$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft File: DmxKtne94a1EYD_XN9olwGAcRZw.mft (raw, json) Hash identifier: CtLccKm/LBbxyevR5VTHItZb+HGOqWZPHyWpUQZ7Ua0= Subject key identifier: BD:68:17:97:11:7A:98:8B:29:40:9D:85:B7:5A:C0:7E:A7:DC:91:AD Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft Manifest number: 2C Signing time: Sat 31 May 2025 07:17:23 +0000 Manifest this update: Sat 31 May 2025 07:17:22 +0000 Manifest next update: Sat 07 Jun 2025 07:17:22 +0000 Files and hashes: 1: DmxKtne94a1EYD_XN9olwGAcRZw.crl (hash: SfEKx5x3szvATSmnsAYLkcuf/Ab0OJQxxh3qJzVo92Y=) 2: C488A080FB5911EFA827FD17C4F9AE02.roa (hash: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF, serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Validity Not Before: May 31 07:17:22 2025 GMT Not After : Jun 7 07:17:22 2025 GMT Subject: CN=683aad02-edc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:41:e6:77:d3:65:58:bb:16:94:17:b1:de:9d: 69:46:06:7e:bc:e3:89:ee:93:d9:d1:34:35:90:88: 71:37:13:c4:4e:de:94:f7:c2:a5:f6:02:cc:ae:4b: d7:70:f7:ee:79:6a:b5:5d:10:b2:9e:36:cd:7d:81: e9:45:31:ed:3e:42:23:ba:31:70:70:28:37:9f:fd: 28:a5:8c:4e:38:de:4a:51:eb:29:6e:92:0c:d7:2c: 16:9c:31:6b:83:b5:1f:97:23:5f:00:9a:94:89:c3: 19:78:21:a1:0f:46:63:67:a0:d3:b1:fb:70:0f:de: 2b:39:3b:43:b5:25:26:ab:59:d9:67:83:d2:9a:7e: a6:c8:e2:d4:45:da:4f:b5:c7:43:35:2f:f0:8a:9f: 46:ec:b1:bf:3a:8e:81:91:59:13:81:d2:82:39:e6: 5c:7b:79:03:73:cf:3f:89:f1:33:cc:81:44:0a:88: c3:93:a4:b5:cf:3e:e4:cc:09:cd:f5:dd:59:ab:74: 8c:80:78:4c:fa:87:3a:ae:1c:73:94:8a:53:45:f2: 08:eb:1c:a8:89:86:9b:19:3a:b2:6c:d4:b5:27:1d: 8b:a8:cc:f0:a3:68:01:f8:6e:07:dd:3d:51:96:f3: 47:9b:58:b8:70:72:24:8d:34:e5:34:3e:2f:95:1e: 40:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:68:17:97:11:7A:98:8B:29:40:9D:85:B7:5A:C0:7E:A7:DC:91:AD X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:1f:33:e1:f5:cb:e8:91:0a:2e:90:71:b8:54:4b:91:0b:f1: 26:cf:bf:be:10:73:d3:33:ba:ce:39:8f:cb:60:62:43:3c:a8: 2d:9c:9a:3c:e7:e1:c6:a3:50:79:5e:11:fe:ba:a8:a0:73:c5: 58:94:05:58:2e:77:44:47:de:f3:1b:df:40:b0:aa:7e:d6:8e: a1:f4:5b:dd:37:95:f5:4f:cd:95:46:f9:24:bd:24:2b:eb:a6: 28:50:d1:98:6c:bf:e2:e7:e4:0f:28:58:c5:86:46:b6:db:ff: d0:74:a1:89:dc:d5:aa:fc:fb:39:09:78:d1:55:c0:75:56:d3: 83:72:6e:2a:b1:63:07:d5:fd:ca:3d:da:39:96:46:23:99:f3: 4d:3d:e5:c1:a4:93:de:82:c7:db:12:da:53:a4:a5:18:0c:53: 16:b7:08:08:f7:69:93:06:20:cd:2b:75:76:e3:01:51:da:53: 3e:75:d0:83:51:f0:bc:b4:10:18:f3:37:a8:08:9e:ad:b8:87: 80:e4:17:80:01:c5:37:b7:f1:10:df:6b:7c:ae:f8:6d:af:37: 8b:88:fd:70:a1:d6:ca:90:57:00:87:5e:61:19:8a:37:a0:af: c3:ff:61:1e:1d:f3:00:0b:c0:e3:08:1a:d0:16:81:af:49:35: 63:2f:a0:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzlDRjExMC8GA1UEBRMoMEU2QzRBQjY3N0JERTFBRDQ0NjAzRkQ3MzdEQTI1QzA2 MDFDNDU5QzAeFw0yNTA1MzEwNzE3MjJaFw0yNTA2MDcwNzE3MjJaMBgxFjAUBgNV BAMTDTY4M2FhZDAyLWVkYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmQeZ302VYuxaUF7HenWlGBn6844nuk9nRNDWQiHE3E8RO3pT3wqX2AsyuS9dw 9+55arVdELKeNs19gelFMe0+QiO6MXBwKDef/SiljE443kpR6ylukgzXLBacMWuD tR+XI18AmpSJwxl4IaEPRmNnoNOx+3AP3is5O0O1JSarWdlng9KafqbI4tRF2k+1 x0M1L/CKn0bssb86joGRWROB0oI55lx7eQNzzz+J8TPMgUQKiMOTpLXPPuTMCc31 3VmrdIyAeEz6hzquHHOUilNF8gjrHKiJhpsZOrJs1LUnHYuozPCjaAH4bgfdPVGW 80ebWLhwciSNNOU0Pi+VHkA3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvWgXlxF6 mIspQJ2Ft1rAfqfcka0wHwYDVR0jBBgwFoAUDmxKtne94a1EYD/XN9olwGAcRZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzOUNGLzU2RjMxRkI0RkI1 OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Ja dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRG14S3RuZTk0YTFFWURfWE45b2x3R0FjUlp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz OUNGLzU2RjMxRkI0RkI1OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGEx RVlEX1hOOW9sd0dBY1Jady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIkfM+H1y+iRCi6QcbhUS5EL8SbPv74Qc9Mzus45j8tgYkM8qC2cmjzn 4cajUHleEf66qKBzxViUBVgud0RH3vMb30Cwqn7WjqH0W903lfVPzZVG+SS9JCvr pihQ0Zhsv+Ln5A8oWMWGRrbb/9B0oYnc1ar8+zkJeNFVwHVW04NybiqxYwfV/co9 2jmWRiOZ80095cGkk96Cx9sS2lOkpRgMUxa3CAj3aZMGIM0rdXbjAVHaUz510INR 8Ly0EBjzN6gInq24h4DkF4ABxTe38RDfa3yu+G2vN4uI/XCh1sqQVwCHXmEZijeg r8P/YR4d8wALwOMIGtAWga9JNWMvoDE= -----END CERTIFICATE-----Generated at Sat May 31 17:49:41 2025 by rpki-client