$ rpki-client -vvf rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft File: DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft (raw, json) Hash identifier: FFOzrG8umGWdmCDq8ybNqkz+xXxQGSedpsica4196Sg= Subject key identifier: B5:94:03:B6:3D:F4:CE:2B:A5:60:45:6A:09:5A:3E:F0:6A:AD:1A:E0 Authority key identifier: 0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F Certificate issuer: /CN=A91C731A/serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F Certificate serial: 078E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft Manifest number: 0788 Signing time: Fri 30 May 2025 21:37:58 +0000 Manifest this update: Fri 30 May 2025 21:37:58 +0000 Manifest next update: Fri 06 Jun 2025 21:37:58 +0000 Files and hashes: 1: DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl (hash: NCb4KcNAyDzRUG36WVxMIMvrgGkqGz8VRI8y1oQNU+k=) 2: 90C5BDF013F011EBA31BF948C4F9AE02.roa (hash: FhTvhFcDB/Ph+v5y3Equ71wPhAapTXjRpqoScSQoREg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1934 (0x78e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C731A, serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F Validity Not Before: May 30 21:37:58 2025 GMT Not After : Jun 6 21:37:58 2025 GMT Subject: CN=683a2536-9d37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f0:20:c0:78:d5:a6:67:b1:30:92:88:9b:52: e9:6f:48:23:89:bd:fe:f6:b4:25:f2:3f:45:32:0a: 09:c6:fb:c7:49:28:12:fc:0f:3c:e7:65:5d:cb:00: 8e:48:d2:f1:fe:b2:88:2f:3d:19:e8:e0:b4:ac:05: 7e:f9:5d:f1:0c:5c:2f:ba:14:a0:0c:37:b5:5c:66: 48:21:50:6c:78:b2:db:d1:47:32:a1:63:bc:b2:eb: 1b:f6:6e:b9:53:be:20:50:f3:e9:7c:68:40:a4:de: 07:52:9a:be:24:84:f2:05:e0:20:72:e7:37:17:97: 64:00:f7:d0:4e:3b:09:86:6c:bf:94:7c:60:ed:4b: 7d:61:bb:2d:a2:80:2d:03:b1:7e:c6:ce:35:d8:19: 32:09:eb:7d:c4:43:4c:1b:cf:12:8e:02:e5:46:80: 5e:1c:2a:ef:62:51:fc:0a:40:92:3a:7d:d9:6f:b8: 53:ad:bf:a1:43:80:c3:29:8e:ef:08:0f:cd:ec:07: fc:c0:1a:21:bc:43:e6:d4:fe:ae:d7:5b:77:51:cc: 03:a0:8c:04:69:8a:67:6e:96:6b:a0:db:7a:8f:41: 26:13:6a:83:18:b8:40:71:91:7e:59:31:dc:92:6d: ac:15:2a:c3:a4:97:38:e3:d8:be:62:6f:b1:aa:c6: 3b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:94:03:B6:3D:F4:CE:2B:A5:60:45:6A:09:5A:3E:F0:6A:AD:1A:E0 X509v3 Authority Key Identifier: keyid:0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ae:5d:c1:da:34:e1:64:73:18:64:4c:30:47:65:ae:a0:7e: 75:96:fa:1f:df:5f:86:30:91:9c:a1:3f:7a:a6:fb:73:9f:9c: 61:e7:4a:18:b0:1b:7e:a8:a2:65:7a:8b:f5:d5:dd:b8:83:a8: 1f:d4:94:f1:0a:bc:2a:74:c1:69:e4:77:37:f1:f7:e2:3d:5c: 84:85:95:5d:c2:82:0f:ac:32:e5:be:97:66:b2:1d:78:1b:5e: fb:5c:ac:39:de:9d:2d:5b:73:1c:70:cc:72:68:a6:c1:e1:6c: 55:5f:19:6e:19:1e:cd:50:78:22:6e:d5:a7:ec:77:fa:2c:15: 9d:b2:2b:16:db:93:0c:6e:7a:82:7a:a8:a3:20:e9:ec:19:8f: 0e:51:74:3a:4e:a5:96:a1:ce:b1:89:e0:ea:6e:71:5b:d5:4f: da:34:6d:b1:f5:7e:43:17:d2:76:2e:a6:c5:85:ab:da:a1:e6: 4b:24:33:f3:7b:82:87:52:5a:57:7b:db:03:34:41:a1:42:7d: 9d:24:bb:26:c5:d9:c2:48:73:5a:85:ea:f8:fc:b1:30:29:ce: c7:f4:b0:e1:f4:ec:ce:ca:88:69:b5:f5:9a:5d:97:c9:37:00: 6e:9d:da:eb:ed:95:7c:30:b2:60:7e:83:11:10:2f:5e:59:7f: fc:b8:f2:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzczMUExMTAvBgNVBAUTKDBEQjREM0Y5RDVFMjBEODVCRUI3RjlDQjFCMDdDMzE1 QUE0NjA5OUYwHhcNMjUwNTMwMjEzNzU4WhcNMjUwNjA2MjEzNzU4WjAYMRYwFAYD VQQDEw02ODNhMjUzNi05ZDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6PAgwHjVpmexMJKIm1Lpb0gjib3+9rQl8j9FMgoJxvvHSSgS/A8852VdywCO SNLx/rKILz0Z6OC0rAV++V3xDFwvuhSgDDe1XGZIIVBseLLb0UcyoWO8susb9m65 U74gUPPpfGhApN4HUpq+JITyBeAgcuc3F5dkAPfQTjsJhmy/lHxg7Ut9YbstooAt A7F+xs412BkyCet9xENMG88SjgLlRoBeHCrvYlH8CkCSOn3Zb7hTrb+hQ4DDKY7v CA/N7Af8wBohvEPm1P6u11t3UcwDoIwEaYpnbpZroNt6j0EmE2qDGLhAcZF+WTHc km2sFSrDpJc449i+Ym+xqsY7LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWUA7Y9 9M4rpWBFaglaPvBqrRrgMB8GA1UdIwQYMBaAFA200/nV4g2Fvrf5yxsHwxWqRgmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzMxQS9DOUY4M0FFRTBF QzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZVy10X25MR3dmREZhcEdD WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RiVFQtZFhpRFlXLXRfbkxHd2ZERmFwR0NaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzMxQS9DOUY4M0FFRTBFQzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZ Vy10X25MR3dmREZhcEdDWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWrl3B2jThZHMYZEwwR2WuoH51lvof31+GMJGcoT96pvtzn5xh50oY sBt+qKJleov11d24g6gf1JTxCrwqdMFp5Hc38ffiPVyEhZVdwoIPrDLlvpdmsh14 G177XKw53p0tW3MccMxyaKbB4WxVXxluGR7NUHgibtWn7Hf6LBWdsisW25MMbnqC eqijIOnsGY8OUXQ6TqWWoc6xieDqbnFb1U/aNG2x9X5DF9J2LqbFhavaoeZLJDPz e4KHUlpXe9sDNEGhQn2dJLsmxdnCSHNaher4/LEwKc7H9LDh9OzOyohptfWaXZfJ NwBundrr7ZV8MLJgfoMREC9eWX/8uPKJ -----END CERTIFICATE-----Generated at Sat May 31 16:29:34 2025 by rpki-client