$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: dtnGT03+oV9qkZjPfxjzq1Kvu8S6k1hyl4Zjz51CiP0= Subject key identifier: 7D:5A:D9:D6:02:85:01:97:FF:84:32:FF:5B:E8:B3:EF:5A:28:6E:C1 Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0E6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0E63 Signing time: Thu 24 Apr 2025 17:42:01 +0000 Manifest this update: Thu 24 Apr 2025 17:42:01 +0000 Manifest next update: Thu 01 May 2025 17:42:01 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: UHrecpcEqacoUWrrdIhHIULrrV3awJgBM2o1b9try00=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: 0msFIFHq8Bi6Dy0orrBJDRYbRJioucs5FAZf2jEryJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3691 (0xe6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Apr 24 17:42:01 2025 GMT Not After : May 1 17:42:01 2025 GMT Subject: CN=680a77e9-f45e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:47:11:6c:f3:fb:d3:39:49:d4:19:27:de: ce:74:9c:3c:b0:07:3e:76:c1:c5:bf:84:4a:1a:e4: 42:60:46:be:e4:ba:ba:9b:38:06:dd:ec:9b:88:fb: b8:9d:43:b5:c0:e7:06:10:88:83:4f:cc:3e:19:fe: 71:20:b6:fa:05:4a:a4:e5:c0:9c:e7:05:31:67:96: 25:62:3b:9a:5e:81:22:4b:69:da:60:2a:dd:80:91: bf:f0:55:f0:7f:6b:71:a7:df:74:00:5b:ae:15:50: ae:2c:00:c0:dd:12:36:6a:3e:2e:c3:d0:4a:3c:4d: 32:4a:73:94:9f:94:1c:66:8e:32:69:64:51:6a:55: 4d:bc:cf:1d:32:47:7a:16:8d:7d:00:99:a9:8b:e3: 6a:98:11:fb:ea:92:b9:30:eb:c8:18:d6:8a:de:f0: 0b:fe:ef:43:06:8c:0f:32:9b:84:23:4f:60:d7:0a: e6:39:69:18:c4:6c:0b:31:52:3b:2d:e1:6f:eb:b9: b6:4e:2c:c4:92:55:96:d3:ec:1d:95:7a:8a:19:3b: 48:be:db:63:0e:a0:4b:ed:7e:eb:75:29:26:16:8e: 80:4f:c4:bc:87:4e:6c:15:fd:b5:bc:2f:7d:c2:cd: a9:33:fc:ce:dc:40:f5:67:b2:d5:db:76:ec:5e:fb: ca:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:5A:D9:D6:02:85:01:97:FF:84:32:FF:5B:E8:B3:EF:5A:28:6E:C1 X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:10:50:ce:9d:18:9c:01:83:4e:15:65:a3:f6:0c:de:ea:06: 58:18:58:78:48:be:b8:4f:69:ad:cd:64:b7:be:8d:01:6c:cf: 9f:6d:67:cf:11:60:21:0c:a4:b6:1c:c7:13:35:14:1f:2d:46: de:4b:bd:39:a0:f5:ed:68:e5:d8:67:51:92:e3:2b:c8:00:a2: d6:ea:62:fd:d7:46:75:77:7a:d5:7e:09:2c:d3:8f:57:67:9d: 15:3a:84:81:b4:07:62:50:72:16:20:48:c1:4e:b9:93:7d:37: 80:b2:e0:ab:bf:24:d5:33:73:eb:42:ee:a5:c1:60:56:d9:42: 26:1e:c3:09:dd:c2:5d:60:8e:d0:c2:01:4f:e5:25:f0:45:60: bd:2e:69:35:34:8b:e0:2a:0e:c6:93:1e:35:9b:7c:75:ba:25: 14:1b:15:b5:97:c3:7a:e5:23:d6:2f:34:73:61:ed:fc:91:53: 62:96:2a:df:4f:06:e2:50:6e:ff:6e:a7:19:dc:99:59:94:f2: 70:6e:05:f3:40:1f:08:a6:13:4a:b9:20:c7:0c:cb:2f:f8:22: 2e:4f:63:73:73:8a:23:06:63:92:2b:63:3b:15:b4:aa:3e:36: 2f:18:36:57:2f:6c:30:43:8b:41:f4:36:31:17:3b:dc:70:96: 25:70:f5:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjUwNDI0MTc0MjAxWhcNMjUwNTAxMTc0MjAxWjAYMRYwFAYD VQQDEw02ODBhNzdlOS1mNDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApllHEWzz+9M5SdQZJ97OdJw8sAc+dsHFv4RKGuRCYEa+5Lq6mzgG3eybiPu4 nUO1wOcGEIiDT8w+Gf5xILb6BUqk5cCc5wUxZ5YlYjuaXoEiS2naYCrdgJG/8FXw f2txp990AFuuFVCuLADA3RI2aj4uw9BKPE0ySnOUn5QcZo4yaWRRalVNvM8dMkd6 Fo19AJmpi+NqmBH76pK5MOvIGNaK3vAL/u9DBowPMpuEI09g1wrmOWkYxGwLMVI7 LeFv67m2TizEklWW0+wdlXqKGTtIvttjDqBL7X7rdSkmFo6AT8S8h05sFf21vC99 ws2pM/zO3ED1Z7LV23bsXvvKnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1a2dYC hQGX/4Qy/1vos+9aKG7BMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbEFDOnRicAYNOFWWj9gze6gZYGFh4SL64T2mtzWS3vo0BbM+fbWfP EWAhDKS2HMcTNRQfLUbeS705oPXtaOXYZ1GS4yvIAKLW6mL910Z1d3rVfgks049X Z50VOoSBtAdiUHIWIEjBTrmTfTeAsuCrvyTVM3PrQu6lwWBW2UImHsMJ3cJdYI7Q wgFP5SXwRWC9Lmk1NIvgKg7Gkx41m3x1uiUUGxW1l8N65SPWLzRzYe38kVNilirf TwbiUG7/bqcZ3JlZlPJwbgXzQB8IphNKuSDHDMsv+CIuT2Nzc4ojBmOSK2M7FbSq PjYvGDZXL2wwQ4tB9DYxFzvccJYlcPWr -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:18 2025 by rpki-client