$ rpki-client -vvf rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft File: DWTFbg5hGlzB01iGdsV03iLVdQE.mft (raw, json) Hash identifier: YXMqVDUkl7iVZfWCN989Eu3hwyAsWjhtwMlThY90w8U= Subject key identifier: A4:AF:F0:55:23:2A:E0:A3:36:D4:25:78:7B:DA:01:AF:46:F2:77:31 Authority key identifier: 0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 Certificate issuer: /CN=A9128D30/serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft Manifest number: FE Signing time: Fri 25 Apr 2025 04:13:36 +0000 Manifest this update: Fri 25 Apr 2025 04:13:36 +0000 Manifest next update: Fri 02 May 2025 04:13:36 +0000 Files and hashes: 1: DWTFbg5hGlzB01iGdsV03iLVdQE.crl (hash: dSuUpcryC46zita6SFSDdZ9XabnCstFbtrDGRvZix6E=) 2: 7D28601A9FD211EEAC56900AC4F9AE02.roa (hash: zd1TDezrr156c4EY6JDMzWwdgb+33lD768j6PJBUhL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128D30, serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Validity Not Before: Apr 25 04:13:36 2025 GMT Not After : May 2 04:13:36 2025 GMT Subject: CN=680b0bf0-b0a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3a:9f:a7:24:2e:45:93:b0:33:2c:b4:d6:84: 70:b3:4c:89:16:a4:fd:b1:f2:e8:a2:bf:9a:c2:72: 52:4c:ef:9d:d4:3d:4d:6b:a5:57:5c:df:51:e0:a9: 06:38:65:5c:b5:22:bc:e6:da:6a:f3:bb:f4:ce:0a: 36:c0:01:e1:1c:0f:ce:40:60:d5:ff:bf:27:1b:49: 49:e3:5b:d5:bf:37:7d:02:53:26:8c:0e:97:ee:97: 49:60:59:f8:d6:92:43:65:63:a3:d9:8e:79:1b:c8: ee:af:a5:78:e4:91:b7:f3:d7:cf:23:35:34:c8:17: e7:a2:f2:48:82:66:e8:1a:af:9d:87:6f:fd:f5:ff: 53:16:cd:2a:0e:25:78:11:7b:cb:65:1b:32:18:bf: 04:1b:89:ab:5b:0b:b7:9d:25:92:ba:71:88:a0:e7: a6:27:74:d7:bf:ff:96:b9:b5:c6:7f:33:79:d7:f9: d1:46:9c:f6:6d:4f:32:a7:a4:56:7b:c0:ad:5e:af: 3a:3c:0d:39:f2:e2:5d:3e:28:58:86:9d:90:2d:3e: 01:d8:05:63:1d:a7:fc:f2:88:2b:a2:e5:16:34:63: 27:22:3a:f6:9f:4d:ef:fc:86:80:cd:bd:5f:e3:3d: a2:c5:1d:e2:a5:f5:df:0a:29:65:d6:9b:a5:f7:0c: 36:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AF:F0:55:23:2A:E0:A3:36:D4:25:78:7B:DA:01:AF:46:F2:77:31 X509v3 Authority Key Identifier: keyid:0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:79:a5:5a:00:aa:82:5a:fc:64:db:d2:d7:49:0c:d7:17:74: 13:ab:06:7e:ce:d0:5c:8e:c1:74:91:e6:2c:73:a4:07:88:a1: b2:42:02:f5:00:cb:36:bb:be:8e:9e:82:ae:39:6e:5c:23:a3: 54:3c:91:95:61:92:af:d5:98:ff:17:6a:5d:af:25:d1:2d:b6: 7d:99:c9:31:15:4c:50:a1:9e:0d:5d:46:6e:d7:42:21:6d:c0: 5d:5b:69:69:0c:a4:2b:a9:01:74:ea:a3:f2:8f:5b:9a:4b:df: 03:e3:75:35:ee:53:0e:38:c3:f6:4f:d5:5c:1c:b8:30:05:75: 46:07:9b:80:fc:5d:a2:38:3f:58:89:ea:11:c7:19:b6:60:93: 5a:0c:52:3e:c6:5b:17:4b:12:20:b5:cb:41:cd:68:27:10:83: e8:05:00:8c:7e:ac:46:2b:61:f0:f9:18:36:03:a7:cb:c0:3d: 15:27:d5:91:be:39:e9:a6:c5:e4:90:cd:3f:ba:19:1f:da:09: 09:a9:d6:28:d8:29:c3:29:13:65:b2:dd:75:5f:ce:66:94:72: ba:75:94:9b:d4:f9:f0:34:8a:71:b3:3b:bc:af:8d:f5:8c:db: 88:60:a5:ae:9f:db:a8:ab:9e:86:b6:7a:f5:e9:8f:96:ed:f2: 53:3e:95:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhEMzAxMTAvBgNVBAUTKDBENjRDNTZFMEU2MTFBNUNDMUQzNTg4Njc2QzU3NERF MjJENTc1MDEwHhcNMjUwNDI1MDQxMzM2WhcNMjUwNTAyMDQxMzM2WjAYMRYwFAYD VQQDEw02ODBiMGJmMC1iMGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTqfpyQuRZOwMyy01oRws0yJFqT9sfLoor+awnJSTO+d1D1Na6VXXN9R4KkG OGVctSK85tpq87v0zgo2wAHhHA/OQGDV/78nG0lJ41vVvzd9AlMmjA6X7pdJYFn4 1pJDZWOj2Y55G8jur6V45JG389fPIzU0yBfnovJIgmboGq+dh2/99f9TFs0qDiV4 EXvLZRsyGL8EG4mrWwu3nSWSunGIoOemJ3TXv/+WubXGfzN51/nRRpz2bU8yp6RW e8CtXq86PA058uJdPihYhp2QLT4B2AVjHaf88ogrouUWNGMnIjr2n03v/IaAzb1f 4z2ixR3ipfXfCill1pul9ww2jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSv8FUj KuCjNtQleHvaAa9G8ncxMB8GA1UdIwQYMBaAFA1kxW4OYRpcwdNYhnbFdN4i1XUB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEQzMC9DRDgwQUFFNjlG RDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEdsekIwMWlHZHNWMDNpTFZk UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXVEZiZzVoR2x6QjAxaUdkc1YwM2lMVmRRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEQzMC9DRDgwQUFFNjlGRDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEds ekIwMWlHZHNWMDNpTFZkUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCseaVaAKqCWvxk29LXSQzXF3QTqwZ+ztBcjsF0keYsc6QHiKGyQgL1 AMs2u76OnoKuOW5cI6NUPJGVYZKv1Zj/F2pdryXRLbZ9mckxFUxQoZ4NXUZu10Ih bcBdW2lpDKQrqQF06qPyj1uaS98D43U17lMOOMP2T9VcHLgwBXVGB5uA/F2iOD9Y ieoRxxm2YJNaDFI+xlsXSxIgtctBzWgnEIPoBQCMfqxGK2Hw+Rg2A6fLwD0VJ9WR vjnppsXkkM0/uhkf2gkJqdYo2CnDKRNlst11X85mlHK6dZSb1PnwNIpxszu8r431 jNuIYKWun9uoq56Gtnr16Y+W7fJTPpWl -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:39 2025 by rpki-client