$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: AXnS+4Vt9YjdQzJejp+zN40ESGPhHK/bisnSBe2C54Y= Subject key identifier: 7C:9B:19:1E:82:21:B0:C6:B2:87:D0:C0:34:98:21:0A:4D:A5:3E:58 Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 4E Signing time: Fri 25 Apr 2025 06:18:58 +0000 Manifest this update: Fri 25 Apr 2025 06:18:58 +0000 Manifest next update: Fri 02 May 2025 06:18:57 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: AdiKf3ROHxf0WbhT0aJkER1y3az7bgXRWZWTJH4wpHQ=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Apr 25 06:18:58 2025 GMT Not After : May 2 06:18:57 2025 GMT Subject: CN=680b2952-f25e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bc:0d:91:4d:27:70:08:0e:5e:92:75:1e:ad: 18:14:ff:57:e1:c7:8d:ba:d5:56:a5:35:64:0a:ea: a8:8b:0f:9a:4e:83:43:04:4f:3e:8f:61:cb:ca:14: c5:3d:8c:1f:1f:fa:51:9d:39:88:10:91:db:e9:5b: 57:0b:1a:d0:16:81:6a:9f:a4:01:e3:dd:2c:2c:08: c6:0d:c1:74:5f:aa:5a:a2:50:87:33:77:79:10:0b: 24:29:59:e1:c2:37:28:4e:ad:ad:9c:64:41:33:7a: 40:f3:c8:6a:90:70:a6:88:55:90:e8:d0:4e:ed:de: ff:5b:92:39:8a:da:ee:a3:7e:34:54:98:fd:e2:21: b0:43:6b:9e:85:9f:9b:2a:45:2d:38:ba:38:99:16: 4d:96:5c:2b:b0:77:86:7e:4d:a6:1c:57:aa:e9:66: f5:b9:e3:70:b5:74:90:70:49:db:2e:5b:66:60:33: ad:f0:2c:e6:74:ea:34:34:9e:b8:0c:2e:68:f2:74: cb:6e:ab:16:6e:06:08:f5:8c:0d:ad:a7:51:37:b2: 57:de:dd:35:70:0c:04:e5:e2:53:82:e8:29:4f:fb: a1:9f:46:cb:9d:92:a4:49:b8:b8:82:10:7d:fd:06: 6d:f3:61:3b:33:05:62:4e:bf:8a:7d:96:fe:f2:6a: c8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9B:19:1E:82:21:B0:C6:B2:87:D0:C0:34:98:21:0A:4D:A5:3E:58 X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:44:10:12:7e:d2:55:c0:13:d4:ed:20:7a:51:9c:69:12:44: 82:18:2c:b2:6f:86:e7:05:85:33:cc:04:cf:04:60:46:7b:a7: f8:7f:d4:e6:e1:82:a7:bd:fe:99:fc:bf:36:d0:4c:f7:55:4a: 97:52:e4:1c:f6:41:3e:f6:71:6a:aa:36:17:30:3f:5c:1a:3b: 43:99:c4:01:a6:bf:09:20:b8:65:c7:a6:c7:d6:3a:df:ea:de: d1:ae:d8:84:87:68:66:d6:48:66:38:19:51:a3:0b:e5:b3:be: 0d:71:9a:f6:4d:f1:bf:22:54:46:72:d0:df:32:e1:45:f2:c8: ca:82:8e:c7:3e:76:c4:44:58:4c:17:b4:46:c9:1f:32:88:58: 18:e8:d7:be:20:78:03:d7:43:38:59:85:be:f1:16:63:e2:4f: bc:05:59:c0:31:31:12:c1:0b:0a:bc:82:3b:a5:10:13:4b:6e: de:e7:b8:ec:3b:b6:91:23:69:86:0c:fb:06:d5:69:8c:58:b8: ab:e5:b3:2e:b9:9a:16:4d:85:4f:51:25:42:8f:eb:76:71:22: 96:ec:65:d7:43:09:19:cd:6a:d4:5f:40:98:0c:3d:1d:24:70: 2f:4f:80:63:db:70:a0:88:dc:db:67:e2:10:e5:66:01:46:83: e6:91:c5:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMEZENDQzNzUyMURCNUMwQkM5OUU0NUI1OTc1NEZGN0I2 NzFGODZGMzAeFw0yNTA0MjUwNjE4NThaFw0yNTA1MDIwNjE4NTdaMBgxFjAUBgNV BAMTDTY4MGIyOTUyLWYyNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQvA2RTSdwCA5eknUerRgU/1fhx4261ValNWQK6qiLD5pOg0METz6PYcvKFMU9 jB8f+lGdOYgQkdvpW1cLGtAWgWqfpAHj3SwsCMYNwXRfqlqiUIczd3kQCyQpWeHC NyhOra2cZEEzekDzyGqQcKaIVZDo0E7t3v9bkjmK2u6jfjRUmP3iIbBDa56Fn5sq RS04ujiZFk2WXCuwd4Z+TaYcV6rpZvW543C1dJBwSdsuW2ZgM63wLOZ06jQ0nrgM LmjydMtuqxZuBgj1jA2tp1E3slfe3TVwDATl4lOC6ClP+6GfRsudkqRJuLiCEH39 Bm3zYTszBWJOv4p9lv7yasjdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfJsZHoIh sMayh9DANJghCk2lPlgwHwYDVR0jBBgwFoAUD9RDdSHbXAvJnkW1l1T/e2cfhvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0U5NjQ4OUFFQUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDlSRGRTSGJYQXZKbmtXMWwxVF9lMmNmaHZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0U5NjQ4OUFFQUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2 Sm5rVzFsMVRfZTJjZmh2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHpEEBJ+0lXAE9TtIHpRnGkSRIIYLLJvhucFhTPMBM8EYEZ7p/h/1Obh gqe9/pn8vzbQTPdVSpdS5Bz2QT72cWqqNhcwP1waO0OZxAGmvwkguGXHpsfWOt/q 3tGu2ISHaGbWSGY4GVGjC+Wzvg1xmvZN8b8iVEZy0N8y4UXyyMqCjsc+dsREWEwX tEbJHzKIWBjo174geAPXQzhZhb7xFmPiT7wFWcAxMRLBCwq8gjulEBNLbt7nuOw7 tpEjaYYM+wbVaYxYuKvlsy65mhZNhU9RJUKP63ZxIpbsZddDCRnNatRfQJgMPR0k cC9PgGPbcKCI3Ntn4hDlZgFGg+aRxec= -----END CERTIFICATE-----Generated at Sat Apr 26 15:11:22 2025 by rpki-client