$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: yItGy+sJg7QGo3pcpLNiy8XDslHVuLJ4Md2N8KkknQQ= Subject key identifier: 15:C8:8E:FD:9C:C8:D5:21:A6:E9:1E:0B:7F:F5:EF:9A:91:32:31:AD Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: 91 Signing time: Fri 25 Apr 2025 05:39:57 +0000 Manifest this update: Fri 25 Apr 2025 05:39:57 +0000 Manifest next update: Fri 02 May 2025 05:39:57 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: rIXY4BN+OFl1ASOdbIu4zrBG/K3yLSfeSuwA5Pf8HyU=) 2: 52D80E00FCC411EF8DCF3F31C4F9AE02.roa (hash: TsKzccZlVomVV3THVnPmoFvq3M8RMDhgrBAK7vI/i3s=) 3: DB9E3242C8E811EF86365B2AC4F9AE02.roa (hash: v6pTRro113en+h2WsmtXqk2rxE6NwkgghVA0fGJU70E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Apr 25 05:39:57 2025 GMT Not After : May 2 05:39:57 2025 GMT Subject: CN=680b202d-562c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e1:b7:9d:3f:69:39:61:0c:54:6d:64:2c:c8: 62:b3:5b:22:e2:02:53:a3:a7:73:3b:50:16:32:80: 01:ba:d3:17:24:78:c1:df:3b:66:76:17:66:7f:b9: 6d:95:e6:f9:34:ea:10:09:d7:0d:56:fa:13:c2:a9: 77:e5:f0:3e:82:e9:c3:2c:e4:79:04:6f:0c:cc:83: b2:e5:31:09:36:62:64:0b:7f:0e:91:5c:c3:7c:9b: 52:7d:58:5c:16:05:78:5f:c7:e7:eb:10:c9:ce:ba: 0f:a0:4d:35:98:ab:17:92:ca:c0:55:18:a5:8f:bf: 7d:ed:a7:68:cc:9f:e5:3d:47:fd:eb:57:86:53:3b: 9e:14:a7:b0:30:2e:b1:1f:f4:86:28:33:8e:fd:10: 6a:b8:b5:1c:64:aa:0c:91:26:4f:f6:98:c4:c4:c9: 11:79:b7:d0:72:e5:9b:23:0d:17:ed:89:82:44:32: 4a:25:b6:3f:fe:5a:c5:80:67:1d:5c:45:07:ae:22: db:56:92:c6:da:68:05:e6:34:50:e1:3f:1d:11:62: 9e:81:e7:4d:f7:4c:22:75:91:c8:c7:78:0a:c8:e5: c4:f1:58:e5:0e:ca:3c:bf:f4:ee:b3:6d:e7:11:e2: 66:8a:6f:43:72:9f:8d:24:2e:10:4f:a7:ee:a0:db: 15:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C8:8E:FD:9C:C8:D5:21:A6:E9:1E:0B:7F:F5:EF:9A:91:32:31:AD X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:b8:12:dd:7b:b7:59:33:51:0f:e6:57:91:a9:a9:75:cc:56: 89:7b:ef:2a:2f:6a:1e:09:e2:19:c6:fe:6d:ed:af:de:c2:57: f3:06:97:20:f5:5e:1c:a3:fe:d6:b7:dd:ef:18:08:bd:dc:78: b0:6a:45:e0:95:1a:11:be:42:98:fe:2b:76:bf:a7:ea:df:06: 4a:51:8c:0f:33:e6:66:28:c7:7f:62:df:94:c9:e5:39:1a:77: c7:88:e9:42:34:d0:f9:ef:ab:aa:c4:3b:d7:ec:57:93:da:47: 0d:6e:1f:6f:50:a6:2c:ac:c5:93:f6:ee:69:a2:a0:5c:81:77: eb:60:c5:9f:87:8b:37:37:e0:89:b5:92:7b:c5:c9:e6:24:da: 11:e2:ab:34:fb:b7:c4:8c:c8:e6:a6:4c:61:e0:a2:81:af:6e: e4:7d:08:11:68:f0:c6:99:ca:d2:78:4b:e4:65:56:bf:ac:f0: 3f:c1:8b:05:02:4a:21:81:a5:af:e8:1c:75:e0:78:ca:30:1f: f3:15:a3:cb:71:33:e4:b9:c0:26:cc:20:43:8d:cb:2e:dc:ce: 68:5a:51:d6:c3:05:a9:68:89:0c:01:2a:91:e8:ea:a8:fe:83: 67:0c:0f:81:1a:c4:e4:a1:d9:7b:7f:9f:49:1c:d5:22:ef:de: 17:6d:a5:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUwNDI1MDUzOTU3WhcNMjUwNTAyMDUzOTU3WjAYMRYwFAYD VQQDEw02ODBiMjAyZC01NjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eG3nT9pOWEMVG1kLMhis1si4gJTo6dzO1AWMoAButMXJHjB3ztmdhdmf7lt leb5NOoQCdcNVvoTwql35fA+gunDLOR5BG8MzIOy5TEJNmJkC38OkVzDfJtSfVhc FgV4X8fn6xDJzroPoE01mKsXksrAVRilj7997adozJ/lPUf961eGUzueFKewMC6x H/SGKDOO/RBquLUcZKoMkSZP9pjExMkRebfQcuWbIw0X7YmCRDJKJbY//lrFgGcd XEUHriLbVpLG2mgF5jRQ4T8dEWKegedN90widZHIx3gKyOXE8VjlDso8v/Tus23n EeJmim9Dcp+NJC4QT6fuoNsVrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXIjv2c yNUhpukeC3/175qRMjGtMB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIuBLde7dZM1EP5leRqal1zFaJe+8qL2oeCeIZxv5t7a/ewlfzBpcg 9V4co/7Wt93vGAi93HiwakXglRoRvkKY/it2v6fq3wZKUYwPM+ZmKMd/Yt+UyeU5 GnfHiOlCNND576uqxDvX7FeT2kcNbh9vUKYsrMWT9u5poqBcgXfrYMWfh4s3N+CJ tZJ7xcnmJNoR4qs0+7fEjMjmpkxh4KKBr27kfQgRaPDGmcrSeEvkZVa/rPA/wYsF AkohgaWv6Bx14HjKMB/zFaPLcTPkucAmzCBDjcsu3M5oWlHWwwWpaIkMASqR6Oqo /oNnDA+BGsTkodl7f59JHNUi794XbaVl -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:22 2025 by rpki-client