$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: iv9em1KL04Z5ImQfcijrYMtjYlgAsa5SkOwVLVwdu58= Subject key identifier: 63:47:9E:E4:E8:D8:64:AB:6F:B0:99:7B:4F:2A:1B:8E:60:FE:DB:07 Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1D29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1D1C Signing time: Fri 30 May 2025 16:19:45 +0000 Manifest this update: Fri 30 May 2025 16:19:44 +0000 Manifest next update: Fri 06 Jun 2025 16:19:44 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: rvdYPMWyAaUg+HT86vlyrWe1WQQ7wAD2YLDp4C4Sf7I=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: QN4dhYeOYexv58OGwmZdyDg8Z4B86G7ksX83Qid7CHk=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: oh/v7iVJL2nmvk/qjcAVXe7OglXKPf/jEhdssMeYp/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7465 (0x1d29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: May 30 16:19:44 2025 GMT Not After : Jun 6 16:19:44 2025 GMT Subject: CN=6839daa1-d7a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4c:cd:5f:30:e9:b0:1f:87:8f:de:0e:e9:a0: 4b:df:c7:5c:7a:45:a6:f9:50:dd:62:d1:8a:63:39: c7:ff:60:8b:88:32:35:a4:c5:af:67:20:dd:bc:da: 6e:4b:ee:91:e2:b7:e9:5c:07:95:8d:f4:a8:f1:e2: 00:be:b3:cd:9c:5e:89:7c:41:81:5c:86:d9:a1:93: 20:06:34:0a:00:ac:19:2f:e5:96:de:b1:c6:91:f9: 98:d1:16:04:ea:df:90:27:f6:a5:67:d9:79:f7:d6: 29:f6:5c:c2:b1:71:d8:be:5f:82:47:35:d8:38:e2: 5f:9b:bc:5f:73:ca:4d:33:65:5b:4d:32:07:76:98: 77:e1:1c:d4:a8:30:77:de:de:2c:48:94:0b:64:45: a0:41:0b:19:9b:d7:08:08:1a:5a:c0:2b:1f:ce:ab: c8:36:32:cc:5c:1a:ee:9d:82:28:f4:07:05:8d:38: 47:15:50:b6:af:8c:aa:23:f0:7a:72:a6:82:d2:2d: ba:a8:b4:78:f9:4b:06:b4:3c:06:f9:4d:8c:30:bd: 5e:82:08:70:2b:1e:a0:21:96:b2:29:b8:b0:01:8b: 45:a6:5d:14:91:9e:4b:93:43:b0:18:8c:35:c4:5f: b8:5e:93:e5:30:61:ac:97:01:41:57:20:dd:b2:2b: ec:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:47:9E:E4:E8:D8:64:AB:6F:B0:99:7B:4F:2A:1B:8E:60:FE:DB:07 X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:02:d1:c3:a6:96:72:06:6b:fa:ac:bf:0b:19:df:9b:13:0b: 91:71:9e:82:ea:7c:fd:be:55:f3:49:b1:bc:90:4b:3e:88:18: 2d:cb:f9:a5:a5:50:bc:cd:75:0f:ce:61:77:9a:29:11:36:c6: 27:fb:58:ee:bc:88:ba:25:4a:3a:ee:d1:ef:1e:2d:04:af:26: a4:77:5f:02:94:25:4c:4c:73:94:54:83:cf:3d:b3:ca:49:c4: 84:63:66:3e:4e:35:48:02:e7:de:78:d0:4f:90:ca:56:e3:49: af:58:56:d9:c9:74:bc:10:13:2a:e4:a8:27:f5:bf:0c:97:ad: 51:42:38:dc:2e:bc:45:bf:e1:b3:c8:7f:7c:86:27:c5:70:48: bc:4c:37:e4:9a:38:27:8a:0c:f6:fc:ab:72:00:71:c2:d4:e5: fd:56:27:92:bc:42:19:0e:1b:d9:cc:16:81:01:4d:bd:c2:5e: d2:68:50:f7:de:81:46:05:f7:21:0d:e5:7e:10:c9:cf:58:96: 0e:0a:e5:b9:00:fb:31:ba:a9:56:9e:e6:1c:98:d3:f2:3b:d3: 08:4f:0e:63:48:51:1b:e7:5a:9d:9d:62:51:e1:b6:28:cd:67: 99:2c:2d:6e:30:81:da:64:db:b2:56:00:6a:75:f3:e8:e9:cf: 6b:46:08:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjUwNTMwMTYxOTQ0WhcNMjUwNjA2MTYxOTQ0WjAYMRYwFAYD VQQDEw02ODM5ZGFhMS1kN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkzNXzDpsB+Hj94O6aBL38dcekWm+VDdYtGKYznH/2CLiDI1pMWvZyDdvNpu S+6R4rfpXAeVjfSo8eIAvrPNnF6JfEGBXIbZoZMgBjQKAKwZL+WW3rHGkfmY0RYE 6t+QJ/alZ9l599Yp9lzCsXHYvl+CRzXYOOJfm7xfc8pNM2VbTTIHdph34RzUqDB3 3t4sSJQLZEWgQQsZm9cICBpawCsfzqvINjLMXBrunYIo9AcFjThHFVC2r4yqI/B6 cqaC0i26qLR4+UsGtDwG+U2MML1egghwKx6gIZayKbiwAYtFpl0UkZ5Lk0OwGIw1 xF+4XpPlMGGslwFBVyDdsivsnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNHnuTo 2GSrb7CZe08qG45g/tsHMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqAtHDppZyBmv6rL8LGd+bEwuRcZ6C6nz9vlXzSbG8kEs+iBgty/ml pVC8zXUPzmF3mikRNsYn+1juvIi6JUo67tHvHi0Eryakd18ClCVMTHOUVIPPPbPK ScSEY2Y+TjVIAufeeNBPkMpW40mvWFbZyXS8EBMq5Kgn9b8Ml61RQjjcLrxFv+Gz yH98hifFcEi8TDfkmjgnigz2/KtyAHHC1OX9VieSvEIZDhvZzBaBAU29wl7SaFD3 3oFGBfchDeV+EMnPWJYOCuW5APsxuqlWnuYcmNPyO9MITw5jSFEb51qdnWJR4bYo zWeZLC1uMIHaZNuyVgBqdfPo6c9rRgga -----END CERTIFICATE-----Generated at Sat May 31 17:10:22 2025 by rpki-client