$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: 19Re7jz0OWSiT6LPK2uQleRGeN+lW2GAa9kl9zUN8WA= Subject key identifier: 9F:A9:5D:1D:0F:CC:6F:B1:CD:64:B4:5F:F2:37:00:64:7A:E0:60:CC Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 90 Signing time: Tue 03 Jun 2025 06:13:53 +0000 Manifest this update: Tue 03 Jun 2025 06:13:52 +0000 Manifest next update: Tue 10 Jun 2025 06:13:52 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: hDAsoeVzErhQ1keNAryuFhLYMmj7N2H/P+V1cy7Pvl4=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Jun 3 06:13:52 2025 GMT Not After : Jun 10 06:13:52 2025 GMT Subject: CN=683e92a1-5671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d7:09:91:0b:af:41:2f:c3:f6:91:7e:ff:49: 51:b4:b3:07:21:17:5c:4a:4b:48:9f:ed:f0:68:cc: ba:cc:9b:1e:32:fb:ae:83:ad:2e:d4:13:8c:37:13: e8:ad:16:22:8a:51:83:9a:1a:14:01:39:9e:2b:d2: 81:b7:0f:76:40:e6:21:b7:c4:33:b9:77:3f:bc:c5: d5:52:bf:08:5a:55:aa:09:f8:87:55:49:11:e2:aa: 34:89:48:32:f4:ad:d7:fa:90:c1:d7:66:83:1b:3a: ef:3f:c0:a2:4a:b2:c9:f4:ab:88:63:60:6f:8f:dd: 25:b4:9b:33:7e:e1:95:39:e4:82:3e:c7:19:cc:08: 75:cb:e1:9b:de:83:d7:84:ef:fd:e3:8f:b9:8f:81: 81:b5:05:e5:da:84:ed:75:64:74:16:f0:90:4e:5c: c8:c5:18:34:3a:b3:da:a7:af:16:42:07:8a:b4:54: 31:b2:3b:6e:51:2e:c0:bb:9f:5a:f6:70:77:07:10: 83:9c:8d:fe:6f:75:e5:df:d2:5c:68:f1:d1:21:9b: 56:36:10:84:ab:d0:78:bc:92:b6:f1:c8:4a:5d:63: f1:55:58:46:46:cc:ac:45:97:0e:ea:42:f3:ea:fb: 2c:b2:c3:a1:69:8f:00:5f:28:6b:82:79:fc:34:f0: ba:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A9:5D:1D:0F:CC:6F:B1:CD:64:B4:5F:F2:37:00:64:7A:E0:60:CC X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:60:78:f9:15:f8:ee:d9:05:3f:d0:ea:a3:62:02:9b:35:a2: 05:f8:19:8c:ea:cd:9b:ef:42:cf:24:dc:53:8a:19:4c:73:2b: 51:66:07:ca:4b:a9:21:c7:f9:bd:e3:da:92:39:e7:f1:b5:5f: 78:3d:b5:c8:a7:f9:fb:96:c8:82:c0:9c:9f:83:de:ba:89:09: 58:8a:02:b7:a1:4a:e8:4b:d4:c5:fc:88:82:f3:73:fc:71:74: df:ae:c3:71:e1:04:b5:e3:91:c7:3c:fb:ae:b6:78:50:90:9d: ba:59:45:5e:5a:69:2a:e9:5a:9a:26:0e:64:7f:3f:38:54:8c: 37:6f:b1:27:2a:96:26:30:3a:42:d4:e7:a1:12:06:34:c8:38: 8c:67:4d:9e:40:04:46:18:53:55:b9:80:b1:ca:0d:2d:2d:ef: 65:38:1f:60:db:a4:9e:29:85:fa:0a:34:7c:3e:ce:71:11:a8: 81:ca:dc:94:34:7f:ef:f5:58:51:67:bb:76:cf:0d:9b:76:4e: 26:f0:ab:19:00:27:48:97:44:20:a8:26:b7:66:01:57:a5:70: 5b:68:be:0f:5c:d4:d4:b9:29:8c:1a:70:81:01:d1:e6:b1:73: 1b:f4:22:00:6f:f2:73:dd:bf:f3:cf:fb:a2:40:ef:5b:e6:7e: b9:b0:48:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUwNjAzMDYxMzUyWhcNMjUwNjEwMDYxMzUyWjAYMRYwFAYD VQQDEw02ODNlOTJhMS01NjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNcJkQuvQS/D9pF+/0lRtLMHIRdcSktIn+3waMy6zJseMvuug60u1BOMNxPo rRYiilGDmhoUATmeK9KBtw92QOYht8QzuXc/vMXVUr8IWlWqCfiHVUkR4qo0iUgy 9K3X+pDB12aDGzrvP8CiSrLJ9KuIY2Bvj90ltJszfuGVOeSCPscZzAh1y+Gb3oPX hO/944+5j4GBtQXl2oTtdWR0FvCQTlzIxRg0OrPap68WQgeKtFQxsjtuUS7Au59a 9nB3BxCDnI3+b3Xl39JcaPHRIZtWNhCEq9B4vJK28chKXWPxVVhGRsysRZcO6kLz 6vssssOhaY8AXyhrgnn8NPC6OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+pXR0P zG+xzWS0X/I3AGR64GDMMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVYHj5Ffju2QU/0OqjYgKbNaIF+BmM6s2b70LPJNxTihlMcytRZgfK S6khx/m949qSOefxtV94PbXIp/n7lsiCwJyfg966iQlYigK3oUroS9TF/IiC83P8 cXTfrsNx4QS145HHPPuutnhQkJ26WUVeWmkq6VqaJg5kfz84VIw3b7EnKpYmMDpC 1OehEgY0yDiMZ02eQARGGFNVuYCxyg0tLe9lOB9g26SeKYX6CjR8Ps5xEaiBytyU NH/v9VhRZ7t2zw2bdk4m8KsZACdIl0QgqCa3ZgFXpXBbaL4PXNTUuSmMGnCBAdHm sXMb9CIAb/Jz3b/zz/uiQO9b5n65sEjV -----END CERTIFICATE-----Generated at Wed Jun 4 00:11:41 2025 by rpki-client