$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft File: jGb5wOZorJCB33ENYELfR0kLCrk.mft (raw, json) Hash identifier: BvelcsJAIHEWM5wMk2DO1KM6mXsfqkdoW/DhheGVLZ4= Subject key identifier: 80:5F:77:23:01:51:5C:6A:E7:E4:6C:45:50:0F:9B:59:AA:19:A5:42 Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Certificate serial: 0C3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft Manifest number: 0C26 Signing time: Sat 14 Jun 2025 18:35:23 +0000 Manifest this update: Sat 14 Jun 2025 18:35:23 +0000 Manifest next update: Sat 21 Jun 2025 18:35:23 +0000 Files and hashes: 1: jGb5wOZorJCB33ENYELfR0kLCrk.crl (hash: tEWPuDH7XEfNarjij3PVF8vRblg7Ov5t5eRLhUyp72g=) 2: 90576660E19711EFA11C2227C4F9AE02.roa (hash: 4znOjftmOLUP9F0sqZtn3shUbp4rIvm9xbYnsSSpuqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:35:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3131 (0xc3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97F0, serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Validity Not Before: Jun 14 18:35:23 2025 GMT Not After : Jun 21 18:35:23 2025 GMT Subject: CN=684dc0eb-26b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d0:e0:6f:81:09:74:13:b7:2c:fc:6b:30:5f: 27:dd:6b:29:84:9b:6a:11:ee:53:26:f4:b4:0b:55: 5d:69:fe:e8:50:3d:3a:eb:83:fe:29:8b:d6:86:86: e1:95:b0:8b:6c:bd:89:93:e8:15:c9:cc:88:40:37: f2:e6:14:55:55:de:f3:97:f6:97:3e:ef:51:0e:0a: 8e:3b:f4:40:df:b6:38:ed:6c:57:cf:d5:5d:58:8f: ae:b2:63:81:66:f8:91:a1:f1:a6:69:9a:1a:7e:c2: af:0d:61:1d:78:ff:87:8f:e4:21:40:3e:27:77:6d: 45:2f:08:e1:bc:4a:2f:40:af:4f:05:aa:74:19:46: 71:7f:4c:14:4a:6f:9f:41:b1:09:59:86:81:2a:e0: 8c:fa:f8:02:21:9b:3d:25:ba:b6:41:7c:de:47:00: b9:31:f6:f8:35:2f:f7:af:97:b9:6a:d7:bf:31:18: 21:5c:78:49:72:02:95:20:cd:52:e0:5d:8d:b3:9d: ec:53:e2:53:88:7b:f5:60:a2:71:87:db:ab:d3:80: 43:8e:98:d0:36:5c:8d:9a:a7:1a:82:70:07:96:e2: ee:7a:7f:c6:3e:7e:ec:75:c4:fb:ba:87:b8:55:f5: c7:92:d0:d5:55:b0:27:ec:d2:0b:9b:ab:7e:9f:ac: f3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5F:77:23:01:51:5C:6A:E7:E4:6C:45:50:0F:9B:59:AA:19:A5:42 X509v3 Authority Key Identifier: keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:52:b2:8a:da:4f:bc:6d:0a:17:0b:77:c7:3c:4d:d0:dd:a0: dc:c8:96:bb:a4:82:6d:f8:92:06:5c:2b:3d:32:e2:86:74:61: 27:6e:4a:0f:04:62:32:db:9c:f5:c6:f7:92:12:fb:fc:8d:e6: b0:7f:65:26:ab:74:90:65:11:7a:55:e9:69:5c:ba:58:c6:64: 7a:33:7a:d9:b2:e7:8d:1a:e4:26:63:a4:89:83:f0:e9:3c:e9: 14:a0:25:a8:5f:94:67:59:6d:73:62:19:05:86:73:b6:f6:85: 11:35:0c:be:6b:b3:8b:4f:08:fb:c7:a6:2c:8d:23:f6:c5:c8: 71:72:aa:7c:1f:09:15:cc:0d:bf:03:98:7d:83:ff:f1:80:d9: 51:ef:6b:c1:00:62:93:46:97:e3:b6:a0:b5:03:8e:ff:10:52: fb:05:da:21:71:fc:1f:66:50:0a:bd:f3:4d:9f:db:05:63:de: e3:de:08:75:7a:0b:9b:32:f0:bb:d2:67:63:9f:84:3e:bb:b6: 78:33:1d:c7:a0:02:b0:68:42:47:45:ff:32:e3:6a:81:6d:b2: 8f:be:98:e4:c8:39:57:c7:f0:89:75:d9:0f:10:8b:85:f5:88: 67:f5:8c:a9:d7:3f:ba:8b:55:b0:34:cf:b6:a6:56:fa:f6:d1: 97:b4:c5:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RjAxMTAvBgNVBAUTKDhDNjZGOUMwRTY2OEFDOTA4MURGNzEwRDYwNDJERjQ3 NDkwQjBBQjkwHhcNMjUwNjE0MTgzNTIzWhcNMjUwNjIxMTgzNTIzWjAYMRYwFAYD VQQDEw02ODRkYzBlYi0yNmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39Dgb4EJdBO3LPxrMF8n3WsphJtqEe5TJvS0C1Vdaf7oUD0664P+KYvWhobh lbCLbL2Jk+gVycyIQDfy5hRVVd7zl/aXPu9RDgqOO/RA37Y47WxXz9VdWI+usmOB ZviRofGmaZoafsKvDWEdeP+Hj+QhQD4nd21FLwjhvEovQK9PBap0GUZxf0wUSm+f QbEJWYaBKuCM+vgCIZs9Jbq2QXzeRwC5Mfb4NS/3r5e5ate/MRghXHhJcgKVIM1S 4F2Ns53sU+JTiHv1YKJxh9ur04BDjpjQNlyNmqcagnAHluLuen/GPn7sdcT7uoe4 VfXHktDVVbAn7NILm6t+n6zzyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBfdyMB UVxq5+RsRVAPm1mqGaVCMB8GA1UdIwQYMBaAFIxm+cDmaKyQgd9xDWBC30dJCwq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdGMC9BNjYzMTlGMDEy RDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JKQ0IzM0VOWUVMZlIwa0xD cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHYjV3T1pvckpDQjMzRU5ZRUxmUjBrTENyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdGMC9BNjYzMTlGMDEyRDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JK Q0IzM0VOWUVMZlIwa0xDcmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcUrKK2k+8bQoXC3fHPE3Q3aDcyJa7pIJt+JIGXCs9MuKGdGEnbkoP BGIy25z1xveSEvv8jeawf2Umq3SQZRF6VelpXLpYxmR6M3rZsueNGuQmY6SJg/Dp POkUoCWoX5RnWW1zYhkFhnO29oURNQy+a7OLTwj7x6YsjSP2xchxcqp8HwkVzA2/ A5h9g//xgNlR72vBAGKTRpfjtqC1A47/EFL7BdohcfwfZlAKvfNNn9sFY97j3gh1 egubMvC70mdjn4Q+u7Z4Mx3HoAKwaEJHRf8y42qBbbKPvpjkyDlXx/CJddkPEIuF 9Yhn9Yyp1z+6i1WwNM+2plb69tGXtMW/ -----END CERTIFICATE-----Generated at Sun Jun 15 09:32:56 2025 by rpki-client