$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft File: JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft (raw, json) Hash identifier: pW7LcoOIgaQW3TWsmuB0APBacXKIgCaAo8Puq4ZbyOI= Subject key identifier: E5:09:1B:20:7A:04:CA:40:6F:3C:77:2C:26:DE:D6:D7:7D:E0:6A:A5 Authority key identifier: 26:19:9C:5F:61:89:E0:2E:C5:16:85:39:19:E1:5B:A6:01:D7:C8:5F Certificate issuer: /CN=A91275FB/serialNumber=26199C5F6189E02EC516853919E15BA601D7C85F Certificate serial: 17F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft Manifest number: 17DA Signing time: Sat 26 Apr 2025 16:31:40 +0000 Manifest this update: Sat 26 Apr 2025 16:31:40 +0000 Manifest next update: Sat 03 May 2025 16:31:40 +0000 Files and hashes: 1: JhmcX2GJ4C7FFoU5GeFbpgHXyF8.crl (hash: EQSNIT8cS6LNbWoIzLBQmoYcYG3M9YJC7GGH0g+bC1A=) 2: 1E76B980C4BA11E78E05EE70C4F9AE02.roa (hash: AJVJFbnvPCGmDcQ1w9Ifor0vZahtLKDl6qkkbnsRLEw=) 3: FCD95792C21111E792F4785EC4F9AE02.roa (hash: vQNKqM+IPJTV8w/FcMbZHdV0h0wCR5wUymZdMLOlrMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.crl rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6134 (0x17f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FB, serialNumber=26199C5F6189E02EC516853919E15BA601D7C85F Validity Not Before: Apr 26 16:31:40 2025 GMT Not After : May 3 16:31:40 2025 GMT Subject: CN=680d0a6c-a24b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:56:3d:c3:ee:4d:86:3b:41:da:24:dd:1b:16: 85:ca:01:9a:b8:a8:f4:52:ee:90:fc:71:cf:9f:f9: 4e:1a:7f:54:b6:38:4e:51:10:07:f3:a4:9b:4a:d6: 5a:6e:e2:f9:8b:48:a2:8f:bd:d8:57:8d:40:f3:81: a3:fd:0e:4a:2b:79:40:7a:d5:48:4b:81:68:22:18: bc:c6:fe:a8:1e:dc:a0:43:bd:0b:70:be:58:32:95: a3:9f:9e:af:ab:37:de:b5:5c:34:6b:84:11:f7:59: 13:84:55:62:a8:3d:56:05:07:e6:9d:23:de:c8:7a: 29:34:bb:27:5f:bf:58:43:79:1a:1f:ed:d4:09:47: c3:ff:ad:74:27:95:88:51:41:5e:9e:ba:72:ec:80: 48:3a:bb:90:55:17:1b:8f:d0:f0:78:86:d2:07:94: 0e:c8:3c:d6:7a:6e:f3:0d:18:11:01:97:2c:0b:3a: 20:14:87:9a:0d:f7:15:cf:58:39:25:1d:c3:2a:3b: 58:26:7b:ad:ed:43:39:73:40:e3:65:ed:da:36:53: 50:28:c9:2c:11:2d:f4:f9:55:3d:d3:31:af:2c:c6: e0:e7:de:f3:e6:20:04:0d:30:95:51:95:1f:da:e3: 89:e0:af:4f:4c:72:af:42:5b:0a:88:b8:0e:26:60: 7b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:09:1B:20:7A:04:CA:40:6F:3C:77:2C:26:DE:D6:D7:7D:E0:6A:A5 X509v3 Authority Key Identifier: keyid:26:19:9C:5F:61:89:E0:2E:C5:16:85:39:19:E1:5B:A6:01:D7:C8:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:db:7a:ff:af:c0:94:b8:88:b0:41:91:c8:b4:54:4d:ad:f7: 48:eb:77:fa:63:0a:4e:1c:99:1e:80:25:46:e0:7e:8a:a6:95: 71:eb:eb:3f:e7:02:23:a5:67:74:b9:89:33:0c:f3:de:a0:14: c7:8f:46:fa:10:8a:3a:31:bd:ef:d6:de:9c:4d:6a:67:4e:ab: 2a:85:1d:e0:0e:17:e6:5a:de:25:69:be:87:e0:2c:4e:ec:9c: f8:8a:7a:12:f2:e9:48:58:07:e2:66:74:58:2f:cf:f4:28:9e: 4b:6d:26:32:fe:59:44:5d:24:df:21:29:2b:f1:14:51:22:b3: 16:0d:5d:dc:7e:2f:cd:f6:a0:26:ab:62:29:b4:f7:f8:a3:a0: 8c:ac:b0:d6:e0:8f:ee:61:e4:9f:b0:43:d3:f3:ee:c4:30:7f: fd:49:fb:e2:f5:37:ac:ff:63:36:39:90:3e:8c:13:24:a4:e1: 8a:e0:0b:b5:5c:17:41:9e:cb:97:4e:c1:a1:a4:fd:17:15:9f: 1a:b3:56:66:72:43:65:63:bf:10:66:dc:9d:63:13:19:99:24: 42:af:b9:fd:f8:88:b4:1f:e3:b8:a5:3c:5a:63:53:7a:92:95: 19:f6:13:a6:00:4e:81:5d:70:8c:fb:ad:1f:05:e0:66:54:da: 92:59:84:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkIxMTAvBgNVBAUTKDI2MTk5QzVGNjE4OUUwMkVDNTE2ODUzOTE5RTE1QkE2 MDFEN0M4NUYwHhcNMjUwNDI2MTYzMTQwWhcNMjUwNTAzMTYzMTQwWjAYMRYwFAYD VQQDEw02ODBkMGE2Yy1hMjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolY9w+5NhjtB2iTdGxaFygGauKj0Uu6Q/HHPn/lOGn9UtjhOURAH86SbStZa buL5i0iij73YV41A84Gj/Q5KK3lAetVIS4FoIhi8xv6oHtygQ70LcL5YMpWjn56v qzfetVw0a4QR91kThFViqD1WBQfmnSPeyHopNLsnX79YQ3kaH+3UCUfD/610J5WI UUFenrpy7IBIOruQVRcbj9DweIbSB5QOyDzWem7zDRgRAZcsCzogFIeaDfcVz1g5 JR3DKjtYJnut7UM5c0DjZe3aNlNQKMksES30+VU90zGvLMbg597z5iAEDTCVUZUf 2uOJ4K9PTHKvQlsKiLgOJmB7XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUJGyB6 BMpAbzx3LCbe1td94GqlMB8GA1UdIwQYMBaAFCYZnF9hieAuxRaFORnhW6YB18hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGQi9GRERCODhEQ0My MTAxMUU3OTIwQTk1NURDNEY5QUUwMi9KaG1jWDJHSjRDN0ZGb1U1R2VGYnBnSFh5 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pobWNYMkdKNEM3RkZvVTVHZUZicGdIWHlGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzVGQi9GRERCODhEQ0MyMTAxMUU3OTIwQTk1NURDNEY5QUUwMi9KaG1jWDJHSjRD N0ZGb1U1R2VGYnBnSFh5RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk23r/r8CUuIiwQZHItFRNrfdI63f6YwpOHJkegCVG4H6KppVx6+s/ 5wIjpWd0uYkzDPPeoBTHj0b6EIo6Mb3v1t6cTWpnTqsqhR3gDhfmWt4lab6H4CxO 7Jz4inoS8ulIWAfiZnRYL8/0KJ5LbSYy/llEXSTfISkr8RRRIrMWDV3cfi/N9qAm q2IptPf4o6CMrLDW4I/uYeSfsEPT8+7EMH/9Sfvi9Tes/2M2OZA+jBMkpOGK4Au1 XBdBnsuXTsGhpP0XFZ8as1ZmckNlY78QZtydYxMZmSRCr7n9+Ii0H+O4pTxaY1N6 kpUZ9hOmAE6BXXCM+60fBeBmVNqSWYQo -----END CERTIFICATE-----Generated at Mon Apr 28 03:17:10 2025 by rpki-client