$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: A904A3A0/VikHS06i85zzu74EqMy0EQmkT6oJXyvxzo= Subject key identifier: 57:BB:F6:34:8E:D1:D2:F0:1E:CF:9E:DB:1E:4E:70:18:68:5F:18:61 Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 3C Signing time: Wed 07 May 2025 06:39:23 +0000 Manifest this update: Wed 07 May 2025 06:39:23 +0000 Manifest next update: Wed 14 May 2025 06:39:23 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: o5/h5fC693d79xSnHp39A3t8v3um52/dbJmaN8zJnuM=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 23:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: May 7 06:39:23 2025 GMT Not After : May 14 06:39:23 2025 GMT Subject: CN=681b001b-5285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b5:6d:d6:86:93:8e:91:9f:7d:39:16:0e:0d: ba:d0:66:6e:2b:59:d1:f4:9b:21:6e:f3:23:67:b0: e5:05:09:54:9e:fa:8c:97:57:81:a3:cf:46:ab:d3: 98:8c:0e:99:77:3e:6a:63:93:ab:f1:8f:b6:79:9f: de:e5:ee:34:40:7e:4a:a9:ad:e8:6b:49:77:8b:07: 4b:11:53:fc:fd:fe:2b:b0:fd:45:2d:fa:2e:6e:13: b7:1e:1f:59:4d:b2:74:6a:5b:de:a8:38:ff:83:f1: 36:5c:9f:d9:81:d0:ce:05:8b:6a:97:81:95:d5:84: 33:4c:ef:a4:08:6c:64:84:f9:93:07:40:92:1e:eb: 6c:af:11:be:c7:83:21:89:27:56:93:bd:06:dd:0e: 73:b9:3d:d9:f5:93:48:a1:b0:f7:3b:58:49:e8:23: c4:59:79:56:b7:e2:6b:1f:5f:58:ec:3c:71:1e:9d: de:5a:a1:3a:05:e0:1b:d2:12:6e:c6:7b:00:fb:9c: 01:0b:ab:31:1e:19:7b:27:22:d6:5b:95:76:8d:66: cb:0a:fd:7e:82:db:5e:f9:e3:3b:1c:d9:13:d1:97: 0e:b1:89:35:82:9f:17:14:35:c6:36:11:25:ed:8e: 2f:fd:8b:a3:9c:50:f9:3e:42:20:25:1d:81:04:58: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:BB:F6:34:8E:D1:D2:F0:1E:CF:9E:DB:1E:4E:70:18:68:5F:18:61 X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:d2:45:58:88:5a:da:56:d2:c0:d2:92:64:ab:35:80:80:57: 99:77:07:df:2f:67:88:40:fb:8f:84:0b:c2:b8:41:58:b6:79: 3c:41:03:26:c4:72:78:42:22:c8:9a:33:4a:6f:ac:65:93:b1: 54:62:a1:3f:f7:73:1a:18:30:50:3b:55:ab:b2:56:dd:62:6d: 51:e6:6a:dc:ee:2b:de:3a:bb:14:26:f4:8f:e0:84:86:38:7f: bb:6a:0f:a7:30:4a:bf:1e:de:d9:83:12:b3:ad:2c:e6:48:91: a1:24:d2:9d:12:4a:dc:63:15:59:13:13:87:a9:78:12:4b:34: d6:1f:00:71:63:0c:a9:81:49:52:43:9f:68:b0:92:75:17:f6: 67:c0:9e:49:e0:54:a2:ef:42:92:76:5b:cf:09:56:32:af:13: 35:c3:62:e4:f0:39:83:9d:c7:33:65:f3:19:85:f5:63:70:c9: f8:c5:9c:16:1d:91:28:41:3c:2f:17:78:cc:f1:c0:c0:b1:23: a4:9f:58:9b:51:b8:c7:fb:e8:51:1b:ac:be:06:5a:90:34:c6: 02:2a:80:88:eb:ed:98:54:e6:72:fc:95:93:54:40:55:67:85: 28:30:2a:10:77:36:f2:5a:3e:be:21:a5:3d:86:6a:0f:19:50: 6f:b0:da:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNzYyMDI2NkI5ODkxQTIxOEMwRTVGMkVGMjg4Rjc4MkQ1 NzE3RjJCQzAeFw0yNTA1MDcwNjM5MjNaFw0yNTA1MTQwNjM5MjNaMBgxFjAUBgNV BAMTDTY4MWIwMDFiLTUyODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+tW3WhpOOkZ99ORYODbrQZm4rWdH0myFu8yNnsOUFCVSe+oyXV4Gjz0ar05iM Dpl3Pmpjk6vxj7Z5n97l7jRAfkqprehrSXeLB0sRU/z9/iuw/UUt+i5uE7ceH1lN snRqW96oOP+D8TZcn9mB0M4Fi2qXgZXVhDNM76QIbGSE+ZMHQJIe62yvEb7HgyGJ J1aTvQbdDnO5Pdn1k0ihsPc7WEnoI8RZeVa34msfX1jsPHEend5aoToF4BvSEm7G ewD7nAELqzEeGXsnItZblXaNZssK/X6C21754zsc2RPRlw6xiTWCnxcUNcY2ESXt ji/9i6OcUPk+QiAlHYEEWFjzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV7v2NI7R 0vAez57bHk5wGGhfGGEwHwYDVR0jBBgwFoAUdiAma5iRohjA5fLvKI94LVcX8rww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwL0Y5ODcxMURBRDI0 MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZGlBbWE1aVJvaGpBNWZMdktJOTRMVmNYOHJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwL0Y5ODcxMURBRDI0MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hq QTVmTHZLSTk0TFZjWDhydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIzSRViIWtpW0sDSkmSrNYCAV5l3B98vZ4hA+4+EC8K4QVi2eTxBAybE cnhCIsiaM0pvrGWTsVRioT/3cxoYMFA7VauyVt1ibVHmatzuK946uxQm9I/ghIY4 f7tqD6cwSr8e3tmDErOtLOZIkaEk0p0SStxjFVkTE4epeBJLNNYfAHFjDKmBSVJD n2iwknUX9mfAnkngVKLvQpJ2W88JVjKvEzXDYuTwOYOdxzNl8xmF9WNwyfjFnBYd kShBPC8XeMzxwMCxI6SfWJtRuMf76FEbrL4GWpA0xgIqgIjr7ZhU5nL8lZNUQFVn hSgwKhB3NvJaPr4hpT2Gag8ZUG+w2jY= -----END CERTIFICATE-----Generated at Wed May 7 17:22:57 2025 by rpki-client