$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft File: jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft (raw, json) Hash identifier: lEBCwSk3UGn/pdCOehGQQ2n5jBlYwMDWLomQHighMoA= Subject key identifier: 48:D2:36:B1:C9:BF:F6:3C:D3:2A:65:5A:36:D0:61:8D:C7:DF:5C:80 Authority key identifier: 8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 Certificate issuer: /CN=A91B2A6F/serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Certificate serial: 0A24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft Manifest number: 0A1B Signing time: Thu 24 Apr 2025 19:42:23 +0000 Manifest this update: Thu 24 Apr 2025 19:42:22 +0000 Manifest next update: Thu 01 May 2025 19:42:22 +0000 Files and hashes: 1: jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl (hash: PZOcYHRcQTOudEPfz5Y9JxQPFPbEW3YwAjqiAWAw/6s=) 2: BDC0899A1FF511ECAE74F266C4F9AE02.roa (hash: EkYTFmKjanasajMVGUVTZ322q1F+k60qJOC2SSq8q9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:42:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2596 (0xa24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2A6F, serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Validity Not Before: Apr 24 19:42:22 2025 GMT Not After : May 1 19:42:22 2025 GMT Subject: CN=680a941f-361e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8e:d8:9e:e3:42:d6:8f:6c:59:67:2d:f8:4b: 1d:cc:22:14:8d:f8:c7:3b:1c:54:b2:1c:8c:e4:4a: 27:06:dc:59:1b:3f:5d:65:5c:05:a9:f6:ae:a6:c2: 37:d3:aa:46:5f:23:a7:3e:0a:2c:9f:44:f4:4e:0c: 9f:e8:ed:25:bf:80:e6:2f:93:85:e7:6f:24:98:32: 9a:2e:c9:a9:ba:6f:d2:28:f7:93:d3:59:67:d4:b9: a8:3c:a4:fb:c5:4f:c5:5e:e6:2b:6c:08:2c:c4:8e: 9f:16:e3:3e:f9:8a:c0:64:0e:e2:8a:09:f4:04:00: 57:e7:87:ef:f3:1a:eb:5e:8c:6d:47:b1:65:08:84: 48:4a:c0:23:d3:03:f7:5b:38:23:4e:d9:aa:49:83: 40:e8:f8:fe:ec:a7:a7:cb:f6:f6:d6:bd:f8:6f:8f: b1:f8:4e:3a:76:ff:59:c4:0e:c1:d2:43:f7:ea:9c: db:c3:f3:7e:76:8b:f2:4c:a6:8b:e3:75:35:4b:68: 01:47:55:77:6d:d8:aa:b6:00:86:c4:f0:fb:20:d5: ec:c8:89:f6:6e:0f:e1:84:67:d6:c4:60:a4:ec:b0: a5:2c:d0:60:f5:ba:8b:5d:d9:35:7c:10:0b:bb:0e: ff:38:04:d7:87:bf:59:66:cf:b8:46:e8:ac:51:19: 59:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D2:36:B1:C9:BF:F6:3C:D3:2A:65:5A:36:D0:61:8D:C7:DF:5C:80 X509v3 Authority Key Identifier: keyid:8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:7d:5a:a3:57:9a:01:39:96:10:55:43:67:a8:ac:73:75:d1: 5e:eb:b0:79:74:68:63:f9:fe:2a:e5:d1:57:57:cf:e1:15:39: 79:6d:7c:27:3b:3f:82:ac:9a:b2:fc:f1:b9:68:5d:cf:d9:00: 75:82:a5:e6:d6:89:45:d7:a2:a5:14:32:40:7b:aa:bd:5d:f2: 12:c2:f2:29:b9:81:03:8d:2b:4f:14:fe:7d:4f:3c:c4:19:b3: f5:71:44:d5:0a:74:d9:0f:2d:ca:af:da:88:d4:b2:11:90:71: 38:8c:35:72:b2:25:5c:53:ea:b3:ce:50:2f:9f:fa:88:76:85: c5:32:bd:3d:be:9f:7a:df:74:20:80:46:25:e3:c0:9f:09:fb: 2c:d7:cc:49:cf:77:19:f4:da:b2:18:05:7d:48:c9:3e:13:e5: 34:0d:e2:ee:c6:69:7c:43:3c:77:e9:1c:8f:7c:69:0f:ed:ed: c6:33:c6:f3:36:40:72:a3:0a:fc:b5:c8:b7:9b:85:7a:81:ad: f5:48:c5:f4:b0:e4:54:a0:9f:21:d3:da:0e:a1:93:d0:c9:bd: e2:3e:f1:ba:30:6e:23:c2:ec:34:c3:35:5f:e5:63:84:10:91: 51:a9:35:46:8f:9c:28:83:33:6c:b1:9b:3c:d5:71:ba:e1:d1: 0f:0a:f2:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJBNkYxMTAvBgNVBAUTKDhDNUE4OTk3RkNBNUJGMDI3MEVBRjg2RUU4QzBDQjY1 NTFBQjk3RDEwHhcNMjUwNDI0MTk0MjIyWhcNMjUwNTAxMTk0MjIyWjAYMRYwFAYD VQQDEw02ODBhOTQxZi0zNjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuo7YnuNC1o9sWWct+EsdzCIUjfjHOxxUshyM5EonBtxZGz9dZVwFqfaupsI3 06pGXyOnPgosn0T0Tgyf6O0lv4DmL5OF528kmDKaLsmpum/SKPeT01ln1LmoPKT7 xU/FXuYrbAgsxI6fFuM++YrAZA7iign0BABX54fv8xrrXoxtR7FlCIRISsAj0wP3 WzgjTtmqSYNA6Pj+7Keny/b21r34b4+x+E46dv9ZxA7B0kP36pzbw/N+dovyTKaL 43U1S2gBR1V3bdiqtgCGxPD7INXsyIn2bg/hhGfWxGCk7LClLNBg9bqLXdk1fBAL uw7/OATXh79ZZs+4RuisURlZxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjSNrHJ v/Y80yplWjbQYY3H31yAMB8GA1UdIwQYMBaAFIxaiZf8pb8CcOr4bujAy2VRq5fR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkE2Ri9DQURGRjJGRTZF MzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3Snc2dmh1Nk1ETFpWR3Js OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGcUpsX3lsdndKdzZ2aHU2TURMWlZHcmw5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkE2Ri9DQURGRjJGRTZFMzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3 Snc2dmh1Nk1ETFpWR3JsOUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0fVqjV5oBOZYQVUNnqKxzddFe67B5dGhj+f4q5dFXV8/hFTl5bXwn Oz+CrJqy/PG5aF3P2QB1gqXm1olF16KlFDJAe6q9XfISwvIpuYEDjStPFP59TzzE GbP1cUTVCnTZDy3Kr9qI1LIRkHE4jDVysiVcU+qzzlAvn/qIdoXFMr09vp9633Qg gEYl48CfCfss18xJz3cZ9NqyGAV9SMk+E+U0DeLuxml8Qzx36RyPfGkP7e3GM8bz NkByowr8tci3m4V6ga31SMX0sORUoJ8h09oOoZPQyb3iPvG6MG4jwuw0wzVf5WOE EJFRqTVGj5wogzNssZs81XG64dEPCvIA -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:34 2025 by rpki-client