$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft File: Di3qFP18_9DQqeo-N0N7keRUsjY.mft (raw, json) Hash identifier: CyAsHuSD84Ztbkp/xS9p1EJ+BjaKnerUgZPXc+xwT9I= Subject key identifier: 6E:86:6F:FD:7C:BF:5B:44:AD:56:C1:CD:0F:E0:41:BD:69:07:59:E0 Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 Certificate issuer: /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Certificate serial: 117F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft Manifest number: 1179 Signing time: Fri 30 May 2025 17:24:23 +0000 Manifest this update: Fri 30 May 2025 17:24:23 +0000 Manifest next update: Fri 06 Jun 2025 17:24:23 +0000 Files and hashes: 1: Di3qFP18_9DQqeo-N0N7keRUsjY.crl (hash: N2rhiSTj0s/LymiWVHNRHYEz92IelJLEa53sLyR7oxY=) 2: 2245CE0A606811EB80E3D531C4F9AE02.roa (hash: PSSQDCbjfGOv5hsREHHq3AE69qVBQBbQjxmYclshFuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4479 (0x117f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91560A3, serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Validity Not Before: May 30 17:24:23 2025 GMT Not After : Jun 6 17:24:23 2025 GMT Subject: CN=6839e9c7-1e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:da:a6:0f:cf:7b:8e:ed:8d:89:78:84:55:63: 52:da:91:48:19:0c:92:39:a8:cf:c0:d3:e8:27:63: 38:fa:c0:0e:c1:f7:c0:62:23:9f:35:75:8a:1e:61: 4a:a1:7b:c0:7f:97:03:c1:ca:fe:88:fa:91:03:0c: 8e:ef:3c:e9:ab:ac:7d:b2:f8:a7:8c:a9:f2:59:68: 2e:c8:73:e0:51:76:6f:9f:bb:83:6e:9c:8c:b5:38: 50:72:08:f9:e4:09:35:b1:b6:48:e8:28:29:86:e6: f6:c7:04:a0:00:36:93:4f:8c:94:35:31:d7:94:66: 11:f2:7f:63:9b:bb:35:9d:87:47:d8:4d:f3:6d:fa: f3:e3:f3:3a:49:30:41:8b:d6:ad:ba:bd:d4:a2:46: eb:91:8b:5f:f3:14:be:57:8a:2f:93:b3:05:2c:4e: 64:30:54:cc:13:35:bf:47:5c:e0:fd:cf:37:b4:d5: e6:6f:0c:9b:6c:ef:0c:18:19:a9:1a:4f:9e:f1:fe: 4f:97:75:7a:b9:31:e0:18:ef:c1:fd:c5:4c:bf:94: d0:74:87:df:19:e5:a4:82:9f:22:5a:bf:fd:33:37: d6:e3:84:a6:b8:d0:ce:97:68:0e:4f:b1:b9:d9:10: 8d:b8:8b:b7:a2:b1:f8:b1:0f:5b:d1:cf:27:11:e0: 8a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:86:6F:FD:7C:BF:5B:44:AD:56:C1:CD:0F:E0:41:BD:69:07:59:E0 X509v3 Authority Key Identifier: keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:40:87:35:ca:6a:45:57:c3:2a:2f:d2:47:b8:d4:3d:03:41: 65:2d:fc:40:7e:82:23:a4:97:e1:ad:29:22:b4:40:e1:08:a4: 6d:2f:67:71:c5:87:66:ee:9b:b0:9e:8e:90:c6:8d:fa:04:1f: d1:46:aa:70:6b:27:ab:55:11:ea:9c:25:7c:a9:ec:7a:a8:48: 39:ec:e2:9b:cb:f8:d0:ef:5b:b9:9a:b0:9f:85:c7:6f:e1:00: 9c:08:58:42:c8:76:19:61:7e:10:46:f9:db:ae:0d:bc:e8:b2: ab:cf:ed:a3:7b:5b:33:95:68:e5:1f:ae:0d:75:3b:40:b3:fd: c5:ac:28:91:3a:f7:bf:6d:3e:7d:55:62:95:f1:94:3e:56:89: ca:1e:47:0f:35:b1:b3:bd:2a:99:1f:24:c4:26:d4:76:cc:63: 16:40:49:a0:da:1d:99:30:41:d4:fc:43:5d:71:1d:c2:21:d9: ef:19:3d:f3:ad:c1:ad:8f:08:76:95:96:85:71:85:59:d5:34: 76:1d:3c:a6:dc:30:e4:76:2c:fb:4e:96:93:58:3a:9a:5c:b9: 7d:44:78:d3:e3:88:79:9c:2a:db:7d:f4:5d:fb:40:50:38:86: 76:fb:7b:20:f5:fd:2d:aa:fd:96:67:a6:4c:c9:46:4b:e3:67: ce:51:0a:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwQTMxMTAvBgNVBAUTKDBFMkRFQTE0RkQ3Q0ZGRDBEMEE5RUEzRTM3NDM3Qjkx RTQ1NEIyMzYwHhcNMjUwNTMwMTcyNDIzWhcNMjUwNjA2MTcyNDIzWjAYMRYwFAYD VQQDEw02ODM5ZTljNy0xZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dqmD897ju2NiXiEVWNS2pFIGQySOajPwNPoJ2M4+sAOwffAYiOfNXWKHmFK oXvAf5cDwcr+iPqRAwyO7zzpq6x9svinjKnyWWguyHPgUXZvn7uDbpyMtThQcgj5 5Ak1sbZI6Cgphub2xwSgADaTT4yUNTHXlGYR8n9jm7s1nYdH2E3zbfrz4/M6STBB i9atur3UokbrkYtf8xS+V4ovk7MFLE5kMFTMEzW/R1zg/c83tNXmbwybbO8MGBmp Gk+e8f5Pl3V6uTHgGO/B/cVMv5TQdIffGeWkgp8iWr/9MzfW44SmuNDOl2gOT7G5 2RCNuIu3orH4sQ9b0c8nEeCKZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6Gb/18 v1tErVbBzQ/gQb1pB1ngMB8GA1UdIwQYMBaAFA4t6hT9fP/Q0KnqPjdDe5HkVLI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjBBMy9FNERGOTZBQUZE RjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85RFFxZW8tTjBON2tlUlVz alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpM3FGUDE4XzlEUXFlby1OME43a2VSVXNqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjBBMy9FNERGOTZBQUZERjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85 RFFxZW8tTjBON2tlUlVzalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkQIc1ympFV8MqL9JHuNQ9A0FlLfxAfoIjpJfhrSkitEDhCKRtL2dx xYdm7puwno6Qxo36BB/RRqpwayerVRHqnCV8qex6qEg57OKby/jQ71u5mrCfhcdv 4QCcCFhCyHYZYX4QRvnbrg286LKrz+2je1szlWjlH64NdTtAs/3FrCiROve/bT59 VWKV8ZQ+VonKHkcPNbGzvSqZHyTEJtR2zGMWQEmg2h2ZMEHU/ENdcR3CIdnvGT3z rcGtjwh2lZaFcYVZ1TR2HTym3DDkdiz7TpaTWDqaXLl9RHjT44h5nCrbffRd+0BQ OIZ2+3sg9f0tqv2WZ6ZMyUZL42fOUQp5 -----END CERTIFICATE-----Generated at Sat May 31 17:49:33 2025 by rpki-client