$ rpki-client -vvf rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.mft File: jWEfLNc3lK-AHBv2nYhICROAtKU.mft (raw, json) Hash identifier: pATNBboR3ENR8ReTc/osLeViWb5iBHhddliBqbGgexE= Subject key identifier: 1F:AB:22:33:2B:18:7B:3C:67:B2:6E:3E:F3:30:A0:E8:40:FC:30:44 Authority key identifier: 8D:61:1F:2C:D7:37:94:AF:80:1C:1B:F6:9D:88:48:09:13:80:B4:A5 Certificate issuer: /CN=A919FF19/serialNumber=8D611F2CD73794AF801C1BF69D8848091380B4A5 Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWEfLNc3lK-AHBv2nYhICROAtKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.mft Manifest number: 45 Signing time: Fri 25 Apr 2025 06:26:43 +0000 Manifest this update: Fri 25 Apr 2025 06:26:42 +0000 Manifest next update: Fri 02 May 2025 06:26:42 +0000 Files and hashes: 1: jWEfLNc3lK-AHBv2nYhICROAtKU.crl (hash: PWocT8n4cacYr9PPAN9nY1StTU0eyo83ziFopy2aBnY=) 2: A1FE9790C1B111EFACAB4071C4F9AE02.roa (hash: nTebHJ2nY/z4pA9GR9Zium43gwzyk8WFga213syhwvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.crl rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWEfLNc3lK-AHBv2nYhICROAtKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FF19, serialNumber=8D611F2CD73794AF801C1BF69D8848091380B4A5 Validity Not Before: Apr 25 06:26:42 2025 GMT Not After : May 2 06:26:42 2025 GMT Subject: CN=680b2b22-7174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:46:a8:b3:88:f7:c0:ed:b3:3b:26:f8:4f:77: b9:74:f0:6d:fb:f8:85:99:04:53:8e:2d:66:d8:be: 66:a8:db:b5:f0:cf:de:32:c6:25:90:7b:47:ae:35: c5:7b:54:a6:5b:04:0f:f8:bc:00:18:8d:c6:c5:0e: 66:4d:1e:15:3e:8f:a9:75:8a:ba:22:c4:1a:d2:29: 14:68:f5:b1:e8:43:41:44:1e:c3:0c:bf:b7:a6:47: a0:7c:3c:0e:60:f0:a9:58:57:b1:68:80:73:78:45: 5b:74:d5:95:95:3e:21:76:0a:1f:b6:e8:f0:88:77: 83:58:94:9b:11:9e:52:83:c4:07:ae:bc:b6:ad:7a: 92:dd:36:9d:11:18:d5:4c:0a:20:83:cc:ba:83:2b: a6:e0:2f:c4:ff:57:5a:c2:05:41:47:1f:99:fa:d3: d6:1b:37:ff:70:d4:09:1d:ff:86:3b:99:dc:44:db: e1:1b:3c:ee:7a:2a:e8:da:e4:cb:96:34:f2:e5:5b: 89:33:6a:6d:1e:dd:bb:73:c6:85:09:30:0d:95:ea: 88:cb:2d:4c:9a:79:45:3f:26:21:a0:82:19:fa:c5: 5b:e5:7d:1b:6a:3f:aa:7f:d4:3c:ec:f0:2e:20:ed: 69:d7:b2:34:11:10:d3:e2:3f:72:77:92:88:22:ee: 2e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:AB:22:33:2B:18:7B:3C:67:B2:6E:3E:F3:30:A0:E8:40:FC:30:44 X509v3 Authority Key Identifier: keyid:8D:61:1F:2C:D7:37:94:AF:80:1C:1B:F6:9D:88:48:09:13:80:B4:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWEfLNc3lK-AHBv2nYhICROAtKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:f9:8e:1d:47:6b:1f:f9:ed:7e:eb:cb:b2:ba:d4:d6:8b:68: 32:16:c6:86:c5:80:88:d7:6d:08:a8:eb:e5:fc:5e:75:bf:48: 1b:69:c7:c2:a8:c3:a0:01:a2:39:72:21:9e:d0:44:44:5d:24: 43:e6:b5:c5:93:c7:87:96:44:36:96:b0:4b:77:b8:88:3d:34: 98:69:37:df:d7:cf:53:74:6d:8a:cd:3f:dd:ce:0d:bb:2a:e4: 0c:ae:78:5a:d0:6f:79:94:8e:01:0a:e0:90:aa:aa:4b:ec:91: 39:0f:5b:ca:5b:6d:05:f8:b3:9a:58:61:d0:3c:bf:93:17:f1: cc:26:ce:66:2e:49:88:48:2b:9b:bc:44:df:c9:eb:f8:99:87: c3:09:16:42:57:9f:24:22:a7:e6:7c:7e:b2:d2:a7:6d:65:db: 48:31:62:a1:70:2b:fa:54:41:c2:9c:37:d8:c4:6b:d2:df:ab: 5b:0c:83:33:6c:f0:64:7b:04:24:a5:b4:c8:8f:76:78:e7:22: 8e:3e:03:c6:54:64:a1:e8:cb:0f:8f:9e:10:21:38:2d:e8:4d: e2:3c:dc:04:48:c9:fe:86:23:4e:53:12:72:8e:65:f0:dd:ed: ce:f2:bc:67:49:9d:52:b9:04:26:c2:4e:d5:b1:72:6c:22:aa: a4:bd:ea:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RkYxOTExMC8GA1UEBRMoOEQ2MTFGMkNENzM3OTRBRjgwMUMxQkY2OUQ4ODQ4MDkx MzgwQjRBNTAeFw0yNTA0MjUwNjI2NDJaFw0yNTA1MDIwNjI2NDJaMBgxFjAUBgNV BAMTDTY4MGIyYjIyLTcxNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2RqiziPfA7bM7JvhPd7l08G37+IWZBFOOLWbYvmao27Xwz94yxiWQe0euNcV7 VKZbBA/4vAAYjcbFDmZNHhU+j6l1iroixBrSKRRo9bHoQ0FEHsMMv7emR6B8PA5g 8KlYV7FogHN4RVt01ZWVPiF2Ch+26PCId4NYlJsRnlKDxAeuvLatepLdNp0RGNVM CiCDzLqDK6bgL8T/V1rCBUFHH5n609YbN/9w1Akd/4Y7mdxE2+EbPO56Kuja5MuW NPLlW4kzam0e3btzxoUJMA2V6ojLLUyaeUU/JiGgghn6xVvlfRtqP6p/1Dzs8C4g 7WnXsjQRENPiP3J3kogi7i7LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH6siMysY ezxnsm4+8zCg6ED8MEQwHwYDVR0jBBgwFoAUjWEfLNc3lK+AHBv2nYhICROAtKUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGRjE5L0QyM0NCMEJBQzFB RjExRUZCRTdBMTQ1REM0RjlBRTAyL2pXRWZMTmMzbEstQUhCdjJuWWhJQ1JPQXRL VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaldFZkxOYzNsSy1BSEJ2Mm5ZaElDUk9BdEtVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG RjE5L0QyM0NCMEJBQzFBRjExRUZCRTdBMTQ1REM0RjlBRTAyL2pXRWZMTmMzbEst QUhCdjJuWWhJQ1JPQXRLVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADP5jh1Hax/57X7ry7K61NaLaDIWxobFgIjXbQio6+X8XnW/SBtpx8Ko w6ABojlyIZ7QRERdJEPmtcWTx4eWRDaWsEt3uIg9NJhpN9/Xz1N0bYrNP93ODbsq 5AyueFrQb3mUjgEK4JCqqkvskTkPW8pbbQX4s5pYYdA8v5MX8cwmzmYuSYhIK5u8 RN/J6/iZh8MJFkJXnyQip+Z8frLSp21l20gxYqFwK/pUQcKcN9jEa9Lfq1sMgzNs 8GR7BCSltMiPdnjnIo4+A8ZUZKHoyw+PnhAhOC3oTeI83ARIyf6GI05TEnKOZfDd 7c7yvGdJnVK5BCbCTtWxcmwiqqS96gw= -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:15 2025 by rpki-client