$ rpki-client -vvf rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft File: DB8k6eYChXae9hTPqBPuUayemP4.mft (raw, json) Hash identifier: eNE2VMmuhIThTFniDUHTxgf38TreQh2iBEtqXI/ge6A= Subject key identifier: 99:6D:3D:7B:3B:AD:69:25:7F:D2:55:FC:97:91:F4:28:A6:FA:C0:0A Authority key identifier: 0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE Certificate issuer: /CN=A91E754F/serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft Manifest number: 0644 Signing time: Sat 12 Apr 2025 22:12:14 +0000 Manifest this update: Sat 12 Apr 2025 22:12:14 +0000 Manifest next update: Sat 19 Apr 2025 22:12:14 +0000 Files and hashes: 1: DB8k6eYChXae9hTPqBPuUayemP4.crl (hash: QEW7zDmoemH6yc8TNehOg1LyJo0827ryKkc4Nih1/F8=) 2: 26F67E0A842011EB8A4C635AC4F9AE02.roa (hash: /0E6jZ4+7bqUYrWrcsn+EsmkQL/Ndn9BT+YgQs7TIDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 22:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E754F, serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Validity Not Before: Apr 12 22:12:14 2025 GMT Not After : Apr 19 22:12:14 2025 GMT Subject: CN=67fae53e-6e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8b:3e:6a:ca:50:a7:ff:50:73:35:03:8e:05: d1:e6:ce:8f:d9:bd:a1:3c:75:7b:a0:78:6f:65:de: 76:3e:44:6c:58:27:44:f6:72:bd:28:7e:96:e2:89: 28:2c:59:f9:00:cb:a2:df:0b:28:1a:03:8a:d3:b4: 79:7c:72:69:ca:a9:72:76:53:fa:45:d3:79:f3:72: d8:21:09:52:c4:12:9e:9b:4c:da:52:54:3c:00:a7: 25:cf:2f:fd:cc:39:49:78:09:1d:f1:cc:90:71:56: 58:4e:b5:d0:76:f5:be:b1:26:f0:12:0d:61:8f:9e: 8b:8f:97:31:bf:48:fb:38:26:93:1e:8a:7e:68:8b: 6a:9b:59:27:be:a0:7b:34:05:e2:f3:f1:38:6a:0c: 34:06:a7:98:fb:8a:91:52:5c:a2:dc:78:96:bb:a7: b4:19:48:d9:9f:fc:2b:de:1c:60:9c:fa:f5:a9:69: 1a:70:e1:e9:32:56:2a:9b:f8:1e:e6:39:50:60:ae: 49:50:40:7f:11:6c:96:ca:0b:8c:76:41:1d:d4:51: f5:86:33:97:df:97:b8:24:5d:69:dd:65:88:09:43: fa:26:3c:6c:b7:10:6c:b6:0e:62:29:f3:d3:2c:9c: e2:dd:75:61:63:36:b3:03:a7:55:ac:2d:53:42:fc: bd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:6D:3D:7B:3B:AD:69:25:7F:D2:55:FC:97:91:F4:28:A6:FA:C0:0A X509v3 Authority Key Identifier: keyid:0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e1:27:40:8d:55:ea:2e:50:88:10:4e:e0:d8:72:98:26:2b: 5a:95:b6:c7:47:d2:8f:4a:57:9c:8c:ae:18:4a:e8:b4:e7:7e: 2e:a0:d0:d0:be:92:ef:7e:54:4d:12:6b:46:bd:c8:67:c9:ce: 5b:51:cf:66:27:67:f4:02:af:42:2d:8e:b1:31:94:66:87:d2: 80:bf:9a:d1:72:97:19:5c:c3:e6:47:f8:19:81:00:4d:6b:de: c7:e8:cd:77:08:2e:d0:21:b0:27:fc:33:6e:26:e4:86:9c:b5: 88:8a:46:cf:3a:68:1f:bb:ac:f7:f6:7d:bb:d7:f5:f0:b8:fc: 66:46:10:cd:e5:8a:a6:01:44:2e:8f:ea:71:31:e0:bb:1a:81: 66:22:10:32:b4:98:9b:ed:c3:33:f2:1d:7b:88:eb:70:43:a7: 08:b0:c7:17:ff:bf:5d:0a:03:be:7a:4a:85:20:f4:6e:cf:65: 4e:48:e3:21:19:97:78:d9:13:1d:d7:bc:39:0a:95:23:2e:88: 94:50:94:92:b8:79:69:f7:0d:f3:06:f1:7f:ac:74:6a:3d:25: 7e:d5:8b:32:c2:2b:aa:97:b3:cd:b1:e0:00:53:a3:88:e5:58: bb:54:99:3d:51:fd:61:86:47:56:fa:d9:7e:af:f8:e1:5a:9e: 8a:da:3c:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NEYxMTAvBgNVBAUTKDBDMUYyNEU5RTYwMjg1NzY5RUY2MTRDRkE4MTNFRTUx QUM5RTk4RkUwHhcNMjUwNDEyMjIxMjE0WhcNMjUwNDE5MjIxMjE0WjAYMRYwFAYD VQQDEw02N2ZhZTUzZS02ZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ys+aspQp/9QczUDjgXR5s6P2b2hPHV7oHhvZd52PkRsWCdE9nK9KH6W4oko LFn5AMui3wsoGgOK07R5fHJpyqlydlP6RdN583LYIQlSxBKem0zaUlQ8AKclzy/9 zDlJeAkd8cyQcVZYTrXQdvW+sSbwEg1hj56Lj5cxv0j7OCaTHop+aItqm1knvqB7 NAXi8/E4agw0BqeY+4qRUlyi3HiWu6e0GUjZn/wr3hxgnPr1qWkacOHpMlYqm/ge 5jlQYK5JUEB/EWyWyguMdkEd1FH1hjOX35e4JF1p3WWICUP6JjxstxBstg5iKfPT LJzi3XVhYzazA6dVrC1TQvy9pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJltPXs7 rWklf9JV/JeR9Cim+sAKMB8GA1UdIwQYMBaAFAwfJOnmAoV2nvYUz6gT7lGsnpj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU0Ri9CNDUyQkY4Qzg0 MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hYYWU5aFRQcUJQdVVheWVt UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RCOGs2ZVlDaFhhZTloVFBxQlB1VWF5ZW1QNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzU0Ri9CNDUyQkY4Qzg0MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hY YWU5aFRQcUJQdVVheWVtUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA64SdAjVXqLlCIEE7g2HKYJitalbbHR9KPSlecjK4YSui0534uoNDQ vpLvflRNEmtGvchnyc5bUc9mJ2f0Aq9CLY6xMZRmh9KAv5rRcpcZXMPmR/gZgQBN a97H6M13CC7QIbAn/DNuJuSGnLWIikbPOmgfu6z39n271/XwuPxmRhDN5YqmAUQu j+pxMeC7GoFmIhAytJib7cMz8h17iOtwQ6cIsMcX/79dCgO+ekqFIPRuz2VOSOMh GZd42RMd17w5CpUjLoiUUJSSuHlp9w3zBvF/rHRqPSV+1Ysywiuql7PNseAAU6OI 5Vi7VJk9Uf1hhkdW+tl+r/jhWp6K2jyu -----END CERTIFICATE-----Generated at Sun Apr 13 04:06:12 2025 by rpki-client