$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: HhuGaNKq2YQ3i1gDrzEAupDNmGzjeOkZZ7JXlp/8M4U= Subject key identifier: 10:0A:B2:5B:2B:80:91:9A:9B:A5:CF:88:39:E9:44:14:81:D7:81:90 Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 0589 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 0584 Signing time: Thu 12 Jun 2025 22:53:28 +0000 Manifest this update: Thu 12 Jun 2025 22:53:27 +0000 Manifest next update: Thu 19 Jun 2025 22:53:27 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: BQDtDnMXvftpzZ9pcagJ178a0dgzNd+sl8xuXts71Ag=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: pYihusS4UyoIsK9PCzKPk27dDaihl6ZYHFqiCUhf6Dc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Jun 12 22:53:27 2025 GMT Not After : Jun 19 22:53:27 2025 GMT Subject: CN=684b5a68-0c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:c7:af:d2:5a:a3:31:69:3b:cd:58:2f:94: 5b:80:70:3e:b1:d4:77:b1:b6:eb:23:2f:a5:27:db: 07:1f:12:3d:04:3b:0b:82:56:6f:1e:9f:cf:e0:23: 65:5a:de:49:c6:27:4f:2d:6a:f6:a9:1e:04:b8:77: d8:0b:47:bc:81:62:0d:a2:23:00:11:bb:6e:02:2e: e6:9c:c3:f0:92:d8:2c:fe:2a:14:2b:ab:4a:2e:7e: 20:f2:91:3c:ab:de:ec:d7:ac:94:68:3e:0f:13:2f: 45:b5:7c:b9:a5:68:5d:89:5e:8a:15:ed:c4:b5:eb: cc:b9:16:a0:93:6a:83:72:69:29:ab:c0:50:10:21: 46:75:e7:96:0d:82:b2:5c:45:7d:45:1b:9c:cd:d6: 94:ea:14:23:31:fa:15:4e:82:7a:1e:b0:d4:f2:c6: e7:20:9d:e0:6d:ff:ea:b8:9d:db:44:c9:1d:b9:e3: a2:63:a1:24:5b:78:a7:6d:d1:bc:9d:bc:1b:5a:77: fb:99:5f:1f:82:1e:45:2a:fb:4f:18:53:cb:b1:b4: eb:7d:30:9f:38:d6:9d:26:22:d3:ec:2f:85:b3:d4: e4:fe:43:e4:3e:d2:ba:9e:31:42:e6:11:6d:26:a7: 1b:fd:0e:dd:17:cd:8d:0e:b1:b8:51:9f:48:f1:5d: 24:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:0A:B2:5B:2B:80:91:9A:9B:A5:CF:88:39:E9:44:14:81:D7:81:90 X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b1:02:78:39:f5:80:a9:28:eb:66:60:5e:23:8d:48:53:2e: 79:61:1b:99:9a:e2:b6:95:76:4b:1f:32:9d:fc:10:64:ec:23: 85:b7:5b:91:ea:1b:b0:97:dd:9d:11:d9:fc:25:c9:c7:de:bb: a0:9d:de:10:57:96:9f:b5:bd:69:6e:df:51:2e:d4:a3:16:19: 78:78:4a:17:29:25:6a:9e:fd:1b:1b:e5:fd:f9:57:ee:5f:be: 80:c0:7c:2d:52:ee:7d:1f:eb:9e:96:c0:03:77:06:62:31:06: 79:8f:dd:f9:77:55:34:6c:b5:31:f7:9d:5a:3d:30:15:be:70: d4:9c:7c:7d:50:f9:6f:05:6f:8e:9b:19:df:10:86:cd:ba:77: 09:2f:e3:e8:6b:c7:1c:05:d7:bb:22:60:b1:b3:fe:5c:49:67: d5:8d:00:64:8b:75:84:5a:78:05:db:55:8a:97:56:f7:f4:fd: 2d:23:fc:71:58:1a:21:2c:e8:aa:ed:69:ff:2f:69:e5:5f:57: 75:68:8f:e7:6e:8f:2f:49:bf:50:0b:69:63:d7:90:c4:c1:be: e8:a0:bd:d2:98:af:a7:be:90:8b:0e:73:10:9e:30:26:c8:6c: c1:92:63:85:5f:18:2d:e5:fc:76:90:c5:2a:0f:a4:6a:30:63: cf:b3:d1:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUwNjEyMjI1MzI3WhcNMjUwNjE5MjI1MzI3WjAYMRYwFAYD VQQDEw02ODRiNWE2OC0wYzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveLHr9JaozFpO81YL5RbgHA+sdR3sbbrIy+lJ9sHHxI9BDsLglZvHp/P4CNl Wt5JxidPLWr2qR4EuHfYC0e8gWINoiMAEbtuAi7mnMPwktgs/ioUK6tKLn4g8pE8 q97s16yUaD4PEy9FtXy5pWhdiV6KFe3EtevMuRagk2qDcmkpq8BQECFGdeeWDYKy XEV9RRuczdaU6hQjMfoVToJ6HrDU8sbnIJ3gbf/quJ3bRMkdueOiY6EkW3inbdG8 nbwbWnf7mV8fgh5FKvtPGFPLsbTrfTCfONadJiLT7C+Fs9Tk/kPkPtK6njFC5hFt Jqcb/Q7dF82NDrG4UZ9I8V0kswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAKslsr gJGam6XPiDnpRBSB14GQMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYsQJ4OfWAqSjrZmBeI41IUy55YRuZmuK2lXZLHzKd/BBk7COFt1uR 6huwl92dEdn8JcnH3rugnd4QV5aftb1pbt9RLtSjFhl4eEoXKSVqnv0bG+X9+Vfu X76AwHwtUu59H+uelsADdwZiMQZ5j935d1U0bLUx951aPTAVvnDUnHx9UPlvBW+O mxnfEIbNuncJL+Poa8ccBde7ImCxs/5cSWfVjQBki3WEWngF21WKl1b39P0tI/xx WBohLOiq7Wn/L2nlX1d1aI/nbo8vSb9QC2lj15DEwb7ooL3SmK+nvpCLDnMQnjAm yGzBkmOFXxgt5fx2kMUqD6RqMGPPs9Gq -----END CERTIFICATE-----Generated at Sat Jun 14 19:04:18 2025 by rpki-client