$ rpki-client -vvf rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft File: DprNgHEUtY9xipwrhZUmJebbK9E.mft (raw, json) Hash identifier: bUIr1fI1jq3VaINPbcRlLGphMbndgZ7zKw1m7bfYkmI= Subject key identifier: FC:D1:C8:F7:CE:DE:24:CC:40:D7:A8:09:D6:FE:CD:FF:CC:E0:7D:37 Authority key identifier: 0E:9A:CD:80:71:14:B5:8F:71:8A:9C:2B:85:95:26:25:E6:DB:2B:D1 Certificate issuer: /CN=A9146D7A/serialNumber=0E9ACD807114B58F718A9C2B85952625E6DB2BD1 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft Manifest number: 0104 Signing time: Sat 31 May 2025 04:43:45 +0000 Manifest this update: Sat 31 May 2025 04:43:44 +0000 Manifest next update: Sat 07 Jun 2025 04:43:44 +0000 Files and hashes: 1: DprNgHEUtY9xipwrhZUmJebbK9E.crl (hash: PEmRfgWFzX5KSjvACBjuNW9cFW+Jbn7D3/SLRggIlGc=) 2: E3AB124AB5C811EE8795EB6FC4F9AE02.roa (hash: aM0ebxOeAp/0tw2kKItKBwN7ixtJh2EMTHdvNuXJzzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.crl rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146D7A, serialNumber=0E9ACD807114B58F718A9C2B85952625E6DB2BD1 Validity Not Before: May 31 04:43:44 2025 GMT Not After : Jun 7 04:43:44 2025 GMT Subject: CN=683a8900-071d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9c:e5:0f:57:6a:a5:09:25:ac:3c:4f:fe:02: 54:a9:9d:b6:47:6f:12:e8:74:c0:90:84:df:04:8b: 87:a6:f0:c2:ef:ad:55:42:9f:b6:c4:4c:2d:2c:2c: 0e:9a:98:4e:91:36:46:b1:e3:0d:99:89:01:1a:fc: ef:92:99:43:55:bf:e2:eb:e6:0a:09:1f:53:95:df: 08:d6:5e:15:be:9b:97:86:a4:45:28:28:ee:fc:d9: 5f:c2:04:d4:d1:1f:76:69:d0:13:3c:9b:c6:9a:8d: cf:41:40:e3:77:39:49:95:5c:37:aa:68:3a:dd:eb: 9b:7e:6c:53:b2:4d:a6:b1:ad:b9:21:7c:89:c6:21: a4:fc:c2:63:14:4b:b5:db:86:1b:38:d3:8d:75:e1: 11:ae:4d:6d:88:eb:9a:e5:64:80:a3:c2:80:ec:be: 01:db:88:ef:aa:68:6a:57:d2:fa:ec:63:27:0b:50: 26:32:52:fe:b6:28:ed:b6:17:64:6c:ce:2e:5e:95: b6:b1:38:d2:1c:51:34:21:40:33:04:6a:7f:5e:98: ea:72:a9:67:e6:ec:87:17:93:ac:4d:ec:7c:98:f5: 30:2d:9a:15:6f:87:75:5b:23:fa:24:24:61:51:6b: 75:cd:46:f4:1d:8d:37:97:4f:e8:9c:43:4d:1b:dc: 8e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D1:C8:F7:CE:DE:24:CC:40:D7:A8:09:D6:FE:CD:FF:CC:E0:7D:37 X509v3 Authority Key Identifier: keyid:0E:9A:CD:80:71:14:B5:8F:71:8A:9C:2B:85:95:26:25:E6:DB:2B:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:c5:64:af:65:b6:9d:1f:06:b8:ce:9c:8e:40:a8:84:41:e1: d0:8b:7e:c1:09:3b:96:06:12:8a:99:47:12:d3:8a:8b:50:22: 88:a1:c7:06:49:13:d7:53:18:76:dd:76:a8:3a:a7:d6:d4:f2: 86:d3:4d:0a:fb:be:8f:a8:d3:1e:36:0d:6a:fe:8e:4c:a2:26: 64:fa:f8:bb:a7:db:63:5f:86:0a:79:89:12:1a:2c:10:0a:65: 43:cf:34:e6:cd:05:c2:e2:16:8f:24:1d:06:32:ee:6c:2a:76: 5c:74:e9:11:37:13:ba:94:60:bf:ba:60:8a:08:a3:dd:db:ff: 9f:95:9b:29:fe:ea:64:55:00:06:9b:26:d9:5c:48:5c:6d:7c: 0b:c6:05:85:ad:9f:50:96:1a:bd:6c:9e:1f:cc:56:db:4b:3e: e6:e6:46:7e:83:c6:80:df:aa:68:e3:ca:c6:c8:26:e0:ff:41: a0:98:9b:e4:93:88:08:e6:7e:85:78:60:03:59:1c:5f:be:2c: ae:d7:f0:d2:3f:da:d2:9d:d2:99:4d:1e:25:10:68:bb:85:f5: ee:16:80:c4:9f:88:77:10:da:19:c0:fd:49:7a:e9:bd:11:21: 4c:46:2d:5a:53:67:ad:06:e3:45:f3:03:ec:5d:57:b1:77:f7: 3c:e5:cf:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEN0ExMTAvBgNVBAUTKDBFOUFDRDgwNzExNEI1OEY3MThBOUMyQjg1OTUyNjI1 RTZEQjJCRDEwHhcNMjUwNTMxMDQ0MzQ0WhcNMjUwNjA3MDQ0MzQ0WjAYMRYwFAYD VQQDEw02ODNhODkwMC0wNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJzlD1dqpQklrDxP/gJUqZ22R28S6HTAkITfBIuHpvDC761VQp+2xEwtLCwO mphOkTZGseMNmYkBGvzvkplDVb/i6+YKCR9Tld8I1l4VvpuXhqRFKCju/NlfwgTU 0R92adATPJvGmo3PQUDjdzlJlVw3qmg63eubfmxTsk2msa25IXyJxiGk/MJjFEu1 24YbONONdeERrk1tiOua5WSAo8KA7L4B24jvqmhqV9L67GMnC1AmMlL+tijtthdk bM4uXpW2sTjSHFE0IUAzBGp/Xpjqcqln5uyHF5OsTex8mPUwLZoVb4d1WyP6JCRh UWt1zUb0HY03l0/onENNG9yOhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzRyPfO 3iTMQNeoCdb+zf/M4H03MB8GA1UdIwQYMBaAFA6azYBxFLWPcYqcK4WVJiXm2yvR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkQ3QS85M0QyNEY0QUI1 QzgxMUVFQjRBMjRBNkZDNEY5QUUwMi9EcHJOZ0hFVXRZOXhpcHdyaFpVbUplYmJL OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rwck5nSEVVdFk5eGlwd3JoWlVtSmViYks5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkQ3QS85M0QyNEY0QUI1QzgxMUVFQjRBMjRBNkZDNEY5QUUwMi9EcHJOZ0hFVXRZ OXhpcHdyaFpVbUplYmJLOUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVxWSvZbadHwa4zpyOQKiEQeHQi37BCTuWBhKKmUcS04qLUCKIoccG SRPXUxh23XaoOqfW1PKG000K+76PqNMeNg1q/o5MoiZk+vi7p9tjX4YKeYkSGiwQ CmVDzzTmzQXC4haPJB0GMu5sKnZcdOkRNxO6lGC/umCKCKPd2/+flZsp/upkVQAG mybZXEhcbXwLxgWFrZ9Qlhq9bJ4fzFbbSz7m5kZ+g8aA36po48rGyCbg/0GgmJvk k4gI5n6FeGADWRxfviyu1/DSP9rSndKZTR4lEGi7hfXuFoDEn4h3ENoZwP1Jeum9 ESFMRi1aU2etBuNF8wPsXVexd/c85c8s -----END CERTIFICATE-----Generated at Sat May 31 17:16:18 2025 by rpki-client