$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft File: jdQUSFkXzUyAFnvaGdcklkawZyU.mft (raw, json) Hash identifier: tle4cZnsAl0uTRwpKlERsj20lR5/mGJFx8QLzqTsDag= Subject key identifier: 98:58:92:2B:9D:07:A7:AE:9B:8D:F9:B4:37:67:3F:18:35:CD:1A:3D Authority key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 Certificate issuer: /CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft Manifest number: 75 Signing time: Fri 25 Apr 2025 05:49:22 +0000 Manifest this update: Fri 25 Apr 2025 05:49:22 +0000 Manifest next update: Fri 02 May 2025 05:49:22 +0000 Files and hashes: 1: jdQUSFkXzUyAFnvaGdcklkawZyU.crl (hash: 10t7eknbdW+oRYJaoQ/9pMYZtiuSncLs0vT8+eaZkZs=) 2: FF3D553675B711EF83FAAE42C4F9AE02.roa (hash: /HTBqf5H3Uz657hsatlKZqGr2vioW9ZJotjtVpnDq5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Validity Not Before: Apr 25 05:49:22 2025 GMT Not After : May 2 05:49:22 2025 GMT Subject: CN=680b2262-9cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b6:98:36:bc:df:f7:f4:08:03:35:59:1f:51: 2e:36:76:32:4d:82:4b:3c:f3:d1:08:9b:06:06:58: 93:e3:62:23:67:d9:a5:06:37:27:ec:06:44:8e:d1: 0d:e5:d8:0b:58:b8:a9:75:e9:a0:52:dd:4e:dc:00: 48:be:db:ad:08:cc:0c:21:aa:81:64:76:78:e0:52: f8:d3:9a:2b:6e:ad:2f:37:3a:70:5f:8c:e5:e6:8e: dd:b0:f0:cb:62:e9:18:8b:04:c3:f6:e2:0e:c7:25: 36:a7:65:c0:ab:fc:bf:0f:d7:ea:25:60:7d:81:c6: 55:5d:3a:2a:59:b6:0d:ac:08:c5:66:2c:f9:29:56: 25:fd:a3:52:6b:4b:08:9a:9a:60:bc:10:a1:da:e2: cd:96:7b:e9:0a:bb:d4:23:da:2c:90:dd:62:bd:97: 19:69:d2:4b:5a:c9:a0:f4:6b:26:7c:bc:6e:84:ca: 88:e0:1f:48:3c:37:2b:af:77:85:37:97:8f:09:ef: 4f:73:97:21:fb:e0:55:75:93:99:bc:af:42:8a:1d: fd:f1:c7:39:28:f6:11:73:63:d2:64:c9:09:3b:b2: 19:72:65:02:a7:7a:c2:b3:1b:1f:bc:30:16:48:9d: ff:ec:21:7b:6f:8e:40:9d:71:ec:cf:13:fc:c7:d2: c5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:58:92:2B:9D:07:A7:AE:9B:8D:F9:B4:37:67:3F:18:35:CD:1A:3D X509v3 Authority Key Identifier: keyid:8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:54:f0:b3:73:40:43:83:11:68:ea:ef:c1:f1:7f:b5:78:00: be:47:29:de:96:fe:19:33:14:9d:74:c8:0a:58:4b:98:db:5c: db:14:1c:7e:0e:1d:d6:c2:58:ff:bb:d2:28:0d:b4:ec:f4:36: c0:fb:77:05:d7:d8:1e:88:99:cd:ed:ba:a4:c8:ca:aa:f5:b4: 90:58:de:81:2c:0c:48:a6:70:c2:3f:80:1a:6c:62:47:06:97: c8:3d:78:01:b4:1a:fb:fc:46:8c:a5:64:35:11:c9:2c:a6:7a: c4:7e:6d:05:c0:4e:ab:1a:2c:f9:65:ac:57:88:e1:66:36:3f: 29:72:9d:e7:14:ae:66:18:23:87:10:1d:3d:70:11:e4:0d:18: c4:5c:fc:ba:2b:42:a1:c6:3f:7e:ac:af:71:de:f6:ad:f3:c9: 57:1d:00:13:8f:2c:9a:e6:ff:eb:bf:94:31:47:df:3b:08:9c: 64:b1:37:82:d4:6b:cf:82:35:3f:9a:1f:ed:0e:3e:e6:b1:37: bb:73:f6:da:6b:e7:25:b8:71:ee:c9:5b:37:27:90:5b:bd:8a: 76:40:ee:e8:bf:34:ad:dc:c4:a4:d5:c2:77:18:f7:4e:cf:91: d7:d2:27:89:9c:4c:59:6d:de:bd:8d:f2:23:21:4c:bb:71:e2: 5f:70:76:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzdCOTExMC8GA1UEBRMoOERENDE0NDg1OTE3Q0Q0QzgwMTY3QkRBMTlENzI0OTY0 NkIwNjcyNTAeFw0yNTA0MjUwNTQ5MjJaFw0yNTA1MDIwNTQ5MjJaMBgxFjAUBgNV BAMTDTY4MGIyMjYyLTljZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9tpg2vN/39AgDNVkfUS42djJNgks889EImwYGWJPjYiNn2aUGNyfsBkSO0Q3l 2AtYuKl16aBS3U7cAEi+260IzAwhqoFkdnjgUvjTmiturS83OnBfjOXmjt2w8Mti 6RiLBMP24g7HJTanZcCr/L8P1+olYH2BxlVdOipZtg2sCMVmLPkpViX9o1JrSwia mmC8EKHa4s2We+kKu9Qj2iyQ3WK9lxlp0ktayaD0ayZ8vG6EyojgH0g8Nyuvd4U3 l48J709zlyH74FV1k5m8r0KKHf3xxzko9hFzY9JkyQk7shlyZQKnesKzGx+8MBZI nf/sIXtvjkCdcezPE/zH0sVrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmFiSK50H p66bjfm0N2c/GDXNGj0wHwYDVR0jBBgwFoAUjdQUSFkXzUyAFnvaGdcklkawZyUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3N0I5L0QyN0M5MTVDNzVC NjExRUZCOEUyMTUxNEM0RjlBRTAyL2pkUVVTRmtYelV5QUZudmFHZGNrbGthd1p5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvamRRVVNGa1h6VXlBRm52YUdkY2tsa2F3WnlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 N0I5L0QyN0M5MTVDNzVCNjExRUZCOEUyMTUxNEM0RjlBRTAyL2pkUVVTRmtYelV5 QUZudmFHZGNrbGthd1p5VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGRU8LNzQEODEWjq78Hxf7V4AL5HKd6W/hkzFJ10yApYS5jbXNsUHH4O HdbCWP+70igNtOz0NsD7dwXX2B6Imc3tuqTIyqr1tJBY3oEsDEimcMI/gBpsYkcG l8g9eAG0Gvv8RoylZDURySymesR+bQXATqsaLPllrFeI4WY2PylynecUrmYYI4cQ HT1wEeQNGMRc/LorQqHGP36sr3He9q3zyVcdABOPLJrm/+u/lDFH3zsInGSxN4LU a8+CNT+aH+0OPuaxN7tz9tpr5yW4ce7JWzcnkFu9inZA7ui/NK3cxKTVwncY907P kdfSJ4mcTFlt3r2N8iMhTLtx4l9wdg8= -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:56 2025 by rpki-client