$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: T7jxjPqiBvyBtn2+RuLgXkISAPjLxC4IUW9i/UWShuI= Subject key identifier: 97:51:5C:A5:3C:FF:CF:DB:45:F5:2A:62:CE:63:6A:9B:06:65:E5:88 Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 0165 Signing time: Sat 31 May 2025 03:35:18 +0000 Manifest this update: Sat 31 May 2025 03:35:17 +0000 Manifest next update: Sat 07 Jun 2025 03:35:17 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: B/bvqTDb6l10ZSzYh4Rm7iV66RemjOaFYidGyTvKApY=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: CB6qYtIMERSezwGUEUv4T/r/K/tC4CWAUjSVJHYQH28=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: wqZWqZ8fa4R6eMrcXZq1r/urB8kEflCs9S9caDMISYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: May 31 03:35:17 2025 GMT Not After : Jun 7 03:35:17 2025 GMT Subject: CN=683a78f5-e399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5f:d6:64:86:ff:42:f0:c5:43:47:c8:c2:6f: 06:57:be:f5:b6:c7:12:12:f2:c9:c8:37:a1:72:73: 0e:6e:d3:29:92:f2:a0:08:46:da:03:51:53:77:6c: 02:b0:fa:95:58:31:96:e3:aa:04:a9:d1:5f:f4:a5: da:b9:af:5c:5c:f0:a0:bd:42:c7:df:02:f1:d5:5a: e1:39:8b:33:6f:f6:40:6c:df:e8:23:51:53:e3:08: 9d:d5:db:f3:db:c5:db:a5:a8:e5:d7:8f:6a:e4:23: be:f9:f2:21:f3:f3:a7:78:a1:6f:45:b2:bc:49:54: 4e:ee:aa:ce:72:ea:2f:fb:6e:58:69:ce:03:20:ba: 2e:5c:eb:6c:4d:3f:b7:b4:04:b5:15:07:d1:42:f9: ab:3b:c5:9c:1e:67:f2:95:21:17:39:7c:00:18:b9: 80:d0:ec:f4:f7:a2:aa:70:10:ec:32:9f:c2:f8:0a: ff:fa:c3:f1:6e:72:8a:c3:41:f7:bd:02:28:c9:4a: 2b:ae:47:25:f3:6b:66:eb:b1:82:25:db:44:fd:53: 55:3c:c2:95:48:38:e9:e5:57:6b:21:cb:c4:91:f5: 7d:29:e6:e5:48:3c:3f:30:6b:53:00:75:d6:91:f8: 46:9a:41:9c:1a:38:25:6b:9a:ee:7c:84:75:09:8a: 6e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:51:5C:A5:3C:FF:CF:DB:45:F5:2A:62:CE:63:6A:9B:06:65:E5:88 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:54:cd:73:c6:16:9e:ff:31:7c:30:e4:0a:5b:0d:ff:94:a6: 7e:76:70:b5:22:f8:a8:42:6e:29:e3:f3:a0:22:8c:24:cb:83: ca:60:9b:00:a0:2c:b1:26:ff:e4:ab:e7:ab:e9:8b:b6:11:40: e0:bd:4c:e3:72:08:b7:82:8b:cb:18:b9:3a:4b:76:f5:e8:fd: ee:52:4c:11:51:b4:7f:66:2f:2d:dd:07:44:1f:55:43:25:69: ca:f3:0f:d4:b8:4d:80:21:41:73:72:93:d5:88:25:6c:30:b3: 36:93:72:9f:d9:1e:85:bd:1b:7b:64:03:6d:1f:a8:16:bf:a8: eb:3a:2b:5e:2e:96:a4:e9:05:dd:4f:df:9c:9a:b7:cf:61:9f: 10:75:0b:8f:b5:8c:e4:8c:dc:95:87:da:0f:35:01:ce:80:73: dd:e2:22:44:d3:89:9b:81:6a:bf:7d:8f:1a:97:05:25:df:94: 5a:06:30:6b:a9:fd:c5:71:7e:94:de:e1:ee:1b:49:74:90:b2: 2a:92:52:9f:52:cc:f2:8e:a4:5d:a9:f9:05:13:db:f2:72:51: 67:86:e1:59:8f:be:34:b8:dd:65:b7:0f:99:50:e7:11:0b:df: ec:70:aa:0e:66:22:0f:4c:e9:fd:db:da:0a:c4:79:42:69:77: 93:82:f7:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjUwNTMxMDMzNTE3WhcNMjUwNjA3MDMzNTE3WjAYMRYwFAYD VQQDEw02ODNhNzhmNS1lMzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41/WZIb/QvDFQ0fIwm8GV771tscSEvLJyDehcnMObtMpkvKgCEbaA1FTd2wC sPqVWDGW46oEqdFf9KXaua9cXPCgvULH3wLx1VrhOYszb/ZAbN/oI1FT4wid1dvz 28Xbpajl149q5CO++fIh8/OneKFvRbK8SVRO7qrOcuov+25Yac4DILouXOtsTT+3 tAS1FQfRQvmrO8WcHmfylSEXOXwAGLmA0Oz096KqcBDsMp/C+Ar/+sPxbnKKw0H3 vQIoyUorrkcl82tm67GCJdtE/VNVPMKVSDjp5VdrIcvEkfV9KeblSDw/MGtTAHXW kfhGmkGcGjgla5rufIR1CYpu9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdRXKU8 /8/bRfUqYs5japsGZeWIMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3VM1zxhae/zF8MOQKWw3/lKZ+dnC1IvioQm4p4/OgIowky4PKYJsA oCyxJv/kq+er6Yu2EUDgvUzjcgi3govLGLk6S3b16P3uUkwRUbR/Zi8t3QdEH1VD JWnK8w/UuE2AIUFzcpPViCVsMLM2k3Kf2R6FvRt7ZANtH6gWv6jrOiteLpak6QXd T9+cmrfPYZ8QdQuPtYzkjNyVh9oPNQHOgHPd4iJE04mbgWq/fY8alwUl35RaBjBr qf3FcX6U3uHuG0l0kLIqklKfUszyjqRdqfkFE9vyclFnhuFZj740uN1ltw+ZUOcR C9/scKoOZiIPTOn929oKxHlCaXeTgvfY -----END CERTIFICATE-----Generated at Sat May 31 17:44:09 2025 by rpki-client