$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: 624cSMnBpZEvwQsgzAtnJP1Zc33nJRUWlQpj3cL5NgM= Subject key identifier: 9B:99:51:A5:C7:75:E5:AD:21:0F:4D:9A:E8:6F:64:36:94:68:DF:27 Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 29C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 29B9 Signing time: Thu 24 Apr 2025 15:37:28 +0000 Manifest this update: Thu 24 Apr 2025 15:37:27 +0000 Manifest next update: Thu 01 May 2025 15:37:27 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: hUr2l8qVylTF/xt6M4QzVg5Cf2Z+MiPWgm8Kl7Zdo38=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10690 (0x29c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Apr 24 15:37:27 2025 GMT Not After : May 1 15:37:27 2025 GMT Subject: CN=680a5ab8-d0d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:31:f1:02:91:80:63:b3:11:b3:72:03:f9:86: a4:cd:ba:a4:9f:ee:bd:ba:c8:02:c0:7e:ac:5f:01: 8e:4c:f9:ac:5c:ee:16:fc:b8:ed:1b:62:51:46:a8: aa:28:91:a3:b2:d3:ac:9f:e5:f3:4b:83:28:80:c2: 3e:c8:f5:c3:b4:a3:e9:63:8e:ac:14:0f:14:3c:8d: eb:11:33:4b:64:cf:83:69:c1:0f:a8:05:a5:fa:31: 77:3c:70:65:bf:4d:06:bb:81:7b:64:47:37:f1:a8: b9:70:aa:2b:84:95:b8:11:6e:32:99:39:f3:da:e2: e8:03:bc:f2:b7:ce:5b:32:69:5d:25:a6:f2:b4:ee: 79:85:3e:a1:e8:95:ce:b3:7d:32:eb:1b:9f:15:80: fe:70:6f:38:f2:37:ff:ac:ea:d0:85:a7:79:21:2d: 84:af:34:d3:ae:ed:3e:d7:e0:2a:34:be:7c:4a:89: 08:9b:43:d3:7f:fc:36:97:ba:bb:a9:42:1c:8d:22: fe:5c:2b:db:7b:b5:fd:7e:2e:23:4d:1b:f1:57:88: ba:9f:b7:78:19:f7:65:37:5e:c0:c2:87:04:7f:ad: 8e:4f:74:dd:00:fc:1f:7b:63:36:72:30:ee:55:75: 6d:94:4b:2d:24:aa:1a:c8:c0:f7:e8:47:26:88:65: 42:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:99:51:A5:C7:75:E5:AD:21:0F:4D:9A:E8:6F:64:36:94:68:DF:27 X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:c1:fd:f2:e6:1e:9f:34:fb:54:d6:4f:18:70:c8:ae:1c:b9: 7c:2b:45:58:ba:0c:27:c8:64:46:ce:69:6a:b8:d9:63:75:f6: 6c:83:46:61:3f:6c:a0:2e:9a:00:d2:39:fa:79:8a:ce:ad:08: 1e:2f:fe:46:83:49:c2:88:ad:19:ff:0a:72:0f:1c:1f:49:33: 75:86:5b:cf:a8:ea:e1:e2:cf:17:5f:e9:de:87:b7:b2:7c:ac: f7:b9:10:ff:81:b2:a9:48:d3:b0:95:bf:76:eb:23:e5:74:ce: 52:4b:06:9c:75:fb:0e:0f:6f:16:60:eb:5c:68:02:ae:2d:e3: a3:40:75:5d:e6:52:a6:75:6a:d3:05:17:41:f7:bf:88:7b:bd: ed:15:57:63:11:5e:07:7b:32:13:eb:00:59:28:cb:73:3f:fa: cf:73:e2:1f:09:02:9a:07:bd:17:6e:b6:65:42:56:4f:64:4b: a8:3f:5f:b7:9f:f2:6e:93:5d:8c:91:b6:97:e2:ae:ff:7a:40: 2c:39:17:5a:85:d8:96:7e:53:bf:c9:10:08:8c:5b:3c:42:a0: 3e:75:b5:23:1d:c0:13:64:ac:44:14:f1:76:19:86:b3:c6:2b: 5b:df:a3:e2:26:6d:9a:6e:78:0c:a0:08:de:97:7e:d0:18:d9: 66:58:df:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUwNDI0MTUzNzI3WhcNMjUwNTAxMTUzNzI3WjAYMRYwFAYD VQQDEw02ODBhNWFiOC1kMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTHxApGAY7MRs3ID+Yakzbqkn+69usgCwH6sXwGOTPmsXO4W/LjtG2JRRqiq KJGjstOsn+XzS4MogMI+yPXDtKPpY46sFA8UPI3rETNLZM+DacEPqAWl+jF3PHBl v00Gu4F7ZEc38ai5cKorhJW4EW4ymTnz2uLoA7zyt85bMmldJabytO55hT6h6JXO s30y6xufFYD+cG848jf/rOrQhad5IS2ErzTTru0+1+AqNL58SokIm0PTf/w2l7q7 qUIcjSL+XCvbe7X9fi4jTRvxV4i6n7d4GfdlN17AwocEf62OT3TdAPwfe2M2cjDu VXVtlEstJKoayMD36EcmiGVC2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuZUaXH deWtIQ9NmuhvZDaUaN8nMB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAwf3y5h6fNPtU1k8YcMiuHLl8K0VYugwnyGRGzmlquNljdfZsg0Zh P2ygLpoA0jn6eYrOrQgeL/5Gg0nCiK0Z/wpyDxwfSTN1hlvPqOrh4s8XX+neh7ey fKz3uRD/gbKpSNOwlb926yPldM5SSwacdfsOD28WYOtcaAKuLeOjQHVd5lKmdWrT BRdB97+Ie73tFVdjEV4HezIT6wBZKMtzP/rPc+IfCQKaB70XbrZlQlZPZEuoP1+3 n/Juk12MkbaX4q7/ekAsORdahdiWflO/yRAIjFs8QqA+dbUjHcATZKxEFPF2GYaz xitb36PiJm2abngMoAjel37QGNlmWN/x -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:13 2025 by rpki-client