$ rpki-client -vvf rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.mft File: DPzMWYD1fmvITfEbTFcZNdJdrMo.mft (raw, json) Hash identifier: tyqiW8I2FYvCaGEybQFocmYt8JOkth7QBacoS/luLEk= Subject key identifier: 8F:89:35:62:F3:A3:13:31:D3:C7:8A:BF:F6:89:1A:A3:4F:C8:B5:19 Authority key identifier: 0C:FC:CC:59:80:F5:7E:6B:C8:4D:F1:1B:4C:57:19:35:D2:5D:AC:CA Certificate issuer: /CN=A91415AA/serialNumber=0CFCCC5980F57E6BC84DF11B4C571935D25DACCA Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DPzMWYD1fmvITfEbTFcZNdJdrMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.mft Manifest number: 130B Signing time: Thu 24 Apr 2025 19:33:51 +0000 Manifest this update: Thu 24 Apr 2025 19:33:51 +0000 Manifest next update: Thu 01 May 2025 19:33:51 +0000 Files and hashes: 1: DPzMWYD1fmvITfEbTFcZNdJdrMo.crl (hash: djNa+BiIOouzASNtmerKKdvWPj5kn+/2ifSzoz3iW2M=) 2: CB04F4409BE611EF8AFF947CC4F9AE02.roa (hash: xCoGLzXH0o2fU2zmUG8/SFNRjo0IkmsetsLkqXjuT7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.crl rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DPzMWYD1fmvITfEbTFcZNdJdrMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91415AA, serialNumber=0CFCCC5980F57E6BC84DF11B4C571935D25DACCA Validity Not Before: Apr 24 19:33:51 2025 GMT Not After : May 1 19:33:51 2025 GMT Subject: CN=680a921f-8302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bd:40:4c:98:2f:ae:50:09:f2:14:aa:6e:19: 3c:60:34:f7:22:63:4d:d8:74:eb:dc:01:b2:8b:5a: 65:14:b1:7e:66:1c:1d:07:f7:34:b5:b2:c9:85:25: ba:e2:3a:ec:15:85:42:4d:d1:83:38:72:2a:54:81: 77:a0:33:bb:45:cb:ad:42:9d:ab:38:d5:d7:8d:23: 64:00:aa:2c:3a:55:e4:46:15:1c:75:b7:39:1a:1b: db:1e:8a:fb:11:09:75:ae:2e:2a:9d:98:a6:f6:2b: fa:6c:d2:ea:dd:fc:9b:c4:3a:88:7e:a0:6c:8e:71: 7b:df:aa:60:1a:c4:c6:e4:47:1f:22:98:10:7c:fc: 02:4f:6e:51:fa:ad:d3:11:f6:a6:1e:9f:47:72:e2: db:48:96:c0:ae:8e:1c:ea:45:6c:1a:a2:a5:e9:fc: 5b:45:b0:4a:a5:83:5a:6b:68:69:58:cd:4b:59:b4: a5:39:5a:5c:18:95:2f:12:ef:e2:95:05:6e:99:91: d0:68:9b:ee:18:11:88:d8:c2:3e:58:6b:e4:7e:48: dd:aa:ea:35:c0:1c:4f:b4:f4:32:84:3e:b7:af:32: c3:16:75:e4:ac:5a:4d:e7:67:b8:fd:cd:40:fa:f3: f5:91:4e:2a:59:3c:23:35:07:e6:03:e1:b5:92:9f: b0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:89:35:62:F3:A3:13:31:D3:C7:8A:BF:F6:89:1A:A3:4F:C8:B5:19 X509v3 Authority Key Identifier: keyid:0C:FC:CC:59:80:F5:7E:6B:C8:4D:F1:1B:4C:57:19:35:D2:5D:AC:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DPzMWYD1fmvITfEbTFcZNdJdrMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/DPzMWYD1fmvITfEbTFcZNdJdrMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ee:aa:86:e2:4b:72:83:a6:c2:a9:ec:f8:74:9a:82:f3:e8: 1e:e1:e9:95:85:8a:50:7a:6c:2e:50:91:a7:67:ac:bb:d6:f4: 48:b3:84:9a:18:fe:68:01:27:52:27:a6:ba:cc:e1:5b:87:e6: 10:e1:df:25:e3:46:e3:9a:b2:01:e6:fb:97:b7:da:71:fc:c0: 33:48:a2:21:8d:19:5f:4a:69:db:29:f5:fd:ab:bb:21:f1:df: 8f:13:6d:24:5d:13:98:f5:92:a8:fa:f0:7f:57:f0:c3:de:f8: 64:fb:21:96:23:b3:38:6e:04:f2:8c:d7:e1:ab:8e:fb:d8:ac: ea:b5:c2:b6:00:b4:e2:34:2a:4a:f6:91:c0:2a:0d:63:21:5a: ff:51:86:f8:ed:29:c8:bc:54:db:9b:74:49:0d:ac:03:8b:01: 2e:57:32:82:c9:bd:7f:44:c7:60:93:4b:19:c0:f1:2a:9b:d0: d9:a1:1f:e6:4b:c0:21:cb:9b:e6:a7:91:b0:fa:ba:f5:43:83: d9:fe:54:69:4e:f4:8e:58:d7:6f:b7:0a:fb:ce:17:55:08:60: 75:d2:8c:d2:cf:d0:76:4a:b9:43:84:77:33:8d:78:50:0b:6f: 4e:e6:b5:17:5f:54:2b:48:1a:44:10:fa:ca:31:79:71:d9:be: 7e:b5:1c:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTVBQTExMC8GA1UEBRMoMENGQ0NDNTk4MEY1N0U2QkM4NERGMTFCNEM1NzE5MzVE MjVEQUNDQTAeFw0yNTA0MjQxOTMzNTFaFw0yNTA1MDExOTMzNTFaMBgxFjAUBgNV BAMTDTY4MGE5MjFmLTgzMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZvUBMmC+uUAnyFKpuGTxgNPciY03YdOvcAbKLWmUUsX5mHB0H9zS1ssmFJbri OuwVhUJN0YM4cipUgXegM7tFy61Cnas41deNI2QAqiw6VeRGFRx1tzkaG9seivsR CXWuLiqdmKb2K/ps0urd/JvEOoh+oGyOcXvfqmAaxMbkRx8imBB8/AJPblH6rdMR 9qYen0dy4ttIlsCujhzqRWwaoqXp/FtFsEqlg1praGlYzUtZtKU5WlwYlS8S7+KV BW6ZkdBom+4YEYjYwj5Ya+R+SN2q6jXAHE+09DKEPrevMsMWdeSsWk3nZ7j9zUD6 8/WRTipZPCM1B+YD4bWSn7DpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj4k1YvOj EzHTx4q/9okao0/ItRkwHwYDVR0jBBgwFoAUDPzMWYD1fmvITfEbTFcZNdJdrMow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxNUFBLzNFRkEyNDE0NjJF MDExRUFBNkQ1OUEyQ0M0RjlBRTAyL0RQek1XWUQxZm12SVRmRWJURmNaTmRKZHJN by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRFB6TVdZRDFmbXZJVGZFYlRGY1pOZEpkck1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx NUFBLzNFRkEyNDE0NjJFMDExRUFBNkQ1OUEyQ0M0RjlBRTAyL0RQek1XWUQxZm12 SVRmRWJURmNaTmRKZHJNby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABruqobiS3KDpsKp7Ph0moLz6B7h6ZWFilB6bC5QkadnrLvW9EizhJoY /mgBJ1InprrM4VuH5hDh3yXjRuOasgHm+5e32nH8wDNIoiGNGV9Kadsp9f2ruyHx 348TbSRdE5j1kqj68H9X8MPe+GT7IZYjszhuBPKM1+GrjvvYrOq1wrYAtOI0Kkr2 kcAqDWMhWv9RhvjtKci8VNubdEkNrAOLAS5XMoLJvX9Ex2CTSxnA8Sqb0NmhH+ZL wCHLm+ankbD6uvVDg9n+VGlO9I5Y12+3CvvOF1UIYHXSjNLP0HZKuUOEdzONeFAL b07mtRdfVCtIGkQQ+soxeXHZvn61HE4= -----END CERTIFICATE-----Generated at Sat Apr 26 05:15:13 2025 by rpki-client