$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json) Hash identifier: z740CsBJdVg0Qn5/O4E8RB3IczH5KPF/Q3gnYYe7lJk= Subject key identifier: 7F:3B:3B:73:47:07:18:A5:17:1E:EE:09:DC:AE:2A:35:99:7D:E8:F0 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0B52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft Manifest number: 0AF8 Signing time: Fri 30 May 2025 19:48:25 +0000 Manifest this update: Fri 30 May 2025 19:48:25 +0000 Manifest next update: Fri 06 Jun 2025 19:48:25 +0000 Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: Bjn21wbSHOq6o8wdUAldj3HWELhsC1u8LsPCfyefN8Y=) 2: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: 9HpfFO17Acvgd3bfoY1RRGMmr/S4lWCivU7zCXu99jQ=) 3: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: NmSN6VJwUZ9ydFpM44jw4neBA26CzfMXA6i3a7+JHjs=) 4: 50448A72911411EF9CAF3E55C4F9AE02.roa (hash: f8EbYStIGSB7T55NTXn1S3YpmHpX1HZLI2JBGQCdMmI=) 5: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: Ctrd7yzaoKhPJ1SZfLY/mtqd2cD4Mo1aULu0wXYXeDQ=) 6: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (hash: d4UXXCMBLzbA5F5CBh6+/uxfNEdacqbjKjEwNBL2vSE=) 7: 305F24342A0811EE9D810010C4F9AE02.roa (hash: Z2pbtlXOSAO+jQlJKET8nsnjJlOh2Bme2k6kxjJMw0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2898 (0xb52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: May 30 19:48:25 2025 GMT Not After : Jun 6 19:48:25 2025 GMT Subject: CN=683a0b89-fec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ca:0c:57:97:02:72:ff:fe:92:45:94:de:27: ef:cc:db:45:a7:4b:6a:47:82:8b:17:0d:9e:5c:de: 9f:f7:bc:4b:9b:7e:a8:db:7c:6b:00:d0:6f:d0:e3: 74:43:55:77:ed:6d:19:b6:ef:79:7a:69:1c:24:b6: 87:29:0f:2b:ec:7f:2e:c9:aa:51:9d:dc:ac:aa:59: 3c:41:3b:c4:88:78:79:2d:b0:33:3a:1f:32:72:db: c6:a5:ec:c8:b9:b5:2c:9e:3b:70:e3:83:31:7a:c6: f7:83:89:d6:0e:b7:d7:ed:c9:c5:1d:bb:39:ba:cd: d1:84:9e:42:f5:d6:16:06:b1:04:cd:e8:ba:bf:46: c6:ae:5f:5a:b6:5b:d1:c2:30:dc:73:ec:9d:14:3f: 8e:3a:3f:52:c8:b9:ce:e4:98:b8:07:77:32:ee:46: ed:11:88:5a:40:5b:84:93:ba:a6:35:b8:7a:3f:e1: 60:e3:1a:ef:c7:52:06:78:21:16:e2:9a:df:f8:9c: 6d:0d:f9:e6:0e:bf:4a:db:cf:c7:0e:4a:3a:a2:6e: 3e:66:e3:0b:8c:9f:ef:19:5e:1f:fc:72:05:00:1b: f2:63:24:ac:b7:79:6f:23:83:d7:da:a8:13:9f:f8: 62:fe:24:73:2d:81:26:cb:19:6e:d2:d2:81:48:f3: ca:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:3B:3B:73:47:07:18:A5:17:1E:EE:09:DC:AE:2A:35:99:7D:E8:F0 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:5f:47:51:93:fa:a1:ab:99:7c:54:54:d9:75:32:b7:32:fc: d7:17:d9:71:8d:4c:ae:35:5a:03:53:2f:5a:0b:64:ab:5e:92: ac:5c:ff:35:4d:08:57:ea:f3:b6:ff:87:66:56:44:c0:d3:18: 1e:d1:7c:c3:ba:a8:10:12:53:49:ab:86:d1:97:91:a2:93:38: 94:b5:b3:b2:ee:09:63:2e:1c:08:b9:59:d2:30:9a:2e:13:e1: 55:bd:ba:2c:cd:b8:34:57:96:bf:b7:dd:f5:3c:23:2a:6c:9f: 3a:0b:61:19:06:1c:31:a1:83:8c:7f:c0:bd:45:ea:40:40:44: 62:20:15:62:0f:72:2e:3b:9a:9b:45:4b:ba:bd:53:5a:f0:79: a8:65:a7:dd:fd:da:20:cd:4e:f3:dc:be:7b:b0:e9:c2:6b:70: 6f:b4:3f:86:e8:55:01:2c:86:36:8c:a0:d8:58:ca:32:30:6b: cf:cb:bf:54:2b:9a:75:ed:fc:86:74:2d:09:54:a1:59:71:a0: 0a:58:f4:c0:18:bb:3d:3d:6f:40:42:fa:e1:10:25:c8:d5:7f: eb:28:ed:bf:6b:8b:fd:18:28:20:ff:5b:3b:58:44:59:6d:21: 03:13:7d:f9:23:2a:3b:02:21:2c:e3:be:94:3c:bd:ae:b4:c6: 98:cd:1b:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjUwNTMwMTk0ODI1WhcNMjUwNjA2MTk0ODI1WjAYMRYwFAYD VQQDEw02ODNhMGI4OS1mZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6coMV5cCcv/+kkWU3ifvzNtFp0tqR4KLFw2eXN6f97xLm36o23xrANBv0ON0 Q1V37W0Ztu95emkcJLaHKQ8r7H8uyapRndysqlk8QTvEiHh5LbAzOh8yctvGpezI ubUsnjtw44Mxesb3g4nWDrfX7cnFHbs5us3RhJ5C9dYWBrEEzei6v0bGrl9atlvR wjDcc+ydFD+OOj9SyLnO5Ji4B3cy7kbtEYhaQFuEk7qmNbh6P+Fg4xrvx1IGeCEW 4prf+JxtDfnmDr9K28/HDko6om4+ZuMLjJ/vGV4f/HIFABvyYySst3lvI4PX2qgT n/hi/iRzLYEmyxlu0tKBSPPKhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH87O3NH BxilFx7uCdyuKjWZfejwMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4X0dRk/qhq5l8VFTZdTK3MvzXF9lxjUyuNVoDUy9aC2SrXpKsXP81 TQhX6vO2/4dmVkTA0xge0XzDuqgQElNJq4bRl5GikziUtbOy7gljLhwIuVnSMJou E+FVvboszbg0V5a/t931PCMqbJ86C2EZBhwxoYOMf8C9RepAQERiIBViD3IuO5qb RUu6vVNa8HmoZafd/dogzU7z3L57sOnCa3BvtD+G6FUBLIY2jKDYWMoyMGvPy79U K5p17fyGdC0JVKFZcaAKWPTAGLs9PW9AQvrhECXI1X/rKO2/a4v9GCgg/1s7WERZ bSEDE335Iyo7AiEs476UPL2utMaYzRuR -----END CERTIFICATE-----Generated at Sat May 31 17:16:17 2025 by rpki-client