$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft File: DWjbrWAPi9kLNVuY9LI4-56aV_o.mft (raw, json) Hash identifier: 8Q/YKwlOAnvoRzMS9WyoLEUiz5alpV4bx31wkxRu/xA= Subject key identifier: 8B:E5:B2:A2:74:37:B8:30:8A:EA:34:29:A0:3C:26:D5:DA:35:7E:67 Authority key identifier: 0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA Certificate issuer: /CN=A91DBF0D/serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft Manifest number: 083D Signing time: Thu 24 Apr 2025 20:37:41 +0000 Manifest this update: Thu 24 Apr 2025 20:37:41 +0000 Manifest next update: Thu 01 May 2025 20:37:41 +0000 Files and hashes: 1: DWjbrWAPi9kLNVuY9LI4-56aV_o.crl (hash: K3PJ19sm+rkywHf19WIqWEtJFzssup+qjtSOyGmXN2k=) 2: 9D664600CB1211EAACC0E528C4F9AE02.roa (hash: UBw2PoTevAndZcrQq8icn0bOX1+H9RUk7B/v/OivD1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0D, serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Validity Not Before: Apr 24 20:37:41 2025 GMT Not After : May 1 20:37:41 2025 GMT Subject: CN=680aa115-98b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2b:60:6c:ae:bf:e7:d5:b7:4f:3a:74:e4:18: 62:7a:46:d9:7d:ad:50:85:18:94:d4:45:0b:ae:5d: e4:58:2b:30:71:5d:dd:43:ec:58:bd:96:45:ff:7e: e9:be:89:c1:6d:a6:00:17:d5:59:2f:1b:5c:13:9d: 1b:50:25:c0:27:ab:85:42:9f:7f:ee:02:5e:0c:8a: 4b:3d:f2:f5:b2:5b:a3:2f:cc:88:d0:ef:0e:1a:84: 33:18:93:7c:cd:d6:48:32:07:34:60:42:33:82:0a: 84:07:2a:fc:f1:3e:5f:60:a0:0f:b6:06:f9:5a:ac: 03:c3:e7:5f:79:63:bc:0d:46:f0:f2:08:c8:d4:03: 52:d5:5d:c3:ce:95:79:95:9e:e4:4f:53:32:b4:22: 95:f6:f3:76:b0:fb:88:55:2e:10:7b:7d:9c:21:1e: 30:95:b3:08:fc:45:1d:b6:83:b2:cb:76:ac:6f:0f: b9:e7:49:18:5f:ae:12:8b:0a:74:ea:c3:16:3e:fa: e7:0f:bd:8e:e7:4b:b3:8c:be:5a:9b:b4:e6:50:12: c7:b9:61:c7:44:a4:b2:2d:69:ad:e9:e8:9a:f3:aa: 34:fc:53:e7:b2:04:3e:5c:6f:d1:ae:a6:ce:dd:5c: b3:c7:61:1d:19:4e:da:36:6a:b7:cb:7d:52:12:fd: 9c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E5:B2:A2:74:37:B8:30:8A:EA:34:29:A0:3C:26:D5:DA:35:7E:67 X509v3 Authority Key Identifier: keyid:0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:8c:81:13:da:1f:d0:9c:f4:21:64:71:3c:52:0e:93:2f:86: 2f:4f:65:1e:7b:10:d9:51:3d:24:6d:de:b9:29:a6:d1:8e:00: 47:f5:d8:75:61:8e:05:a8:34:24:aa:39:2a:67:a4:79:b3:eb: 43:5c:1c:74:be:23:b3:5e:a5:b8:3f:eb:0b:03:eb:3e:d5:63: 9e:d5:d0:3b:32:42:24:4d:10:71:2c:88:2b:c8:7c:fc:c0:fb: a1:9b:0d:36:e1:19:86:46:b0:a9:11:12:46:2d:77:fa:9a:52: dc:5d:1f:78:a8:0a:d9:85:60:30:fe:70:bf:3a:26:da:fa:d6: 3b:b4:8d:e0:25:12:77:d1:ad:19:77:cd:93:62:e5:40:01:17: 8b:07:7a:fc:04:18:fb:ab:b9:5b:f0:70:a5:b6:f5:41:94:69: fa:71:49:b4:60:6e:17:53:ca:19:ee:20:95:e3:26:ce:e7:dd: cf:3f:72:55:85:9f:ab:66:7f:16:51:cc:85:1a:c4:8c:0b:f7: d6:69:41:f1:42:1f:1b:18:0a:9f:b6:54:3e:4c:90:01:2e:92: 11:23:20:5b:f2:4c:ad:31:8d:24:c3:45:d8:22:b5:55:dd:9e: 35:e7:82:05:0c:06:43:88:6f:b4:89:fe:95:9e:2f:2f:c5:dc: fe:67:c5:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEQxMTAvBgNVBAUTKDBENjhEQkFENjAwRjhCRDkwQjM1NUI5OEY0QjIzOEZC OUU5QTU3RkEwHhcNMjUwNDI0MjAzNzQxWhcNMjUwNTAxMjAzNzQxWjAYMRYwFAYD VQQDEw02ODBhYTExNS05OGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0StgbK6/59W3Tzp05BhiekbZfa1QhRiU1EULrl3kWCswcV3dQ+xYvZZF/37p vonBbaYAF9VZLxtcE50bUCXAJ6uFQp9/7gJeDIpLPfL1slujL8yI0O8OGoQzGJN8 zdZIMgc0YEIzggqEByr88T5fYKAPtgb5WqwDw+dfeWO8DUbw8gjI1ANS1V3DzpV5 lZ7kT1MytCKV9vN2sPuIVS4Qe32cIR4wlbMI/EUdtoOyy3asbw+550kYX64Siwp0 6sMWPvrnD72O50uzjL5am7TmUBLHuWHHRKSyLWmt6eia86o0/FPnsgQ+XG/RrqbO 3Vyzx2EdGU7aNmq3y31SEv2ciQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvlsqJ0 N7gwiuo0KaA8JtXaNX5nMB8GA1UdIwQYMBaAFA1o261gD4vZCzVbmPSyOPuemlf6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwRC81Nzk2NEQ0QUNC MEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5a0xOVnVZOUxJNC01NmFW X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXamJyV0FQaTlrTE5WdVk5TEk0LTU2YVZfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwRC81Nzk2NEQ0QUNCMEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5 a0xOVnVZOUxJNC01NmFWX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANjIET2h/QnPQhZHE8Ug6TL4YvT2UeexDZUT0kbd65KabRjgBH9dh1 YY4FqDQkqjkqZ6R5s+tDXBx0viOzXqW4P+sLA+s+1WOe1dA7MkIkTRBxLIgryHz8 wPuhmw024RmGRrCpERJGLXf6mlLcXR94qArZhWAw/nC/Oiba+tY7tI3gJRJ30a0Z d82TYuVAAReLB3r8BBj7q7lb8HCltvVBlGn6cUm0YG4XU8oZ7iCV4ybO593PP3JV hZ+rZn8WUcyFGsSMC/fWaUHxQh8bGAqftlQ+TJABLpIRIyBb8kytMY0kw0XYIrVV 3Z4154IFDAZDiG+0if6Vni8vxdz+Z8VF -----END CERTIFICATE-----Generated at Sat Apr 26 19:10:47 2025 by rpki-client