$ rpki-client -vvf rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft File: DAmet3to0aLfVJLHMbZNVB9VmwI.mft (raw, json) Hash identifier: ONarJZpGDuPtRRwW6wz2gjhdKgS3jYRKWiq+nMQt3P4= Subject key identifier: BF:DC:B2:86:FB:BA:B5:EF:DD:E4:70:C0:0D:7B:F9:54:6A:10:DD:56 Authority key identifier: 0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 Certificate issuer: /CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Certificate serial: 0305 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft Manifest number: 02FF Signing time: Thu 05 Jun 2025 01:06:42 +0000 Manifest this update: Thu 05 Jun 2025 01:06:42 +0000 Manifest next update: Thu 12 Jun 2025 01:06:42 +0000 Files and hashes: 1: DAmet3to0aLfVJLHMbZNVB9VmwI.crl (hash: kMPNg7hs4Fz9sjX3chVqLYb+E3ZDFI60UJ71VOijZiY=) 2: 32F44056DB1911EC87E56C0DC4F9AE02.roa (hash: dQViwk1iBrJGr2fBwaPfSS5giTEUliECggf7nT0Erg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 773 (0x305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509A4, serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Validity Not Before: Jun 5 01:06:42 2025 GMT Not After : Jun 12 01:06:42 2025 GMT Subject: CN=6840eda2-47ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:88:43:5c:dc:79:af:f5:b1:40:da:88:ff: e9:f0:d9:77:68:3f:49:26:0a:ed:b1:06:50:c9:58: 2b:40:95:54:f5:6c:70:f2:7b:ee:31:f6:2c:c8:df: 84:7e:9a:db:43:09:f8:6f:d7:19:15:ef:ff:27:9c: df:18:a3:b4:c8:4c:77:2d:ca:73:9c:c0:84:d4:ba: 26:d7:3d:cf:84:e2:f1:44:d3:e1:45:52:26:9d:ed: c1:53:b9:03:fd:b7:69:79:30:9a:ae:5c:a4:1a:73: 99:09:fa:64:87:39:1d:bc:cd:aa:2d:63:02:7c:ee: 76:70:02:90:74:76:e5:cd:5e:8f:ce:9f:d4:aa:3d: 02:7c:57:94:21:b7:d3:eb:90:30:fc:4c:82:c6:a5: 86:8e:1d:09:bc:ec:64:f8:7b:75:24:bb:d1:07:5b: ed:23:1c:74:c8:4b:2e:92:76:68:34:de:c6:13:cf: e7:11:87:c0:0c:3b:b0:45:b0:8e:f5:e7:d8:11:b1: 6d:09:ce:d0:78:63:40:c5:7f:81:0b:2f:2a:28:65: 39:10:de:d1:e6:e6:60:4a:c9:31:dd:47:9c:36:96: a6:a0:d7:2f:8f:34:15:03:a3:d4:ae:5a:fe:c8:4a: 6e:c5:e9:3c:34:d1:c9:43:42:65:be:75:de:48:25: 04:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DC:B2:86:FB:BA:B5:EF:DD:E4:70:C0:0D:7B:F9:54:6A:10:DD:56 X509v3 Authority Key Identifier: keyid:0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:29:6d:a9:d6:4c:c3:3a:12:69:ca:57:c4:ba:0f:c4:1d:db: 57:98:ad:86:44:87:3d:72:52:0f:18:0e:80:81:da:5c:b2:b2: 9f:2b:a7:ef:fa:f5:5f:d7:08:06:bc:61:ce:75:14:ba:68:e9: 18:e8:d1:f5:8c:a4:65:4f:0f:0a:61:07:6e:77:f7:af:d8:c6: c5:04:52:15:94:c5:2f:9d:20:ac:a6:20:9e:cb:69:2d:a4:b6: 83:ce:bd:b6:78:29:b8:c4:b6:75:1a:fc:9e:85:0b:19:7c:f4: 70:bb:62:ba:7c:96:aa:b5:29:e6:20:38:7b:dd:08:49:b0:85: 8c:73:1d:e2:0a:53:27:29:19:a1:3f:87:12:22:77:20:2b:d3: a7:6a:b2:af:3d:3a:b0:95:18:4f:97:33:0f:1d:18:b4:c7:37: 21:d6:0f:1c:65:73:98:93:ad:28:de:34:45:bf:73:78:b3:dc: 72:78:1c:cf:a7:16:e9:1f:f1:8a:5c:90:dc:9b:6c:55:73:0a: 24:bf:64:72:bd:96:71:b6:ac:6f:5d:ae:60:8b:ad:08:c1:87: 0e:50:81:3e:03:8a:e1:94:d3:fc:56:97:eb:8b:a4:d5:12:2f: d5:7a:e0:ac:b8:fe:3e:ae:36:93:66:d6:a6:c4:00:b1:b7:d6: 3a:04:df:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QTQxMTAvBgNVBAUTKDBDMDk5RUI3N0I2OEQxQTJERjU0OTJDNzMxQjY0RDU0 MUY1NTlCMDIwHhcNMjUwNjA1MDEwNjQyWhcNMjUwNjEyMDEwNjQyWjAYMRYwFAYD VQQDEw02ODQwZWRhMi00N2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSKIQ1zcea/1sUDaiP/p8Nl3aD9JJgrtsQZQyVgrQJVU9Wxw8nvuMfYsyN+E fprbQwn4b9cZFe//J5zfGKO0yEx3LcpznMCE1Lom1z3PhOLxRNPhRVImne3BU7kD /bdpeTCarlykGnOZCfpkhzkdvM2qLWMCfO52cAKQdHblzV6Pzp/Uqj0CfFeUIbfT 65Aw/EyCxqWGjh0JvOxk+Ht1JLvRB1vtIxx0yEsuknZoNN7GE8/nEYfADDuwRbCO 9efYEbFtCc7QeGNAxX+BCy8qKGU5EN7R5uZgSskx3UecNpamoNcvjzQVA6PUrlr+ yEpuxek8NNHJQ0JlvnXeSCUEVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/csob7 urXv3eRwwA17+VRqEN1WMB8GA1UdIwQYMBaAFAwJnrd7aNGi31SSxzG2TVQfVZsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlBNC9EQkFCOTM2RURB NzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBhTGZWSkxITWJaTlZCOVZt d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBbWV0M3RvMGFMZlZKTEhNYlpOVkI5Vm13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlBNC9EQkFCOTM2RURBNzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBh TGZWSkxITWJaTlZCOVZtd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPKW2p1kzDOhJpylfEug/EHdtXmK2GRIc9clIPGA6AgdpcsrKfK6fv +vVf1wgGvGHOdRS6aOkY6NH1jKRlTw8KYQdud/ev2MbFBFIVlMUvnSCspiCey2kt pLaDzr22eCm4xLZ1GvyehQsZfPRwu2K6fJaqtSnmIDh73QhJsIWMcx3iClMnKRmh P4cSIncgK9OnarKvPTqwlRhPlzMPHRi0xzch1g8cZXOYk60o3jRFv3N4s9xyeBzP pxbpH/GKXJDcm2xVcwokv2RyvZZxtqxvXa5gi60IwYcOUIE+A4rhlNP8Vpfri6TV Ei/VeuCsuP4+rjaTZtamxACxt9Y6BN8M -----END CERTIFICATE-----Generated at Fri Jun 6 16:55:05 2025 by rpki-client