$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft File: jGb5wOZorJCB33ENYELfR0kLCrk.mft (raw, json) Hash identifier: GwZISX5EfWC0iKvLgXfJRxekqBwcy1cUZihxYnz8ZOY= Subject key identifier: 30:F1:64:79:C8:D0:9B:B3:A3:F0:08:9C:92:96:2A:E4:EE:DA:92:4C Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Certificate serial: 0C22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft Manifest number: 0C0D Signing time: Thu 24 Apr 2025 18:41:09 +0000 Manifest this update: Thu 24 Apr 2025 18:41:08 +0000 Manifest next update: Thu 01 May 2025 18:41:08 +0000 Files and hashes: 1: jGb5wOZorJCB33ENYELfR0kLCrk.crl (hash: i9MpxXE6/3p/75rRBs8ZgvJdUrskV01vybBEsMlESNg=) 2: 90576660E19711EFA11C2227C4F9AE02.roa (hash: 4znOjftmOLUP9F0sqZtn3shUbp4rIvm9xbYnsSSpuqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97F0, serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Validity Not Before: Apr 24 18:41:08 2025 GMT Not After : May 1 18:41:08 2025 GMT Subject: CN=680a85c4-893a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e8:0c:53:68:76:31:22:f1:a9:fe:3d:19:d5: 8b:a9:4a:4d:e0:61:be:72:a3:f0:d9:1b:61:ed:a2: e1:c2:13:c1:0f:77:4c:79:72:86:87:07:99:50:b2: 7c:a2:97:d4:b8:a6:9c:4c:e8:3d:56:f6:66:ae:5f: 83:a9:29:e2:de:b8:49:82:a1:aa:47:78:a3:26:2e: fe:0f:42:a7:a0:e5:2d:21:a8:af:40:f3:4c:c2:8b: 25:d4:c7:37:e2:15:1c:0d:9f:21:b9:dd:43:27:1b: 6c:e1:12:5d:3d:a6:6f:e8:d5:ab:e9:fd:20:51:fa: b1:1e:fb:10:82:42:e5:ef:80:3e:be:7e:29:98:05: de:a5:d1:ef:2b:42:8a:82:69:91:7a:9f:3e:4b:80: 52:d1:9a:2a:c7:79:a6:6e:f9:03:4f:76:eb:0e:9b: b4:a2:13:55:22:d3:c6:8c:7d:d7:ed:79:69:ab:84: 7c:4c:b8:58:c8:26:b0:0d:42:c6:63:22:37:f8:34: 06:2d:16:fb:32:2e:df:85:48:7e:89:6f:1c:d5:36: 7d:59:a6:21:a3:18:c5:e0:3a:1f:13:4d:c6:75:65: 6b:02:79:e8:4f:52:18:ed:8b:82:a0:88:8f:7f:aa: 4e:8a:ed:b1:2d:6c:9f:5e:03:92:8f:0e:13:84:d8: 97:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F1:64:79:C8:D0:9B:B3:A3:F0:08:9C:92:96:2A:E4:EE:DA:92:4C X509v3 Authority Key Identifier: keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:86:d9:05:7c:c9:f5:d3:80:55:c4:a7:70:f9:7f:3f:4b:b1: b1:69:b8:69:e7:24:6a:6a:a4:ff:d8:cc:18:23:38:63:0c:55: 53:b6:96:99:ad:a3:58:05:44:ca:59:0d:0f:f7:d6:2f:3e:e6: 57:cb:68:8d:d5:1c:ef:53:92:50:7e:e1:b7:75:1b:a8:24:dc: 07:0b:8b:56:5a:70:f2:44:76:5d:68:33:de:ac:5b:66:04:b6: 87:84:ba:73:30:ca:4e:d9:8c:00:25:ba:45:86:9d:f8:61:93: ac:96:9f:e5:f8:dd:d1:c4:c7:d9:00:d8:f4:08:3d:72:e3:6d: d7:5f:d3:7e:7b:ff:96:f6:dc:c3:22:af:52:bf:06:a7:47:4a: 40:41:a2:a5:bd:60:14:d9:fc:65:f0:e7:41:23:b5:07:fe:1e: e1:38:50:db:c6:d8:ae:27:78:eb:c4:90:33:49:ec:b6:b5:db: e7:57:be:ae:a3:04:c1:4a:ff:d7:98:81:03:3d:b5:d8:86:66: 62:c1:cd:a1:8d:bb:12:e5:8f:0d:bb:cd:28:05:43:52:7a:3d: 7e:3e:2e:cb:59:92:f5:90:3b:bb:ae:b2:c0:c9:f2:99:57:8a: 8b:95:2c:eb:2b:9f:87:78:97:0e:d2:c1:53:0f:71:10:90:88: 88:ae:c5:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RjAxMTAvBgNVBAUTKDhDNjZGOUMwRTY2OEFDOTA4MURGNzEwRDYwNDJERjQ3 NDkwQjBBQjkwHhcNMjUwNDI0MTg0MTA4WhcNMjUwNTAxMTg0MTA4WjAYMRYwFAYD VQQDEw02ODBhODVjNC04OTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ugMU2h2MSLxqf49GdWLqUpN4GG+cqPw2Rth7aLhwhPBD3dMeXKGhweZULJ8 opfUuKacTOg9VvZmrl+DqSni3rhJgqGqR3ijJi7+D0KnoOUtIaivQPNMwosl1Mc3 4hUcDZ8hud1DJxts4RJdPaZv6NWr6f0gUfqxHvsQgkLl74A+vn4pmAXepdHvK0KK gmmRep8+S4BS0Zoqx3mmbvkDT3brDpu0ohNVItPGjH3X7Xlpq4R8TLhYyCawDULG YyI3+DQGLRb7Mi7fhUh+iW8c1TZ9WaYhoxjF4DofE03GdWVrAnnoT1IY7YuCoIiP f6pOiu2xLWyfXgOSjw4ThNiX3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDxZHnI 0Juzo/AInJKWKuTu2pJMMB8GA1UdIwQYMBaAFIxm+cDmaKyQgd9xDWBC30dJCwq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdGMC9BNjYzMTlGMDEy RDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JKQ0IzM0VOWUVMZlIwa0xD cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHYjV3T1pvckpDQjMzRU5ZRUxmUjBrTENyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdGMC9BNjYzMTlGMDEyRDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JK Q0IzM0VOWUVMZlIwa0xDcmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBThtkFfMn104BVxKdw+X8/S7Gxabhp5yRqaqT/2MwYIzhjDFVTtpaZ raNYBUTKWQ0P99YvPuZXy2iN1RzvU5JQfuG3dRuoJNwHC4tWWnDyRHZdaDPerFtm BLaHhLpzMMpO2YwAJbpFhp34YZOslp/l+N3RxMfZANj0CD1y423XX9N+e/+W9tzD Iq9SvwanR0pAQaKlvWAU2fxl8OdBI7UH/h7hOFDbxtiuJ3jrxJAzSey2tdvnV76u owTBSv/XmIEDPbXYhmZiwc2hjbsS5Y8Nu80oBUNSej1+Pi7LWZL1kDu7rrLAyfKZ V4qLlSzrK5+HeJcO0sFTD3EQkIiIrsWV -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:56 2025 by rpki-client