$ rpki-client -vvf rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft File: DNkEx-s5CtGlXbr0_FAFTAhUbis.mft (raw, json) Hash identifier: QO+edymiRITM4TpaX9nZpaJVTtN/DKkAxSNz5I6FJ/0= Subject key identifier: 13:05:56:A4:BC:19:62:18:22:2E:28:E7:72:19:39:92:0C:A5:63:19 Authority key identifier: 0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B Certificate issuer: /CN=A91A47B6/serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft Manifest number: EE Signing time: Sat 31 May 2025 04:55:27 +0000 Manifest this update: Sat 31 May 2025 04:55:26 +0000 Manifest next update: Sat 07 Jun 2025 04:55:26 +0000 Files and hashes: 1: DNkEx-s5CtGlXbr0_FAFTAhUbis.crl (hash: OqLeUDQvh9bOQ2vtDYhAeDBl7ibkI0KaneG5bFmkGeA=) 2: D45022C8CEC211EE80F08B36C4F9AE02.roa (hash: 7EFmQDZlzQkxykslosHAE0tEX7xAgoH8WsMXOqdO+RA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A47B6, serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Validity Not Before: May 31 04:55:26 2025 GMT Not After : Jun 7 04:55:26 2025 GMT Subject: CN=683a8bbf-245e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fa:5d:b7:85:f7:e3:44:e9:3d:fe:d7:05:7c: 16:cd:99:57:d4:25:87:36:61:85:d3:81:d8:c4:a0: 6d:23:be:5b:6f:41:13:7b:bd:3e:ab:b6:09:67:76: 21:ab:26:2e:24:33:37:14:d0:6b:9f:f7:74:ce:f0: f1:42:09:26:ff:db:9f:f5:98:31:f5:9b:d7:23:d2: 20:12:c7:24:0a:78:31:85:4f:79:76:99:cb:5b:f2: bc:b7:57:55:cc:ca:84:15:6b:03:d1:b3:da:b0:de: 1d:61:78:c9:d8:56:54:49:5c:58:1e:ec:21:a2:68: 6b:38:4e:cf:f3:bf:e5:0c:0c:de:ef:3f:f8:51:1f: 7b:47:11:bd:26:54:a5:90:4f:e3:b5:fa:bb:3c:44: 25:76:40:30:0f:63:fa:5c:95:f4:02:91:88:c7:af: 20:55:b4:22:e9:e6:47:16:8c:1a:20:2b:42:7d:3c: 23:5c:53:0f:56:19:46:ff:da:fd:fa:9e:11:8f:46: cb:cb:7c:a0:c2:04:99:f6:8e:a7:fc:44:18:fe:6e: 4e:b8:93:bb:33:95:40:ab:f3:e4:1d:aa:9e:d3:54: a1:c2:73:46:95:21:45:09:e5:12:ca:41:2a:1c:5f: e0:50:b8:56:36:da:7d:ce:b2:bd:4e:94:d9:17:ea: 79:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:05:56:A4:BC:19:62:18:22:2E:28:E7:72:19:39:92:0C:A5:63:19 X509v3 Authority Key Identifier: keyid:0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ff:68:17:aa:1d:25:19:20:4f:ca:dd:5b:31:c0:36:c8:c6: ff:47:ae:bd:a7:d6:7e:63:98:fc:08:39:50:c6:cd:32:b7:42: 7b:4f:b2:47:f2:64:08:5b:3e:cf:60:f2:3a:a8:35:1f:44:b1: 64:6d:1f:d5:98:85:10:58:14:e9:fa:88:2a:bf:1b:33:89:ba: 98:ff:35:62:c8:16:5a:38:1f:11:1e:81:d4:53:a7:00:2f:46: bd:15:f6:73:e1:18:e2:f7:bf:ed:66:2e:1e:da:37:9f:1a:2d: 08:e1:3f:ed:81:b2:15:09:2b:78:20:b9:51:f6:80:e4:cd:4a: db:d8:71:ea:59:91:8f:ff:52:03:de:29:ce:2e:f3:90:94:cc: 21:b5:1e:0a:c8:8a:fa:4c:38:07:cb:1a:3e:22:c6:e1:c8:df: 72:58:76:73:ff:1b:1e:69:04:18:29:a3:2e:c4:ca:34:9c:ce: 8f:fa:d9:ba:b9:16:d1:54:88:71:f6:c6:fc:a0:62:ba:5d:74: a7:43:9b:07:6c:9c:10:67:3d:5a:62:6a:d1:66:e7:7f:81:60: 1b:21:77:ce:05:80:8d:a5:e5:0a:12:ee:91:7a:2b:dd:00:7c: eb:cf:54:19:99:a9:6e:02:f5:10:15:c8:32:95:51:99:1c:61: ff:82:fb:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ3QjYxMTAvBgNVBAUTKDBDRDkwNEM3RUIzOTBBRDFBNTVEQkFGNEZDNTAwNTRD MDg1NDZFMkIwHhcNMjUwNTMxMDQ1NTI2WhcNMjUwNjA3MDQ1NTI2WjAYMRYwFAYD VQQDEw02ODNhOGJiZi0yNDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/pdt4X340TpPf7XBXwWzZlX1CWHNmGF04HYxKBtI75bb0ETe70+q7YJZ3Yh qyYuJDM3FNBrn/d0zvDxQgkm/9uf9Zgx9ZvXI9IgEsckCngxhU95dpnLW/K8t1dV zMqEFWsD0bPasN4dYXjJ2FZUSVxYHuwhomhrOE7P87/lDAze7z/4UR97RxG9JlSl kE/jtfq7PEQldkAwD2P6XJX0ApGIx68gVbQi6eZHFowaICtCfTwjXFMPVhlG/9r9 +p4Rj0bLy3ygwgSZ9o6n/EQY/m5OuJO7M5VAq/PkHaqe01ShwnNGlSFFCeUSykEq HF/gULhWNtp9zrK9TpTZF+p5PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMFVqS8 GWIYIi4o53IZOZIMpWMZMB8GA1UdIwQYMBaAFAzZBMfrOQrRpV269PxQBUwIVG4r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDdCNi85MDVEN0ZFRUNF QzExMUVFOENGMDE3NDBDNEY5QUUwMi9ETmtFeC1zNUN0R2xYYnIwX0ZBRlRBaFVi aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROa0V4LXM1Q3RHbFhicjBfRkFGVEFoVWJpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDdCNi85MDVEN0ZFRUNFQzExMUVFOENGMDE3NDBDNEY5QUUwMi9ETmtFeC1zNUN0 R2xYYnIwX0ZBRlRBaFViaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz/2gXqh0lGSBPyt1bMcA2yMb/R669p9Z+Y5j8CDlQxs0yt0J7T7JH 8mQIWz7PYPI6qDUfRLFkbR/VmIUQWBTp+ogqvxszibqY/zViyBZaOB8RHoHUU6cA L0a9FfZz4Rji97/tZi4e2jefGi0I4T/tgbIVCSt4ILlR9oDkzUrb2HHqWZGP/1ID 3inOLvOQlMwhtR4KyIr6TDgHyxo+IsbhyN9yWHZz/xseaQQYKaMuxMo0nM6P+tm6 uRbRVIhx9sb8oGK6XXSnQ5sHbJwQZz1aYmrRZud/gWAbIXfOBYCNpeUKEu6Reivd AHzrz1QZmaluAvUQFcgylVGZHGH/gvtj -----END CERTIFICATE-----Generated at Sat May 31 16:55:08 2025 by rpki-client