$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: /J/2mpbI7o1i1yVn853YicuR/xynRz83oFquDem7vrc= Subject key identifier: 1D:6C:AA:73:10:FE:3A:1D:F8:B6:2E:62:EE:76:59:8F:FA:AA:D9:D9 Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 4A Signing time: Thu 05 Jun 2025 06:44:12 +0000 Manifest this update: Thu 05 Jun 2025 06:44:11 +0000 Manifest next update: Thu 12 Jun 2025 06:44:11 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: hOsnU+9xH+QT3FArWGYRYf5eLnTfgvUQOsMDYBvrN+4=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 06:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Jun 5 06:44:11 2025 GMT Not After : Jun 12 06:44:11 2025 GMT Subject: CN=68413cbb-3bb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:6a:f2:30:e2:e7:db:e3:f8:7d:61:66:c9: e2:df:66:ee:8d:9c:a4:05:f8:d1:1e:89:d3:cc:1f: f1:fd:b3:0e:ea:88:82:e3:8b:f4:93:29:7d:1f:aa: f3:36:82:a3:aa:51:7f:7d:f9:20:0e:94:b6:b2:eb: 2b:c8:fe:f9:51:b1:29:62:ae:b5:2c:e0:4e:68:b7: 3f:5d:67:51:33:e4:88:1b:22:86:ac:2f:ae:e9:a6: a5:df:8f:79:59:47:b6:9b:8f:1c:7c:39:0d:2c:17: 40:7e:6c:3f:81:af:cc:d7:b4:84:76:91:6a:7f:cc: de:dd:54:35:92:ea:6d:de:f9:95:d3:fb:1b:76:3f: 8a:49:d0:cd:77:5f:24:9a:0b:9f:37:fd:67:6c:54: bd:cf:fe:56:43:4d:4f:7a:a2:cc:13:0b:90:ab:70: 26:a5:ea:b4:e3:df:40:ca:13:85:08:4c:4a:81:7d: 14:21:91:31:70:43:6d:72:e5:0c:da:f0:17:d6:f5: c3:d4:27:bf:03:6f:ca:09:01:66:40:2f:6c:8f:e5: b0:aa:7d:a0:50:f6:34:96:89:1e:86:95:ee:f8:3e: 7d:ae:25:16:93:23:42:ac:a4:ee:c6:20:04:f5:22: 13:bd:f7:86:35:4c:cf:e9:16:12:d9:a6:34:5c:13: b5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6C:AA:73:10:FE:3A:1D:F8:B6:2E:62:EE:76:59:8F:FA:AA:D9:D9 X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:a5:23:ef:f8:43:ed:ce:f6:ff:dc:a8:3c:2d:99:98:cc:08: c6:b5:31:cd:01:fc:37:2f:35:a7:8d:b3:7f:66:fc:01:3a:24: e8:d1:1b:de:d5:d6:8c:f2:65:b2:4c:57:2b:1c:8d:6c:ce:1a: 01:e0:10:90:43:2b:cb:96:9f:a7:ac:21:09:4c:c9:36:99:b0: cb:c9:a6:87:20:cc:cd:66:b1:85:52:70:e3:41:b4:af:69:c3: 9e:21:5c:bb:f1:7a:db:9a:f2:6b:ee:2b:8f:2b:20:7b:42:c2: 6b:dc:db:0f:f3:9a:c3:f6:de:fe:2b:78:aa:74:00:4f:d1:86: 8d:a5:42:c6:f9:46:72:c6:52:59:9b:b5:33:fa:7f:86:55:69: 8a:03:d9:33:e5:13:9f:16:c1:ef:89:73:b6:98:f0:4d:f3:f3: e5:ef:45:b6:73:90:06:bf:3a:04:a8:ba:e2:04:d9:43:14:8e: d7:7a:88:14:9b:47:c4:7b:59:4e:2d:95:f0:d9:79:17:17:76: d1:50:e0:51:e8:8b:51:9c:59:7f:3d:45:55:4b:de:05:f5:ff: f0:6f:86:b0:86:db:12:51:48:71:db:f1:3d:21:2a:92:f4:57: 96:1d:e5:3b:57:96:22:43:9c:c7:57:ff:e3:ac:21:fb:6d:b9: 2c:40:84:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNzYyMDI2NkI5ODkxQTIxOEMwRTVGMkVGMjg4Rjc4MkQ1 NzE3RjJCQzAeFw0yNTA2MDUwNjQ0MTFaFw0yNTA2MTIwNjQ0MTFaMBgxFjAUBgNV BAMTDTY4NDEzY2JiLTNiYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC66mryMOLn2+P4fWFmyeLfZu6NnKQF+NEeidPMH/H9sw7qiILji/STKX0fqvM2 gqOqUX99+SAOlLay6yvI/vlRsSlirrUs4E5otz9dZ1Ez5IgbIoasL67ppqXfj3lZ R7abjxx8OQ0sF0B+bD+Br8zXtIR2kWp/zN7dVDWS6m3e+ZXT+xt2P4pJ0M13XySa C583/WdsVL3P/lZDTU96oswTC5CrcCal6rTj30DKE4UITEqBfRQhkTFwQ21y5Qza 8BfW9cPUJ78Db8oJAWZAL2yP5bCqfaBQ9jSWiR6Gle74Pn2uJRaTI0KspO7GIAT1 IhO994Y1TM/pFhLZpjRcE7XpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHWyqcxD+ Oh34ti5i7nZZj/qq2dkwHwYDVR0jBBgwFoAUdiAma5iRohjA5fLvKI94LVcX8rww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwL0Y5ODcxMURBRDI0 MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZGlBbWE1aVJvaGpBNWZMdktJOTRMVmNYOHJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwL0Y5ODcxMURBRDI0MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hq QTVmTHZLSTk0TFZjWDhydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHClI+/4Q+3O9v/cqDwtmZjMCMa1Mc0B/DcvNaeNs39m/AE6JOjRG97V 1ozyZbJMVyscjWzOGgHgEJBDK8uWn6esIQlMyTaZsMvJpocgzM1msYVScONBtK9p w54hXLvxetua8mvuK48rIHtCwmvc2w/zmsP23v4reKp0AE/Rho2lQsb5RnLGUlmb tTP6f4ZVaYoD2TPlE58Wwe+Jc7aY8E3z8+XvRbZzkAa/OgSouuIE2UMUjtd6iBSb R8R7WU4tlfDZeRcXdtFQ4FHoi1GcWX89RVVL3gX1//BvhrCG2xJRSHHb8T0hKpL0 V5Yd5TtXliJDnMdX/+OsIfttuSxAhDk= -----END CERTIFICATE-----Generated at Thu Jun 5 20:04:33 2025 by rpki-client