$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: N+Az9c0BDTiXJL83Kt1hvCW8j9nu3SY0hC6kx+5Pjbc= Subject key identifier: 9F:2B:A8:96:66:08:D2:FB:8F:BC:84:87:D3:A2:81:7A:A2:13:91:08 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 81 Signing time: Sat 03 May 2025 05:58:00 +0000 Manifest this update: Sat 03 May 2025 05:57:59 +0000 Manifest next update: Sat 10 May 2025 05:57:59 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: N2aMuz3oSTda88Mm14CKtfFiWfTA/I+6kQXLCWerSFk=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: May 3 05:57:59 2025 GMT Not After : May 10 05:57:59 2025 GMT Subject: CN=6815b068-73b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:99:14:6d:69:94:30:d1:17:cf:2d:d0:4c:67: 44:c0:46:62:d5:b7:a1:20:6d:ce:fe:9a:bf:d4:ea: b1:eb:1e:95:3e:3b:e9:e5:ca:82:22:5d:b9:e5:29: 9b:eb:9d:e7:73:82:82:a9:99:2c:fd:a4:54:78:24: a1:0a:d2:99:26:14:38:d8:91:20:1f:98:6c:bf:91: b3:fd:00:62:3d:f9:a8:67:c4:d6:57:a1:d6:0a:af: e7:52:1b:39:f7:80:eb:72:d0:7f:eb:4d:62:28:15: a6:f2:54:94:b3:0f:79:cc:4e:ae:09:a9:a2:74:18: 7e:b7:c1:54:41:73:49:98:8d:a5:06:ae:7a:ab:ca: 79:c2:b4:9b:aa:79:3f:9f:c1:5e:09:00:10:71:b6: 31:43:d1:df:83:c0:8d:c7:cd:52:14:c5:55:bf:16: ba:89:a6:d2:78:16:13:01:10:e7:f8:53:28:de:4d: 28:63:5f:b3:79:62:a4:44:48:6f:19:d9:e6:19:50: 32:88:6e:3b:22:c9:96:90:01:43:d9:0d:8f:bd:8a: 9f:01:a3:a1:16:22:b4:6c:da:90:97:9b:83:0e:ae: 30:4f:4e:7c:df:c4:e3:a1:76:ef:13:42:6a:e2:13: 9a:e5:fe:f0:ad:ca:8d:f4:4d:fc:27:b0:11:27:5e: e0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2B:A8:96:66:08:D2:FB:8F:BC:84:87:D3:A2:81:7A:A2:13:91:08 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:da:cb:b9:c5:d9:b7:0b:0a:91:3d:7d:89:ad:c4:f4:d3:60: ea:bc:a2:31:83:3d:2c:05:d7:78:31:bb:41:8f:ea:0b:6b:fb: 38:97:40:97:3a:fc:6a:14:a4:c3:07:0e:bc:7c:40:53:dc:d2: 9b:fa:c5:b4:6e:53:4f:aa:78:81:74:1a:ec:22:51:80:dc:65: 53:72:53:0a:8c:b7:99:0b:83:77:6a:b5:63:fe:82:59:6b:63: ff:da:e2:22:3f:b3:8b:19:a5:bb:64:cd:c3:21:6e:9a:31:82: 1c:ee:60:20:02:93:2e:42:c7:80:7f:d2:75:9f:ab:15:b0:16: 7e:68:f0:77:89:8f:6c:f8:53:ed:c9:3c:ee:9a:ce:e7:7a:0a: a7:43:cc:11:43:68:ca:90:7b:02:b2:56:87:8f:65:55:e5:f3: 42:e4:db:58:2d:65:22:15:a4:30:dc:18:34:9a:d9:e2:c6:9b: 34:85:be:c2:69:95:c1:bc:b4:a6:5a:c8:61:f1:c6:a6:5f:cd: 0c:b6:4d:2c:96:c4:5f:0a:b8:dd:f8:59:97:b8:0e:77:f5:05: 17:1a:b0:1d:ed:c0:8b:d3:d0:69:97:c2:c0:55:4a:e1:19:84: 57:34:03:5f:94:7c:85:ff:fd:28:2d:d2:75:37:8a:9d:f5:04: 1f:29:4d:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUwNTAzMDU1NzU5WhcNMjUwNTEwMDU1NzU5WjAYMRYwFAYD VQQDEw02ODE1YjA2OC03M2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJkUbWmUMNEXzy3QTGdEwEZi1behIG3O/pq/1Oqx6x6VPjvp5cqCIl255Smb 653nc4KCqZks/aRUeCShCtKZJhQ42JEgH5hsv5Gz/QBiPfmoZ8TWV6HWCq/nUhs5 94DrctB/601iKBWm8lSUsw95zE6uCamidBh+t8FUQXNJmI2lBq56q8p5wrSbqnk/ n8FeCQAQcbYxQ9Hfg8CNx81SFMVVvxa6iabSeBYTARDn+FMo3k0oY1+zeWKkREhv GdnmGVAyiG47IsmWkAFD2Q2PvYqfAaOhFiK0bNqQl5uDDq4wT05838TjoXbvE0Jq 4hOa5f7wrcqN9E38J7ARJ17gxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8rqJZm CNL7j7yEh9OigXqiE5EIMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn2su5xdm3CwqRPX2JrcT002DqvKIxgz0sBdd4MbtBj+oLa/s4l0CX OvxqFKTDBw68fEBT3NKb+sW0blNPqniBdBrsIlGA3GVTclMKjLeZC4N3arVj/oJZ a2P/2uIiP7OLGaW7ZM3DIW6aMYIc7mAgApMuQseAf9J1n6sVsBZ+aPB3iY9s+FPt yTzums7negqnQ8wRQ2jKkHsCslaHj2VV5fNC5NtYLWUiFaQw3Bg0mtnixps0hb7C aZXBvLSmWshh8camX80Mtk0slsRfCrjd+FmXuA539QUXGrAd7cCL09Bpl8LAVUrh GYRXNANflHyF//0oLdJ1N4qd9QQfKU2L -----END CERTIFICATE-----Generated at Sat May 3 15:51:28 2025 by rpki-client