$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: rartnbGJsNqiYHWhmz2qHpU+XippnIQNcmB1bUgzYrs= Subject key identifier: 7F:4F:85:6B:B9:98:F6:9F:BB:1B:8C:7B:81:80:D6:9B:49:61:96:11 Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0DE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0E13 Signing time: Thu 24 Apr 2025 17:51:24 +0000 Manifest this update: Thu 24 Apr 2025 17:51:23 +0000 Manifest next update: Thu 01 May 2025 17:51:23 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: Bh8bcx8+9+Z6UMafQPdPoppHjrM56kok+RcKP4u7+NE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3555 (0xde3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Apr 24 17:51:23 2025 GMT Not After : May 1 17:51:23 2025 GMT Subject: CN=680a7a1c-56aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:cc:4f:ed:ac:22:53:81:34:ad:12:cf:6c:82: 65:e4:91:c9:45:a7:c1:23:e3:91:1f:e0:dd:48:46: b0:71:73:ac:78:89:7a:f1:0d:6c:7e:17:d9:4a:84: ba:58:89:b7:62:62:b1:46:e1:b7:79:d5:04:69:2f: e3:61:da:0e:10:43:ff:cb:46:dc:17:14:83:bf:29: 73:57:1d:11:67:57:ef:fe:cc:48:bf:a5:e1:c4:f9: 26:ae:51:49:c8:18:e7:d7:a2:09:83:c1:d2:26:f7: 00:40:4a:f4:66:3e:e1:b3:85:26:76:9d:b6:0a:63: 11:df:56:6f:e3:e5:ab:e9:d5:c3:57:a4:87:8d:f9: 04:9a:4c:d5:71:e9:84:ae:e3:aa:81:d9:27:df:56: e1:f4:87:9c:55:03:60:e0:1b:7a:e8:4b:dc:d2:01: 4c:dd:0a:9f:b6:0e:23:ff:c1:c4:94:66:09:6a:ea: 9d:eb:a4:1c:94:9d:83:4b:60:38:d7:4f:db:7c:ed: ce:c3:c3:97:28:3d:dd:c1:c4:d1:db:16:b7:c1:65: d1:a0:9b:00:2b:11:55:59:5b:50:91:c1:73:06:da: df:00:db:6f:d0:cc:5b:a5:94:f8:3a:79:e0:4f:6a: 79:92:a7:7b:d9:e2:ed:fe:bd:69:45:57:e7:fe:e9: 99:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:4F:85:6B:B9:98:F6:9F:BB:1B:8C:7B:81:80:D6:9B:49:61:96:11 X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:06:04:0d:45:a3:b7:21:ef:79:d0:58:65:19:32:05:a6:2a: ae:cf:fd:09:df:71:f4:38:af:b6:b0:ac:56:90:c0:04:88:e7: 13:5c:76:c6:ec:3e:c3:76:36:9a:21:f5:4c:72:df:6f:56:81: 23:c2:71:03:5c:32:ef:b3:ee:f9:b8:5b:31:f9:0d:82:07:63: 2a:b0:76:8b:37:99:16:e9:20:59:c0:8e:b5:fc:e4:92:e3:36: 98:e5:ef:68:85:e0:e8:7e:29:41:2c:0b:05:69:57:cf:cd:21: f5:78:c1:d1:db:9b:e5:5d:6f:8e:a5:66:87:31:e0:24:a2:f6: 5c:5e:76:36:02:8a:bb:e1:19:9e:18:8b:fd:21:14:38:33:90: 11:45:83:cf:2a:88:51:97:aa:bb:23:46:31:31:f4:34:05:34: 99:6b:1d:b7:24:3f:86:ad:45:2a:ea:2a:fb:ce:13:03:5b:a9: 03:24:fb:55:90:23:1b:43:bc:7c:4d:dd:a2:40:71:8b:21:55: 7e:a1:81:06:cc:ce:3c:04:9d:5f:0f:80:ab:21:38:bc:40:00: 36:60:d8:02:fe:03:e8:7e:d8:8d:ed:82:0a:88:43:cf:66:16: 3e:02:49:77:32:89:00:5e:b5:5e:35:79:72:ea:37:ee:b1:43: d8:da:dc:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjUwNDI0MTc1MTIzWhcNMjUwNTAxMTc1MTIzWjAYMRYwFAYD VQQDEw02ODBhN2ExYy01NmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8sxP7awiU4E0rRLPbIJl5JHJRafBI+ORH+DdSEawcXOseIl68Q1sfhfZSoS6 WIm3YmKxRuG3edUEaS/jYdoOEEP/y0bcFxSDvylzVx0RZ1fv/sxIv6XhxPkmrlFJ yBjn16IJg8HSJvcAQEr0Zj7hs4Umdp22CmMR31Zv4+Wr6dXDV6SHjfkEmkzVcemE ruOqgdkn31bh9IecVQNg4Bt66Evc0gFM3Qqftg4j/8HElGYJauqd66QclJ2DS2A4 10/bfO3Ow8OXKD3dwcTR2xa3wWXRoJsAKxFVWVtQkcFzBtrfANtv0MxbpZT4Onng T2p5kqd72eLt/r1pRVfn/umZWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9PhWu5 mPafuxuMe4GA1ptJYZYRMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9BgQNRaO3Ie950FhlGTIFpiquz/0J33H0OK+2sKxWkMAEiOcTXHbG 7D7DdjaaIfVMct9vVoEjwnEDXDLvs+75uFsx+Q2CB2MqsHaLN5kW6SBZwI61/OSS 4zaY5e9oheDofilBLAsFaVfPzSH1eMHR25vlXW+OpWaHMeAkovZcXnY2Aoq74Rme GIv9IRQ4M5ARRYPPKohRl6q7I0YxMfQ0BTSZax23JD+GrUUq6ir7zhMDW6kDJPtV kCMbQ7x8Td2iQHGLIVV+oYEGzM48BJ1fD4CrITi8QAA2YNgC/gPoftiN7YIKiEPP ZhY+Akl3MokAXrVeNXly6jfusUPY2tx5 -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:14 2025 by rpki-client