$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB179/2CCCAB9865D411EBA5B3DF82C4F9AE02/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.mft File: Dj0eI6dk5iI7d3wXHk_eEjxlfv4.mft (raw, json) Hash identifier: gniQQE4oPT8rbVFE51AHNucK6Gop0xWbbeN5363+rio= Subject key identifier: AA:5C:EB:B0:BF:5B:F9:C4:7D:4D:CB:A9:08:B6:4A:DD:2F:6B:DA:C6 Authority key identifier: 0E:3D:1E:23:A7:64:E6:22:3B:77:7C:17:1E:4F:DE:12:3C:65:7E:FE Certificate issuer: /CN=A91FB179/serialNumber=0E3D1E23A764E6223B777C171E4FDE123C657EFE Certificate serial: 069B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB179/2CCCAB9865D411EBA5B3DF82C4F9AE02/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.mft Manifest number: 0696 Signing time: Thu 24 Apr 2025 22:01:45 +0000 Manifest this update: Thu 24 Apr 2025 22:01:45 +0000 Manifest next update: Thu 01 May 2025 22:01:45 +0000 Files and hashes: 1: Dj0eI6dk5iI7d3wXHk_eEjxlfv4.crl (hash: PlptZ2Sn6PskCtW1EASYJA7s1bhw9MXpO143R/4y0w8=) 2: 6C4046C665EE11EB9ADB5F40C4F9AE02.roa (hash: 2Mo86XnCI5KeTWF6zAmVrthl3kfcd93BXOE5Y90BE8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB179/2CCCAB9865D411EBA5B3DF82C4F9AE02/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.crl rsync://rpki.apnic.net/member_repository/A91FB179/2CCCAB9865D411EBA5B3DF82C4F9AE02/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1691 (0x69b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB179, serialNumber=0E3D1E23A764E6223B777C171E4FDE123C657EFE Validity Not Before: Apr 24 22:01:45 2025 GMT Not After : May 1 22:01:45 2025 GMT Subject: CN=680ab4c9-eda9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:de:16:cb:5f:33:21:2c:da:bf:bc:be:24:47: 6d:28:97:ab:74:fa:75:be:58:43:da:88:9e:54:9c: d6:e2:7d:2a:b9:70:e0:fb:46:5c:f2:a7:09:b0:b0: f2:2d:1a:fb:86:e1:d1:a1:96:40:9e:f0:ad:d2:f8: 5b:03:11:76:4d:12:00:ae:c1:e4:1a:2a:bd:0e:4f: 46:b1:39:98:3e:f1:f0:32:23:25:cf:b2:04:84:f1: 98:66:6a:c6:ca:5c:5d:eb:bc:ac:99:a1:5d:3e:3e: 61:75:ad:f4:4c:06:ee:a4:6e:1f:15:16:0a:57:6c: db:1d:f8:a8:57:5d:53:05:cd:23:46:c3:e4:7d:cb: a2:91:5f:ed:2b:83:98:31:f1:da:73:09:82:b4:bc: ed:f0:cb:5d:a5:ee:b3:ec:6e:26:e5:be:3d:77:77: 30:52:a0:da:59:b4:b5:ae:86:1f:05:33:9a:3e:c4: e5:0d:50:56:43:c9:0b:83:78:18:93:d4:e8:7e:26: 01:25:2b:dc:e0:21:06:a9:34:1f:c0:29:05:ea:f8: 3f:bb:d5:02:8d:17:d2:8e:e6:39:01:b4:d5:b4:19: b6:ad:d8:91:64:cf:9f:ed:a6:16:73:60:7a:cb:71: a1:01:c4:c1:a6:22:31:a6:df:6c:07:4f:7d:83:57: 56:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:5C:EB:B0:BF:5B:F9:C4:7D:4D:CB:A9:08:B6:4A:DD:2F:6B:DA:C6 X509v3 Authority Key Identifier: keyid:0E:3D:1E:23:A7:64:E6:22:3B:77:7C:17:1E:4F:DE:12:3C:65:7E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB179/2CCCAB9865D411EBA5B3DF82C4F9AE02/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB179/2CCCAB9865D411EBA5B3DF82C4F9AE02/Dj0eI6dk5iI7d3wXHk_eEjxlfv4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:a7:2a:de:79:55:cb:00:bd:19:3a:19:aa:ec:12:bd:1f:de: 73:bd:43:f8:f0:98:e6:65:2e:06:4c:f2:14:93:ff:83:0b:3a: d1:07:e3:2e:9a:32:e0:16:0a:c2:ba:26:e1:df:a2:1b:ed:3a: b8:64:ae:c9:ae:41:d8:a6:e4:54:d8:ff:44:c0:76:64:7a:ab: 67:93:0d:ff:da:2c:ad:95:41:bb:f7:7b:b0:c5:c2:ae:bc:91: d9:e6:77:a3:80:37:a7:92:83:01:e2:d3:a7:14:e0:7f:d4:3e: 0b:9c:76:07:e4:0b:c1:26:d1:0c:65:5c:29:fe:15:f0:7e:68: d2:ad:08:7b:a2:3c:72:31:4a:48:25:df:b3:7e:d7:c1:f9:94: b5:31:2d:16:31:bf:d7:bf:21:86:79:1b:49:6d:ba:26:b5:4c: 89:b6:4a:46:d0:9c:db:83:a6:a1:10:d4:6b:64:cf:fc:ab:12: e2:1a:73:d9:db:16:f2:43:16:21:d3:4a:b9:b6:d3:ef:af:b0: 66:95:a7:3f:6c:ce:ed:09:95:75:bd:f5:6c:60:1f:ce:b7:cf: 4d:da:82:ba:8a:2b:e1:96:25:f5:09:d1:05:bc:c7:66:6d:8e: 16:40:68:5f:38:f9:8c:b7:7c:57:18:d8:df:e0:a7:df:4a:02: 36:72:86:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIxNzkxMTAvBgNVBAUTKDBFM0QxRTIzQTc2NEU2MjIzQjc3N0MxNzFFNEZERTEy M0M2NTdFRkUwHhcNMjUwNDI0MjIwMTQ1WhcNMjUwNTAxMjIwMTQ1WjAYMRYwFAYD VQQDEw02ODBhYjRjOS1lZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2N4Wy18zISzav7y+JEdtKJerdPp1vlhD2oieVJzW4n0quXDg+0Zc8qcJsLDy LRr7huHRoZZAnvCt0vhbAxF2TRIArsHkGiq9Dk9GsTmYPvHwMiMlz7IEhPGYZmrG ylxd67ysmaFdPj5hda30TAbupG4fFRYKV2zbHfioV11TBc0jRsPkfcuikV/tK4OY MfHacwmCtLzt8Mtdpe6z7G4m5b49d3cwUqDaWbS1roYfBTOaPsTlDVBWQ8kLg3gY k9TofiYBJSvc4CEGqTQfwCkF6vg/u9UCjRfSjuY5AbTVtBm2rdiRZM+f7aYWc2B6 y3GhAcTBpiIxpt9sB099g1dWlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpc67C/ W/nEfU3LqQi2St0va9rGMB8GA1UdIwQYMBaAFA49HiOnZOYiO3d8Fx5P3hI8ZX7+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjE3OS8yQ0NDQUI5ODY1 RDQxMUVCQTVCM0RGODJDNEY5QUUwMi9EajBlSTZkazVpSTdkM3dYSGtfZUVqeGxm djQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RqMGVJNmRrNWlJN2Qzd1hIa19lRWp4bGZ2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjE3OS8yQ0NDQUI5ODY1RDQxMUVCQTVCM0RGODJDNEY5QUUwMi9EajBlSTZkazVp STdkM3dYSGtfZUVqeGxmdjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1pyreeVXLAL0ZOhmq7BK9H95zvUP48JjmZS4GTPIUk/+DCzrRB+Mu mjLgFgrCuibh36Ib7Tq4ZK7JrkHYpuRU2P9EwHZkeqtnkw3/2iytlUG793uwxcKu vJHZ5nejgDenkoMB4tOnFOB/1D4LnHYH5AvBJtEMZVwp/hXwfmjSrQh7ojxyMUpI Jd+zftfB+ZS1MS0WMb/XvyGGeRtJbbomtUyJtkpG0Jzbg6ahENRrZM/8qxLiGnPZ 2xbyQxYh00q5ttPvr7Bmlac/bM7tCZV1vfVsYB/Ot89N2oK6iivhliX1CdEFvMdm bY4WQGhfOPmMt3xXGNjf4KffSgI2cobz -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:46 2025 by rpki-client