$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: CRhn9zgjriKBvSteNT52v20C6gQiI5minFk2c+iqwz4= Subject key identifier: A1:86:F6:61:F5:13:27:2E:F9:0C:64:E8:42:5B:8E:F1:86:2E:D2:BA Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: 3A Signing time: Thu 24 Apr 2025 16:09:31 +0000 Manifest this update: Thu 24 Apr 2025 16:09:31 +0000 Manifest next update: Thu 01 May 2025 16:09:31 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: h3tNrXt41SY1y22jLw7cEtdg4BGT0+/BSAf3UZKBnms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Apr 24 16:09:31 2025 GMT Not After : May 1 16:09:31 2025 GMT Subject: CN=680a623b-967b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a3:c0:0c:46:66:19:0b:d6:ee:bd:e8:29:a5: 58:e2:c7:70:fb:0c:b8:aa:4f:b0:4d:04:b2:95:e2: c0:25:73:e2:f6:65:da:b8:14:2a:f2:e6:fa:11:57: 3a:ff:c7:70:fa:b0:4f:eb:57:db:63:27:3b:17:74: 1e:e9:a5:31:f2:8f:8f:7e:3e:54:61:0a:d3:b5:73: 38:c4:64:a4:48:c0:df:22:d8:48:0c:6c:12:b2:05: 93:16:9a:66:7f:d2:49:19:e5:e3:e5:d6:2e:d9:44: 51:ca:86:67:59:48:06:71:39:30:91:7f:4c:6e:e8: 7e:69:da:f7:88:ea:80:b9:94:cd:f6:d6:a0:ab:6a: 73:e2:ce:b2:56:c9:7b:cd:64:b2:33:91:70:0a:12: f4:3a:1a:e7:26:85:78:c8:18:e1:a6:a9:d1:83:72: a5:f8:84:d8:05:f5:94:2f:a5:fe:f0:2c:4a:e5:5b: c2:dd:b2:14:58:ea:fc:a9:48:a0:d2:8a:6e:4e:55: 9a:7f:b6:f5:44:e0:8f:37:b2:e5:cd:2a:d6:fd:d0: 9d:55:86:c1:27:ec:7e:7f:9c:c4:07:36:3d:43:e7: 97:b3:07:f8:a0:13:34:14:28:11:4b:32:63:e2:56: 1e:29:80:f6:51:21:00:33:12:ae:23:03:b9:25:91: 2c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:86:F6:61:F5:13:27:2E:F9:0C:64:E8:42:5B:8E:F1:86:2E:D2:BA X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5a:fe:59:62:42:31:85:d1:63:c0:22:ac:33:2c:fb:0a:b7: c7:e6:af:14:ce:38:d1:67:43:76:74:97:24:02:c8:18:c9:38: 36:b5:5c:7d:85:48:61:df:35:75:10:81:e8:8a:a4:d5:a2:8d: 7e:5c:04:e2:fc:a4:81:be:51:89:a9:b8:96:31:86:18:f9:83: 31:02:26:f6:95:b9:00:a4:c1:9c:46:db:d5:e9:cd:9d:3c:e5: 49:64:0e:76:c4:00:da:cd:44:54:b0:2c:d2:53:01:52:38:bd: 5c:74:cb:a9:e4:31:7b:16:64:03:48:09:4b:d7:02:93:62:63: ea:0c:2f:46:bf:c6:b6:d8:e2:5b:2f:c8:35:cb:7d:28:99:0d: 0d:a1:e5:54:74:63:16:aa:08:dd:7a:d9:9c:e1:b3:db:88:7f: 25:c4:76:d0:17:c9:87:6f:f1:2d:2c:e2:5d:1b:4e:1d:d3:3c: 1e:57:81:24:5e:2f:e7:f4:30:5c:8f:8c:8e:ed:96:e4:7f:04: c7:e8:af:1f:3c:4c:fb:7a:24:84:8a:f6:0b:24:68:8a:2d:ba: d6:0a:79:41:f8:75:35:48:1b:e1:bc:9e:c8:3b:ac:67:68:ee: f0:3e:34:51:82:eb:fa:ec:15:37:e2:f9:94:41:b3:88:62:73: f4:2b:dd:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTA5ODExMC8GA1UEBRMoNDQ5NTE3M0JEMkMyOTM4REUzMDY3N0NGRERFNzNDRDMx QjhBMjY3NjAeFw0yNTA0MjQxNjA5MzFaFw0yNTA1MDExNjA5MzFaMBgxFjAUBgNV BAMTDTY4MGE2MjNiLTk2N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgo8AMRmYZC9buvegppVjix3D7DLiqT7BNBLKV4sAlc+L2Zdq4FCry5voRVzr/ x3D6sE/rV9tjJzsXdB7ppTHyj49+PlRhCtO1czjEZKRIwN8i2EgMbBKyBZMWmmZ/ 0kkZ5ePl1i7ZRFHKhmdZSAZxOTCRf0xu6H5p2veI6oC5lM321qCranPizrJWyXvN ZLIzkXAKEvQ6GucmhXjIGOGmqdGDcqX4hNgF9ZQvpf7wLErlW8LdshRY6vypSKDS im5OVZp/tvVE4I83suXNKtb90J1VhsEn7H5/nMQHNj1D55ezB/igEzQUKBFLMmPi Vh4pgPZRIQAzEq4jA7klkSwzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoYb2YfUT Jy75DGToQluO8YYu0rowHwYDVR0jBBgwFoAURJUXO9LCk43jBnfP3ec80xuKJnYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MDk4LzIyMEIxNzI4Q0JD MjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0pu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkpVWE85TENrNDNqQm5mUDNlYzgweHVLSm5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MDk4LzIyMEIxNzI4Q0JDMjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQz akJuZlAzZWM4MHh1S0puWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF5a/lliQjGF0WPAIqwzLPsKt8fmrxTOONFnQ3Z0lyQCyBjJODa1XH2F SGHfNXUQgeiKpNWijX5cBOL8pIG+UYmpuJYxhhj5gzECJvaVuQCkwZxG29XpzZ08 5UlkDnbEANrNRFSwLNJTAVI4vVx0y6nkMXsWZANICUvXApNiY+oML0a/xrbY4lsv yDXLfSiZDQ2h5VR0YxaqCN162Zzhs9uIfyXEdtAXyYdv8S0s4l0bTh3TPB5XgSRe L+f0MFyPjI7tluR/BMforx88TPt6JISK9gskaIotutYKeUH4dTVIG+G8nsg7rGdo 7vA+NFGC6/rsFTfi+ZRBs4hic/Qr3Y0= -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:22 2025 by rpki-client