$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft File: dBZmaL52tzdXYxblXZ5kOeZxz0c.mft (raw, json) Hash identifier: UxOJMuLHw1MP5ZMJfd7hBG6oXB63DmzIuPVaXgye1Uk= Subject key identifier: 6C:41:06:26:5F:18:40:15:A0:AC:CD:A6:DD:E0:0C:B0:54:DE:1F:13 Authority key identifier: 74:16:66:68:BE:76:B7:37:57:63:16:E5:5D:9E:64:39:E6:71:CF:47 Certificate issuer: /CN=A91CD281/serialNumber=74166668BE76B737576316E55D9E6439E671CF47 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft Manifest number: 19 Signing time: Wed 09 Apr 2025 06:45:15 +0000 Manifest this update: Wed 09 Apr 2025 06:45:15 +0000 Manifest next update: Wed 16 Apr 2025 06:45:15 +0000 Files and hashes: 1: dBZmaL52tzdXYxblXZ5kOeZxz0c.crl (hash: kEzvHR5+IU28476xEp9tNIJzy1DN4gfMdGlRsQFl0mA=) 2: 7CC6D634F27311EF9AAECC3CC4F9AE02.roa (hash: VAI7zkNz19dGI6fGQU68XKDlsZjsYQpjUZnb2rSND4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.crl rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD281 Validity Not Before: Apr 9 06:45:15 2025 GMT Not After : Apr 16 06:45:15 2025 GMT Subject: CN=67f6177b-921c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e7:3f:ae:bd:c8:42:4f:3d:56:1a:bd:78:a2: c4:79:eb:e1:f1:cd:06:f7:24:c2:f5:98:8f:27:2a: 21:b1:47:0b:2c:68:29:d4:2e:41:a7:16:29:a7:4c: a8:6d:e0:02:d6:15:8e:47:80:ac:61:9a:c1:8a:22: b3:15:ae:dd:c3:57:6b:1e:f3:9c:d8:da:62:a6:1f: 3a:f4:7f:56:86:13:56:a2:f4:f8:ea:e8:0b:39:a9: e1:23:c6:ef:4f:bf:c9:c7:bf:45:26:8e:23:45:7d: d8:c8:71:c2:a7:10:37:70:c6:1e:ce:22:01:62:50: aa:9f:7c:99:0a:fd:d6:19:7c:63:dc:cb:1d:82:8f: f9:75:e2:29:59:ce:7f:e6:75:7d:91:56:fb:17:fa: 28:4b:a1:bf:98:c0:82:8d:16:52:44:21:2e:b2:f8: 2a:f6:7c:fb:cc:e1:97:71:2d:9f:3f:2c:d7:02:5d: c6:15:c3:bb:f0:c0:3c:49:4c:48:b9:49:a7:05:cf: 0d:7d:de:96:a4:93:75:f4:0e:dc:5f:44:21:c6:b5: 3d:fc:0a:de:ab:d7:7c:5a:8d:5e:ee:ea:47:5e:7e: d3:61:ca:ee:e5:6a:16:f4:22:4c:60:aa:fb:32:f5: 50:a0:86:44:07:0a:3f:15:9a:8e:7d:d9:d2:53:fa: 25:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:41:06:26:5F:18:40:15:A0:AC:CD:A6:DD:E0:0C:B0:54:DE:1F:13 X509v3 Authority Key Identifier: keyid:74:16:66:68:BE:76:B7:37:57:63:16:E5:5D:9E:64:39:E6:71:CF:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ec:1e:c9:c1:f0:0a:07:17:f5:90:fe:62:6c:6e:b5:82:63: f7:62:c6:01:40:03:ad:05:25:2e:7b:e6:b3:c6:fe:fd:a4:bc: 0d:17:43:82:28:dc:0d:bf:cb:91:54:16:cc:7c:c4:af:8c:62: 82:e2:be:c7:16:4b:b3:52:7a:54:26:dc:8e:a0:4b:9a:61:d1: 1d:a0:7f:1f:43:eb:34:ce:f0:72:08:79:01:20:2f:96:8b:df: b9:f0:df:bc:c7:26:6b:12:1d:fc:64:bb:4e:a4:dd:a5:dc:33: 0c:8f:3a:a5:89:f5:5a:08:15:cc:aa:75:2f:57:96:4e:e3:1d: c0:1e:3a:bb:d1:27:7d:b2:41:31:62:21:47:d4:89:ca:e9:83: 05:18:fc:21:59:03:3e:3a:48:d7:d5:a4:07:cf:91:45:f3:54: b9:4c:f0:f8:54:e5:6e:02:77:c4:75:d8:39:15:de:f1:81:db: 12:81:12:54:69:87:66:7d:d8:fc:fa:74:6c:fc:af:62:75:32: 15:19:8c:ed:7c:a6:05:f8:c9:be:fb:58:e0:aa:41:fe:88:88: bc:3f:32:9b:c0:f9:e7:e3:b4:5c:c9:28:15:d8:e6:d9:f4:04: a1:39:26:2a:78:37:85:d4:3e:b5:b4:3b:b8:16:32:cb:10:ee: a0:a8:b6:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDI4MTExMC8GA1UEBRMoNzQxNjY2NjhCRTc2QjczNzU3NjMxNkU1NUQ5RTY0MzlF NjcxQ0Y0NzAeFw0yNTA0MDkwNjQ1MTVaFw0yNTA0MTYwNjQ1MTVaMBgxFjAUBgNV BAMTDTY3ZjYxNzdiLTkyMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDc5z+uvchCTz1WGr14osR56+HxzQb3JML1mI8nKiGxRwssaCnULkGnFimnTKht 4ALWFY5HgKxhmsGKIrMVrt3DV2se85zY2mKmHzr0f1aGE1ai9Pjq6As5qeEjxu9P v8nHv0UmjiNFfdjIccKnEDdwxh7OIgFiUKqffJkK/dYZfGPcyx2Cj/l14ilZzn/m dX2RVvsX+ihLob+YwIKNFlJEIS6y+Cr2fPvM4ZdxLZ8/LNcCXcYVw7vwwDxJTEi5 SacFzw193pakk3X0DtxfRCHGtT38Ct6r13xajV7u6kdeftNhyu7lahb0Ikxgqvsy 9VCghkQHCj8Vmo592dJT+iVtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbEEGJl8Y QBWgrM2m3eAMsFTeHxMwHwYDVR0jBBgwFoAUdBZmaL52tzdXYxblXZ5kOeZxz0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMjgxL0ZCNDIxNkU4RjI3 MDExRUY5QkY4QjUzNUM0RjlBRTAyL2RCWm1hTDUydHpkWFl4YmxYWjVrT2VaeHow Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZEJabWFMNTJ0emRYWXhibFhaNWtPZVp4ejBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MjgxL0ZCNDIxNkU4RjI3MDExRUY5QkY4QjUzNUM0RjlBRTAyL2RCWm1hTDUydHpk WFl4YmxYWjVrT2VaeHowYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAELsHsnB8AoHF/WQ/mJsbrWCY/dixgFAA60FJS575rPG/v2kvA0XQ4Io 3A2/y5FUFsx8xK+MYoLivscWS7NSelQm3I6gS5ph0R2gfx9D6zTO8HIIeQEgL5aL 37nw37zHJmsSHfxku06k3aXcMwyPOqWJ9VoIFcyqdS9Xlk7jHcAeOrvRJ32yQTFi IUfUicrpgwUY/CFZAz46SNfVpAfPkUXzVLlM8PhU5W4Cd8R12DkV3vGB2xKBElRp h2Z92Pz6dGz8r2J1MhUZjO18pgX4yb77WOCqQf6IiLw/MpvA+efjtFzJKBXY5tn0 BKE5Jip4N4XUPrW0O7gWMssQ7qCotmM= -----END CERTIFICATE-----Generated at Thu Apr 10 18:58:33 2025 by rpki-client