$ rpki-client -vvf rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft File: jMU6mSl_HMCgv73r8k4TKw2EHHY.mft (raw, json) Hash identifier: ew4dTOi8IYNNa7pmu2XtwRlkNOAqAvrOLzxZEk356UA= Subject key identifier: EA:3F:A4:06:F1:DA:B2:F2:C3:EB:03:6D:83:9A:9C:F9:DC:F4:1B:C5 Authority key identifier: 8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 Certificate issuer: /CN=A9139D93/serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft Manifest number: DD Signing time: Thu 01 May 2025 04:30:41 +0000 Manifest this update: Thu 01 May 2025 04:30:40 +0000 Manifest next update: Thu 08 May 2025 04:30:40 +0000 Files and hashes: 1: jMU6mSl_HMCgv73r8k4TKw2EHHY.crl (hash: MTPuecqlyyun0vR01UvNuM51cd9XIYZ6F2jLtycEZHc=) 2: E614FEEED6AF11EEAB03B528C4F9AE02.roa (hash: G17ALsZLxeT9rUtyM+i2zf7iC28VSeb9B4i0ScAYOoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 04:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139D93, serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Validity Not Before: May 1 04:30:40 2025 GMT Not After : May 8 04:30:40 2025 GMT Subject: CN=6812f8f0-d9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2a:b9:42:73:26:d9:71:44:91:19:64:7a:bd: 43:6d:35:bb:60:45:0d:33:85:87:a6:11:44:e8:7c: c5:80:02:b2:be:9d:5c:d3:5c:d7:98:2d:26:b0:43: 57:f0:57:c1:a6:97:96:b9:bd:8a:5e:2f:c6:05:ac: 6d:54:2a:bd:47:63:10:fb:3f:10:ac:59:73:11:6a: f0:78:11:03:38:e7:07:0e:7d:27:ee:ab:c2:62:79: 0e:a0:10:19:d6:76:d6:e6:77:02:e3:03:42:6a:f0: e9:c9:04:d5:bb:ac:a0:61:3d:ca:54:8c:b8:e4:24: 79:3e:c1:6e:4c:f3:fe:bf:1e:1c:94:6f:85:9f:8d: d2:2e:12:12:79:d9:57:93:d0:f9:93:6c:d6:e2:50: d9:5f:cf:ee:56:bc:5a:3f:d2:e9:76:54:aa:0b:bf: d5:65:8f:9a:f0:eb:dd:9d:24:c8:5e:a1:20:6e:5b: 23:01:15:60:23:ae:5e:b4:4c:b6:51:08:f2:f0:55: 56:18:84:19:94:18:05:ec:17:dc:f3:d2:da:6d:fb: da:3d:94:61:f1:1b:60:78:0c:2a:e4:7a:05:2f:7c: a5:59:7a:5c:35:23:26:a6:8c:f0:83:b2:1c:87:bf: 92:63:e7:fd:c5:51:dc:ff:e2:6e:63:50:7e:82:b7: f0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:3F:A4:06:F1:DA:B2:F2:C3:EB:03:6D:83:9A:9C:F9:DC:F4:1B:C5 X509v3 Authority Key Identifier: keyid:8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:88:ff:ca:89:03:db:c1:13:6a:70:b8:15:57:1d:16:cf:07: a2:89:eb:b2:be:a4:f8:1a:9a:0e:3c:9f:bf:1a:62:50:96:2a: a6:ad:d9:82:22:f4:c1:a2:94:65:5d:df:73:d0:88:da:33:ba: c2:74:91:d9:ee:f1:f4:a1:24:34:f1:14:16:0e:51:e6:9a:bb: 27:af:80:2e:91:ae:21:a8:13:c0:07:ad:43:4d:aa:41:10:28: a9:4b:8d:dc:e3:b2:c8:3f:31:b0:71:ba:5f:17:5a:6c:6f:d8: 1b:95:a1:b4:cd:c7:1e:ca:24:2c:c7:2e:78:2c:53:a8:1f:bf: 4b:6d:78:6e:b6:5b:f1:e0:1b:fb:1c:b6:ac:ce:18:52:e9:9a: dd:75:ce:cf:a0:db:c2:f7:7e:da:a1:d3:bc:a6:0b:a2:0e:27: 49:a4:be:65:f6:d9:a3:c9:62:ed:d7:27:00:2a:24:2d:09:6d: e6:bd:b8:7f:f6:52:92:ff:94:ea:42:42:fc:68:a3:31:db:dc: 96:9e:38:aa:2c:3f:7e:cb:6f:f9:38:6f:eb:ee:59:53:f8:a6: f6:be:f8:25:02:8d:7f:c5:0a:58:a3:37:18:6f:7a:56:a3:08: 24:3a:87:3d:97:d8:2b:6f:91:6b:4c:ac:e0:88:22:69:55:0e: 73:f4:fe:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlEOTMxMTAvBgNVBAUTKDhDQzUzQTk5Mjk3RjFDQzBBMEJGQkRFQkYyNEUxMzJC MEQ4NDFDNzYwHhcNMjUwNTAxMDQzMDQwWhcNMjUwNTA4MDQzMDQwWjAYMRYwFAYD VQQDEw02ODEyZjhmMC1kOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSq5QnMm2XFEkRlker1DbTW7YEUNM4WHphFE6HzFgAKyvp1c01zXmC0msENX 8FfBppeWub2KXi/GBaxtVCq9R2MQ+z8QrFlzEWrweBEDOOcHDn0n7qvCYnkOoBAZ 1nbW5ncC4wNCavDpyQTVu6ygYT3KVIy45CR5PsFuTPP+vx4clG+Fn43SLhISedlX k9D5k2zW4lDZX8/uVrxaP9LpdlSqC7/VZY+a8OvdnSTIXqEgblsjARVgI65etEy2 UQjy8FVWGIQZlBgF7Bfc89LabfvaPZRh8RtgeAwq5HoFL3ylWXpcNSMmpozwg7Ic h7+SY+f9xVHc/+JuY1B+grfw7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOo/pAbx 2rLyw+sDbYOanPnc9BvFMB8GA1UdIwQYMBaAFIzFOpkpfxzAoL+96/JOEysNhBx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUQ5My9DQ0JBQUFEQUQ2 QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hNQ2d2NzNyOGs0VEt3MkVI SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNVTZtU2xfSE1DZ3Y3M3I4azRUS3cyRUhIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OUQ5My9DQ0JBQUFEQUQ2QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hN Q2d2NzNyOGs0VEt3MkVISFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAViP/KiQPbwRNqcLgVVx0WzweiieuyvqT4GpoOPJ+/GmJQliqmrdmC IvTBopRlXd9z0IjaM7rCdJHZ7vH0oSQ08RQWDlHmmrsnr4Auka4hqBPAB61DTapB ECipS43c47LIPzGwcbpfF1psb9gblaG0zcceyiQsxy54LFOoH79LbXhutlvx4Bv7 HLaszhhS6Zrddc7PoNvC937aodO8pguiDidJpL5l9tmjyWLt1ycAKiQtCW3mvbh/ 9lKS/5TqQkL8aKMx29yWnjiqLD9+y2/5OG/r7llT+Kb2vvglAo1/xQpYozcYb3pW owgkOoc9l9grb5FrTKzgiCJpVQ5z9P5O -----END CERTIFICATE-----Generated at Thu May 1 19:16:40 2025 by rpki-client