$ rpki-client -vvf rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft File: dpU2g0Agk0lSKX69t4GJNXsToUU.mft (raw, json) Hash identifier: 5Kqk5Rlr/eqPYklT6Kte5fXQeBxnidXEqL+GwePA50Y= Subject key identifier: BC:B8:FF:1C:B2:F7:3A:D6:C2:8D:76:57:79:AE:E9:22:05:54:FE:AD Authority key identifier: 76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 Certificate issuer: /CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft Manifest number: BF Signing time: Fri 25 Apr 2025 04:53:51 +0000 Manifest this update: Fri 25 Apr 2025 04:53:50 +0000 Manifest next update: Fri 02 May 2025 04:53:50 +0000 Files and hashes: 1: dpU2g0Agk0lSKX69t4GJNXsToUU.crl (hash: A6ZNrq3VQjg4P+0AVZ1TKaUkRq3vA9DCoyGxRSiMbjw=) 2: CAE74ADEFD4511EEA97C9D1CC4F9AE02.roa (hash: SVtEtagldlvERL46wSvdbr/iqqig+8tKes1xS1nFqcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111623, serialNumber=769536834020934952297EBDB78189357B13A145 Validity Not Before: Apr 25 04:53:50 2025 GMT Not After : May 2 04:53:50 2025 GMT Subject: CN=680b155e-3363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:29:2c:c3:4c:72:79:a6:3c:a5:93:70:73:02: e9:1c:fb:67:97:7f:f6:70:b1:3c:a0:9a:4c:7a:88: a7:e1:5b:4b:10:c4:e4:6e:ad:3b:35:12:30:8a:67: 89:83:b5:e6:ea:4f:98:e3:77:4b:7f:57:8c:b7:08: 75:bf:bf:11:13:4f:c3:8c:6a:f4:1c:81:0e:f9:5e: e0:c9:3f:d5:9b:a7:18:85:be:5e:b2:44:00:c5:89: d3:f1:38:f2:f1:60:6f:35:e2:83:81:6d:df:5b:52: 3a:20:7e:a6:83:ed:40:35:df:11:42:f3:f3:59:4f: d3:55:dd:b9:de:d2:14:e7:34:c1:07:5f:80:85:8a: 30:41:63:99:ab:89:46:48:6a:27:62:16:aa:95:9a: 0d:9b:02:c6:b4:05:8c:71:6e:38:99:1b:67:87:6c: 16:9d:f5:a4:6d:06:21:21:fc:68:5e:27:8e:56:55: 34:41:5c:e7:60:42:2c:1b:c1:d0:ff:33:67:2d:51: f9:0c:c6:7e:43:01:fd:5e:33:85:a6:2e:e1:c5:60: 0c:d3:ca:bf:bc:56:e1:86:d2:2d:9c:f4:9f:bb:53: d4:92:47:68:9a:20:c8:75:d8:03:cc:2b:bb:09:6d: 1f:83:eb:80:1f:90:fb:28:e2:ea:6d:99:59:7b:2b: 57:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B8:FF:1C:B2:F7:3A:D6:C2:8D:76:57:79:AE:E9:22:05:54:FE:AD X509v3 Authority Key Identifier: keyid:76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ff:de:98:54:5c:11:1f:01:aa:62:65:4b:6c:d7:f1:8e:91: dc:cb:cf:3a:1a:f0:5a:c7:2d:a6:6b:aa:dd:eb:ec:bc:c8:8c: ef:50:3d:da:44:06:41:03:b6:d5:3a:be:c8:34:a5:d6:1d:55: eb:1b:92:9f:c6:7a:91:ae:dc:3b:94:c6:52:8c:24:f9:c2:e0: f7:98:9b:96:ee:cc:bd:07:4e:37:2d:de:11:ce:b4:c6:1e:71: 23:4f:ab:b1:5a:e6:63:09:b3:26:10:b7:7f:0d:23:84:c8:ee: 04:1e:7f:44:a6:ca:dd:c8:77:e8:0f:e4:c8:28:8c:69:13:6a: 42:40:ae:9f:a7:ef:dd:76:1c:77:9d:d5:d8:28:49:25:98:f7: 39:47:35:7c:a9:7d:f3:72:de:08:2b:8d:3b:6a:60:30:57:9c: d0:95:fa:93:f8:11:64:0f:2d:ea:73:11:2d:b9:e7:b7:45:53: f6:85:e9:42:88:0d:f0:d2:3b:6c:14:a4:dd:29:75:c5:b8:7f: f8:25:f3:bb:54:77:e5:77:6e:80:c3:08:c4:30:97:e5:25:c1: 1c:a1:36:27:40:1f:42:2a:52:b1:e8:a6:1b:25:98:d7:61:dc: 8d:f8:66:cc:80:9a:62:21:1c:82:03:45:37:cc:46:d5:36:b6: 5d:53:51:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2MjMxMTAvBgNVBAUTKDc2OTUzNjgzNDAyMDkzNDk1MjI5N0VCREI3ODE4OTM1 N0IxM0ExNDUwHhcNMjUwNDI1MDQ1MzUwWhcNMjUwNTAyMDQ1MzUwWjAYMRYwFAYD VQQDEw02ODBiMTU1ZS0zMzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyksw0xyeaY8pZNwcwLpHPtnl3/2cLE8oJpMeoin4VtLEMTkbq07NRIwimeJ g7Xm6k+Y43dLf1eMtwh1v78RE0/DjGr0HIEO+V7gyT/Vm6cYhb5eskQAxYnT8Tjy 8WBvNeKDgW3fW1I6IH6mg+1ANd8RQvPzWU/TVd253tIU5zTBB1+AhYowQWOZq4lG SGonYhaqlZoNmwLGtAWMcW44mRtnh2wWnfWkbQYhIfxoXieOVlU0QVznYEIsG8HQ /zNnLVH5DMZ+QwH9XjOFpi7hxWAM08q/vFbhhtItnPSfu1PUkkdomiDIddgDzCu7 CW0fg+uAH5D7KOLqbZlZeytXBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLy4/xyy 9zrWwo12V3mu6SIFVP6tMB8GA1UdIwQYMBaAFHaVNoNAIJNJUil+vbeBiTV7E6FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTYyMy81MEFEMDcxOEZE NDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2swbFNLWDY5dDRHSk5Yc1Rv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwVTJnMEFnazBsU0tYNjl0NEdKTlhzVG9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTYyMy81MEFEMDcxOEZENDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2sw bFNLWDY5dDRHSk5Yc1RvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4/96YVFwRHwGqYmVLbNfxjpHcy886GvBaxy2ma6rd6+y8yIzvUD3a RAZBA7bVOr7INKXWHVXrG5KfxnqRrtw7lMZSjCT5wuD3mJuW7sy9B043Ld4RzrTG HnEjT6uxWuZjCbMmELd/DSOEyO4EHn9EpsrdyHfoD+TIKIxpE2pCQK6fp+/ddhx3 ndXYKEklmPc5RzV8qX3zct4IK407amAwV5zQlfqT+BFkDy3qcxEtuee3RVP2helC iA3w0jtsFKTdKXXFuH/4JfO7VHfld26AwwjEMJflJcEcoTYnQB9CKlKx6KYbJZjX YdyN+GbMgJpiIRyCA0U3zEbVNrZdU1H8 -----END CERTIFICATE-----Generated at Sat Apr 26 19:07:26 2025 by rpki-client