$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: WYZScLboE3SwU2qZTCpBGiACXSr7KAwQCTt95sDC4Zk= Subject key identifier: B4:EF:BB:FE:16:03:1F:16:E3:78:87:D1:23:BE:83:BC:F3:E4:CD:F3 Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0E01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0DF6 Signing time: Thu 24 Apr 2025 17:48:44 +0000 Manifest this update: Thu 24 Apr 2025 17:48:44 +0000 Manifest next update: Thu 01 May 2025 17:48:44 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: 47g+nWgVzHf2YbDCxpIcZ/T+Wz8tgWlOJw0/fgADMMw=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3585 (0xe01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Apr 24 17:48:44 2025 GMT Not After : May 1 17:48:44 2025 GMT Subject: CN=680a797c-03cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f2:6e:19:b3:bb:13:f7:53:4d:96:a2:19:79: 50:55:c5:1c:d1:5f:7b:16:97:fd:42:e9:7d:8c:10: e8:0a:51:49:8b:ca:6c:61:be:99:53:62:04:3c:a2: 29:11:2b:73:3b:95:79:00:7b:f2:1b:06:43:95:4d: 2e:fd:7f:ba:af:b5:80:a5:3d:db:2c:c6:8a:1e:bd: 1e:42:f0:e2:14:d7:31:c6:bb:71:c5:f8:d9:b4:80: 9f:2e:81:14:30:51:0a:0c:a1:53:0c:b0:f1:ee:52: d6:9c:c6:b4:28:a5:c1:65:5c:84:6a:8b:b5:f3:e2: f8:0f:7d:90:a8:9b:33:30:c7:9d:58:d6:f3:61:e8: 02:d8:46:5a:c4:c0:af:25:55:e3:32:a5:b1:79:ed: d6:00:b7:92:ce:8e:71:a5:f2:c8:14:83:02:99:85: 4a:c9:65:0c:b5:29:9e:fb:bf:a4:fd:aa:65:81:68: 8b:8b:2f:db:99:d8:be:f3:23:38:0c:b1:5f:ef:e7: 53:15:14:f0:93:32:fe:17:bf:ec:f6:56:38:77:9f: 6b:05:7b:a6:c6:52:13:ba:c6:d0:a9:61:3f:47:85: 53:74:f9:24:85:0c:d9:26:3a:1e:1f:99:73:82:93: bd:a0:60:72:3a:f0:4d:1d:94:62:f6:a0:89:ee:ad: ff:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EF:BB:FE:16:03:1F:16:E3:78:87:D1:23:BE:83:BC:F3:E4:CD:F3 X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:f9:ef:4b:fd:31:d3:30:4f:fa:13:83:92:8c:68:82:0c:75: 5c:c7:cb:05:4f:e5:02:66:1c:c1:10:a2:fe:4d:c9:99:2c:f8: 89:63:3b:03:7b:d8:ca:99:84:bd:28:e8:0f:c5:1a:02:5f:cb: b7:8d:0f:c8:a0:ce:52:e1:09:1f:0f:c4:d6:9b:be:13:52:2b: 6b:3a:fd:5a:6b:ec:2e:3f:b7:1a:e3:8d:17:b8:15:24:ab:e4: 3b:ae:72:7b:67:c8:6d:d5:46:56:15:00:da:bc:a8:03:75:83: 96:91:79:89:a8:92:4f:7f:8e:9d:23:e5:82:66:f2:90:34:8e: c8:c8:10:ca:40:83:66:c4:8c:09:62:d1:d9:bc:97:43:19:e5: 85:22:e3:84:86:a3:01:cc:45:61:cc:84:69:43:92:57:13:3d: 63:78:e4:1b:0b:3b:42:a9:3f:05:eb:04:70:4b:b1:39:40:da: a8:8b:73:d9:57:61:a4:75:34:82:31:2c:86:44:23:b8:6b:e7: 2e:82:12:cd:b9:cc:eb:4f:b3:ee:97:3c:24:c0:54:fa:f8:43: dd:59:7b:65:98:27:3a:6c:f2:6c:8d:2a:36:dd:b5:71:8e:cb: 84:05:2e:9d:87:f1:9f:c2:b7:a6:e3:a7:01:88:cc:e1:d5:a4: e9:96:0d:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUwNDI0MTc0ODQ0WhcNMjUwNTAxMTc0ODQ0WjAYMRYwFAYD VQQDEw02ODBhNzk3Yy0wM2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/JuGbO7E/dTTZaiGXlQVcUc0V97Fpf9Qul9jBDoClFJi8psYb6ZU2IEPKIp EStzO5V5AHvyGwZDlU0u/X+6r7WApT3bLMaKHr0eQvDiFNcxxrtxxfjZtICfLoEU MFEKDKFTDLDx7lLWnMa0KKXBZVyEaou18+L4D32QqJszMMedWNbzYegC2EZaxMCv JVXjMqWxee3WALeSzo5xpfLIFIMCmYVKyWUMtSme+7+k/aplgWiLiy/bmdi+8yM4 DLFf7+dTFRTwkzL+F7/s9lY4d59rBXumxlITusbQqWE/R4VTdPkkhQzZJjoeH5lz gpO9oGByOvBNHZRi9qCJ7q3/HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTvu/4W Ax8W43iH0SO+g7zz5M3zMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7+e9L/THTME/6E4OSjGiCDHVcx8sFT+UCZhzBEKL+TcmZLPiJYzsD e9jKmYS9KOgPxRoCX8u3jQ/IoM5S4QkfD8TWm74TUitrOv1aa+wuP7ca440XuBUk q+Q7rnJ7Z8ht1UZWFQDavKgDdYOWkXmJqJJPf46dI+WCZvKQNI7IyBDKQINmxIwJ YtHZvJdDGeWFIuOEhqMBzEVhzIRpQ5JXEz1jeOQbCztCqT8F6wRwS7E5QNqoi3PZ V2GkdTSCMSyGRCO4a+cughLNuczrT7PulzwkwFT6+EPdWXtlmCc6bPJsjSo23bVx jsuEBS6dh/Gfwrem46cBiMzh1aTplg0L -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:29 2025 by rpki-client