$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft File: jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json) Hash identifier: ry7Al6ZMAHbAMJQ7OaxrlAj+wR5yARWTULqqjt5vsLU= Subject key identifier: C8:BA:89:2E:C6:46:A6:5B:A2:D2:1A:4C:95:0F:82:AB:AB:85:B3:C3 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft Manifest number: 79 Signing time: Fri 25 Apr 2025 05:44:12 +0000 Manifest this update: Fri 25 Apr 2025 05:44:12 +0000 Manifest next update: Fri 02 May 2025 05:44:12 +0000 Files and hashes: 1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: TaFAjfUaqlJ7K7RZ0Wo3qOE7XfqjIvS8nMvamt3J1Ss=) 2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: n3pzdI1R6OnpGAR7FmeF9nZ8iLEx5lsOyhq7ASsGK90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Apr 25 05:44:12 2025 GMT Not After : May 2 05:44:12 2025 GMT Subject: CN=680b212c-5256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cf:8f:bf:e4:1a:a4:e8:8d:88:2b:49:49:df: d1:28:2c:91:75:19:9b:21:70:a8:58:55:12:90:a9: 4b:c5:ef:ec:df:6c:9f:87:d2:b1:4d:1b:d5:b5:41: 2b:1d:a0:f9:92:5a:5d:32:81:a8:a7:41:d9:bf:c5: e6:56:21:84:fe:3f:ae:2b:96:52:ce:9e:81:14:1f: db:3f:aa:4f:6f:a0:14:a7:14:2e:7f:7b:f0:64:6d: 60:b4:ba:3e:b3:38:bb:cc:79:9e:bb:02:c8:00:26: b2:a9:b8:20:3f:ae:7b:54:41:4d:61:eb:70:6f:fa: 3b:55:26:f7:db:ed:f8:31:86:0a:07:77:6b:33:31: 84:c9:ad:ee:65:18:44:ba:67:0a:71:b9:e1:f3:12: 70:20:33:e5:a4:94:d8:21:af:4f:f9:8b:f0:a5:1c: 4f:37:87:c9:35:8e:b7:a4:6d:40:f9:da:1a:c2:9c: 12:47:f1:f9:0d:6b:5c:db:23:3c:42:a8:79:bf:83: 81:1d:81:60:4b:2e:c6:d0:fb:4c:01:bb:94:d0:01: e5:0b:9c:9f:81:ed:a5:29:55:a6:af:5d:7e:9e:e0: 43:b6:ac:58:bb:df:cc:c1:d7:d7:d6:62:ca:9c:74: 0c:99:4e:7a:e9:84:21:5e:d6:df:e2:75:2f:5c:cb: e9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:BA:89:2E:C6:46:A6:5B:A2:D2:1A:4C:95:0F:82:AB:AB:85:B3:C3 X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:7c:1c:2c:ef:b7:4f:37:c4:69:c1:0c:13:69:e0:95:95:46: 9d:78:0c:c4:37:ea:77:93:e1:de:7f:44:45:25:0b:08:2b:6a: e9:bf:b0:de:03:49:52:9b:82:80:1d:4f:0b:e6:80:64:58:c6: f9:e4:05:5e:85:0a:c7:9c:95:ee:08:3c:8d:21:44:04:b7:3a: b4:00:fe:34:b0:8e:47:05:0d:26:55:c6:73:34:0f:14:de:49: a3:74:c6:a5:6c:77:a2:3b:3c:bf:34:16:bb:df:cf:d0:27:6d: ec:ac:ad:aa:c1:90:59:95:6e:38:f9:47:ad:47:63:df:b4:61: 0c:44:9a:1d:d8:21:cb:ed:77:71:bb:5b:97:03:78:a3:b6:7b: e3:24:10:b9:e5:ab:87:10:15:33:fc:e5:e4:45:72:0d:76:f7: 20:97:a2:b4:f6:10:40:eb:c2:76:7b:51:3c:39:e3:f7:ce:c0: d8:8d:29:40:e6:a2:f5:8b:93:12:aa:09:f4:bb:ff:84:d4:c5: b4:70:4a:02:67:1e:47:00:fc:f8:5e:47:f3:1e:8f:a7:b6:26: 40:bc:d0:7c:b6:ae:43:3c:c9:b0:5c:48:2e:50:87:0c:9d:d3: 8b:ac:68:58:a0:84:82:2a:ad:28:35:4b:80:46:fe:93:45:63: e0:f6:a1:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MERFMDExMC8GA1UEBRMoOEVBNUI5NTYzMjI3QzJFNThENDM4QkMxN0JBODIyNTA3 NTQyNDQzQjAeFw0yNTA0MjUwNTQ0MTJaFw0yNTA1MDIwNTQ0MTJaMBgxFjAUBgNV BAMTDTY4MGIyMTJjLTUyNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHz4+/5Bqk6I2IK0lJ39EoLJF1GZshcKhYVRKQqUvF7+zfbJ+H0rFNG9W1QSsd oPmSWl0ygainQdm/xeZWIYT+P64rllLOnoEUH9s/qk9voBSnFC5/e/BkbWC0uj6z OLvMeZ67AsgAJrKpuCA/rntUQU1h63Bv+jtVJvfb7fgxhgoHd2szMYTJre5lGES6 ZwpxueHzEnAgM+WklNghr0/5i/ClHE83h8k1jrekbUD52hrCnBJH8fkNa1zbIzxC qHm/g4EdgWBLLsbQ+0wBu5TQAeULnJ+B7aUpVaavXX6e4EO2rFi738zB19fWYsqc dAyZTnrphCFe1t/idS9cy+mRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyLqJLsZG plui0hpMlQ+Cq6uFs8MwHwYDVR0jBBgwFoAUjqW5VjInwuWNQ4vBe6giUHVCRDsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwREUwLzcwNDBBOEU4NkE4 NTExRUZCMTU2ODE0N0M0RjlBRTAyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JE cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvanFXNVZqSW53dVdOUTR2QmU2Z2lVSFZDUkRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw REUwLzcwNDBBOEU4NkE4NTExRUZCMTU2ODE0N0M0RjlBRTAyL2pxVzVWaklud3VX TlE0dkJlNmdpVUhWQ1JEcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKd8HCzvt083xGnBDBNp4JWVRp14DMQ36neT4d5/REUlCwgraum/sN4D SVKbgoAdTwvmgGRYxvnkBV6FCsecle4IPI0hRAS3OrQA/jSwjkcFDSZVxnM0DxTe SaN0xqVsd6I7PL80Frvfz9AnbeysrarBkFmVbjj5R61HY9+0YQxEmh3YIcvtd3G7 W5cDeKO2e+MkELnlq4cQFTP85eRFcg129yCXorT2EEDrwnZ7UTw54/fOwNiNKUDm ovWLkxKqCfS7/4TUxbRwSgJnHkcA/PheR/Mej6e2JkC80Hy2rkM8ybBcSC5Qhwyd 04usaFighIIqrSg1S4BG/pNFY+D2oeA= -----END CERTIFICATE-----Generated at Sat Apr 26 12:30:13 2025 by rpki-client