$ rpki-client -vvf rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft File: DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft (raw, json) Hash identifier: RgbQzDtPpedTbaAetKXIN7f9WY1pjvvxlBn2Za8wnQA= Subject key identifier: 19:2A:52:7C:E9:67:91:E6:DA:EB:11:64:4C:9D:48:1B:33:B1:66:7F Authority key identifier: 0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F Certificate issuer: /CN=A91C731A/serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F Certificate serial: 0773 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft Manifest number: 076D Signing time: Fri 04 Apr 2025 21:38:33 +0000 Manifest this update: Fri 04 Apr 2025 21:38:32 +0000 Manifest next update: Fri 11 Apr 2025 21:38:32 +0000 Files and hashes: 1: DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl (hash: YWeLFeAHpY3k/ysrC/Q6SYW0BCc7/4LcHQ5J0QueDvI=) 2: 90C5BDF013F011EBA31BF948C4F9AE02.roa (hash: FhTvhFcDB/Ph+v5y3Equ71wPhAapTXjRpqoScSQoREg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1907 (0x773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C731A Validity Not Before: Apr 4 21:38:32 2025 GMT Not After : Apr 11 21:38:32 2025 GMT Subject: CN=67f05159-3f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:80:2d:4c:84:6b:18:5d:63:19:4b:19:b6:84: 22:1d:e7:97:8c:1a:f6:bb:16:7f:d8:a7:a3:16:b3: 88:e2:d0:97:79:86:4b:0c:5e:c5:04:cf:06:6b:2f: 0d:b1:e5:a8:40:a0:e4:e0:02:95:b3:7b:6c:ba:ea: 2f:8d:61:89:a9:b3:42:c4:41:40:3a:85:88:db:5e: 8f:2d:a5:07:e6:82:f7:66:18:d2:75:5c:12:21:de: 71:65:17:98:fb:7f:e0:a3:be:22:0c:27:95:1e:ff: 8d:27:e9:df:2c:fe:bc:7e:ec:51:5c:68:ad:0e:2e: 1b:b5:44:e1:08:09:4b:48:38:d5:4d:fc:fe:ed:63: 9a:ec:43:82:32:10:17:f2:e1:ed:c3:26:50:77:d2: d2:8b:99:1e:8d:75:52:7e:9b:45:bd:bd:02:7d:f4: f2:be:ee:d7:84:53:51:93:d5:4f:b4:e1:a7:00:e8: eb:3e:d4:8a:12:76:3f:e1:59:2a:87:6d:dd:0d:19: ae:6a:78:ef:5c:e9:55:2b:7b:e0:9f:fe:34:a4:88: ce:e4:1c:ba:61:45:55:c2:d8:54:57:52:83:91:c1: 3d:bd:37:2b:ba:52:12:c0:44:69:ad:55:9a:bb:05: 81:53:21:b7:92:86:c2:5b:fb:1f:a1:25:d2:68:05: 08:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:2A:52:7C:E9:67:91:E6:DA:EB:11:64:4C:9D:48:1B:33:B1:66:7F X509v3 Authority Key Identifier: keyid:0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:e8:9f:17:c0:8a:2c:c6:e2:ef:5c:28:dc:f9:c8:c6:22:c8: 93:2d:d0:b2:f6:7e:04:e9:54:2a:31:11:7f:2d:99:03:de:81: e2:43:ca:d8:fc:3a:26:e8:5b:5f:d0:5d:77:be:c9:47:7e:cf: 3a:45:e3:25:9d:ae:a5:3f:f4:dd:57:f0:42:2e:b6:48:4a:e5: 89:be:c0:03:82:e4:59:34:9b:da:37:cd:e6:69:c9:6d:95:35: 0b:9d:45:61:2d:eb:8c:4c:e4:1b:a6:9e:83:f3:ce:f7:b8:83: f5:2d:b5:02:42:ce:61:d7:dd:f3:05:b9:e4:98:bb:cb:49:7c: e5:6c:fa:76:21:af:a1:4f:cd:1f:be:69:be:b1:ca:05:1f:c6: c3:25:58:fb:b3:92:47:ee:0e:80:f9:96:4e:b9:25:5b:aa:00: 59:4f:76:26:18:87:ac:ce:88:8a:9c:8d:a7:95:a9:36:32:e0: fa:59:e1:f8:cb:e3:84:ff:64:2c:74:76:7d:91:d3:aa:53:0e: 1e:36:b4:7b:7d:6b:a1:f8:6b:51:40:32:f2:85:b2:c2:80:bf: e2:7e:a6:b9:29:e2:6a:22:0f:9f:d7:5c:8f:9c:da:0a:64:96: c6:a6:69:dc:2f:dd:00:23:1d:22:90:b4:fb:8e:30:5e:45:b5: 26:1c:9a:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzczMUExMTAvBgNVBAUTKDBEQjREM0Y5RDVFMjBEODVCRUI3RjlDQjFCMDdDMzE1 QUE0NjA5OUYwHhcNMjUwNDA0MjEzODMyWhcNMjUwNDExMjEzODMyWjAYMRYwFAYD VQQDEw02N2YwNTE1OS0zZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYAtTIRrGF1jGUsZtoQiHeeXjBr2uxZ/2KejFrOI4tCXeYZLDF7FBM8Gay8N seWoQKDk4AKVs3tsuuovjWGJqbNCxEFAOoWI216PLaUH5oL3ZhjSdVwSId5xZReY +3/go74iDCeVHv+NJ+nfLP68fuxRXGitDi4btUThCAlLSDjVTfz+7WOa7EOCMhAX 8uHtwyZQd9LSi5kejXVSfptFvb0CffTyvu7XhFNRk9VPtOGnAOjrPtSKEnY/4Vkq h23dDRmuanjvXOlVK3vgn/40pIjO5By6YUVVwthUV1KDkcE9vTcrulISwERprVWa uwWBUyG3kobCW/sfoSXSaAUIiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkqUnzp Z5Hm2usRZEydSBszsWZ/MB8GA1UdIwQYMBaAFA200/nV4g2Fvrf5yxsHwxWqRgmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzMxQS9DOUY4M0FFRTBF QzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZVy10X25MR3dmREZhcEdD WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RiVFQtZFhpRFlXLXRfbkxHd2ZERmFwR0NaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzMxQS9DOUY4M0FFRTBFQzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZ Vy10X25MR3dmREZhcEdDWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+6J8XwIosxuLvXCjc+cjGIsiTLdCy9n4E6VQqMRF/LZkD3oHiQ8rY /Dom6Ftf0F13vslHfs86ReMlna6lP/TdV/BCLrZISuWJvsADguRZNJvaN83maclt lTULnUVhLeuMTOQbpp6D8873uIP1LbUCQs5h193zBbnkmLvLSXzlbPp2Ia+hT80f vmm+scoFH8bDJVj7s5JH7g6A+ZZOuSVbqgBZT3YmGIeszoiKnI2nlak2MuD6WeH4 y+OE/2QsdHZ9kdOqUw4eNrR7fWuh+GtRQDLyhbLCgL/ifqa5KeJqIg+f11yPnNoK ZJbGpmncL90AIx0ikLT7jjBeRbUmHJp5 -----END CERTIFICATE-----Generated at Sun Apr 6 20:34:05 2025 by rpki-client