$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft File: jiZ6MV35Dplf9M1LLPj8TDMksts.mft (raw, json) Hash identifier: 5Z/D8sd8Kudbh2tC+Kdp9fRpVxvTpAU6CD1u8U5H4bo= Subject key identifier: DD:DC:32:D0:42:A9:39:ED:6A:59:E5:CE:41:8E:00:35:A3:8B:6E:7B Authority key identifier: 8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB Certificate issuer: /CN=A91B35DF/serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft Manifest number: 32 Signing time: Fri 25 Apr 2025 06:38:57 +0000 Manifest this update: Fri 25 Apr 2025 06:38:56 +0000 Manifest next update: Fri 02 May 2025 06:38:56 +0000 Files and hashes: 1: jiZ6MV35Dplf9M1LLPj8TDMksts.crl (hash: LEQQK3rMc1xhqLkQqohiE0R4ZSbEh18pDjEDIV0DxDg=) 2: EF714C70D89F11EFA1D2E672C4F9AE02.roa (hash: RQguTQm7u/HopEKGt5+xwJ/Yt9Fvm6tqRZ2uC++bhEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35DF, serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Validity Not Before: Apr 25 06:38:56 2025 GMT Not After : May 2 06:38:56 2025 GMT Subject: CN=680b2e01-0d4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:07:5c:e7:25:7c:ec:aa:eb:e7:75:88:58:54: 35:9b:a2:bb:da:ae:82:5b:cf:50:54:f3:54:7c:39: 69:f4:59:41:56:45:1a:3b:23:a8:d0:05:89:42:13: bb:81:3e:5e:19:9e:ac:3a:9e:2d:7c:f8:11:0d:e8: 54:7b:8b:3d:61:b4:a4:cc:5f:a1:5d:83:d3:4a:e2: 6e:d9:c1:93:4b:bb:17:c7:50:70:fe:50:ec:4f:88: 69:55:21:43:68:3f:a6:ee:fb:11:dc:e8:b4:e7:f6: 95:32:02:bb:8c:7f:b2:96:51:2d:38:d6:c7:60:40: b6:4e:89:d9:32:6f:8c:08:cd:ff:7d:10:ba:40:c7: c8:2f:67:85:a8:c4:df:15:20:24:78:d1:d8:5d:d2: c0:9d:78:0c:34:ef:7c:17:65:01:ba:e9:56:74:ea: 6a:6e:28:a5:81:2c:d9:e2:6e:d3:3a:8c:14:46:8c: ea:27:53:ce:67:10:de:3f:59:f4:b5:02:37:6a:47: d3:be:b8:f2:46:99:39:53:63:1b:2c:f7:1f:d4:0b: 2d:eb:fc:e4:69:c7:35:91:06:dd:b6:5e:32:45:40: 5a:4a:27:e1:12:d5:c9:1f:24:0c:55:ad:54:92:bf: ee:c3:f9:bf:c3:7a:98:51:ff:1f:62:a7:71:cc:8a: 65:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DC:32:D0:42:A9:39:ED:6A:59:E5:CE:41:8E:00:35:A3:8B:6E:7B X509v3 Authority Key Identifier: keyid:8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:e0:14:02:f4:83:54:63:e2:2b:8d:d4:fc:33:c4:5a:02:c6: c5:e4:47:3b:2a:9e:17:c1:05:9e:d3:c7:50:0c:cc:58:1d:2a: f0:90:1a:a4:ef:d3:a1:cc:49:7b:99:69:dd:1c:e0:19:29:fc: 3f:a5:d7:14:78:66:4d:70:4d:12:93:41:f6:b5:b4:53:21:d6: 04:ce:76:07:1b:8a:0e:cf:6a:d1:cf:3d:14:aa:af:27:57:3b: 11:02:af:c2:29:24:8b:ac:a0:96:82:e4:15:be:20:43:66:79: 38:50:3b:ac:d5:54:57:d8:8c:90:49:fe:d7:1c:1d:7a:92:ad: 89:6e:c4:1c:bd:e9:5a:11:e9:4a:51:67:ed:9d:8d:34:a9:1c: 65:ab:dd:ff:07:01:dd:1f:41:1e:8e:f3:50:78:24:67:ed:b6: 68:ea:d4:a7:ed:e8:ad:b5:be:66:a1:5c:ec:fd:2d:5d:fe:a7: 6d:6f:78:35:4c:b5:bb:90:2c:c6:16:00:88:63:aa:5a:18:95: e7:70:2a:13:72:95:b8:40:32:fc:7f:db:0f:42:17:ab:fd:e3: b3:db:26:22:c9:e0:dc:a7:3b:85:b9:4c:4b:54:da:8b:aa:c3: 83:31:32:1a:0e:06:11:5a:cc:2d:60:e7:b6:cc:33:dc:aa:c4: b7:5f:ff:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzVERjExMC8GA1UEBRMoOEUyNjdBMzE1REY5MEU5OTVGRjRDRDRCMkNGOEZDNEMz MzI0QjJEQjAeFw0yNTA0MjUwNjM4NTZaFw0yNTA1MDIwNjM4NTZaMBgxFjAUBgNV BAMTDTY4MGIyZTAxLTBkNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/B1znJXzsquvndYhYVDWborvaroJbz1BU81R8OWn0WUFWRRo7I6jQBYlCE7uB Pl4Znqw6ni18+BEN6FR7iz1htKTMX6Fdg9NK4m7ZwZNLuxfHUHD+UOxPiGlVIUNo P6bu+xHc6LTn9pUyAruMf7KWUS041sdgQLZOidkyb4wIzf99ELpAx8gvZ4WoxN8V ICR40dhd0sCdeAw073wXZQG66VZ06mpuKKWBLNnibtM6jBRGjOonU85nEN4/WfS1 AjdqR9O+uPJGmTlTYxss9x/UCy3r/ORpxzWRBt22XjJFQFpKJ+ES1ckfJAxVrVSS v+7D+b/DephR/x9ip3HMimWnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3dwy0EKp Oe1qWeXOQY4ANaOLbnswHwYDVR0jBBgwFoAUjiZ6MV35Dplf9M1LLPj8TDMkstsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzNURGLzFFQTAxOTlDRDg5 RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBsZjlNMUxMUGo4VERNa3N0 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamlaNk1WMzVEcGxmOU0xTExQajhURE1rc3RzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz NURGLzFFQTAxOTlDRDg5RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBs ZjlNMUxMUGo4VERNa3N0cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFTgFAL0g1Rj4iuN1PwzxFoCxsXkRzsqnhfBBZ7Tx1AMzFgdKvCQGqTv 06HMSXuZad0c4Bkp/D+l1xR4Zk1wTRKTQfa1tFMh1gTOdgcbig7PatHPPRSqrydX OxECr8IpJIusoJaC5BW+IENmeThQO6zVVFfYjJBJ/tccHXqSrYluxBy96VoR6UpR Z+2djTSpHGWr3f8HAd0fQR6O81B4JGfttmjq1Kft6K21vmahXOz9LV3+p21veDVM tbuQLMYWAIhjqloYledwKhNylbhAMvx/2w9CF6v947PbJiLJ4NynO4W5TEtU2ouq w4MxMhoOBhFazC1g57bMM9yqxLdf/1I= -----END CERTIFICATE-----Generated at Sat Apr 26 03:42:20 2025 by rpki-client