$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: 1P4N2S0xjkOCtquXvFyilgVrqG2pLi//C1+H3wW7b7c= Subject key identifier: B5:99:F8:34:15:1E:76:74:4E:7A:22:8B:07:C9:A3:12:84:DE:F4:C1 Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 023A Signing time: Fri 25 Apr 2025 01:41:26 +0000 Manifest this update: Fri 25 Apr 2025 01:41:26 +0000 Manifest next update: Fri 02 May 2025 01:41:26 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: iKm+zQU6Jo0d/wQO7zKa61psUAJyTdwxjaveQ2/AaJw=) 2: E60CA9B06B3311EFB79B5F87C4F9AE02.roa (hash: xA2I3SK1LrwCNTYfAy8aXGaXpbqj6PnMmp3xWe4cBbs=) 3: 274B6ADCF15B11ED950C456FC4F9AE02.roa (hash: BiugR8dn8pnpzPHCg7eZaT65u46wR3tiYmJITlqhZck=) 4: 26C50D3EF15B11ED950C456FC4F9AE02.roa (hash: H9+at/H3w6hcTEAgzVR2r70qV9olS6sufdVX4JIUdXE=) 5: 285AD17A061811EEADC2405AC4F9AE02.roa (hash: WVJ4UwY6KypbKvk4Ln4sfzY4jnw/x07G6eZ4nvVHo1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Apr 25 01:41:26 2025 GMT Not After : May 2 01:41:26 2025 GMT Subject: CN=680ae846-55c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ee:bf:ff:89:83:bf:36:8c:88:4c:d5:69:cd: 60:bf:67:f2:e8:11:05:52:6f:54:40:6d:f5:50:12: a5:72:6a:bb:aa:5a:9b:58:ac:05:e5:98:5c:5d:32: 7f:c7:59:b1:84:c9:85:b9:2f:07:e9:0b:82:ae:13: ce:76:cd:fa:f9:78:b8:21:fa:f9:ac:48:43:b1:7a: 10:c9:9b:4f:be:f5:d6:17:ea:2d:b0:28:87:e4:92: 3a:60:12:e8:fc:86:4f:6f:be:fe:a5:86:88:a7:63: 0b:5d:ac:bb:44:b7:f4:71:26:34:d2:2a:29:27:e6: a2:5e:ab:23:b2:5d:87:03:fe:d8:7c:82:e7:9e:0e: 02:b4:53:87:58:02:3c:0d:3a:60:41:8a:12:ed:b4: 61:6a:85:0b:c4:3d:f0:69:d4:17:ba:d1:f5:e9:09: 9c:a4:87:19:4f:53:3d:8c:86:13:04:11:4e:f2:61: 5a:e6:73:74:99:3c:6d:ec:0f:00:81:98:52:11:21: 47:f7:44:4e:38:c4:6e:22:ce:3f:e4:01:3b:07:3b: 28:4f:c2:d1:71:de:22:61:24:38:a2:89:3e:2e:d6: f8:e7:3e:30:7c:26:80:10:79:72:b3:6b:b5:7a:65: e2:7d:5f:ca:8e:3d:8e:98:04:e1:a4:f7:6f:09:9a: b3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:99:F8:34:15:1E:76:74:4E:7A:22:8B:07:C9:A3:12:84:DE:F4:C1 X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:68:00:6f:2b:9e:f8:cd:7f:04:fd:66:92:45:e9:30:fc:6c: e4:ee:50:fc:aa:72:b2:4b:21:52:f6:e9:e5:90:eb:8f:16:f2: ed:c8:47:df:8e:29:bd:f9:b2:75:b1:30:75:f5:bd:58:ec:0d: dc:dd:63:dc:b7:e8:d9:9f:e4:8f:c3:b1:d4:ae:c5:f4:e6:af: 3e:cf:d4:99:60:fe:b3:77:8f:29:b9:ea:8b:05:37:73:d8:80: 1a:de:df:5f:91:06:a3:47:bf:40:42:30:7d:19:37:e9:d7:d1: 3a:d2:3d:78:67:b8:ed:89:61:cd:9b:70:bc:b3:2f:70:52:b7: 90:86:82:d8:75:62:ae:34:ed:99:33:e7:bd:b5:e7:3c:48:bd: 4a:c4:fd:bb:f9:4e:dc:ce:c0:51:5d:2a:ac:6b:d3:14:bd:96: eb:7f:d7:fa:8a:6b:f3:5d:a8:60:f1:80:b9:94:71:85:38:d1: 64:2e:16:f8:7a:f7:36:b2:2e:52:7b:46:44:de:9f:5e:0a:5c: 96:35:6a:1b:a6:a9:ae:30:b1:42:71:62:bd:7d:0a:dd:45:3d: 7b:d4:ce:13:51:bb:ba:bf:50:11:b7:63:92:a4:ea:a4:fe:dd: a8:bb:1b:b4:33:db:94:95:a4:f2:e3:d9:95:d7:80:2d:64:3d: 69:0a:23:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjUwNDI1MDE0MTI2WhcNMjUwNTAyMDE0MTI2WjAYMRYwFAYD VQQDEw02ODBhZTg0Ni01NWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuO6//4mDvzaMiEzVac1gv2fy6BEFUm9UQG31UBKlcmq7qlqbWKwF5ZhcXTJ/ x1mxhMmFuS8H6QuCrhPOds36+Xi4Ifr5rEhDsXoQyZtPvvXWF+otsCiH5JI6YBLo /IZPb77+pYaIp2MLXay7RLf0cSY00iopJ+aiXqsjsl2HA/7YfILnng4CtFOHWAI8 DTpgQYoS7bRhaoULxD3wadQXutH16QmcpIcZT1M9jIYTBBFO8mFa5nN0mTxt7A8A gZhSESFH90ROOMRuIs4/5AE7BzsoT8LRcd4iYSQ4ook+Ltb45z4wfCaAEHlys2u1 emXifV/Kjj2OmAThpPdvCZqz7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWZ+DQV HnZ0TnoiiwfJoxKE3vTBMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBaABvK574zX8E/WaSRekw/Gzk7lD8qnKySyFS9unlkOuPFvLtyEff jim9+bJ1sTB19b1Y7A3c3WPct+jZn+SPw7HUrsX05q8+z9SZYP6zd48pueqLBTdz 2IAa3t9fkQajR79AQjB9GTfp19E60j14Z7jtiWHNm3C8sy9wUreQhoLYdWKuNO2Z M+e9tec8SL1KxP27+U7czsBRXSqsa9MUvZbrf9f6imvzXahg8YC5lHGFONFkLhb4 evc2si5Se0ZE3p9eClyWNWobpqmuMLFCcWK9fQrdRT171M4TUbu6v1ARt2OSpOqk /t2ouxu0M9uUlaTy49mV14AtZD1pCiOX -----END CERTIFICATE-----Generated at Sat Apr 26 12:54:06 2025 by rpki-client