$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft File: J39oYmhAcrYqFW3fdd13JcOPUdA.mft (raw, json) Hash identifier: 1yyjDmxcRakMgBOGpuvUAVF5JhRoNwvuuRMOR9pzvRA= Subject key identifier: 44:14:DD:5E:D9:43:9C:41:08:9A:C9:22:83:A6:CC:32:7F:38:E4:EF Authority key identifier: 27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 Certificate issuer: /CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Certificate serial: 0A49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft Manifest number: 0A3E Signing time: Thu 24 Apr 2025 19:38:31 +0000 Manifest this update: Thu 24 Apr 2025 19:38:31 +0000 Manifest next update: Thu 01 May 2025 19:38:31 +0000 Files and hashes: 1: J39oYmhAcrYqFW3fdd13JcOPUdA.crl (hash: 0kvVFWme1sjxceQFVT3lro83T7peKyJrUv3O3zeK3Hk=) 2: 8AAEC8AEE48D11EF98A3562BC4F9AE02.roa (hash: 8qV4xNEzC9YwAyrCmGEDqkkT1vswlJKt6VLA8n7jDac=) 3: F0EC7AEAE48C11EF8BA4602AC4F9AE02.roa (hash: nsJgzUwSSMXcZYSBnW8T1s1Gr6R7nDs7M70WL4KuFGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2633 (0xa49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0BEC, serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Validity Not Before: Apr 24 19:38:31 2025 GMT Not After : May 1 19:38:31 2025 GMT Subject: CN=680a9337-6e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:46:97:18:6f:d3:7c:fa:a8:b2:22:f3:b7:26: ef:e3:fe:79:67:48:56:4d:f4:78:0d:88:b5:e2:fc: c0:3c:96:c1:e4:df:f9:be:c0:b0:a0:ef:31:20:72: dd:08:17:9b:21:fe:c2:a4:b2:c3:9b:c6:ad:74:ef: 27:30:ca:ba:7b:34:49:f7:49:f6:0c:d3:8d:af:d6: 50:22:a1:4d:e6:0f:e5:8a:08:ad:8b:f5:e8:8d:1e: 8c:39:b3:c1:09:f9:d7:90:53:d8:6a:4c:76:a8:99: b6:24:71:a0:7e:66:68:c7:fb:92:31:3f:18:29:95: cc:25:ac:50:21:22:ca:21:17:25:14:6f:1b:46:6b: 81:40:ac:83:05:f4:44:29:da:1c:50:b5:33:b6:0c: 9c:ff:7f:07:1d:c9:c3:89:2b:d0:f4:99:39:7a:71: e7:58:6a:da:87:68:75:5c:7f:eb:c8:d3:d1:a6:31: a4:23:33:b9:ed:7e:87:9d:65:a0:cb:3f:ba:a1:26: 70:c8:f8:62:2a:c4:1d:04:8e:35:e8:dd:5e:78:34: a8:9c:10:c0:1c:2b:af:93:b2:bb:38:5a:05:e8:2b: ac:d7:20:15:2c:91:9c:61:35:de:4e:20:5b:a0:f4: 4d:e8:1c:59:51:2e:3e:1b:d2:c0:83:e8:38:1b:d5: e1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:14:DD:5E:D9:43:9C:41:08:9A:C9:22:83:A6:CC:32:7F:38:E4:EF X509v3 Authority Key Identifier: keyid:27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:1e:53:ef:6b:05:59:88:8b:f1:2f:51:e5:a1:50:11:c5:a1: b7:c7:1f:f2:b4:49:8a:5d:e6:f2:30:37:c4:4c:80:ff:28:fc: d7:65:59:bb:2e:6e:17:f3:4a:a3:ad:b1:4e:4c:60:f0:8d:33: d9:3b:ee:f4:2a:fb:28:49:7e:e2:11:21:aa:66:56:ac:5b:94: ae:e6:4f:e8:dc:b1:2c:ca:fe:d7:ec:20:d4:24:d3:7b:1b:8a: b8:de:3a:3c:04:b8:ba:e0:32:5a:69:75:ef:0b:3f:1f:21:eb: fa:3c:dd:c2:0a:7d:01:6b:35:e1:9c:66:c3:87:02:59:ca:47: be:60:6a:08:55:99:17:d0:5f:8e:1f:ed:e3:9b:8b:22:b3:55: 1f:44:13:9f:e5:3a:f2:2d:2e:0f:05:60:41:b8:db:26:5e:c6: 38:ef:9d:18:17:65:3a:21:70:bd:00:ef:66:58:74:04:f6:8f: 4a:99:0b:7d:cc:e6:bd:06:49:ab:2c:d9:a6:f4:90:07:8f:8b: 59:21:69:b8:5a:b7:8a:0f:7a:b6:64:28:1f:32:39:8f:5e:39: 83:1a:27:0c:ca:a2:86:9b:b9:eb:d5:47:cd:ff:23:59:fc:b2: 88:3e:09:3d:af:1a:ad:0e:2c:71:12:c2:80:3b:74:4f:d9:60: c7:47:1b:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBCRUMxMTAvBgNVBAUTKDI3N0Y2ODYyNjg0MDcyQjYyQTE1NkRERjc1REQ3NzI1 QzM4RjUxRDAwHhcNMjUwNDI0MTkzODMxWhcNMjUwNTAxMTkzODMxWjAYMRYwFAYD VQQDEw02ODBhOTMzNy02ZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEaXGG/TfPqosiLztybv4/55Z0hWTfR4DYi14vzAPJbB5N/5vsCwoO8xIHLd CBebIf7CpLLDm8atdO8nMMq6ezRJ90n2DNONr9ZQIqFN5g/ligiti/XojR6MObPB CfnXkFPYakx2qJm2JHGgfmZox/uSMT8YKZXMJaxQISLKIRclFG8bRmuBQKyDBfRE KdocULUztgyc/38HHcnDiSvQ9Jk5enHnWGrah2h1XH/ryNPRpjGkIzO57X6HnWWg yz+6oSZwyPhiKsQdBI416N1eeDSonBDAHCuvk7K7OFoF6Cus1yAVLJGcYTXeTiBb oPRN6BxZUS4+G9LAg+g4G9XhawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQU3V7Z Q5xBCJrJIoOmzDJ/OOTvMB8GA1UdIwQYMBaAFCd/aGJoQHK2KhVt33XddyXDj1HQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEJFQy83QjdGMjhFMjY3 N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNyWXFGVzNmZGQxM0pjT1BV ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozOW9ZbWhBY3JZcUZXM2ZkZDEzSmNPUFVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEJFQy83QjdGMjhFMjY3N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNy WXFGVzNmZGQxM0pjT1BVZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqHlPvawVZiIvxL1HloVARxaG3xx/ytEmKXebyMDfETID/KPzXZVm7 Lm4X80qjrbFOTGDwjTPZO+70KvsoSX7iESGqZlasW5Su5k/o3LEsyv7X7CDUJNN7 G4q43jo8BLi64DJaaXXvCz8fIev6PN3CCn0BazXhnGbDhwJZyke+YGoIVZkX0F+O H+3jm4sis1UfRBOf5TryLS4PBWBBuNsmXsY4750YF2U6IXC9AO9mWHQE9o9KmQt9 zOa9BkmrLNmm9JAHj4tZIWm4WreKD3q2ZCgfMjmPXjmDGicMyqKGm7nr1UfN/yNZ /LKIPgk9rxqtDixxEsKAO3RP2WDHRxsn -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:10 2025 by rpki-client