$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft File: JL-jY1L4TxqPpGnesOg26ANa5GY.mft (raw, json) Hash identifier: 9YFTOLL53So1KKk+nn4YNvG6STFaQdzDPucWJzsEenA= Subject key identifier: DF:7A:DA:A2:AB:59:33:2E:45:90:76:F0:63:16:8B:D3:F3:33:6A:07 Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft Manifest number: 0816 Signing time: Thu 24 Apr 2025 20:42:22 +0000 Manifest this update: Thu 24 Apr 2025 20:42:22 +0000 Manifest next update: Thu 01 May 2025 20:42:22 +0000 Files and hashes: 1: JL-jY1L4TxqPpGnesOg26ANa5GY.crl (hash: rpl1uEMIs6HfrTSVz2uTQ6QZpZ15BRUszti/9f0Umd8=) 2: 72603CD6D28811EAB7D79A47C4F9AE02.roa (hash: 6Bc7j8sUdc3lR92uuO8CWG9pkmoXFTsfXQekCJg3xcI=) 3: 71DBA2E6D28811EAB7D79A47C4F9AE02.roa (hash: t7bI+leFxXguniwnyNd214UolzyAinJGbujLaZqsEZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Apr 24 20:42:22 2025 GMT Not After : May 1 20:42:22 2025 GMT Subject: CN=680aa22e-8296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:84:52:4f:01:64:b1:92:aa:81:60:fb:d0:a5: 61:56:8b:34:d5:d2:ad:41:51:f2:e4:75:a4:7e:8a: ee:44:b7:bd:19:80:4f:26:8b:d0:1d:a0:8d:2a:31: 88:57:35:b9:b4:e8:27:56:ac:9e:4d:b9:d8:ef:d5: 53:9c:bc:6a:ec:0f:16:17:e8:76:99:64:a5:23:5e: 04:a1:74:18:36:02:5c:11:59:77:7e:dc:e3:01:18: 1b:3f:a8:16:79:de:25:db:e8:37:51:a4:bc:d8:d4: 15:9a:67:fe:2b:31:f1:8d:a9:63:00:94:45:b3:fc: 56:76:97:16:78:3a:ed:8b:9c:e5:2a:9f:dd:dd:65: e4:9e:50:0c:c9:83:21:49:6e:97:0b:d2:ba:ab:8b: e4:36:68:fd:d8:f6:92:9f:fc:13:83:b6:09:ba:4e: ab:47:5c:76:83:4b:5d:9c:a3:ea:f5:47:27:37:bb: f7:75:86:ea:c3:ec:b4:b9:f6:3f:86:b8:79:ef:41: 58:da:32:68:ba:05:af:c9:a8:b3:07:c3:e9:f3:91: 6c:56:f3:1b:f8:36:9a:24:16:65:e1:a7:30:ef:bf: 52:74:f5:09:83:8c:88:35:d3:9c:09:00:d0:4e:7e: 7f:38:2b:5f:01:db:92:49:48:79:37:c3:74:24:94: 28:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7A:DA:A2:AB:59:33:2E:45:90:76:F0:63:16:8B:D3:F3:33:6A:07 X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:25:ba:6d:46:31:d0:40:ec:69:2a:05:3b:05:94:f9:7a:4d: 64:ca:ea:ba:d8:5f:4c:ea:50:06:e2:4b:f6:fc:ec:48:95:82: 6e:e1:88:cd:d0:a1:c8:ef:c3:e3:c0:7f:0c:ab:f7:28:8b:44: c0:a2:60:31:64:a9:60:12:55:69:df:5b:3b:41:96:0b:28:57: 59:2a:df:8f:da:c9:d3:60:9d:6f:d2:4f:65:0e:74:5a:87:45: 93:d2:35:e7:fe:b0:07:cf:17:25:d2:ad:3e:fe:e5:df:9b:84: 2a:a9:32:94:c5:21:08:24:d8:33:ec:37:18:6a:30:45:64:59: 22:d0:fc:95:dc:b3:ab:e8:07:24:74:1d:2a:fa:22:c7:63:db: 17:f8:e4:fb:74:18:1b:9d:d7:7b:b9:2c:60:c0:41:55:ca:e3: 0e:5c:25:b5:4a:26:73:e9:bf:f9:01:e4:6f:b5:d7:b8:e5:78: 75:3e:e0:0e:48:c8:b4:8b:5b:a0:2c:2d:59:aa:d3:9f:8f:17: b6:f7:31:fb:16:56:c3:3c:e4:2d:21:f4:d6:a6:0a:27:69:56: 86:f4:b2:01:83:64:41:3b:69:05:56:b9:e0:39:9a:3e:1f:90: ff:73:69:89:60:3d:9e:5b:4a:ab:26:d5:a4:7f:be:d5:27:03: 75:55:89:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjUwNDI0MjA0MjIyWhcNMjUwNTAxMjA0MjIyWjAYMRYwFAYD VQQDEw02ODBhYTIyZS04Mjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIRSTwFksZKqgWD70KVhVos01dKtQVHy5HWkforuRLe9GYBPJovQHaCNKjGI VzW5tOgnVqyeTbnY79VTnLxq7A8WF+h2mWSlI14EoXQYNgJcEVl3ftzjARgbP6gW ed4l2+g3UaS82NQVmmf+KzHxjaljAJRFs/xWdpcWeDrti5zlKp/d3WXknlAMyYMh SW6XC9K6q4vkNmj92PaSn/wTg7YJuk6rR1x2g0tdnKPq9UcnN7v3dYbqw+y0ufY/ hrh570FY2jJougWvyaizB8Pp85FsVvMb+DaaJBZl4acw779SdPUJg4yINdOcCQDQ Tn5/OCtfAduSSUh5N8N0JJQodQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN962qKr WTMuRZB28GMWi9PzM2oHMB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDNFOC8zRjFGMEREQUQyODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4 cVBwR25lc09nMjZBTmE1R1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5JbptRjHQQOxpKgU7BZT5ek1kyuq62F9M6lAG4kv2/OxIlYJu4YjN 0KHI78PjwH8Mq/coi0TAomAxZKlgElVp31s7QZYLKFdZKt+P2snTYJ1v0k9lDnRa h0WT0jXn/rAHzxcl0q0+/uXfm4QqqTKUxSEIJNgz7DcYajBFZFki0PyV3LOr6Ack dB0q+iLHY9sX+OT7dBgbndd7uSxgwEFVyuMOXCW1SiZz6b/5AeRvtde45Xh1PuAO SMi0i1ugLC1ZqtOfjxe29zH7FlbDPOQtIfTWpgonaVaG9LIBg2RBO2kFVrngOZo+ H5D/c2mJYD2eW0qrJtWkf77VJwN1VYl3 -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:34 2025 by rpki-client