$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: yltbg7OZg73ARSQ4tZIQ4E/mk2cHhHJvsX/1+W1Mjik= Subject key identifier: 8F:6C:C1:E8:B2:D2:98:3E:D3:BE:1F:18:EE:5E:CE:D6:66:C8:BF:B0 Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 0154 Signing time: Fri 25 Apr 2025 03:13:38 +0000 Manifest this update: Fri 25 Apr 2025 03:13:37 +0000 Manifest next update: Fri 02 May 2025 03:13:37 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: YYeuR06VJp4VbM60hapnNphPfb2NiT1X9fq16vQNgsQ=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: CB6qYtIMERSezwGUEUv4T/r/K/tC4CWAUjSVJHYQH28=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: wqZWqZ8fa4R6eMrcXZq1r/urB8kEflCs9S9caDMISYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Apr 25 03:13:37 2025 GMT Not After : May 2 03:13:37 2025 GMT Subject: CN=680afde1-51ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:34:38:e8:3e:9f:82:9b:e8:16:7f:ea:0a:5b: fe:f1:7e:68:c3:20:8d:92:cf:7d:93:02:dd:4c:03: 96:a7:7c:a1:bd:70:65:5a:df:94:22:e5:37:fc:8f: fe:9b:69:1b:79:ab:26:94:bc:d4:e6:f4:6c:44:82: e5:53:b9:89:9f:ae:cf:7b:78:15:c2:03:b8:bc:ab: 43:39:de:b6:5e:66:81:c1:a8:df:42:b6:64:e1:81: a8:b1:81:be:54:77:9a:e1:35:b5:9e:8f:72:b5:27: cc:77:ca:c2:75:fd:40:3e:6a:d3:46:ec:b0:e8:f9: 56:c3:ed:c0:ee:0f:5d:18:4a:5f:6c:a8:50:88:98: 19:df:b6:3f:9b:db:df:57:ce:69:53:1b:db:0c:49: 1b:92:5a:e7:3d:89:e5:7d:4a:e4:b4:44:41:65:7a: e9:d0:36:19:7a:11:7e:ba:a0:fd:5e:57:bf:6f:39: 75:a7:02:0b:e1:fe:57:7c:0f:9b:95:a0:c5:56:83: b5:cd:cd:9c:5b:44:b1:78:68:02:06:5d:9f:1d:10: a2:c9:8c:ca:db:53:5d:1c:d4:2d:9c:33:5e:ab:24: 90:3d:6b:58:0d:ee:8c:53:5e:1d:c4:20:48:fd:30: e8:61:6d:a2:65:fd:e8:e1:23:2e:a5:0a:25:b7:8a: 5d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6C:C1:E8:B2:D2:98:3E:D3:BE:1F:18:EE:5E:CE:D6:66:C8:BF:B0 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:c7:38:74:ef:8d:35:87:80:70:ea:c7:7f:37:32:5e:8d:38: cf:e6:f2:67:1f:36:54:94:92:1b:0f:08:70:5d:e3:50:8f:ee: a6:71:da:f4:5f:53:5d:7a:c8:37:08:66:ba:fd:d8:fb:b4:11: 9e:ea:55:48:1b:77:97:58:1e:fa:b0:50:6b:5f:c9:b5:4d:f7: e4:b4:8f:30:fc:53:0a:30:be:68:45:f5:b6:ab:67:c4:6b:d4: 1a:dd:ae:01:45:ed:57:f4:5a:61:06:4e:de:82:d2:0c:4c:ef: 64:6b:d4:e2:fd:2c:88:e6:86:f5:22:65:02:77:d5:13:f7:2f: 25:34:d2:e9:95:78:10:f5:29:cf:3a:5d:d7:42:51:83:5c:0a: 47:b9:c6:06:5b:1d:2a:35:07:62:1f:f5:22:5b:d2:08:b9:df: 4a:ae:74:e6:8d:05:44:fd:93:a9:e3:ad:7a:a8:37:8c:03:5d: 06:5c:4b:59:3b:d6:4f:02:fb:9a:70:b1:69:89:2e:21:93:f6: 95:c3:5e:33:c2:7d:da:40:b7:c9:de:ee:f0:da:8d:7f:ce:26: f4:9a:b8:b0:12:e6:28:b5:17:d0:3e:e8:7c:e2:d3:c6:9c:75: 40:88:bd:b6:90:30:ef:22:f6:f3:3d:f9:11:8e:cf:db:f5:50: a1:f1:ec:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjUwNDI1MDMxMzM3WhcNMjUwNTAyMDMxMzM3WjAYMRYwFAYD VQQDEw02ODBhZmRlMS01MWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzQ46D6fgpvoFn/qClv+8X5owyCNks99kwLdTAOWp3yhvXBlWt+UIuU3/I/+ m2kbeasmlLzU5vRsRILlU7mJn67Pe3gVwgO4vKtDOd62XmaBwajfQrZk4YGosYG+ VHea4TW1no9ytSfMd8rCdf1APmrTRuyw6PlWw+3A7g9dGEpfbKhQiJgZ37Y/m9vf V85pUxvbDEkbklrnPYnlfUrktERBZXrp0DYZehF+uqD9Xle/bzl1pwIL4f5XfA+b laDFVoO1zc2cW0SxeGgCBl2fHRCiyYzK21NdHNQtnDNeqySQPWtYDe6MU14dxCBI /TDoYW2iZf3o4SMupQolt4pduQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9sweiy 0pg+074fGO5eztZmyL+wMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqxzh07401h4Bw6sd/NzJejTjP5vJnHzZUlJIbDwhwXeNQj+6mcdr0 X1Ndesg3CGa6/dj7tBGe6lVIG3eXWB76sFBrX8m1TffktI8w/FMKML5oRfW2q2fE a9Qa3a4BRe1X9FphBk7egtIMTO9ka9Ti/SyI5ob1ImUCd9UT9y8lNNLplXgQ9SnP Ol3XQlGDXApHucYGWx0qNQdiH/UiW9IIud9KrnTmjQVE/ZOp4616qDeMA10GXEtZ O9ZPAvuacLFpiS4hk/aVw14zwn3aQLfJ3u7w2o1/zib0mriwEuYotRfQPuh84tPG nHVAiL22kDDvIvbzPfkRjs/b9VCh8ezh -----END CERTIFICATE-----Generated at Sat Apr 26 17:09:09 2025 by rpki-client