$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft File: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json) Hash identifier: x8BnZY4r1ksZrPRzjlsAs1V+SgbdrsPHOoa9eybMSiE= Subject key identifier: 9D:9B:90:08:01:7A:86:A3:1E:0E:EE:19:DA:CA:B6:92:6D:DD:D1:93 Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft Manifest number: 0151 Signing time: Sat 31 May 2025 03:49:04 +0000 Manifest this update: Sat 31 May 2025 03:49:03 +0000 Manifest next update: Sat 07 Jun 2025 03:49:03 +0000 Files and hashes: 1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: MeHepIp5KC7bvGcf4skCoBZt4xADPu8tMIXphTyLZpU=) 2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: YBS7N1V85GEsKAdkA8SgTeGUq7xGqu6t+13xBrFpNlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1, serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: May 31 03:49:03 2025 GMT Not After : Jun 7 03:49:03 2025 GMT Subject: CN=683a7c2f-5efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7e:cc:85:7f:92:b5:a1:47:3d:ec:04:38:18: d7:99:f4:33:8b:e7:7e:9e:e6:0a:ee:b6:d0:0f:ee: b8:b0:0b:da:91:84:86:4b:ce:1c:96:a7:13:29:69: 62:ec:f8:54:f3:1a:5d:76:fc:13:38:b5:ee:52:04: 05:86:05:a0:dd:8f:cf:30:f1:73:9b:97:34:07:4e: 7d:53:c5:21:28:f3:26:95:58:38:65:94:41:03:da: 60:88:6b:3e:e6:28:e5:dd:8b:38:97:5c:ce:32:6d: 12:b9:42:76:c8:a1:0f:60:df:1e:7f:32:13:3e:69: 75:ea:00:ff:63:10:56:22:6c:de:fe:c9:ea:f9:ac: 6c:38:de:41:52:a9:c7:7e:df:ee:b0:fe:98:bd:06: e5:0f:cd:82:01:29:27:0c:45:0e:43:23:d7:4e:0e: 2e:4e:ed:47:6f:ca:e1:69:22:30:81:dc:e7:a4:0d: bd:58:0f:3c:ad:67:ad:2e:1c:43:77:42:14:17:1f: 33:62:15:b1:44:38:18:d7:1f:a7:8f:ca:57:32:63: cf:a2:ac:a3:e0:69:a3:f9:f8:37:55:4f:e0:9b:42: 78:5c:ec:90:db:db:03:1e:c4:6d:41:b9:ba:58:28: 85:fe:64:2d:df:65:eb:21:54:ae:6d:10:11:2d:e0: d5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:9B:90:08:01:7A:86:A3:1E:0E:EE:19:DA:CA:B6:92:6D:DD:D1:93 X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:0b:d3:e3:19:59:2d:20:03:4a:d6:9e:f6:22:68:34:00:50: 9a:88:78:1c:3d:a8:72:ed:dd:61:5b:51:cc:b2:76:44:54:e4: ae:6c:bc:37:6c:79:87:53:42:2a:ce:d3:f2:8e:a6:f5:1d:bd: 0c:33:f6:3e:55:21:80:9a:7a:b2:94:f2:79:15:b0:8d:c8:e2: d9:14:ef:1e:f6:22:7b:94:91:35:6c:9d:bb:1e:91:eb:79:c6: 69:68:20:07:a9:7e:e5:99:3a:02:87:ce:c8:ff:6f:a2:fe:0a: 2b:03:c3:c5:4f:b5:36:fc:66:fd:ea:84:c0:fa:c9:91:d5:f1: 93:f4:b0:eb:c4:dd:a2:01:86:d6:23:06:55:5c:72:7c:0e:87: 3b:1c:77:ee:f4:de:0e:5e:2d:eb:50:7f:8b:7f:1a:10:8f:71: 37:e7:de:38:a4:99:43:30:21:e8:84:8c:9e:d2:36:dc:89:dd: cf:4a:0a:55:55:21:50:18:6c:17:0e:3b:c4:60:c2:3f:e9:6e: b2:05:21:44:cf:e1:d7:de:96:e4:c5:69:71:4c:1b:11:ae:23: 14:3a:3b:01:74:1f:2e:8b:f7:70:7f:bd:3f:d8:b5:dd:0f:93: 75:5a:89:e2:50:c0:b3:9c:f3:3b:e4:e5:03:5d:56:23:15:b7: 66:43:3b:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FERDExMTAvBgNVBAUTKDc2NTJBMjJGQzI1MEZBQUFFM0FCMkMwQzJBRkREMDRF MzA0N0U1MDcwHhcNMjUwNTMxMDM0OTAzWhcNMjUwNjA3MDM0OTAzWjAYMRYwFAYD VQQDEw02ODNhN2MyZi01ZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz37MhX+StaFHPewEOBjXmfQzi+d+nuYK7rbQD+64sAvakYSGS84clqcTKWli 7PhU8xpddvwTOLXuUgQFhgWg3Y/PMPFzm5c0B059U8UhKPMmlVg4ZZRBA9pgiGs+ 5ijl3Ys4l1zOMm0SuUJ2yKEPYN8efzITPml16gD/YxBWImze/snq+axsON5BUqnH ft/usP6YvQblD82CASknDEUOQyPXTg4uTu1Hb8rhaSIwgdznpA29WA88rWetLhxD d0IUFx8zYhWxRDgY1x+nj8pXMmPPoqyj4Gmj+fg3VU/gm0J4XOyQ29sDHsRtQbm6 WCiF/mQt32XrIVSubRARLeDVpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2bkAgB eoajHg7uGdrKtpJt3dGTMB8GA1UdIwQYMBaAFHZSoi/CUPqq46ssDCr90E4wR+UH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUREMS9EMDA2QzBERTM3 RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1xcmpxeXdNS3YzUVRqQkg1 UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1x cmpxeXdNS3YzUVRqQkg1UWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUC9PjGVktIANK1p72Img0AFCaiHgcPahy7d1hW1HMsnZEVOSubLw3 bHmHU0IqztPyjqb1Hb0MM/Y+VSGAmnqylPJ5FbCNyOLZFO8e9iJ7lJE1bJ27HpHr ecZpaCAHqX7lmToCh87I/2+i/gorA8PFT7U2/Gb96oTA+smR1fGT9LDrxN2iAYbW IwZVXHJ8Doc7HHfu9N4OXi3rUH+LfxoQj3E35944pJlDMCHohIye0jbcid3PSgpV VSFQGGwXDjvEYMI/6W6yBSFEz+HX3pbkxWlxTBsRriMUOjsBdB8ui/dwf70/2LXd D5N1WoniUMCznPM75OUDXVYjFbdmQzus -----END CERTIFICATE-----Generated at Sat May 31 16:44:54 2025 by rpki-client