$ rpki-client -vvf rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft File: dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft (raw, json) Hash identifier: jYQw8ZPwr8m+DEAtc32hbELQQp0muqt4y89s3H7alAc= Subject key identifier: 81:DF:4F:4B:B3:66:8D:FF:C2:65:52:EF:56:4F:E6:91:4C:CE:20:3B Authority key identifier: 76:9D:44:D9:B4:1C:BB:CF:C5:36:71:3B:9B:95:28:F6:CA:B8:7C:5C Certificate issuer: /CN=A9150733/serialNumber=769D44D9B41CBBCFC536713B9B9528F6CAB87C5C Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft Manifest number: 0C89 Signing time: Fri 30 May 2025 19:25:02 +0000 Manifest this update: Fri 30 May 2025 19:25:01 +0000 Manifest next update: Fri 06 Jun 2025 19:25:01 +0000 Files and hashes: 1: dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl (hash: 46tHFfUBac/syKD8gi25r0DrKSgyRFSExsqbDd9F1lk=) 2: DC41F9C4214411EEBC685C79C4F9AE02.roa (hash: EII0j0htPqZRd+8Muval63G6bvgUY1532bbGJQef7wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150733, serialNumber=769D44D9B41CBBCFC536713B9B9528F6CAB87C5C Validity Not Before: May 30 19:25:01 2025 GMT Not After : Jun 6 19:25:01 2025 GMT Subject: CN=683a060d-13f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f8:f1:fb:87:ad:15:3b:a1:7a:dd:e7:dd:2f: a6:d2:23:b4:99:c0:75:93:90:3d:51:67:5e:20:2a: aa:a6:fb:98:2a:26:11:55:fb:f4:55:e5:1e:5d:f8: 4a:d1:72:a1:d7:19:ae:19:a3:ca:74:f6:fe:cc:4d: bb:33:b5:2b:9e:3a:d5:6b:69:45:b0:7a:ee:31:40: f2:2c:12:04:b8:fa:a2:a8:3d:7e:b6:0d:68:fc:a3: f6:3a:c5:8a:5d:0b:48:2a:02:6a:2f:8f:ac:14:0d: 98:80:6c:0b:7d:7c:55:97:81:e1:25:2f:1a:4d:1d: 4c:29:ae:dd:a1:6c:93:11:5c:dd:4f:67:e5:a0:0d: ac:20:f6:31:b2:f8:d0:b6:94:8c:75:d3:ff:63:23: bb:0a:e2:81:1d:b5:04:57:c0:57:3a:d9:b8:38:6a: 89:2a:a0:5a:9f:ee:bf:55:5c:bd:40:32:f8:19:46: 5c:2a:90:d4:d3:c3:d9:42:c8:86:83:07:c0:51:af: 19:34:43:2b:39:d4:fc:c0:ae:3d:4c:d2:b6:28:56: 87:42:30:e6:ba:f2:cf:e4:c2:18:51:a4:61:7f:28: ac:7b:10:31:85:c9:48:a7:76:6c:c2:78:94:e8:75: 92:2f:58:53:e9:9b:47:12:86:7e:5c:08:27:80:f5: a3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:DF:4F:4B:B3:66:8D:FF:C2:65:52:EF:56:4F:E6:91:4C:CE:20:3B X509v3 Authority Key Identifier: keyid:76:9D:44:D9:B4:1C:BB:CF:C5:36:71:3B:9B:95:28:F6:CA:B8:7C:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:75:d6:aa:d3:96:a7:e2:20:ab:15:4a:3f:5a:11:eb:0c:fc: 41:5f:c4:8b:3b:53:5b:f7:14:0e:bd:69:7d:e5:27:93:58:d2: a7:60:d1:a6:a6:0e:6c:9b:dc:67:a6:6e:5d:c4:fc:3d:39:c0: fb:55:e8:8d:b8:1b:e3:b8:b6:5d:8a:bc:8c:25:cf:72:81:51: f3:4b:f0:29:5c:f1:b5:89:63:52:a6:9f:28:c7:39:87:de:27: 06:af:99:44:6d:94:57:39:c9:b8:db:69:47:2b:92:1e:09:83: 1c:ab:e9:ce:5f:7f:cd:da:d0:bc:f1:1a:36:ed:c0:aa:ad:c5: 8e:cd:47:3d:47:94:2b:20:aa:9b:26:aa:20:a1:44:7a:d0:31: f8:a2:8e:38:33:05:02:c4:ba:a2:19:cf:90:95:20:85:ff:76: 4c:16:af:d5:7b:a5:a5:37:20:9c:a2:98:ea:62:5d:77:22:0a: 2f:d6:fd:30:02:38:dc:38:82:57:c8:db:c2:78:28:6c:7f:7e: 58:31:4b:f3:23:56:1b:3a:a0:7b:19:dd:4c:d0:c1:ca:65:8f: a7:6f:a4:ad:35:0b:e6:80:71:12:56:d8:89:b6:6d:c7:21:cc: 02:24:2b:b3:95:f5:99:7b:fc:7c:13:86:c3:1f:0a:07:ae:d4: fd:73:ff:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA3MzMxMTAvBgNVBAUTKDc2OUQ0NEQ5QjQxQ0JCQ0ZDNTM2NzEzQjlCOTUyOEY2 Q0FCODdDNUMwHhcNMjUwNTMwMTkyNTAxWhcNMjUwNjA2MTkyNTAxWjAYMRYwFAYD VQQDEw02ODNhMDYwZC0xM2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfjx+4etFTuhet3n3S+m0iO0mcB1k5A9UWdeICqqpvuYKiYRVfv0VeUeXfhK 0XKh1xmuGaPKdPb+zE27M7UrnjrVa2lFsHruMUDyLBIEuPqiqD1+tg1o/KP2OsWK XQtIKgJqL4+sFA2YgGwLfXxVl4HhJS8aTR1MKa7doWyTEVzdT2floA2sIPYxsvjQ tpSMddP/YyO7CuKBHbUEV8BXOtm4OGqJKqBan+6/VVy9QDL4GUZcKpDU08PZQsiG gwfAUa8ZNEMrOdT8wK49TNK2KFaHQjDmuvLP5MIYUaRhfyisexAxhclIp3ZswniU 6HWSL1hT6ZtHEoZ+XAgngPWj5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHfT0uz Zo3/wmVS71ZP5pFMziA7MB8GA1UdIwQYMBaAFHadRNm0HLvPxTZxO5uVKPbKuHxc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDczMy8yMTc4NjhDRTNE QjUxMUVBQTY0OTEzMTJDNEY5QUUwMi9kcDFFMmJRY3U4X0ZObkU3bTVVbzlzcTRm RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwMUUyYlFjdThfRk5uRTdtNVVvOXNxNGZGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDczMy8yMTc4NjhDRTNEQjUxMUVBQTY0OTEzMTJDNEY5QUUwMi9kcDFFMmJRY3U4 X0ZObkU3bTVVbzlzcTRmRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPddaq05an4iCrFUo/WhHrDPxBX8SLO1Nb9xQOvWl95SeTWNKnYNGm pg5sm9xnpm5dxPw9OcD7VeiNuBvjuLZdiryMJc9ygVHzS/ApXPG1iWNSpp8oxzmH 3icGr5lEbZRXOcm422lHK5IeCYMcq+nOX3/N2tC88Ro27cCqrcWOzUc9R5QrIKqb JqogoUR60DH4oo44MwUCxLqiGc+QlSCF/3ZMFq/Ve6WlNyCcopjqYl13Igov1v0w AjjcOIJXyNvCeChsf35YMUvzI1YbOqB7Gd1M0MHKZY+nb6StNQvmgHESVtiJtm3H IcwCJCuzlfWZe/x8E4bDHwoHrtT9c/+F -----END CERTIFICATE-----Generated at Sat May 31 17:07:45 2025 by rpki-client