$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: NuxiqbDC0jOnQFvLROsqaYEHO193KYIKJ9IwXPyrhJY= Subject key identifier: 8A:88:81:D4:63:14:D6:5F:34:58:E4:02:A5:0A:BA:37:7A:BA:20:D2 Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 056E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 056A Signing time: Thu 24 Apr 2025 23:08:20 +0000 Manifest this update: Thu 24 Apr 2025 23:08:20 +0000 Manifest next update: Thu 01 May 2025 23:08:20 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: FbZoBKFAfVmBlnloSaCfImmuJ+YJr/06xAyB3ZfAIYo=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: RmQ8zbwrgPfWmABubjovTPZFuV0KwF8EcH+Qm23I29E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Apr 24 23:08:20 2025 GMT Not After : May 1 23:08:20 2025 GMT Subject: CN=680ac464-8b2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5e:0b:c4:68:7a:ec:7d:82:12:5e:bb:b9:b3: c6:96:01:68:e9:2d:cc:6d:08:47:5c:48:bf:19:88: da:c9:73:f2:81:f8:5c:38:aa:fd:67:ab:3a:11:c1: 6c:7a:ba:7b:d4:ac:cb:13:39:70:8a:86:42:da:39: 4b:59:f3:dd:14:d3:75:6e:d3:f4:ec:ab:1f:3e:72: d5:2f:3f:58:d7:29:fe:d1:3c:5d:77:30:5b:c4:1a: 95:c5:24:57:10:7c:ec:a7:fc:89:84:fd:db:5b:d0: 6a:ff:52:ad:6e:03:98:d2:0f:3c:2f:71:33:88:58: 05:fc:b5:64:3b:2c:74:99:6a:83:7d:14:21:ba:fe: f1:99:b7:71:21:24:6f:41:50:97:1b:71:70:b9:27: 9a:1e:f7:96:05:52:b5:36:4d:24:a8:f9:36:d5:23: 91:47:4b:3c:95:29:22:47:48:0f:59:7e:66:2e:20: 00:56:9c:f6:d1:66:35:05:e5:13:4c:3a:e6:ad:c2: 12:f5:4d:f4:a9:40:7c:de:e3:7d:13:ad:3f:15:a1: 70:95:b0:89:62:75:8c:cf:6e:d0:80:c1:db:2b:98: 25:1d:41:96:6e:82:8d:4d:53:57:c6:a4:5c:db:ac: f4:dc:b6:2e:18:4f:51:d0:b9:6e:e5:2a:69:51:7e: 4c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:88:81:D4:63:14:D6:5F:34:58:E4:02:A5:0A:BA:37:7A:BA:20:D2 X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:85:b0:0d:d9:84:22:a1:2f:91:2f:d3:63:19:2b:fb:7c:a3: 0a:d3:7b:66:88:53:ff:62:6d:9d:89:30:fb:f1:bb:28:e5:aa: f1:bd:2c:a4:f5:0f:e5:87:b5:16:e5:1d:8d:5b:d5:c8:73:e2: 25:58:c5:6d:b2:39:f3:97:52:e1:43:d8:d8:f8:d6:76:cd:26: 87:94:ce:6c:33:95:78:e1:e8:c2:ab:5b:d4:a9:be:58:ec:2f: e2:f3:2d:05:df:b2:10:a7:ba:3f:25:2b:2f:11:7e:18:9a:41: 02:d6:77:89:8e:2e:1c:03:c5:89:ad:1c:d5:06:73:f6:0d:47: 8d:11:2e:9a:0f:43:9f:a8:fc:a8:cb:99:56:5d:77:40:af:de: 9b:8b:cf:1d:f1:52:dd:a3:17:af:ac:7a:fa:1d:20:43:1f:67: aa:a2:c4:87:75:16:f4:f3:a6:81:48:eb:a0:40:f0:7a:b1:b7: 50:f1:dd:e2:93:ad:40:82:7c:42:23:be:84:32:b5:6e:09:e2: 69:46:11:35:57:f4:8b:cb:6f:27:c4:da:c8:fd:ce:71:c6:ab: 7f:ab:d8:7f:cf:fd:e0:b1:38:90:c2:35:b6:ce:5d:61:a2:97: e8:6f:c8:55:83:8d:6f:0d:a8:c3:08:54:c6:fa:88:e6:b8:5c: 86:64:17:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUwNDI0MjMwODIwWhcNMjUwNTAxMjMwODIwWjAYMRYwFAYD VQQDEw02ODBhYzQ2NC04YjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmV4LxGh67H2CEl67ubPGlgFo6S3MbQhHXEi/GYjayXPygfhcOKr9Z6s6EcFs erp71KzLEzlwioZC2jlLWfPdFNN1btP07KsfPnLVLz9Y1yn+0TxddzBbxBqVxSRX EHzsp/yJhP3bW9Bq/1KtbgOY0g88L3EziFgF/LVkOyx0mWqDfRQhuv7xmbdxISRv QVCXG3FwuSeaHveWBVK1Nk0kqPk21SORR0s8lSkiR0gPWX5mLiAAVpz20WY1BeUT TDrmrcIS9U30qUB83uN9E60/FaFwlbCJYnWMz27QgMHbK5glHUGWboKNTVNXxqRc 26z03LYuGE9R0Llu5SppUX5MnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqIgdRj FNZfNFjkAqUKujd6uiDSMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAahbAN2YQioS+RL9NjGSv7fKMK03tmiFP/Ym2diTD78bso5arxvSyk 9Q/lh7UW5R2NW9XIc+IlWMVtsjnzl1LhQ9jY+NZ2zSaHlM5sM5V44ejCq1vUqb5Y 7C/i8y0F37IQp7o/JSsvEX4YmkEC1neJji4cA8WJrRzVBnP2DUeNES6aD0OfqPyo y5lWXXdAr96bi88d8VLdoxevrHr6HSBDH2eqosSHdRb086aBSOugQPB6sbdQ8d3i k61AgnxCI76EMrVuCeJpRhE1V/SLy28nxNrI/c5xxqt/q9h/z/3gsTiQwjW2zl1h opfob8hVg41vDajDCFTG+ojmuFyGZBc3 -----END CERTIFICATE-----Generated at Sat Apr 26 04:25:27 2025 by rpki-client