$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: SvIgI8qSOCopO9Mrphm3F8X4Yd8teOegW4qZA35TIQQ= Subject key identifier: 96:8A:F6:0E:DA:46:0E:4E:18:C2:DF:BE:9B:8A:A4:09:7D:DE:6F:9D Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 0516 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 0516 Signing time: Fri 28 Mar 2025 23:49:18 +0000 Manifest this update: Fri 28 Mar 2025 23:49:17 +0000 Manifest next update: Fri 04 Apr 2025 23:49:17 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: 0zy9ndLOOshcNBxG2FOmAkChNv0qzUM/0lIx/q33s/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1302 (0x516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705 Validity Not Before: Mar 28 23:49:17 2025 GMT Not After : Apr 4 23:49:17 2025 GMT Subject: CN=67e7357e-49e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:aa:e5:00:f2:de:19:22:0c:42:7b:39:0e:1a: eb:ef:65:7b:35:4a:5a:43:20:c3:a8:0a:b3:bb:d7: b8:1c:60:b9:ff:53:6c:aa:31:94:46:8a:98:8e:81: 5b:7e:55:06:c4:2f:1b:27:fb:d8:05:a0:7d:7f:cd: 1e:a1:c6:c8:83:57:73:f8:f4:2f:40:11:f0:38:d8: f1:ac:c1:a3:fb:57:21:99:66:8e:55:ef:50:51:37: b4:aa:18:d6:4b:d8:10:e6:39:3f:b9:02:24:f1:aa: cc:a9:e6:d6:68:9f:c6:0c:b3:d7:81:45:7e:13:69: e4:ad:69:ca:bb:c7:35:fd:bd:54:a3:92:29:02:49: 91:e6:30:e2:87:64:2e:1a:d2:e3:08:11:9c:e8:cc: 11:77:15:33:f8:ec:a2:d4:3f:e6:a5:16:77:87:28: 0b:19:42:1b:23:39:74:15:f4:83:a9:d3:e4:b5:df: e5:91:fb:7b:e5:f9:af:c7:f3:dc:f5:fd:96:92:09: 59:bb:80:d3:55:b8:33:30:39:c0:ff:60:1d:bf:f7: ed:db:4c:b1:5a:ad:3c:bc:5e:3c:c4:a2:60:a5:b3: a6:4c:17:a9:f8:fb:4b:6c:7b:a4:3d:18:5e:c6:c8: 7e:f7:c0:ed:fc:d5:1e:9a:ea:7f:c2:71:5a:ae:84: d0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:8A:F6:0E:DA:46:0E:4E:18:C2:DF:BE:9B:8A:A4:09:7D:DE:6F:9D X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:0e:82:5f:8b:37:c8:d1:ae:6e:cc:c6:9e:42:d4:93:c7:03: d0:86:b1:fa:6c:d4:46:6b:f3:8e:23:27:85:bb:a5:ce:b5:fd: f2:3c:40:bc:b0:37:af:32:1e:d7:c4:bc:c2:3c:8e:35:07:29: 0c:c2:a3:3a:89:46:f4:97:e5:91:0c:3c:01:d8:2f:74:8d:0a: 03:81:91:b3:3c:28:bf:b3:5f:5d:4d:84:4b:20:fa:8b:21:2e: 8f:fa:9c:63:24:ef:57:d8:57:79:2b:fa:be:90:84:05:0e:b2: 2c:c8:13:a9:a0:09:33:64:55:c7:44:08:14:36:e9:39:5d:3c: 83:ce:a2:f5:d5:80:47:f5:29:4f:c5:1c:ce:a0:dd:92:bf:04: 3b:bb:8a:34:df:9c:97:20:8d:4b:30:cd:97:07:de:31:25:c0: d0:c4:fc:3c:c1:f3:c8:59:a9:b1:92:37:fe:97:15:60:29:17: 34:ff:9e:e2:e7:53:b8:84:1d:d7:8f:40:bb:89:8d:92:0e:be: 8e:ab:b0:14:d9:af:07:c6:0f:85:99:c7:35:44:3e:4a:6f:71: a9:fb:ba:1e:78:aa:ae:b7:67:c4:a1:48:3a:9f:a0:0d:84:17: de:37:b4:d0:92:0f:d2:51:44:70:f0:64:b8:fc:be:b6:e6:9d: 34:78:53:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjUwMzI4MjM0OTE3WhcNMjUwNDA0MjM0OTE3WjAYMRYwFAYD VQQDEw02N2U3MzU3ZS00OWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxarlAPLeGSIMQns5Dhrr72V7NUpaQyDDqAqzu9e4HGC5/1NsqjGURoqYjoFb flUGxC8bJ/vYBaB9f80eocbIg1dz+PQvQBHwONjxrMGj+1chmWaOVe9QUTe0qhjW S9gQ5jk/uQIk8arMqebWaJ/GDLPXgUV+E2nkrWnKu8c1/b1Uo5IpAkmR5jDih2Qu GtLjCBGc6MwRdxUz+Oyi1D/mpRZ3hygLGUIbIzl0FfSDqdPktd/lkft75fmvx/Pc 9f2WkglZu4DTVbgzMDnA/2Adv/ft20yxWq08vF48xKJgpbOmTBep+PtLbHukPRhe xsh+98Dt/NUemup/wnFaroTQdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaK9g7a Rg5OGMLfvpuKpAl93m+dMB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrDoJfizfI0a5uzMaeQtSTxwPQhrH6bNRGa/OOIyeFu6XOtf3yPEC8 sDevMh7XxLzCPI41BykMwqM6iUb0l+WRDDwB2C90jQoDgZGzPCi/s19dTYRLIPqL IS6P+pxjJO9X2Fd5K/q+kIQFDrIsyBOpoAkzZFXHRAgUNuk5XTyDzqL11YBH9SlP xRzOoN2SvwQ7u4o035yXII1LMM2XB94xJcDQxPw8wfPIWamxkjf+lxVgKRc0/57i 51O4hB3Xj0C7iY2SDr6Oq7AU2a8Hxg+Fmcc1RD5Kb3Gp+7oeeKqut2fEoUg6n6AN hBfeN7TQkg/SUURw8GS4/L625p00eFNC -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:51 2025 by rpki-client