e4:69:89:88: 2d:06:aa:74:f9:78:a6:c8:ea:0f:29:31:04:e7:d9: f2:3b:26:82:23:9d:31:f2:cb:aa:31:32:25:f7:2d: 4e:89:13:90:32:31:7b:84:7f:35:39:c3:67:3a:e9: c1:21:2a:6f:cb:52:61:f9:56:8e:6e:7d:ce:ed:5f: fe:91:54:3e:8a:22:cb:24:8c:f5:a9:81:94:08:80: b7:56:68:9a:54:c8:71:35:bc:59:da:fe:59:5b:52: 4b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:99:75:AF:C9:8C:7E:9D:62:AB:6A:9B:9B:15:16:92:58:1C:72:21 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:4d:44:08:a8:56:7f:08:28:d0:39:dc:1d:27:04:c2:82:5a: dc:7b:2a:c4:05:0e:b5:08:68:e6:8d:b1:d1:13:86:a4:6a:6b: 69:fa:99:f3:a1:17:e9:70:95:6e:c6:96:06:1d:38:b2:e2:56: 4b:42:76:27:f6:a9:1d:e3:41:84:7f:b5:ed:07:7f:1f:89:05: cc:4e:7e:08:ea:ec:26:12:ee:96:6f:25:11:62:17:13:bd:03: 8c:88:63:28:e3:65:0e:f6:69:a1:4a:93:c0:64:47:12:24:89: ca:df:2a:53:26:c9:7d:94:96:88:e4:fa:fe:4e:44:48:94:c4: 9a:4b:0d:06:e1:0d:5f:91:95:2d:7d:f2:48:92:05:75:d5:84: 4f:d7:6c:c7:c7:d0:e5:d7:0f:70:c4:5e:ce:ed:33:54:a1:72: d4:11:4c:fe:b3:e6:8c:29:49:64:b3:3a:4d:db:74:0c:c4:95: 34:2a:2b:86:27:81:d7:ad:94:2b:74:f8:f5:ac:25:e2:e6:02: 07:67:27:95:80:eb:27:06:95:48:d8:ba:c0:b7:da:55:71:7f: d1:05:48:7e:c3:12:e8:67:f7:ce:40:17:4e:98:c9:fe:3c:f3: fd:4b:fa:bb:b5:22:b1:ef:3a:fe:f3:51:ce:f7:60:dd:5e:2d: 7f:cb:3b:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwNDA0MTc0MDI5WhcNMjUwNDExMTc0MDI5WjAYMRYwFAYD VQQDEw02N2YwMTk4ZC1jNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSjxTck5q9BFzUf7Jb+n9WtZFeQ7I3zmaZrDBs4npn9jwHsiSxqaIfojYbpW G6DC7Tr9UnRuoGvzmmKzB0JBni+L+UKNGqJ4eiRqDxbTHpZFIgKu5Nrb2aztQdbC K0Lx1ViDih2gtopn76WF7DiRkI7g5IVW+ukkURxdHLvn8BNysFb/mM9528q9m5uZ wtPv8Xqtuaj6dpQVyhQ1my7pw+RpiYgtBqp0+XimyOoPKTEE59nyOyaCI50x8suq MTIl9y1OiROQMjF7hH81OcNnOunBISpvy1Jh+VaObn3O7V/+kVQ+iiLLJIz1qYGU CIC3VmiaVMhxNbxZ2v5ZW1JLjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqZda/J jH6dYqtqm5sVFpJYHHIhMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVTUQIqFZ/CCjQOdwdJwTCglrceyrEBQ61CGjmjbHRE4akamtp+pnz oRfpcJVuxpYGHTiy4lZLQnYn9qkd40GEf7XtB38fiQXMTn4I6uwmEu6WbyURYhcT vQOMiGMo42UO9mmhSpPAZEcSJInK3ypTJsl9lJaI5Pr+TkRIlMSaSw0G4Q1fkZUt ffJIkgV11YRP12zHx9Dl1w9wxF7O7TNUoXLUEUz+s+aMKUlkszpN23QMxJU0KiuG J4HXrZQrdPj1rCXi5gIHZyeVgOsnBpVI2LrAt9pVcX/RBUh+wxLoZ/fOQBdOmMn+ PPP9S/q7tSKx7zr+81HO92DdXi1/yzvO -----END CERTIFICATE-----Generated at Sat Apr 5 19:32:48 2025 by rpki-client