$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: 75Gas7emkM7145P6bM0j1JD+fFyixJlYugtr15+JQi4= Subject key identifier: A7:3C:2A:AC:1B:5D:FF:95:0C:7B:B4:29:EE:43:65:E8:89:3D:8A:5A Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0CEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0CE4 Signing time: Thu 24 Apr 2025 18:04:31 +0000 Manifest this update: Thu 24 Apr 2025 18:04:31 +0000 Manifest next update: Thu 01 May 2025 18:04:31 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: QKaYefvW38DtJGiijHx+dUj5dRPkoDg8k6U1Jf6NZTU=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: QrHwkCxaqX0D4CMUIb/gJ2hugEkme/UAAaAoVbq7U4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3310 (0xcee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Apr 24 18:04:31 2025 GMT Not After : May 1 18:04:31 2025 GMT Subject: CN=680a7d2f-0731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:10:27:92:a4:d4:70:2c:42:75:52:52:66:1e: 11:5f:66:bb:5b:4b:29:41:21:e3:54:86:30:46:9b: 0d:bc:c2:73:67:a3:73:4b:f6:4f:f9:03:80:3e:f8: 01:03:b3:01:92:45:a5:e1:71:dc:eb:68:cc:26:a2: 19:bb:0e:02:02:9c:53:ab:64:21:4b:a6:4e:03:d2: 06:fd:c0:d1:4d:d6:07:a8:b3:b6:29:bd:c8:74:8a: fd:f1:fb:d1:f8:9c:00:87:30:6b:e3:e0:1a:f5:a3: 08:54:23:87:f9:d6:6d:6a:a7:cb:98:55:8b:fb:63: 08:13:e3:47:14:34:94:98:ca:a5:bf:dc:14:30:d1: 8f:ef:ba:5d:2f:f3:cf:37:30:a5:2e:91:63:da:4f: ae:e8:38:97:38:2a:63:d5:55:91:dd:23:f9:ff:60: 18:b1:68:67:7f:df:f4:7e:38:33:39:36:43:e8:ee: cf:d9:19:84:d4:42:4f:51:17:a2:83:0d:57:7f:38: cd:49:61:fa:15:19:84:dc:45:bf:75:23:88:64:8e: b1:d1:69:64:99:5c:bc:c0:0b:ba:59:ff:75:47:29: 82:6c:80:37:a8:c6:a0:67:35:c6:25:d3:d8:ff:11: 3b:e5:78:11:35:b3:80:6c:b3:52:90:92:fd:a7:19: 7c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3C:2A:AC:1B:5D:FF:95:0C:7B:B4:29:EE:43:65:E8:89:3D:8A:5A X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:8d:24:ca:09:51:d2:fc:49:f4:0a:e6:b9:14:b0:36:93:3b: b9:2d:10:10:d4:16:81:cb:f5:cb:7c:69:bd:30:ea:a5:0c:42: 99:eb:a2:e0:bb:91:43:60:4a:c9:02:be:f1:fb:a2:cd:12:d2: 22:6d:00:ca:7a:4a:31:17:34:17:db:b7:d2:60:46:dc:7d:11: 61:bc:45:bf:1c:9c:09:5c:d2:9b:9e:44:6e:4b:ea:4e:8f:92: 3d:fc:96:ba:34:a4:61:db:b1:75:2f:45:d5:00:08:b9:32:9b: e6:3a:09:70:13:44:99:75:6b:d7:53:ea:9a:99:f4:0a:a7:7d: 84:19:96:b8:67:54:96:9b:bb:14:aa:ff:69:83:21:89:bf:76: 1d:cb:4d:42:b7:68:e1:f2:34:8a:55:3c:ac:fe:cd:c5:39:6a: 5a:fc:a5:c3:80:aa:16:01:c3:19:b7:60:16:b0:48:e6:6f:c8: da:ec:67:2b:c4:4c:48:90:3a:6b:03:0d:b1:fb:4b:93:fa:09: 97:bd:43:fe:2c:d1:63:61:aa:d6:1d:58:77:53:7f:e0:26:b4: 55:70:86:38:22:6f:43:9e:c0:9f:81:88:b4:ba:fd:13:dc:6e: 29:8a:0d:42:4d:f6:f2:1e:1c:35:7b:48:16:d6:c8:34:ac:29: 96:ad:6c:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUwNDI0MTgwNDMxWhcNMjUwNTAxMTgwNDMxWjAYMRYwFAYD VQQDEw02ODBhN2QyZi0wNzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxAnkqTUcCxCdVJSZh4RX2a7W0spQSHjVIYwRpsNvMJzZ6NzS/ZP+QOAPvgB A7MBkkWl4XHc62jMJqIZuw4CApxTq2QhS6ZOA9IG/cDRTdYHqLO2Kb3IdIr98fvR +JwAhzBr4+Aa9aMIVCOH+dZtaqfLmFWL+2MIE+NHFDSUmMqlv9wUMNGP77pdL/PP NzClLpFj2k+u6DiXOCpj1VWR3SP5/2AYsWhnf9/0fjgzOTZD6O7P2RmE1EJPURei gw1XfzjNSWH6FRmE3EW/dSOIZI6x0WlkmVy8wAu6Wf91RymCbIA3qMagZzXGJdPY /xE75XgRNbOAbLNSkJL9pxl89QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc8Kqwb Xf+VDHu0Ke5DZeiJPYpaMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnjSTKCVHS/En0Cua5FLA2kzu5LRAQ1BaBy/XLfGm9MOqlDEKZ66Lg u5FDYErJAr7x+6LNEtIibQDKekoxFzQX27fSYEbcfRFhvEW/HJwJXNKbnkRuS+pO j5I9/Ja6NKRh27F1L0XVAAi5MpvmOglwE0SZdWvXU+qamfQKp32EGZa4Z1SWm7sU qv9pgyGJv3Ydy01Ct2jh8jSKVTys/s3FOWpa/KXDgKoWAcMZt2AWsEjmb8ja7Gcr xExIkDprAw2x+0uT+gmXvUP+LNFjYarWHVh3U3/gJrRVcIY4Im9DnsCfgYi0uv0T 3G4pig1CTfbyHhw1e0gW1sg0rCmWrWy0 -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:38 2025 by rpki-client