$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft File: DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft (raw, json) Hash identifier: sM2fQpPNmW+Mj+W0wQHA/1YI9IqMbY5JfDrPeoOqAGE= Subject key identifier: 63:EC:9F:78:83:77:70:EE:06:83:41:95:5C:2D:B3:62:37:2B:28:1A Authority key identifier: 0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D Certificate issuer: /CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Certificate serial: 16B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft Manifest number: 16AE Signing time: Fri 30 May 2025 16:51:29 +0000 Manifest this update: Fri 30 May 2025 16:51:28 +0000 Manifest next update: Fri 06 Jun 2025 16:51:28 +0000 Files and hashes: 1: DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl (hash: BCliZhBT1yrfbjCqMKG2fBhkr2rzEBEyQWhVH2aW0ZU=) 2: C109FFF4FC0511E7BAFB3E48C4F9AE02.roa (hash: hwBxWiPVp4f2tvl+TO1kwaPXm0WY1KDdijTAJsRcx7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5817 (0x16b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8161, serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Validity Not Before: May 30 16:51:28 2025 GMT Not After : Jun 6 16:51:28 2025 GMT Subject: CN=6839e211-c667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0f:67:33:b5:51:a5:c4:6b:66:bb:04:79:0b: 84:fc:59:26:05:5c:1f:4d:d4:e0:76:a2:94:63:35: 2e:9d:1d:a3:d0:54:af:bf:81:5a:ce:5a:c2:61:8b: 6d:29:a5:b5:fa:ef:69:6c:78:26:20:24:52:f5:c1: ce:52:3f:e9:05:ed:af:e3:b3:7a:02:66:c7:49:3b: 8f:75:f9:46:7e:e4:9f:b5:1a:a6:81:f5:1d:ed:4d: 4e:35:0b:18:0b:54:25:71:32:fb:b5:61:7e:31:d8: e7:ea:92:fa:60:93:a7:fc:95:f2:7b:16:d2:d4:54: bf:d2:89:4c:6b:8d:a1:2c:be:5a:33:54:d5:f1:88: dd:e1:dd:fd:29:7e:ce:11:23:a4:13:ee:04:b0:a5: f4:7f:b2:18:fb:b7:6b:f1:5c:3f:14:c0:39:e1:ca: f3:97:a8:89:2b:f6:83:d3:ac:70:4c:a2:e6:55:b2: 7b:80:d7:31:be:67:7b:c0:c0:dc:da:01:a4:85:38: 10:0f:9b:fe:88:38:36:4e:b9:11:3c:e1:b8:7b:99: 71:ce:c9:16:fa:cf:fd:0c:a9:a6:cc:6d:83:ae:67: 59:27:f8:88:0f:68:01:bc:de:33:5f:13:d5:bf:29: 3b:29:2c:59:55:97:64:c9:99:b9:cc:fc:c9:bb:2b: 53:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EC:9F:78:83:77:70:EE:06:83:41:95:5C:2D:B3:62:37:2B:28:1A X509v3 Authority Key Identifier: keyid:0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:bf:ca:19:eb:86:34:96:27:ee:00:f7:db:06:d4:7a:c1:e0: 7c:2b:1e:c1:d4:8c:d8:1f:42:0c:0d:38:cd:36:f8:20:e0:a6: 04:81:c9:d9:e9:44:3d:b6:28:d0:34:52:ff:e7:f3:14:64:80: c1:7a:e3:94:c2:c2:12:bd:cf:6e:ae:c4:d5:3b:39:dc:24:89: ef:71:6d:9a:92:ea:bb:95:10:0a:33:71:d9:f7:63:6e:97:fd: 9c:c6:6e:16:d6:47:bb:24:46:b0:22:73:8b:d1:7c:a0:64:28: 8e:a7:0c:ff:34:ed:6f:3e:e0:de:20:63:41:80:e4:7b:02:0e: 99:2c:fe:1d:f8:4c:44:d8:f1:c5:17:37:8f:99:5e:9d:df:1d: 53:cb:81:32:5d:d8:a6:47:aa:bb:04:4c:31:65:96:fc:d9:e1: 0c:37:6d:20:ff:0d:d5:39:01:09:ba:b8:c5:b6:14:d1:67:c7: f6:a9:87:97:30:49:ab:19:45:74:77:4c:3b:fd:a9:12:13:a8: 66:ec:a1:5e:eb:cf:7d:f7:a7:4e:8f:58:04:25:62:c5:1b:53: 93:13:ee:e9:9e:d3:af:a2:28:c3:95:0f:86:5a:a8:49:ee:e0: 63:67:08:6d:cd:08:96:06:83:63:dc:1e:f8:aa:09:69:84:af: 6b:71:27:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgxNjExMTAvBgNVBAUTKDBGMEJDRUUxNUFEQjZENTdEMDJDRDA0QjQ1MjIzQUI4 MDY2QTU0NUQwHhcNMjUwNTMwMTY1MTI4WhcNMjUwNjA2MTY1MTI4WjAYMRYwFAYD VQQDEw02ODM5ZTIxMS1jNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyw9nM7VRpcRrZrsEeQuE/FkmBVwfTdTgdqKUYzUunR2j0FSvv4FazlrCYYtt KaW1+u9pbHgmICRS9cHOUj/pBe2v47N6AmbHSTuPdflGfuSftRqmgfUd7U1ONQsY C1QlcTL7tWF+Mdjn6pL6YJOn/JXyexbS1FS/0olMa42hLL5aM1TV8Yjd4d39KX7O ESOkE+4EsKX0f7IY+7dr8Vw/FMA54crzl6iJK/aD06xwTKLmVbJ7gNcxvmd7wMDc 2gGkhTgQD5v+iDg2TrkRPOG4e5lxzskW+s/9DKmmzG2DrmdZJ/iID2gBvN4zXxPV vyk7KSxZVZdkyZm5zPzJuytTnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPsn3iD d3DuBoNBlVwts2I3KygaMB8GA1UdIwQYMBaAFA8LzuFa221X0CzQS0UiOrgGalRd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODE2MS82NzA2MTJCMEZB NjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJWZlFMTkJMUlNJNnVBWnFW RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R3dk80VnJiYlZmUUxOQkxSU0k2dUFacVZGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODE2MS82NzA2MTJCMEZBNjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJW ZlFMTkJMUlNJNnVBWnFWRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDhv8oZ64Y0lifuAPfbBtR6weB8Kx7B1IzYH0IMDTjNNvgg4KYEgcnZ 6UQ9tijQNFL/5/MUZIDBeuOUwsISvc9ursTVOzncJInvcW2akuq7lRAKM3HZ92Nu l/2cxm4W1ke7JEawInOL0XygZCiOpwz/NO1vPuDeIGNBgOR7Ag6ZLP4d+ExE2PHF FzePmV6d3x1Ty4EyXdimR6q7BEwxZZb82eEMN20g/w3VOQEJurjFthTRZ8f2qYeX MEmrGUV0d0w7/akSE6hm7KFe689996dOj1gEJWLFG1OTE+7pntOvoijDlQ+GWqhJ 7uBjZwhtzQiWBoNj3B74qglphK9rcSdH -----END CERTIFICATE-----Generated at Sat May 31 17:30:16 2025 by rpki-client