$ rpki-client -vvf rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft File: DHYrLJAks0yYhILx1x10mufcSus.mft (raw, json) Hash identifier: A7Zx2/iw0SO935DGchr6v0m34INM0jfS/wKPHZYW8MA= Subject key identifier: 72:22:68:AE:3F:D4:BD:71:90:9D:1D:DF:CD:86:06:4D:A8:6F:97:9D Authority key identifier: 0C:76:2B:2C:90:24:B3:4C:98:84:82:F1:D7:1D:74:9A:E7:DC:4A:EB Certificate issuer: /CN=A91348C9/serialNumber=0C762B2C9024B34C988482F1D71D749AE7DC4AEB Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft Manifest number: FA Signing time: Sat 31 May 2025 04:55:20 +0000 Manifest this update: Sat 31 May 2025 04:55:18 +0000 Manifest next update: Sat 07 Jun 2025 04:55:18 +0000 Files and hashes: 1: DHYrLJAks0yYhILx1x10mufcSus.crl (hash: QHQy3nj4BQ4g8+6wzp3VkQZo4J6TfPaVhYBXEKU4npE=) 2: F8B24A3C127911F09BCB8B7AC4F9AE02.roa (hash: v+1b4BSfVaZyzyzYkzqzeT7Ee1I3/7A+8jt9kQpxCPc=) 3: 9B6126AEE1D811EF881A2765C4F9AE02.roa (hash: A9dIkj8J76tWHGXSX/3Ud9jZf1nkfnJcE726ptgm7cw=) 4: 79F7221E892911EF896D1145C4F9AE02.roa (hash: hGdMrY8+O6zApibMjg/vy58aibxku7iV/ch2aVDa82w=) 5: F278C026892911EFB08D7746C4F9AE02.roa (hash: Vz6AnYUqxQMrtm1fqPuY9YKct5u+kfmwLL8MJ80Qjc4=) 6: 5D31D17ACE9811EE9392467BC4F9AE02.roa (hash: 1Q/6I9YvTdRroG4PgU/vX7AvoYDmVeBiDmXzSwZyFRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.crl rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348C9, serialNumber=0C762B2C9024B34C988482F1D71D749AE7DC4AEB Validity Not Before: May 31 04:55:18 2025 GMT Not After : Jun 7 04:55:18 2025 GMT Subject: CN=683a8bb7-cb12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:74:c2:a4:a0:a0:2d:ff:f0:4c:78:8d:55:e3: 5e:8b:19:82:44:50:ae:81:d8:86:59:9f:66:4e:88: b6:09:da:27:59:0c:c5:90:c6:b4:05:de:7a:31:8d: 26:a4:57:2b:72:7a:48:11:d4:f6:75:e5:e8:f4:aa: be:31:97:4e:2b:c5:49:36:99:bf:3f:a8:9e:2b:bd: 22:59:0b:54:5f:4b:b2:da:eb:37:d9:46:2e:65:35: 01:fd:76:33:fb:c1:90:ed:9a:6f:02:5a:9a:26:22: e7:b8:6f:fa:c5:55:0d:6b:7a:ef:b5:de:7c:bd:00: a3:68:cf:6a:b8:68:d1:42:85:97:0c:8e:1a:e6:15: ad:91:af:66:dc:72:6c:16:2d:b3:fc:d6:7d:29:5b: 03:6c:8b:f7:b2:57:3b:e3:12:ed:f8:03:9d:19:01: a1:17:cb:91:fc:6f:4f:d7:70:49:a3:39:33:a8:5b: d6:be:de:d6:fd:fb:a8:b3:15:b7:ab:b3:8e:21:d0: 0b:ac:e1:ff:b9:8f:86:a4:96:dd:f1:96:df:cd:3e: a5:96:eb:c3:eb:f8:d0:07:c7:bd:6c:e1:47:39:c3: b0:5d:15:3f:fa:ab:7b:ef:f0:b7:e0:7d:3c:be:a7: 4e:75:ad:b7:94:a7:85:02:71:2d:24:bc:08:45:b2: ef:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:22:68:AE:3F:D4:BD:71:90:9D:1D:DF:CD:86:06:4D:A8:6F:97:9D X509v3 Authority Key Identifier: keyid:0C:76:2B:2C:90:24:B3:4C:98:84:82:F1:D7:1D:74:9A:E7:DC:4A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:14:7a:2f:e6:d2:9e:ea:49:b6:44:45:87:c3:2d:d7:5d:a6: 70:1b:31:63:ec:72:cb:53:b2:98:81:ba:2f:7f:78:08:aa:83: 58:42:83:a1:54:31:37:e2:11:e2:04:37:4d:c2:fd:51:bd:18: 08:e8:14:e7:a4:4d:f1:20:cf:ec:99:44:b6:0a:7d:2b:7e:da: bb:ad:e4:7c:b1:48:45:a5:d3:c7:e5:bd:e4:3d:0a:09:5c:0d: e8:b8:a9:3b:0a:28:83:ee:b8:ab:3c:fb:0f:f3:93:fe:09:ba: 3f:53:7f:ad:7e:d9:b7:50:64:35:8a:eb:94:6c:bf:ce:b8:24: c0:b4:82:e8:d6:01:6c:dd:c2:ea:be:6a:ad:64:2c:c1:a5:4c: c7:fa:ea:7d:a7:cc:4b:37:7a:aa:38:f5:ea:34:4b:30:73:c7: 1a:3e:c4:f5:f2:95:83:47:6b:67:d0:f4:ca:89:23:0d:3e:95: 7e:8e:62:30:fa:87:4c:dc:bc:96:e4:d7:ab:59:50:8a:37:12: c4:8a:a8:c2:d2:02:eb:22:89:c7:56:6a:de:91:82:f9:0e:3a: 77:cf:a6:b7:28:7c:7c:36:e6:b8:77:2e:a4:b1:bc:d0:db:25: 28:36:d1:50:d9:a6:a0:67:76:c6:0a:d6:3e:71:27:16:14:70: b9:12:1c:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4QzkxMTAvBgNVBAUTKDBDNzYyQjJDOTAyNEIzNEM5ODg0ODJGMUQ3MUQ3NDlB RTdEQzRBRUIwHhcNMjUwNTMxMDQ1NTE4WhcNMjUwNjA3MDQ1NTE4WjAYMRYwFAYD VQQDEw02ODNhOGJiNy1jYjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3TCpKCgLf/wTHiNVeNeixmCRFCugdiGWZ9mToi2CdonWQzFkMa0Bd56MY0m pFcrcnpIEdT2deXo9Kq+MZdOK8VJNpm/P6ieK70iWQtUX0uy2us32UYuZTUB/XYz +8GQ7ZpvAlqaJiLnuG/6xVUNa3rvtd58vQCjaM9quGjRQoWXDI4a5hWtka9m3HJs Fi2z/NZ9KVsDbIv3slc74xLt+AOdGQGhF8uR/G9P13BJozkzqFvWvt7W/fuosxW3 q7OOIdALrOH/uY+GpJbd8ZbfzT6lluvD6/jQB8e9bOFHOcOwXRU/+qt77/C34H08 vqdOda23lKeFAnEtJLwIRbLvRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIiaK4/ 1L1xkJ0d382GBk2ob5edMB8GA1UdIwQYMBaAFAx2KyyQJLNMmISC8dcddJrn3Err MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhDOS9DRkMxMEUwQUNF OTcxMUVFOTIzRjA0NzBDNEY5QUUwMi9ESFlyTEpBa3MweVloSUx4MXgxMG11ZmNT dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIWXJMSkFrczB5WWhJTHgxeDEwbXVmY1N1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhDOS9DRkMxMEUwQUNFOTcxMUVFOTIzRjA0NzBDNEY5QUUwMi9ESFlyTEpBa3Mw eVloSUx4MXgxMG11ZmNTdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATFHov5tKe6km2REWHwy3XXaZwGzFj7HLLU7KYgbovf3gIqoNYQoOh VDE34hHiBDdNwv1RvRgI6BTnpE3xIM/smUS2Cn0rftq7reR8sUhFpdPH5b3kPQoJ XA3ouKk7CiiD7rirPPsP85P+Cbo/U3+tftm3UGQ1iuuUbL/OuCTAtILo1gFs3cLq vmqtZCzBpUzH+up9p8xLN3qqOPXqNEswc8caPsT18pWDR2tn0PTKiSMNPpV+jmIw +odM3LyW5NerWVCKNxLEiqjC0gLrIonHVmrekYL5Djp3z6a3KHx8Nua4dy6ksbzQ 2yUoNtFQ2aagZ3bGCtY+cScWFHC5Ehxe -----END CERTIFICATE-----Generated at Sat May 31 17:24:50 2025 by rpki-client