$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: bNRlBZFfEebW6sIRkXNaVSr56C8N+0n5I3Qi859e9+E= Subject key identifier: 2F:05:8D:97:78:F4:35:F8:46:8B:F0:F1:38:DA:EB:1E:6F:26:E3:05 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0FAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0F8D Signing time: Fri 30 May 2025 17:43:56 +0000 Manifest this update: Fri 30 May 2025 17:43:55 +0000 Manifest next update: Fri 06 Jun 2025 17:43:55 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: UTpDfiRpTQCsAcw+3ojOezfQ4iMWHII3BC6+8gEplaE=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: Yxnc0WF7y7yG/Ke04997WUeH+aSKIu6WY3AiaujI7mg=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: fuYiIxAwDhO4bPXLu2NpIMN0ReUFHJNWZB+675RLxUg=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: 7y8BRBcxLZCZTnPYfc6VfQnaG4bxPBMAZ7uJUfKAC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4015 (0xfaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: May 30 17:43:55 2025 GMT Not After : Jun 6 17:43:55 2025 GMT Subject: CN=6839ee5c-fa49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:98:4b:fe:ec:b3:95:3d:d2:6f:61:37:44:5d: bd:21:9e:25:82:8b:9d:b1:af:bc:ec:72:1b:0e:b2: 9d:70:ea:5e:0f:a2:95:19:4b:25:89:8e:31:67:36: f7:0f:94:cf:9a:5c:a4:89:55:33:3d:16:c3:2d:9d: 34:d5:a1:23:53:12:fc:1d:8f:62:ac:b8:d5:95:ab: 76:7b:30:01:c1:02:5e:46:8d:18:40:00:be:68:24: 26:75:53:bb:a9:f7:64:28:0d:17:1d:dd:8e:d7:c6: 5e:41:38:8c:5f:c2:34:68:3d:d7:3d:24:fb:1d:96: 13:1a:6f:93:07:ce:e8:d8:89:f4:e3:72:4e:d1:b5: c1:56:98:13:7c:4c:1c:cb:dd:42:ab:05:c1:5f:4c: 2c:83:84:87:48:fc:3a:be:a0:d6:07:fc:6c:36:9b: 01:d5:28:ef:67:23:60:f6:40:2f:5a:0a:91:45:7f: 43:4f:1b:2f:37:96:ab:96:e3:65:77:67:cd:5b:58: 41:93:7a:99:2e:6f:04:b5:a5:26:48:0c:6c:d3:58: de:af:f6:f3:78:70:4f:ec:d8:19:aa:ac:72:15:f8: 73:96:9a:e1:89:6e:6a:12:e1:32:70:53:3f:72:50: de:1c:16:59:c9:24:f2:bd:e7:10:61:59:c3:d5:38: 5a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:05:8D:97:78:F4:35:F8:46:8B:F0:F1:38:DA:EB:1E:6F:26:E3:05 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:f6:3b:df:51:b9:28:ff:a1:ab:63:71:02:49:56:ec:04:55: bc:a4:14:31:26:d0:8e:4f:dd:5e:14:a4:28:df:00:46:3b:13: 86:15:ff:dd:a9:48:ed:92:a9:07:b5:53:41:f5:aa:41:59:9d: 0d:69:92:48:18:11:ed:8e:13:3d:f4:f2:05:01:04:3d:59:9d: ef:bb:a7:cd:fe:06:64:42:4d:8d:14:c0:de:5f:6c:2b:a1:d0: a3:95:10:b6:b2:5f:68:13:78:86:8d:dd:36:41:d3:28:e0:f8: d4:f6:28:2c:7c:cb:49:0d:eb:e8:6f:c4:39:dc:37:52:f5:bc: 66:6c:eb:e0:2e:a0:a8:a5:f6:ed:f3:15:cb:7f:32:d3:d0:37: a5:d2:9e:d9:6b:8c:20:f0:60:b6:a1:4b:56:a1:b1:20:49:a3: 06:62:66:8b:5f:5c:07:7c:2f:46:9f:cd:b6:5c:77:36:22:0b: 40:f6:e6:f6:48:65:b4:40:62:48:9f:6f:4f:64:bc:4e:3e:a3: e5:2d:52:cd:6a:20:f2:ba:4d:c3:0b:dd:30:19:15:57:03:a8: 3b:fc:8e:04:cd:a9:b8:54:14:30:4a:c6:b3:51:17:d7:4b:e2: 9c:9a:c8:87:7d:10:bd:0d:ed:13:ce:f3:62:f6:55:fe:e4:3e: e6:84:9d:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwNTMwMTc0MzU1WhcNMjUwNjA2MTc0MzU1WjAYMRYwFAYD VQQDEw02ODM5ZWU1Yy1mYTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15hL/uyzlT3Sb2E3RF29IZ4lgoudsa+87HIbDrKdcOpeD6KVGUsliY4xZzb3 D5TPmlykiVUzPRbDLZ001aEjUxL8HY9irLjVlat2ezABwQJeRo0YQAC+aCQmdVO7 qfdkKA0XHd2O18ZeQTiMX8I0aD3XPST7HZYTGm+TB87o2In043JO0bXBVpgTfEwc y91CqwXBX0wsg4SHSPw6vqDWB/xsNpsB1SjvZyNg9kAvWgqRRX9DTxsvN5arluNl d2fNW1hBk3qZLm8EtaUmSAxs01jer/bzeHBP7NgZqqxyFfhzlprhiW5qEuEycFM/ clDeHBZZySTyvecQYVnD1ThaiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8FjZd4 9DX4Rovw8Tja6x5vJuMFMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl9jvfUbko/6GrY3ECSVbsBFW8pBQxJtCOT91eFKQo3wBGOxOGFf/d qUjtkqkHtVNB9apBWZ0NaZJIGBHtjhM99PIFAQQ9WZ3vu6fN/gZkQk2NFMDeX2wr odCjlRC2sl9oE3iGjd02QdMo4PjU9igsfMtJDevob8Q53DdS9bxmbOvgLqCopfbt 8xXLfzLT0Del0p7Za4wg8GC2oUtWobEgSaMGYmaLX1wHfC9Gn822XHc2IgtA9ub2 SGW0QGJIn29PZLxOPqPlLVLNaiDyuk3DC90wGRVXA6g7/I4Ezam4VBQwSsazURfX S+KcmsiHfRC9De0TzvNi9lX+5D7mhJ3S -----END CERTIFICATE-----Generated at Sat May 31 15:40:35 2025 by rpki-client