$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: nygv1eVJDktemcRGCp1+bJxW+sqCexESuKI9+rnu9Rw= Subject key identifier: F4:10:2E:D2:93:EE:60:CE:5F:62:2D:08:D7:D9:C5:C8:F9:EF:E4:3D Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 60 Signing time: Sun 01 Jun 2025 06:49:45 +0000 Manifest this update: Sun 01 Jun 2025 06:49:45 +0000 Manifest next update: Sun 08 Jun 2025 06:49:45 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: rXHiAg2zL/5L1Pv/tnb7fUNkGCD0EtRzFTKhKcTjn7Y=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:49:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Jun 1 06:49:45 2025 GMT Not After : Jun 8 06:49:45 2025 GMT Subject: CN=683bf809-d1fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:11:7d:5f:f0:55:86:9c:b1:6f:21:b7:db:a0: 03:92:18:e4:e7:fe:63:b0:6d:83:74:3a:32:b0:0a: 2b:13:f0:50:39:48:65:ff:6e:82:2d:26:79:4f:53: ec:03:51:57:ec:7d:b9:1c:61:26:c1:29:a6:19:b1: 28:39:70:9e:dd:be:a3:5a:5d:34:e4:44:38:1b:c8: a9:52:3d:9a:3d:51:25:3d:0b:ac:03:54:51:51:9c: 1f:ae:e0:14:fc:f7:5b:09:9f:24:2a:d1:a3:17:3d: 01:87:6e:80:d9:3c:f7:49:be:d1:0a:b5:f9:30:ed: 74:6d:b5:11:a0:91:2f:b5:06:1a:88:6a:c3:73:3e: c6:2d:80:c9:9e:35:d3:9c:5a:b5:cc:1a:d5:6e:14: 9f:3a:ad:34:ba:12:68:bf:e0:9e:fb:79:d3:e2:ab: f6:15:40:b2:c5:66:32:d4:14:bb:39:3f:67:5b:08: 3f:31:d0:eb:51:d4:e1:ba:70:a6:81:0d:e0:ca:18: f2:dd:0c:fe:e7:cc:4f:ee:1e:f0:6c:40:e1:d0:a1: a3:4d:71:07:ef:6f:fa:fe:8d:f9:6a:1d:44:72:07: d5:bd:92:2c:58:69:9c:2e:38:d9:4b:96:52:3c:bc: b4:e8:68:26:e1:b1:98:20:84:55:d3:de:7f:65:42: 9f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:10:2E:D2:93:EE:60:CE:5F:62:2D:08:D7:D9:C5:C8:F9:EF:E4:3D X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:dd:1c:b6:2b:8f:11:ed:50:80:89:97:b0:2a:40:d2:fb:a5: 2e:74:af:5f:17:7d:a0:a3:7a:d6:0c:0c:dd:69:5f:b6:3b:7b: 06:94:82:c2:a4:5d:f3:56:2c:0d:c4:28:06:2a:1a:34:2e:f8: 1f:fb:82:9b:bc:98:62:58:ab:60:da:7d:95:db:31:bc:a0:f7: fc:62:68:ee:1a:85:98:b7:b5:09:f6:ed:bc:a3:e7:36:fc:2b: be:da:4a:75:17:a0:98:dc:3e:65:59:b7:6f:d3:96:db:af:17: fe:3b:b1:0f:8c:6c:a5:a7:e3:fc:fb:d7:34:e2:90:f7:96:1e: 1c:84:93:83:75:3c:52:53:df:48:66:a9:bd:54:50:66:ad:55: 1b:3f:ea:31:16:42:9a:5f:50:a7:71:49:52:62:41:da:08:a3: e1:9e:48:59:00:3a:80:a2:ca:7d:0d:ec:bf:18:e3:17:9d:1e: c9:51:f6:ed:da:5f:f3:b6:ae:28:c5:87:38:c6:64:48:c9:26: 98:ca:de:f0:86:91:78:52:7b:0a:2e:03:c7:5d:15:ab:e3:41: 95:2e:cf:28:a8:a6:c6:29:4c:01:c7:5e:31:48:9b:10:43:42: 7b:12:8a:e7:f9:04:4c:00:a8:3a:3f:ad:61:ba:13:49:27:da: d6:3c:56:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMEZENDQzNzUyMURCNUMwQkM5OUU0NUI1OTc1NEZGN0I2 NzFGODZGMzAeFw0yNTA2MDEwNjQ5NDVaFw0yNTA2MDgwNjQ5NDVaMBgxFjAUBgNV BAMTDTY4M2JmODA5LWQxZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGEX1f8FWGnLFvIbfboAOSGOTn/mOwbYN0OjKwCisT8FA5SGX/boItJnlPU+wD UVfsfbkcYSbBKaYZsSg5cJ7dvqNaXTTkRDgbyKlSPZo9USU9C6wDVFFRnB+u4BT8 91sJnyQq0aMXPQGHboDZPPdJvtEKtfkw7XRttRGgkS+1BhqIasNzPsYtgMmeNdOc WrXMGtVuFJ86rTS6Emi/4J77edPiq/YVQLLFZjLUFLs5P2dbCD8x0OtR1OG6cKaB DeDKGPLdDP7nzE/uHvBsQOHQoaNNcQfvb/r+jflqHURyB9W9kixYaZwuONlLllI8 vLToaCbhsZgghFXT3n9lQp8BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9BAu0pPu YM5fYi0I19nFyPnv5D0wHwYDVR0jBBgwFoAUD9RDdSHbXAvJnkW1l1T/e2cfhvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0U5NjQ4OUFFQUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDlSRGRTSGJYQXZKbmtXMWwxVF9lMmNmaHZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0U5NjQ4OUFFQUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2 Sm5rVzFsMVRfZTJjZmh2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABTdHLYrjxHtUICJl7AqQNL7pS50r18XfaCjetYMDN1pX7Y7ewaUgsKk XfNWLA3EKAYqGjQu+B/7gpu8mGJYq2DafZXbMbyg9/xiaO4ahZi3tQn27byj5zb8 K77aSnUXoJjcPmVZt2/TltuvF/47sQ+MbKWn4/z71zTikPeWHhyEk4N1PFJT30hm qb1UUGatVRs/6jEWQppfUKdxSVJiQdoIo+GeSFkAOoCiyn0N7L8Y4xedHslR9u3a X/O2rijFhzjGZEjJJpjK3vCGkXhSewouA8ddFavjQZUuzyiopsYpTAHHXjFImxBD QnsSiuf5BEwAqDo/rWG6E0kn2tY8Vg8= -----END CERTIFICATE-----Generated at Mon Jun 2 21:06:18 2025 by rpki-client