$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: WFbRv4mz4fUo3PDyOtxJ+17ZvWpoAqNoT295KV0JZMI= Subject key identifier: 1F:BA:E9:6B:79:4D:9D:00:7D:6E:0B:64:B8:9C:F4:94:85:65:77:72 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 026E Signing time: Fri 25 Apr 2025 01:29:09 +0000 Manifest this update: Fri 25 Apr 2025 01:29:09 +0000 Manifest next update: Fri 02 May 2025 01:29:09 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: HVJY/ofPLDsDPY8w10eXNv4gU/bs5HNMlRhpqyjz2IQ=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: hJkxXQfC6FPhKQvUl8F7nqWwJZPrWQsil7QshGWSWw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:29:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7, serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: Apr 25 01:29:09 2025 GMT Not After : May 2 01:29:09 2025 GMT Subject: CN=680ae565-1f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:78:c9:e8:d0:18:73:1b:51:31:f7:7a:5b: dc:e6:74:8d:99:1b:30:39:35:6f:74:a5:69:42:7f: f5:fb:02:19:fd:fe:a2:3a:15:67:50:5c:8a:b8:06: a1:a6:5c:a3:92:e1:d9:0e:c1:e1:b5:0e:4b:e5:62: 9e:b3:29:a7:02:58:50:a3:8a:1f:4e:c7:66:89:8c: 4a:35:17:88:cc:79:9f:a1:8a:ff:0d:bb:9a:5e:64: 56:83:26:13:85:96:a5:ed:73:29:c9:d1:bf:78:15: 3c:11:57:70:22:a4:07:5b:6d:2c:c7:f0:65:6e:a8: db:d2:38:9d:e6:04:1b:ae:4e:e9:81:08:20:6b:a6: 39:62:a7:1e:51:fc:e9:57:e0:fa:86:28:55:f2:a6: 1e:ad:8e:21:9e:5c:a4:f4:5c:ef:26:21:98:20:72: 19:93:c8:f3:39:be:fe:c7:72:a1:af:56:bc:8e:9c: cc:68:f5:9c:a0:dd:12:67:96:74:98:26:93:ae:4e: 7b:c1:3b:9c:e0:58:58:5a:f3:38:29:4d:3b:cb:e4: 56:46:74:16:b9:10:e5:04:ef:2c:21:af:08:20:ce: 8c:c3:40:56:0d:88:ba:d1:56:23:fd:2b:f1:3a:e1: 73:4e:5a:f4:86:f4:1e:a0:24:ad:f6:f7:75:c9:16: 7e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:BA:E9:6B:79:4D:9D:00:7D:6E:0B:64:B8:9C:F4:94:85:65:77:72 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:39:52:6f:b9:4c:78:d3:eb:83:2e:95:92:de:89:9a:87:36: 39:57:7a:33:f7:90:b9:f8:03:4a:b5:b4:7d:a7:dd:f9:a7:a9: da:cc:42:9b:54:d4:65:8d:4c:e8:31:09:e9:d2:12:52:9f:6a: 07:f6:7e:86:23:17:d8:d7:e6:a5:b7:1c:90:73:1e:59:72:13: 81:f7:92:37:21:a7:e3:d0:62:29:e5:ee:8e:6f:79:bc:03:90: d7:f0:31:5d:79:63:81:a4:41:93:b1:9f:c9:d5:c7:87:a0:d1: 54:9a:99:b6:19:e6:e6:14:3b:45:8c:85:92:00:ae:b3:fd:86: 5a:7c:29:e0:8f:b2:cc:19:0a:f6:3f:a2:9d:d4:7b:0a:54:f0: c4:45:4d:ea:32:e4:f6:62:ee:f0:5f:c8:06:02:95:a0:7e:cf: a2:81:34:53:f3:ca:4e:7a:a1:6f:6f:9a:4a:eb:28:6e:ed:38: 35:a8:38:88:70:19:47:b1:df:76:90:46:c5:ac:6b:98:ad:7b: d6:e9:9c:3b:f4:fb:b9:92:29:7a:1f:65:15:56:5a:1e:4d:74: 11:44:70:71:1c:45:e1:5f:2a:0e:16:c0:1d:32:f3:a7:92:f2: 52:c3:4f:03:60:d2:16:2a:7c:bc:9c:51:5c:b9:1e:ce:8e:3b: 76:2b:54:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjUwNDI1MDEyOTA5WhcNMjUwNTAyMDEyOTA5WjAYMRYwFAYD VQQDEw02ODBhZTU2NS0xZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbB4yejQGHMbUTH3elvc5nSNmRswOTVvdKVpQn/1+wIZ/f6iOhVnUFyKuAah plyjkuHZDsHhtQ5L5WKesymnAlhQo4ofTsdmiYxKNReIzHmfoYr/DbuaXmRWgyYT hZal7XMpydG/eBU8EVdwIqQHW20sx/Blbqjb0jid5gQbrk7pgQgga6Y5YqceUfzp V+D6hihV8qYerY4hnlyk9FzvJiGYIHIZk8jzOb7+x3Khr1a8jpzMaPWcoN0SZ5Z0 mCaTrk57wTuc4FhYWvM4KU07y+RWRnQWuRDlBO8sIa8IIM6Mw0BWDYi60VYj/Svx OuFzTlr0hvQeoCSt9vd1yRZ+AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+66Wt5 TZ0AfW4LZLic9JSFZXdyMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCOVJvuUx40+uDLpWS3omahzY5V3oz95C5+ANKtbR9p935p6nazEKb VNRljUzoMQnp0hJSn2oH9n6GIxfY1+altxyQcx5ZchOB95I3Iafj0GIp5e6Ob3m8 A5DX8DFdeWOBpEGTsZ/J1ceHoNFUmpm2GebmFDtFjIWSAK6z/YZafCngj7LMGQr2 P6Kd1HsKVPDERU3qMuT2Yu7wX8gGApWgfs+igTRT88pOeqFvb5pK6yhu7Tg1qDiI cBlHsd92kEbFrGuYrXvW6Zw79Pu5kil6H2UVVloeTXQRRHBxHEXhXyoOFsAdMvOn kvJSw08DYNIWKny8nFFcuR7Ojjt2K1RU -----END CERTIFICATE-----Generated at Sat Apr 26 12:54:56 2025 by rpki-client