$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: YtGvtTKQNZzYoKUFQT37LL/tnD+8AwwwsW83aFR79e0= Subject key identifier: 9B:0F:A2:44:CF:B9:9B:76:E6:EC:4B:D8:6C:33:2A:66:29:C6:05:86 Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: 97 Signing time: Sat 31 May 2025 05:53:44 +0000 Manifest this update: Sat 31 May 2025 05:53:44 +0000 Manifest next update: Sat 07 Jun 2025 05:53:44 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: cXD8cxxqd4oV/clzCuE/wVJzyIla/wIoTOqPxyRqn+A=) 2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: May 31 05:53:44 2025 GMT Not After : Jun 7 05:53:44 2025 GMT Subject: CN=683a9968-e17f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d7:6e:ff:e9:4d:52:74:35:28:c1:d9:f3:d9: e1:fb:6f:55:3a:45:94:be:b7:c3:4f:c3:d6:9c:b9: 8c:b7:98:e7:65:01:41:e8:dc:27:be:ea:5a:13:11: 7b:e4:d0:fd:04:d8:78:08:0a:42:19:7b:ed:20:c4: 97:f9:83:98:31:0a:7f:6d:a4:f1:b7:41:a2:87:f0: 4b:95:fa:14:b9:f2:5e:7c:4e:ef:4c:2e:be:96:88: 56:6b:95:d4:21:25:8f:34:3a:da:65:6d:8f:c4:27: 99:54:73:ab:09:54:ef:78:1a:10:15:6d:08:12:5f: 77:30:e5:0b:a0:80:fd:74:69:67:c6:41:2b:93:a3: e9:59:48:cd:85:89:ef:12:95:47:91:fd:f9:8f:1a: 6a:87:61:80:c4:74:2e:ec:94:6f:4e:18:a2:69:a7: 3c:a5:05:ec:8f:9f:40:bc:20:6f:b2:16:71:d5:e0: 76:fa:b8:00:45:ee:b3:0b:e0:8c:b4:43:d5:91:a3: 90:88:2c:b5:93:2a:9b:18:69:04:36:1b:71:18:82: 1f:7e:1b:d8:5e:2d:b1:2d:33:dd:c8:71:95:f8:b9: 6c:b5:d3:6b:15:db:f9:95:1d:c1:82:5c:6e:0e:2f: 75:75:c6:8d:8b:8d:0d:20:ee:f8:08:4a:16:ef:d6: 71:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0F:A2:44:CF:B9:9B:76:E6:EC:4B:D8:6C:33:2A:66:29:C6:05:86 X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:1b:61:14:5f:c0:26:da:ec:a4:7f:8a:70:fe:35:34:5a:ff: 60:de:13:f0:70:32:3f:19:97:87:fc:4a:4d:93:10:5b:11:3a: e0:3e:37:1e:27:0b:c9:cb:1c:d1:ac:97:ec:bf:b8:45:3d:3e: 2d:ac:82:5b:31:7d:f9:8a:c5:18:51:0c:a1:c8:58:3b:15:90: 2c:81:a6:48:88:62:76:53:20:9a:d5:65:93:19:f8:28:07:c7: 9b:e7:a0:c0:ed:de:5f:d3:0a:7a:18:5b:26:1c:86:b7:1e:65: 21:38:1f:e8:ea:65:c6:32:3d:33:2b:4f:68:13:65:56:5d:3b: 8b:17:21:89:67:5f:09:ed:63:8f:f7:c0:61:f0:64:61:0a:c6: bc:49:c9:d1:50:4f:a6:45:db:ad:8d:0c:01:23:d4:c7:a3:c3: bd:78:a5:63:f4:62:e1:c6:77:47:86:b2:54:42:81:03:a1:7e: b0:c9:72:9a:71:c1:35:2f:be:c0:1b:af:08:d4:57:59:04:8a: f1:ee:c6:e9:a0:fa:57:75:4b:31:3b:16:eb:ce:3d:91:0a:d2: cc:93:ef:31:16:0a:5d:cf:c0:a1:65:b3:ab:27:ed:d2:d9:a7: a4:74:c5:63:f6:50:f9:2d:11:25:25:1b:f2:8a:f0:3a:09:f4: 8f:b1:c5:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjUwNTMxMDU1MzQ0WhcNMjUwNjA3MDU1MzQ0WjAYMRYwFAYD VQQDEw02ODNhOTk2OC1lMTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6tdu/+lNUnQ1KMHZ89nh+29VOkWUvrfDT8PWnLmMt5jnZQFB6NwnvupaExF7 5ND9BNh4CApCGXvtIMSX+YOYMQp/baTxt0Gih/BLlfoUufJefE7vTC6+lohWa5XU ISWPNDraZW2PxCeZVHOrCVTveBoQFW0IEl93MOULoID9dGlnxkErk6PpWUjNhYnv EpVHkf35jxpqh2GAxHQu7JRvThiiaac8pQXsj59AvCBvshZx1eB2+rgARe6zC+CM tEPVkaOQiCy1kyqbGGkENhtxGIIffhvYXi2xLTPdyHGV+LlstdNrFdv5lR3Bglxu Di91dcaNi40NIO74CEoW79Zx0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsPokTP uZt25uxL2GwzKmYpxgWGMB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJu ZmhpYlViNG00bHlSVTR4VncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQG2EUX8Am2uykf4pw/jU0Wv9g3hPwcDI/GZeH/EpNkxBbETrgPjce JwvJyxzRrJfsv7hFPT4trIJbMX35isUYUQyhyFg7FZAsgaZIiGJ2UyCa1WWTGfgo B8eb56DA7d5f0wp6GFsmHIa3HmUhOB/o6mXGMj0zK09oE2VWXTuLFyGJZ18J7WOP 98Bh8GRhCsa8ScnRUE+mRdutjQwBI9THo8O9eKVj9GLhxndHhrJUQoEDoX6wyXKa ccE1L77AG68I1FdZBIrx7sbpoPpXdUsxOxbrzj2RCtLMk+8xFgpdz8ChZbOrJ+3S 2aekdMVj9lD5LRElJRvyivA6CfSPscUh -----END CERTIFICATE-----Generated at Sat May 31 16:52:16 2025 by rpki-client