$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: y4dbavhJFmCmjSiulApK2xeUi7nvwJ/Y93+6N4BYadk= Subject key identifier: 77:41:98:C8:D4:3B:B5:03:88:05:7B:1B:CC:3A:BC:9F:6B:DD:3E:6C Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1BEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1BDB Signing time: Fri 30 May 2025 16:24:11 +0000 Manifest this update: Fri 30 May 2025 16:24:11 +0000 Manifest next update: Fri 06 Jun 2025 16:24:11 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: 0CkdRct0jbLj02r/tjI8q8z45H8LAgP6fH0lv+LgyxQ=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7148 (0x1bec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: May 30 16:24:11 2025 GMT Not After : Jun 6 16:24:11 2025 GMT Subject: CN=6839dbab-9714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f8:5e:64:17:0f:aa:78:0e:f9:55:22:3e:d9: 31:c9:49:9b:e1:48:34:94:6f:93:3c:bf:75:54:60: 95:72:a2:82:a9:b6:34:fc:0f:bb:85:b8:88:16:cb: 68:a9:91:8b:d7:2d:c3:96:6c:48:56:49:5f:57:f3: 1e:48:82:f0:c2:6c:e2:fa:a0:df:22:e3:fb:bc:c8: 86:df:33:22:bb:2f:12:df:04:68:f4:2b:bf:af:99: 8e:6d:91:00:4c:3a:7d:4c:d3:f0:d1:0b:4e:d5:25: ae:ba:85:bb:e6:f7:84:86:e9:70:58:33:62:10:51: 8e:b8:48:32:a1:6e:b0:33:24:6b:2f:b0:05:6c:79: 76:20:39:1d:0d:f6:7d:ed:ec:82:85:d7:0b:f7:37: 83:5d:3f:bc:7d:eb:cc:5f:1a:47:76:42:51:e8:5f: dc:20:02:79:bc:64:37:ff:be:a9:f9:fa:57:88:3a: 91:30:31:d3:4e:90:91:4f:b7:5a:f4:96:d4:33:43: 92:a2:6b:bd:32:e7:64:e8:02:5d:96:ff:6d:27:68: b0:6e:0b:3d:7c:ad:a8:d9:bb:89:a2:ee:d2:19:7f: c7:78:f6:4e:aa:af:31:ce:1b:18:39:c2:72:60:a4: 94:13:e1:e7:2a:42:4a:82:e6:1a:a3:44:a9:9b:8e: 47:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:41:98:C8:D4:3B:B5:03:88:05:7B:1B:CC:3A:BC:9F:6B:DD:3E:6C X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:a5:49:78:cf:45:65:0b:7f:85:aa:d1:44:b8:54:5f:25:13: e5:3c:55:42:bb:82:d7:5f:d9:cf:29:62:16:78:7f:b1:ac:2a: 95:4a:e4:97:29:bc:60:e0:cd:63:e4:08:ac:ac:3e:59:ea:8a: b9:f7:91:bc:37:79:c5:7a:17:87:97:f5:2a:49:b5:2e:86:97: 58:0d:ac:a5:55:05:5b:a4:6b:a1:dd:6d:16:45:1f:95:eb:4c: 7f:b5:1c:fb:d4:68:9d:3a:73:37:a3:d4:26:40:78:af:6f:37: 92:82:c6:ed:2d:90:15:34:35:09:2e:7f:9f:ba:86:87:eb:6d: d1:e1:cf:32:c4:e7:4d:b5:16:47:58:8a:42:b3:13:86:40:82: 05:cd:ff:21:14:9b:ed:8c:55:05:6e:c5:10:77:5e:dd:12:3f: 08:30:d1:75:f1:1c:02:3e:f0:21:c5:24:c9:8b:fd:bd:24:23: 87:8d:eb:1f:d2:65:52:06:8c:39:91:27:4a:44:3b:01:19:d0: fe:80:02:bc:85:a4:f9:de:98:f8:2b:0f:40:c5:57:ef:35:91: 27:04:b9:74:97:cf:22:75:01:4c:e6:c5:9e:30:73:6d:24:8d: cb:81:4c:8a:e1:c1:f4:f0:71:a9:a1:07:81:fc:bd:1e:06:fa: 89:4a:ba:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwNTMwMTYyNDExWhcNMjUwNjA2MTYyNDExWjAYMRYwFAYD VQQDEw02ODM5ZGJhYi05NzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/heZBcPqngO+VUiPtkxyUmb4Ug0lG+TPL91VGCVcqKCqbY0/A+7hbiIFsto qZGL1y3DlmxIVklfV/MeSILwwmzi+qDfIuP7vMiG3zMiuy8S3wRo9Cu/r5mObZEA TDp9TNPw0QtO1SWuuoW75veEhulwWDNiEFGOuEgyoW6wMyRrL7AFbHl2IDkdDfZ9 7eyChdcL9zeDXT+8fevMXxpHdkJR6F/cIAJ5vGQ3/76p+fpXiDqRMDHTTpCRT7da 9JbUM0OSomu9Mudk6AJdlv9tJ2iwbgs9fK2o2buJou7SGX/HePZOqq8xzhsYOcJy YKSUE+HnKkJKguYao0Spm45HxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdBmMjU O7UDiAV7G8w6vJ9r3T5sMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmpUl4z0VlC3+FqtFEuFRfJRPlPFVCu4LXX9nPKWIWeH+xrCqVSuSX Kbxg4M1j5AisrD5Z6oq595G8N3nFeheHl/UqSbUuhpdYDaylVQVbpGuh3W0WRR+V 60x/tRz71GidOnM3o9QmQHivbzeSgsbtLZAVNDUJLn+fuoaH623R4c8yxOdNtRZH WIpCsxOGQIIFzf8hFJvtjFUFbsUQd17dEj8IMNF18RwCPvAhxSTJi/29JCOHjesf 0mVSBow5kSdKRDsBGdD+gAK8haT53pj4Kw9AxVfvNZEnBLl0l88idQFM5sWeMHNt JI3LgUyK4cH08HGpoQeB/L0eBvqJSrrN -----END CERTIFICATE-----Generated at Sat May 31 17:57:51 2025 by rpki-client