$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: n11r2cm+7UPUj7LTftt4KbJ9Pr7aOidjJwcC9wPOba0= Subject key identifier: 32:E2:59:B5:9A:97:EB:5D:FC:CB:0A:FF:AE:B1:4D:4F:53:22:0B:20 Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: 7B Signing time: Thu 03 Apr 2025 05:55:30 +0000 Manifest this update: Thu 03 Apr 2025 05:55:30 +0000 Manifest next update: Thu 10 Apr 2025 05:55:30 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: J4ysL3+SJrh79qhHzOiEaIWc0AVAnEdD/Pg4z6h/ViY=) 2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA Validity Not Before: Apr 3 05:55:30 2025 GMT Not After : Apr 10 05:55:30 2025 GMT Subject: CN=67ee22d2-f52f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ef:f2:c4:b1:13:ff:05:e6:ca:d8:4f:d6:32: 5b:6d:3f:2f:15:79:bf:f8:68:44:20:74:4d:d8:d7: 97:e6:e2:d6:5a:08:17:a2:42:05:9b:97:7d:ec:b3: 77:71:3a:4c:f1:8c:8d:9d:b9:ed:fe:38:6e:f1:79: d8:54:dc:81:d7:93:63:34:db:2c:b4:97:90:ad:82: 11:77:ca:da:46:21:30:09:e7:06:d7:d9:ec:8e:a1: 54:00:83:56:97:e5:79:1e:10:9f:9a:8e:21:8f:20: 0e:6c:09:aa:0f:98:6d:23:41:8a:48:72:09:95:4a: e1:b7:92:2f:f7:ea:28:75:2e:ba:8f:5d:af:52:3e: 5a:59:0b:b9:c8:ed:38:30:e0:32:dd:34:06:f3:3f: 55:6a:76:3c:cd:4c:87:18:50:eb:fd:1b:a2:08:b2: 6b:c1:5a:b8:99:45:64:69:88:ed:d9:23:62:94:7c: c2:50:e6:48:b6:a2:cb:63:03:83:78:de:8e:ee:df: 7c:4c:01:c6:3c:af:e1:30:eb:13:f5:4a:7a:5d:09: 29:e8:b2:04:3a:e3:4a:64:39:43:16:0c:f5:5f:53: db:31:b6:2c:38:25:f7:60:ae:af:a5:ee:16:9d:27: 16:0e:7e:0b:88:aa:3f:7f:eb:e3:9a:e9:e4:47:d1: 6d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E2:59:B5:9A:97:EB:5D:FC:CB:0A:FF:AE:B1:4D:4F:53:22:0B:20 X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:47:81:8e:86:72:de:28:f9:94:5f:a2:46:36:a9:47:59:71: 2d:b7:fb:1b:9a:83:55:52:21:f7:1e:55:04:8a:92:f5:a6:cf: c3:72:c4:5e:f2:25:b4:60:10:fd:82:87:63:a7:3a:f3:92:4f: 56:d2:82:cb:6b:79:60:a2:13:2d:2d:12:ac:a5:1e:3b:26:0d: 3e:10:e6:ad:e8:05:c1:1d:a3:e6:1c:1e:0e:d2:07:65:cf:7d: f0:61:83:7f:ae:62:90:c2:d2:c3:92:c7:72:03:87:48:9f:72: 80:d0:a8:e7:61:29:1f:7b:69:b0:98:98:1a:61:d4:11:8d:87: 2b:f2:22:67:5f:74:66:3e:4e:6c:7a:4f:ff:b0:fe:ae:ae:6e: ef:40:fc:c8:47:f0:cd:f3:6c:a9:f6:b2:b2:85:26:6d:34:95: 3e:d3:60:35:e5:15:d0:20:e0:23:5b:e5:a9:61:f1:eb:f8:af: 56:36:6e:a5:c7:88:f7:29:8a:d5:ec:09:71:c3:48:09:69:e8: ae:69:b8:83:70:cd:e4:35:42:68:f2:42:a5:c0:6c:5d:a8:24: f3:f0:ab:26:e8:ea:0c:19:64:16:37:30:ca:c7:cd:0e:63:40: 9c:04:d3:63:ba:1c:57:35:6f:6e:e9:45:ca:74:db:a7:da:fb: f1:38:97:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkNEQTExMC8GA1UEBRMoMEU1NDYyNTk2QzBDNkU3N0UxODlCNTFCRTI2RTI1Qzkx NTM4QzU1QzAeFw0yNTA0MDMwNTU1MzBaFw0yNTA0MTAwNTU1MzBaMBgxFjAUBgNV BAMTDTY3ZWUyMmQyLWY1MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCf7/LEsRP/BebK2E/WMlttPy8Veb/4aEQgdE3Y15fm4tZaCBeiQgWbl33ss3dx OkzxjI2due3+OG7xedhU3IHXk2M02yy0l5CtghF3ytpGITAJ5wbX2eyOoVQAg1aX 5XkeEJ+ajiGPIA5sCaoPmG0jQYpIcgmVSuG3ki/36ih1LrqPXa9SPlpZC7nI7Tgw 4DLdNAbzP1VqdjzNTIcYUOv9G6IIsmvBWriZRWRpiO3ZI2KUfMJQ5ki2ostjA4N4 3o7u33xMAcY8r+Ew6xP1SnpdCSnosgQ640pkOUMWDPVfU9sxtiw4Jfdgrq+l7had JxYOfguIqj9/6+Oa6eRH0W0VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMuJZtZqX 6138ywr/rrFNT1MiCyAwHwYDVR0jBBgwFoAUDlRiWWwMbnfhibUb4m4lyRU4xVww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQ0RBLzJDN0U3MkI4NUEx NjExRUY4MkI2RDkxMkM0RjlBRTAyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhW dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRGxSaVdXd01ibmZoaWJVYjRtNGx5UlU0eFZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy Q0RBLzJDN0U3MkI4NUExNjExRUY4MkI2RDkxMkM0RjlBRTAyL0RsUmlXV3dNYm5m aGliVWI0bTRseVJVNHhWdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALJHgY6Gct4o+ZRfokY2qUdZcS23+xuag1VSIfceVQSKkvWmz8NyxF7y JbRgEP2Ch2OnOvOST1bSgstreWCiEy0tEqylHjsmDT4Q5q3oBcEdo+YcHg7SB2XP ffBhg3+uYpDC0sOSx3IDh0ifcoDQqOdhKR97abCYmBph1BGNhyvyImdfdGY+Tmx6 T/+w/q6ubu9A/MhH8M3zbKn2srKFJm00lT7TYDXlFdAg4CNb5alh8ev4r1Y2bqXH iPcpitXsCXHDSAlp6K5puINwzeQ1QmjyQqXAbF2oJPPwqybo6gwZZBY3MMrHzQ5j QJwE02O6HFc1b27pRcp026fa+/E4l74= -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:41 2025 by rpki-client