$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: myvr+cxMsvicnckXoZbNdGHzxuTDs/4cgw4TY/bIlB0= Subject key identifier: B9:A2:A6:5C:EE:E6:33:D2:05:E8:77:C4:C1:3E:0B:E0:56:E8:80:02 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 96 Signing time: Sat 03 May 2025 05:43:01 +0000 Manifest this update: Sat 03 May 2025 05:43:00 +0000 Manifest next update: Sat 10 May 2025 05:43:00 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: BrZ4DGqquxqjnWxhij3dvNJHNKPhQCQmspLjm67FZGg=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 05:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: May 3 05:43:00 2025 GMT Not After : May 10 05:43:00 2025 GMT Subject: CN=6815ace5-c4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6f:06:19:06:a8:93:92:26:62:db:a2:da:10: 06:37:7b:c9:bd:b8:fb:bc:c3:a5:3f:6a:c6:cb:de: f4:1f:41:94:48:84:3b:25:3c:6e:6c:32:4c:77:9b: 16:94:8e:e2:d9:24:f5:2b:ae:e3:68:c5:f9:b3:3c: be:83:e7:35:3f:45:c2:c6:ee:35:a9:22:9b:8d:53: f3:30:85:e0:36:49:49:42:84:7e:f0:05:f7:b9:31: c9:87:be:f8:d1:7e:64:07:da:28:a7:20:b8:60:69: d8:17:22:75:8f:81:49:18:8d:58:04:28:70:b5:de: 4e:57:fd:55:c6:e1:24:00:4d:e7:e1:97:68:af:9a: f0:9a:ed:25:7c:ac:38:64:09:35:d9:b0:5c:27:3d: da:a7:77:f6:9a:c8:aa:f3:bf:55:cc:a8:da:e5:47: 66:25:33:a3:e5:37:da:8b:ba:11:d6:5f:cc:14:57: b8:0d:5e:a5:fc:e6:9d:5e:3e:08:9d:3b:78:06:d0: b4:2e:da:64:0d:1e:a0:e6:50:b6:1a:57:a0:05:8c: cf:b3:8c:5a:62:cd:cf:18:45:b2:05:b8:00:5b:89: a4:7c:d9:60:7f:f8:62:5b:8d:85:ef:58:3d:a9:9b: 31:99:bc:73:ee:a9:5d:9a:4e:ce:59:d0:a7:5f:d7: 4b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A2:A6:5C:EE:E6:33:D2:05:E8:77:C4:C1:3E:0B:E0:56:E8:80:02 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2e:ed:36:07:9c:bc:77:f7:a5:db:d9:61:59:35:00:e0:02: 01:7d:eb:6d:95:ec:f5:a5:46:6f:b1:ba:6b:ba:12:07:c5:e1: be:c0:69:79:47:57:5e:ea:c4:95:de:63:ed:09:b2:82:5b:8b: 8b:0b:45:38:c0:0b:34:ad:fe:c9:b2:35:b2:09:16:1d:2e:c7: f0:33:9f:2d:cc:c8:14:6d:56:d9:21:d2:72:05:27:64:0b:35: a7:4f:a8:00:67:18:75:e7:26:cf:f9:b3:1e:b5:6d:52:30:1d: 2e:eb:27:f6:97:eb:21:f0:9e:ba:8e:d0:8a:42:3f:a6:c9:4c: 0c:ce:ce:5b:8f:eb:e4:d1:27:c8:90:15:b0:e3:e2:f8:26:de: 9a:00:b9:82:e1:7c:0b:c2:aa:34:25:a2:57:75:a7:52:c1:f8: ff:05:82:20:0e:f0:9f:62:3f:90:15:09:2f:80:d8:80:57:c9: 0b:cb:bc:4e:15:0b:a1:64:6d:0b:2b:8f:61:d0:53:d4:89:bd: 02:81:63:ab:3d:ef:f6:02:12:24:84:c4:39:a9:ec:2c:38:97: 45:71:f5:b1:e7:81:f5:82:72:33:af:2f:11:49:1c:4d:70:44: 89:54:78:47:aa:6b:ab:6f:ff:cc:9d:c0:27:ec:28:fb:20:4f: 1b:60:30:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUwNTAzMDU0MzAwWhcNMjUwNTEwMDU0MzAwWjAYMRYwFAYD VQQDEw02ODE1YWNlNS1jNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnW8GGQaok5ImYtui2hAGN3vJvbj7vMOlP2rGy970H0GUSIQ7JTxubDJMd5sW lI7i2ST1K67jaMX5szy+g+c1P0XCxu41qSKbjVPzMIXgNklJQoR+8AX3uTHJh774 0X5kB9oopyC4YGnYFyJ1j4FJGI1YBChwtd5OV/1VxuEkAE3n4Zdor5rwmu0lfKw4 ZAk12bBcJz3ap3f2msiq879VzKja5UdmJTOj5Tfai7oR1l/MFFe4DV6l/OadXj4I nTt4BtC0LtpkDR6g5lC2GlegBYzPs4xaYs3PGEWyBbgAW4mkfNlgf/hiW42F71g9 qZsxmbxz7qldmk7OWdCnX9dLyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmiplzu 5jPSBeh3xME+C+BW6IACMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArLu02B5y8d/el29lhWTUA4AIBfettlez1pUZvsbpruhIHxeG+wGl5 R1de6sSV3mPtCbKCW4uLC0U4wAs0rf7JsjWyCRYdLsfwM58tzMgUbVbZIdJyBSdk CzWnT6gAZxh15ybP+bMetW1SMB0u6yf2l+sh8J66jtCKQj+myUwMzs5bj+vk0SfI kBWw4+L4Jt6aALmC4XwLwqo0JaJXdadSwfj/BYIgDvCfYj+QFQkvgNiAV8kLy7xO FQuhZG0LK49h0FPUib0CgWOrPe/2AhIkhMQ5qewsOJdFcfWx54H1gnIzry8RSRxN cESJVHhHqmurb//MncAn7Cj7IE8bYDBf -----END CERTIFICATE-----Generated at Sun May 4 03:14:25 2025 by rpki-client