$ rpki-client -vvf rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft File: jhRqR_5i0JoyZs4IOlecrROlgGY.mft (raw, json) Hash identifier: vpjf+YVqIgj1M9Epel5xp0IKng5KnY+EydMS91N7sZA= Subject key identifier: 49:5B:4D:79:5A:37:82:1D:D2:F4:49:51:35:0C:85:35:4B:3C:FD:F7 Authority key identifier: 8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 Certificate issuer: /CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft Manifest number: 0182 Signing time: Sun 15 Jun 2025 02:50:56 +0000 Manifest this update: Sun 15 Jun 2025 02:50:55 +0000 Manifest next update: Sun 22 Jun 2025 02:50:55 +0000 Files and hashes: 1: jhRqR_5i0JoyZs4IOlecrROlgGY.crl (hash: EPlo5p3iv5DLEmSChOpZU+pSDqTSbeyTKP+9rVlNB/Q=) 2: DFFEC4ECFA2B11ED89B90A2FC4F9AE02.roa (hash: yNzSo18Zr+VZZ8+QcBD6VKrhKtuzioN93vYAY/qtNGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91570C9, serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Validity Not Before: Jun 15 02:50:55 2025 GMT Not After : Jun 22 02:50:55 2025 GMT Subject: CN=684e3510-540f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7e:d6:e1:a5:2d:3d:31:93:18:e2:a0:c7:5f: 9f:99:6a:e9:2b:f3:87:41:22:70:3a:56:48:9f:e7: 9f:36:80:ec:e3:12:83:e3:c4:98:50:ec:ae:04:a7: 41:32:c4:35:9a:92:4a:13:64:a4:30:57:dc:07:44: 83:3e:8e:ad:66:06:df:24:ea:c7:2b:5a:94:de:cd: 18:26:17:3f:e3:27:66:a4:b4:74:65:ef:9f:58:71: d8:07:b9:61:05:c3:94:2f:a3:e7:3d:7f:e5:05:08: 1e:65:f1:3c:0d:53:ad:6d:0a:5a:52:7e:b7:d6:70: fc:9c:c8:ee:4f:05:e2:34:82:a6:22:fc:85:04:58: 07:65:85:99:13:38:26:2a:d5:97:7e:07:e1:ab:6a: 2f:ce:20:f5:58:3c:77:fc:94:e9:53:cf:d4:a4:2d: c1:33:f3:ea:c6:5c:ed:09:a5:10:8a:45:c1:7c:96: 67:e9:72:25:3c:ce:fc:ce:51:6a:2f:c5:fa:59:8e: 0c:ce:dc:28:4d:d8:e6:15:1b:25:0b:2c:95:ca:79: 46:41:39:f4:3f:64:50:17:32:99:64:b3:f7:60:d1: a6:4f:51:3d:0b:bf:cc:d4:22:03:a3:59:e9:ba:14: cb:17:6e:88:2a:16:d6:7f:6f:2e:62:eb:49:09:4a: 3b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5B:4D:79:5A:37:82:1D:D2:F4:49:51:35:0C:85:35:4B:3C:FD:F7 X509v3 Authority Key Identifier: keyid:8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:10:45:c3:30:b7:80:5a:6d:2e:3b:b9:44:5f:65:54:cd:c9: a6:55:45:7c:32:3e:e0:4b:95:60:f0:55:56:a6:49:e1:7f:c6: 1a:c7:f5:67:6e:2d:70:51:0e:9b:bb:d9:5f:f2:58:80:72:f2: 74:64:0c:b5:5b:36:1c:39:0a:ee:9c:3b:3c:4d:37:0a:9d:dc: b7:91:a6:dc:c7:e0:16:24:bd:35:7b:34:90:2c:07:9f:ef:66: 53:26:16:2a:42:ea:b0:97:65:ff:f0:5b:01:48:f7:a5:98:a1: a6:30:25:d3:5c:43:a9:5f:9c:40:fd:30:03:14:e3:98:b7:35: 5c:56:06:aa:65:1a:d8:22:f1:46:4e:b8:65:14:ed:f7:a4:09: 79:54:e1:3b:45:81:93:93:a3:b8:52:19:5b:40:3b:76:e7:83: 70:54:29:8e:41:79:8c:db:a7:75:50:1b:40:dc:22:cd:96:bf: 88:47:c7:f3:ab:7e:d4:92:7c:3c:f0:2c:26:22:25:7f:4a:83: c6:38:aa:0b:c9:ff:17:35:04:b7:e6:87:28:9e:7d:2c:25:37: 9b:10:5e:76:0c:d0:ea:98:3f:c7:9c:9c:1c:9d:ee:27:9e:78: 46:b8:c8:89:03:0b:2e:92:89:02:48:0e:38:e0:2d:18:bb:ca: ca:74:04:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwQzkxMTAvBgNVBAUTKDhFMTQ2QTQ3RkU2MkQwOUEzMjY2Q0UwODNBNTc5Q0FE MTNBNTgwNjYwHhcNMjUwNjE1MDI1MDU1WhcNMjUwNjIyMDI1MDU1WjAYMRYwFAYD VQQDEw02ODRlMzUxMC01NDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvn7W4aUtPTGTGOKgx1+fmWrpK/OHQSJwOlZIn+efNoDs4xKD48SYUOyuBKdB MsQ1mpJKE2SkMFfcB0SDPo6tZgbfJOrHK1qU3s0YJhc/4ydmpLR0Ze+fWHHYB7lh BcOUL6PnPX/lBQgeZfE8DVOtbQpaUn631nD8nMjuTwXiNIKmIvyFBFgHZYWZEzgm KtWXfgfhq2ovziD1WDx3/JTpU8/UpC3BM/PqxlztCaUQikXBfJZn6XIlPM78zlFq L8X6WY4MztwoTdjmFRslCyyVynlGQTn0P2RQFzKZZLP3YNGmT1E9C7/M1CIDo1np uhTLF26IKhbWf28uYutJCUo7DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElbTXla N4Id0vRJUTUMhTVLPP33MB8GA1UdIwQYMBaAFI4Uakf+YtCaMmbOCDpXnK0TpYBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzBDOS8wMjI3QjlBRUZB MjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBKb3laczRJT2xlY3JST2xn R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poUnFSXzVpMEpveVpzNElPbGVjclJPbGdHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzBDOS8wMjI3QjlBRUZBMjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBK b3laczRJT2xlY3JST2xnR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYEEXDMLeAWm0uO7lEX2VUzcmmVUV8Mj7gS5Vg8FVWpknhf8Yax/Vn bi1wUQ6bu9lf8liAcvJ0ZAy1WzYcOQrunDs8TTcKndy3kabcx+AWJL01ezSQLAef 72ZTJhYqQuqwl2X/8FsBSPelmKGmMCXTXEOpX5xA/TADFOOYtzVcVgaqZRrYIvFG TrhlFO33pAl5VOE7RYGTk6O4UhlbQDt254NwVCmOQXmM26d1UBtA3CLNlr+IR8fz q37Uknw88CwmIiV/SoPGOKoLyf8XNQS35oconn0sJTebEF52DNDqmD/HnJwcne4n nnhGuMiJAwsukokCSA444C0Yu8rKdATJ -----END CERTIFICATE-----Generated at Sun Jun 15 08:33:08 2025 by rpki-client