$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: HliqtjmpaFpIHHDCnarddBRJlRoi1TKUhD+9pQ8eBCs= Subject key identifier: 60:8F:A5:44:23:0A:C3:9F:17:F2:2F:D0:7C:02:B4:E2:00:F0:CF:00 Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 34D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 34A8 Signing time: Fri 30 May 2025 14:54:02 +0000 Manifest this update: Fri 30 May 2025 14:54:01 +0000 Manifest next update: Fri 06 Jun 2025 14:54:01 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: Pc+DErh0CzOEG11rVDtUMwaeyCbwkKE9qP82mF4IGXY=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: May 30 14:54:01 2025 GMT Not After : Jun 6 14:54:01 2025 GMT Subject: CN=6839c689-7f8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:0d:85:b9:3f:c3:36:3a:a2:65:66:74:37: a7:c1:35:f8:65:8b:70:9c:c8:f2:2d:41:a6:a7:1e: 9c:6c:01:9e:99:9e:5f:21:5d:d4:fd:4f:a5:ee:80: a5:8c:03:16:29:90:6d:a2:c6:be:24:47:e1:e5:5d: 59:1e:cc:10:f6:8b:ce:ce:ab:1c:3c:ef:1b:cf:1a: cb:bf:be:be:a8:89:7e:c0:d7:2d:64:1d:c9:8c:f1: b1:b0:e7:06:95:9e:0a:55:15:b0:6d:a5:0a:15:35: 30:ec:f7:64:9d:a2:35:09:7a:0f:e1:42:4a:4d:db: 51:7f:25:69:79:ca:62:b2:57:9f:40:af:f1:60:df: b4:1e:7c:48:f0:a5:63:6c:84:70:fe:3b:d9:09:c8: d0:06:b9:d5:77:a8:69:fc:e8:92:a6:d1:ae:3e:67: d3:74:bc:5d:62:f6:99:45:8e:4b:9d:c0:d8:d5:0d: 96:db:04:4c:0f:1e:7d:51:b3:dc:df:04:83:2d:7a: 34:15:c3:95:22:6e:7f:2a:69:8e:ab:63:1b:25:c2: a6:c0:93:ff:59:6a:32:5b:b4:37:b4:8f:d9:91:9d: 11:0e:23:30:57:69:7f:23:9c:bb:0d:06:03:09:fd: de:7f:9a:c4:46:93:3b:4b:ca:c2:a8:e5:23:93:a7: aa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8F:A5:44:23:0A:C3:9F:17:F2:2F:D0:7C:02:B4:E2:00:F0:CF:00 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:af:e2:3d:af:b2:96:a6:a2:4b:89:d2:84:f1:9b:b8:2c:45: 54:5f:39:75:9d:f1:8a:c6:4b:f5:3b:03:50:d5:fd:02:6c:23: ac:54:11:0b:38:80:6c:eb:a0:24:b7:66:08:2f:e6:79:6b:a2: 36:df:ed:76:0c:11:00:73:95:21:6f:1b:49:7f:52:df:dc:e6: 06:28:ad:76:4a:ed:b2:8f:b7:d1:ed:47:53:4d:41:62:66:c2: a5:f7:4d:62:4c:cb:29:ef:5d:cc:11:5a:df:42:d3:03:97:4a: f9:09:36:83:bf:e7:6b:46:25:0f:74:3d:a9:14:b4:90:6d:c1: fb:6f:35:78:8a:09:a6:bd:0b:f2:75:7d:b3:12:35:37:86:19: 9d:e0:5b:4a:00:5b:64:15:f6:41:cb:a3:de:ab:1c:5d:86:dc: bf:17:be:4e:4a:44:0c:b0:f3:f1:f2:51:eb:14:65:e9:e3:73: a5:53:37:b2:c7:e5:f9:f3:5a:8a:4c:f8:45:21:fd:0f:a0:1e: d2:0d:9a:a9:4b:a0:02:a9:26:63:c2:70:55:20:24:53:a1:a0: 30:01:75:fc:f1:27:01:0d:66:35:ac:81:78:a4:1b:d0:f6:e2: 76:ca:96:44:b6:7f:ea:6c:17:cd:9f:bf:35:90:ec:5f:e9:a1: a9:c7:5c:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUwNTMwMTQ1NDAxWhcNMjUwNjA2MTQ1NDAxWjAYMRYwFAYD VQQDEw02ODM5YzY4OS03ZjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKUNhbk/wzY6omVmdDenwTX4ZYtwnMjyLUGmpx6cbAGemZ5fIV3U/U+l7oCl jAMWKZBtosa+JEfh5V1ZHswQ9ovOzqscPO8bzxrLv76+qIl+wNctZB3JjPGxsOcG lZ4KVRWwbaUKFTUw7PdknaI1CXoP4UJKTdtRfyVpecpislefQK/xYN+0HnxI8KVj bIRw/jvZCcjQBrnVd6hp/OiSptGuPmfTdLxdYvaZRY5LncDY1Q2W2wRMDx59UbPc 3wSDLXo0FcOVIm5/KmmOq2MbJcKmwJP/WWoyW7Q3tI/ZkZ0RDiMwV2l/I5y7DQYD Cf3ef5rERpM7S8rCqOUjk6eqxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCPpUQj CsOfF/Iv0HwCtOIA8M8AMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGr+I9r7KWpqJLidKE8Zu4LEVUXzl1nfGKxkv1OwNQ1f0CbCOsVBEL OIBs66Akt2YIL+Z5a6I23+12DBEAc5UhbxtJf1Lf3OYGKK12Su2yj7fR7UdTTUFi ZsKl901iTMsp713MEVrfQtMDl0r5CTaDv+drRiUPdD2pFLSQbcH7bzV4igmmvQvy dX2zEjU3hhmd4FtKAFtkFfZBy6Peqxxdhty/F75OSkQMsPPx8lHrFGXp43OlUzey x+X581qKTPhFIf0PoB7SDZqpS6ACqSZjwnBVICRToaAwAXX88ScBDWY1rIF4pBvQ 9uJ2ypZEtn/qbBfNn781kOxf6aGpx1wC -----END CERTIFICATE-----Generated at Sat May 31 16:46:55 2025 by rpki-client