$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: MAE60R+AX2o/8LRHYWWkELOyvnEBPz6YL6KwdERpkb0= Subject key identifier: 33:ED:3A:07:99:C2:13:B7:8F:80:7F:8D:25:63:0B:A5:CD:44:4E:02 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1BCE Signing time: Sun 04 May 2025 16:09:08 +0000 Manifest this update: Sun 04 May 2025 16:09:07 +0000 Manifest next update: Sun 11 May 2025 16:09:07 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: 67uOnRteJEKhV+k1HsRqV6pTHqIdo7RWPfChECc+e6A=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 16:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7135 (0x1bdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: May 4 16:09:07 2025 GMT Not After : May 11 16:09:07 2025 GMT Subject: CN=68179123-c3ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7e:21:4b:65:b9:ab:18:fa:6a:f4:5f:d7:a3: 30:1a:53:58:2c:c1:09:16:5f:23:20:ff:b8:86:a5: 45:07:06:13:42:17:5b:46:78:fc:42:aa:af:e6:62: 6d:09:d8:c9:f6:e1:dc:1c:d5:ad:2f:e6:88:c7:f8: a1:28:d9:64:e0:78:e6:42:20:33:31:9d:69:c7:90: 06:01:d6:42:6b:fe:d3:e7:26:04:86:c5:44:95:bd: 14:a6:fd:7f:8f:49:54:86:5b:a6:d8:94:36:12:db: 87:9a:1f:49:c5:c9:31:74:8c:1f:08:55:13:fc:4d: be:cb:8c:ad:35:76:2c:47:ed:28:9d:26:36:99:f5: ff:54:79:2e:8d:f4:10:00:7c:49:a2:80:fc:b5:d9: d7:e0:d2:58:63:0e:0b:09:6d:25:7a:65:4d:29:2b: 5a:6a:76:7a:de:6c:66:fb:51:ea:a9:58:35:1d:e7: 9e:15:a1:59:21:e6:6a:1c:d4:b0:e7:68:a9:20:a7: a0:e7:7d:3b:75:51:fd:f6:38:a1:50:9e:1c:50:66: 46:a3:12:14:cd:47:5d:3d:58:62:0b:65:42:0c:34: e2:df:7f:7a:ce:a0:c3:b0:f1:51:6b:51:bd:74:e6: 4a:10:a1:6e:d9:35:98:5e:42:d5:59:30:fa:9e:80: fa:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:ED:3A:07:99:C2:13:B7:8F:80:7F:8D:25:63:0B:A5:CD:44:4E:02 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:fe:13:28:a4:6e:a4:b4:0c:51:29:38:1c:88:79:30:4d:9a: 5b:05:00:31:dc:1a:c6:98:3e:01:c8:00:cf:10:8a:52:ce:8a: 27:8b:9c:0a:57:92:fb:c0:e0:12:d8:49:81:04:9f:3e:f6:4b: 4a:cb:b2:7f:9e:cf:fa:41:4e:2c:7a:5e:14:d5:8a:7f:b8:fe: e1:ea:54:72:be:f1:90:1c:33:ff:f1:5f:09:08:35:48:ab:c4: af:3a:9d:3c:cc:d7:74:ff:5d:32:a9:e6:a9:3b:64:1e:2c:41: da:0f:20:b6:28:ad:89:e8:43:45:a6:6f:27:17:b3:1c:17:6b: c0:e8:c9:d8:f0:94:39:33:9e:2e:75:e8:c5:32:44:97:b2:10: bc:03:e9:ec:bc:a1:d2:ba:73:53:af:c4:07:f8:d5:2c:df:aa: 00:e4:48:d5:fc:07:ab:2d:87:45:90:34:8f:13:72:bb:9c:37: ac:5f:81:3f:84:68:ba:1f:5f:7e:36:78:5f:a5:4e:bd:d7:48: c1:7d:53:47:99:7e:33:d4:da:69:c3:f6:b0:30:12:d0:11:1a: 6a:58:d9:87:a9:ca:8b:10:d8:b3:5b:44:ba:8d:f0:50:2e:d4: 86:ca:b0:e3:1e:f1:c2:99:dc:a4:6e:6c:6b:4c:c4:2f:12:76: 9e:1b:0f:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwNTA0MTYwOTA3WhcNMjUwNTExMTYwOTA3WjAYMRYwFAYD VQQDEw02ODE3OTEyMy1jM2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3H4hS2W5qxj6avRf16MwGlNYLMEJFl8jIP+4hqVFBwYTQhdbRnj8Qqqv5mJt CdjJ9uHcHNWtL+aIx/ihKNlk4HjmQiAzMZ1px5AGAdZCa/7T5yYEhsVElb0Upv1/ j0lUhlum2JQ2EtuHmh9JxckxdIwfCFUT/E2+y4ytNXYsR+0onSY2mfX/VHkujfQQ AHxJooD8tdnX4NJYYw4LCW0lemVNKStaanZ63mxm+1HqqVg1HeeeFaFZIeZqHNSw 52ipIKeg5307dVH99jihUJ4cUGZGoxIUzUddPVhiC2VCDDTi3396zqDDsPFRa1G9 dOZKEKFu2TWYXkLVWTD6noD6SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPtOgeZ whO3j4B/jSVjC6XNRE4CMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr/hMopG6ktAxRKTgciHkwTZpbBQAx3BrGmD4ByADPEIpSzooni5wK V5L7wOAS2EmBBJ8+9ktKy7J/ns/6QU4sel4U1Yp/uP7h6lRyvvGQHDP/8V8JCDVI q8SvOp08zNd0/10yqeapO2QeLEHaDyC2KK2J6ENFpm8nF7McF2vA6MnY8JQ5M54u dejFMkSXshC8A+nsvKHSunNTr8QH+NUs36oA5EjV/AerLYdFkDSPE3K7nDesX4E/ hGi6H19+NnhfpU6910jBfVNHmX4z1Nppw/awMBLQERpqWNmHqcqLENizW0S6jfBQ LtSGyrDjHvHCmdykbmxrTMQvEnaeGw/p -----END CERTIFICATE-----Generated at Tue May 6 08:14:14 2025 by rpki-client