$ rpki-client -vvf rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.mft File: DlgFGyS9WtsbzJ844tPnN0to23w.mft (raw, json) Hash identifier: 2Q4/o5T3AtvFSWCX9tnphTAAIhJ/S5h93+3g/GHtCYU= Subject key identifier: 77:BA:57:07:0C:F7:CB:A9:DA:40:B9:73:96:A9:88:26:AC:7E:93:C0 Authority key identifier: 0E:58:05:1B:24:BD:5A:DB:1B:CC:9F:38:E2:D3:E7:37:4B:68:DB:7C Certificate issuer: /CN=A91847B9/serialNumber=0E58051B24BD5ADB1BCC9F38E2D3E7374B68DB7C Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlgFGyS9WtsbzJ844tPnN0to23w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.mft Manifest number: 01AB Signing time: Fri 25 Apr 2025 02:28:31 +0000 Manifest this update: Fri 25 Apr 2025 02:28:30 +0000 Manifest next update: Fri 02 May 2025 02:28:30 +0000 Files and hashes: 1: DlgFGyS9WtsbzJ844tPnN0to23w.crl (hash: +kIK0QqEm2JtgKkyh9xhM/znRZrKt2LjiJeXEM4AuM8=) 2: B08DD41EE73E11EDB9372A29C4F9AE02.roa (hash: 0gXG6s1XCg7u3bAeXFvctWsk7n6C+d/n5aBUKeABS1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.crl rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlgFGyS9WtsbzJ844tPnN0to23w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847B9, serialNumber=0E58051B24BD5ADB1BCC9F38E2D3E7374B68DB7C Validity Not Before: Apr 25 02:28:30 2025 GMT Not After : May 2 02:28:30 2025 GMT Subject: CN=680af34e-0282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4a:12:b7:39:63:bf:df:40:9f:03:32:2a:1c: 54:57:31:eb:80:34:11:19:9b:14:9b:54:ad:27:18: b5:53:b7:63:42:ae:c6:7c:1a:d5:b0:09:99:10:4c: 5c:ba:2a:fd:b3:a8:4c:bd:c4:10:7a:f4:d0:00:83: 85:2b:79:37:9d:57:94:b3:68:02:75:b6:81:48:1a: 34:5a:95:30:a1:0b:2a:7e:df:2b:55:53:0c:d6:53: 04:98:40:ab:56:a9:d6:c7:e0:a7:4a:4f:ce:6d:0c: 97:25:3b:3f:95:69:d5:13:9b:f9:ec:89:18:c2:1c: 16:8f:1e:10:a1:ef:69:0c:10:ee:67:6e:16:8d:eb: 8e:60:66:bc:95:99:b9:f8:c2:20:3c:01:fb:bf:4e: 53:12:b5:3a:9a:33:a5:72:23:5e:2f:27:1e:66:1f: 64:71:f6:39:c2:10:51:de:63:a5:42:d0:74:b0:e5: ec:c9:20:e0:87:49:b1:7d:a7:bd:5d:c6:11:43:fd: b3:c8:db:47:72:f5:66:14:ef:76:7f:b3:1c:65:a1: ed:19:8c:be:43:4a:6b:35:b5:f6:40:72:49:ba:a7: 10:28:77:c6:22:2f:73:a6:93:e1:64:cd:59:5f:21: 1f:56:bc:cb:c2:88:d0:d3:fc:d2:e5:40:da:f0:16: 36:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BA:57:07:0C:F7:CB:A9:DA:40:B9:73:96:A9:88:26:AC:7E:93:C0 X509v3 Authority Key Identifier: keyid:0E:58:05:1B:24:BD:5A:DB:1B:CC:9F:38:E2:D3:E7:37:4B:68:DB:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlgFGyS9WtsbzJ844tPnN0to23w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:47:87:11:f7:8a:67:f1:7f:50:a7:28:19:2c:c8:12:97:e4: 8a:91:5d:c9:7d:69:fb:f7:f7:6a:2c:e8:17:4b:af:a9:a3:ba: 31:18:cc:d8:0e:e0:e6:61:bd:86:6d:e0:38:e5:e0:68:0e:16: 3d:03:b7:63:3d:c0:8e:72:a9:60:8b:a0:ca:1a:83:6f:76:a3: 4e:7c:70:ff:95:d1:05:95:95:eb:d2:77:18:01:28:3a:2f:45: 3e:4e:51:3d:89:7a:a3:60:e2:79:29:d4:b4:0d:86:72:23:72: 25:45:31:3d:7a:23:e1:2a:f2:9e:de:3c:d6:04:c0:24:98:13: 82:93:05:5d:0f:a4:0a:b8:1b:95:a6:64:76:1a:b5:3a:c6:6c: af:53:49:4f:72:da:61:4d:21:05:1c:9b:68:2f:47:59:5c:46: 40:56:f2:62:85:3b:c6:96:0e:a4:d1:a8:fe:0f:91:15:08:b2: 51:f9:35:35:2d:c2:e8:af:11:c5:f4:22:20:e2:35:7b:26:91: c1:99:67:e1:b0:43:75:95:c4:c1:d4:71:5f:7e:10:af:d5:b8: a0:3b:09:71:c0:34:22:d6:09:6c:a3:9b:46:0c:5f:8e:27:e2: 59:6c:01:21:19:7e:23:7d:3f:e1:37:00:c0:5d:63:df:6d:8e: a0:91:ca:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QjkxMTAvBgNVBAUTKDBFNTgwNTFCMjRCRDVBREIxQkNDOUYzOEUyRDNFNzM3 NEI2OERCN0MwHhcNMjUwNDI1MDIyODMwWhcNMjUwNTAyMDIyODMwWjAYMRYwFAYD VQQDEw02ODBhZjM0ZS0wMjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0oStzljv99AnwMyKhxUVzHrgDQRGZsUm1StJxi1U7djQq7GfBrVsAmZEExc uir9s6hMvcQQevTQAIOFK3k3nVeUs2gCdbaBSBo0WpUwoQsqft8rVVMM1lMEmECr VqnWx+CnSk/ObQyXJTs/lWnVE5v57IkYwhwWjx4Qoe9pDBDuZ24WjeuOYGa8lZm5 +MIgPAH7v05TErU6mjOlciNeLyceZh9kcfY5whBR3mOlQtB0sOXsySDgh0mxfae9 XcYRQ/2zyNtHcvVmFO92f7McZaHtGYy+Q0prNbX2QHJJuqcQKHfGIi9zppPhZM1Z XyEfVrzLwojQ0/zS5UDa8BY2SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHe6VwcM 98up2kC5c5apiCasfpPAMB8GA1UdIwQYMBaAFA5YBRskvVrbG8yfOOLT5zdLaNt8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdCOS9GQzU1ODg4MkEx NDQxMUVEOTU3MDQzODZDNEY5QUUwMi9EbGdGR3lTOVd0c2J6Sjg0NHRQbk4wdG8y M3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsZ0ZHeVM5V3RzYnpKODQ0dFBuTjB0bzIzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdCOS9GQzU1ODg4MkExNDQxMUVEOTU3MDQzODZDNEY5QUUwMi9EbGdGR3lTOVd0 c2J6Sjg0NHRQbk4wdG8yM3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdR4cR94pn8X9QpygZLMgSl+SKkV3JfWn79/dqLOgXS6+po7oxGMzY DuDmYb2GbeA45eBoDhY9A7djPcCOcqlgi6DKGoNvdqNOfHD/ldEFlZXr0ncYASg6 L0U+TlE9iXqjYOJ5KdS0DYZyI3IlRTE9eiPhKvKe3jzWBMAkmBOCkwVdD6QKuBuV pmR2GrU6xmyvU0lPctphTSEFHJtoL0dZXEZAVvJihTvGlg6k0aj+D5EVCLJR+TU1 LcLorxHF9CIg4jV7JpHBmWfhsEN1lcTB1HFffhCv1bigOwlxwDQi1glso5tGDF+O J+JZbAEhGX4jfT/hNwDAXWPfbY6gkcpO -----END CERTIFICATE-----Generated at Sat Apr 26 17:15:51 2025 by rpki-client