$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft File: JPDB2OP0opb9zesjWmxIO2styXo.mft (raw, json) Hash identifier: vc4MbM+gNYRx04Uc0aLjDuMeP5aFbm7Efylt4E8u/pU= Subject key identifier: 29:7B:E9:54:D1:CA:E9:8B:3C:9F:C1:D6:DF:0C:CA:AC:18:57:D8:AA Authority key identifier: 24:F0:C1:D8:E3:F4:A2:96:FD:CD:EB:23:5A:6C:48:3B:6B:2D:C9:7A Certificate issuer: /CN=A911BC62/serialNumber=24F0C1D8E3F4A296FDCDEB235A6C483B6B2DC97A Certificate serial: 27DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft Manifest number: 27C1 Signing time: Thu 24 Apr 2025 15:39:19 +0000 Manifest this update: Thu 24 Apr 2025 15:39:18 +0000 Manifest next update: Thu 01 May 2025 15:39:18 +0000 Files and hashes: 1: JPDB2OP0opb9zesjWmxIO2styXo.crl (hash: 8fPFfHKKwzbAAXHn0u1eZbxtmKTJGPFSDG1ieHu3/sc=) 2: 8BD42F1CDEB111EA971A1721C4F9AE02.roa (hash: zYzRPHKgSeX768eROJRNf9tX7Mow08v94Ny1/BRKK1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.crl rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10206 (0x27de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62, serialNumber=24F0C1D8E3F4A296FDCDEB235A6C483B6B2DC97A Validity Not Before: Apr 24 15:39:18 2025 GMT Not After : May 1 15:39:18 2025 GMT Subject: CN=680a5b27-ae06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cd:53:e0:33:5a:09:c7:56:c6:12:4c:2f:c7: 7a:16:fa:2d:60:23:fc:e5:f2:8f:c6:63:d1:88:90: 79:de:24:a0:56:42:b8:c9:36:29:ca:27:3f:ea:a4: 2a:a6:77:48:a7:f3:21:ba:a7:cd:ba:53:76:64:3c: 31:ef:a5:c1:72:04:6d:00:66:48:c8:2e:16:14:c3: 97:95:12:29:ed:c4:88:3a:c1:5b:a7:b6:bb:4e:21: fa:98:e7:35:77:4f:21:0d:81:bb:61:38:b8:04:f8: dc:d4:49:af:87:cb:d1:a1:d3:d8:59:b9:9e:6d:7f: 54:68:07:04:5b:8c:69:11:b5:18:f4:a6:0e:22:6a: b2:d4:92:08:5f:80:a4:f5:83:94:47:bc:04:bc:56: 20:0e:ee:b4:ac:16:23:64:bd:e2:e7:0e:2b:93:ab: 0d:c8:56:73:e4:2c:65:f6:cc:ca:32:c0:30:b6:f6: 03:75:c1:79:18:73:87:78:32:f0:11:78:82:cd:2c: 36:24:53:d5:8b:2a:8a:c4:40:1c:e2:e6:26:43:f3: 1b:e9:9b:71:63:1f:76:3c:2d:9a:66:9f:b9:7f:2b: 1a:10:8d:5c:d0:72:8d:50:c5:e3:ec:ca:ea:17:19: 8a:bc:f2:fb:9e:7c:a5:af:cb:29:4d:e3:88:61:53: 3b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:7B:E9:54:D1:CA:E9:8B:3C:9F:C1:D6:DF:0C:CA:AC:18:57:D8:AA X509v3 Authority Key Identifier: keyid:24:F0:C1:D8:E3:F4:A2:96:FD:CD:EB:23:5A:6C:48:3B:6B:2D:C9:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:d9:2e:be:e4:84:84:2f:46:b9:75:1b:b9:43:8c:7f:ca:79: 2c:19:55:8a:64:d6:93:dc:ea:0d:3e:9f:c2:4a:a4:42:fd:a0: 9c:8b:b4:24:f9:52:bd:6b:fe:d7:6d:49:3a:4d:cd:7b:d8:f9: 7e:2d:54:09:1b:f8:b5:01:88:9b:22:19:bb:4c:12:03:2e:72: 90:6c:4a:59:2b:7b:64:e0:a7:23:9d:57:b6:d3:cb:58:4d:8b: f8:33:2a:f8:71:2b:50:5e:ae:d6:33:1d:b3:2d:f0:8f:ff:4e: 60:7a:6f:ae:75:60:6d:47:a7:43:9b:a1:93:d0:3c:0f:9a:06: 2f:a7:05:db:a8:59:70:94:65:8c:a7:e2:fa:62:5d:32:51:30: de:72:8c:49:8a:d9:b7:2c:be:40:e2:33:df:ec:b2:50:c5:b5: e1:1c:04:24:cb:db:f8:6c:7a:07:3b:e1:e7:46:40:53:fc:a5: 99:36:0f:15:c5:82:d1:9e:fd:f0:e8:30:09:34:c5:c4:c1:19: ee:96:e5:5e:4c:55:f1:a0:e0:50:ef:58:7c:9b:e1:62:88:02: 3c:7b:b2:8d:bb:4a:b3:41:5f:f1:c4:52:6e:ab:a6:b0:1e:05: dd:d1:a1:61:5d:9b:7f:d5:d6:e8:95:7c:46:a9:60:88:89:86: df:65:9a:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDI0RjBDMUQ4RTNGNEEyOTZGRENERUIyMzVBNkM0ODNC NkIyREM5N0EwHhcNMjUwNDI0MTUzOTE4WhcNMjUwNTAxMTUzOTE4WjAYMRYwFAYD VQQDEw02ODBhNWIyNy1hZTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy81T4DNaCcdWxhJML8d6FvotYCP85fKPxmPRiJB53iSgVkK4yTYpyic/6qQq pndIp/MhuqfNulN2ZDwx76XBcgRtAGZIyC4WFMOXlRIp7cSIOsFbp7a7TiH6mOc1 d08hDYG7YTi4BPjc1Emvh8vRodPYWbmebX9UaAcEW4xpEbUY9KYOImqy1JIIX4Ck 9YOUR7wEvFYgDu60rBYjZL3i5w4rk6sNyFZz5Cxl9szKMsAwtvYDdcF5GHOHeDLw EXiCzSw2JFPViyqKxEAc4uYmQ/Mb6ZtxYx92PC2aZp+5fysaEI1c0HKNUMXj7Mrq FxmKvPL7nnylr8spTeOIYVM7xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCl76VTR yumLPJ/B1t8MyqwYV9iqMB8GA1UdIwQYMBaAFCTwwdjj9KKW/c3rI1psSDtrLcl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi8zMjg4QzMxMkEy RTYxMUU0QTA4MUM0NkRDNEY5QUUwMi9KUERCMk9QMG9wYjl6ZXNqV214SU8yc3R5 WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pQREIyT1Awb3BiOXplc2pXbXhJTzJzdHlYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkM2Mi8zMjg4QzMxMkEyRTYxMUU0QTA4MUM0NkRDNEY5QUUwMi9KUERCMk9QMG9w Yjl6ZXNqV214SU8yc3R5WG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv2S6+5ISEL0a5dRu5Q4x/ynksGVWKZNaT3OoNPp/CSqRC/aCci7Qk +VK9a/7XbUk6Tc172Pl+LVQJG/i1AYibIhm7TBIDLnKQbEpZK3tk4KcjnVe208tY TYv4Myr4cStQXq7WMx2zLfCP/05gem+udWBtR6dDm6GT0DwPmgYvpwXbqFlwlGWM p+L6Yl0yUTDecoxJitm3LL5A4jPf7LJQxbXhHAQky9v4bHoHO+HnRkBT/KWZNg8V xYLRnv3w6DAJNMXEwRnuluVeTFXxoOBQ71h8m+FiiAI8e7KNu0qzQV/xxFJuq6aw HgXd0aFhXZt/1dbolXxGqWCIiYbfZZo/ -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:02 2025 by rpki-client