$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft File: mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft (raw, json) Hash identifier: g9iZ6vAdrjHmJAGMs9sG7LU3WgZijKxlfOFBCN2JuXY= Subject key identifier: 7E:3A:10:C7:48:B0:60:69:59:F6:C2:B3:2D:09:40:D2:BE:85:E1:E9 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0A7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft Manifest number: 0A4C Signing time: Thu 24 Apr 2025 19:38:59 +0000 Manifest this update: Thu 24 Apr 2025 19:38:58 +0000 Manifest next update: Thu 01 May 2025 19:38:58 +0000 Files and hashes: 1: mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl (hash: sjTza3WiJR+vfqVgp1Rl+zeaqGZl6laccNP0tKyMLzI=) 2: 0FD2DB3A109C11F08D6B6B19C4F9AE02.roa (hash: b0jHLruEtRzyhGWKnuBBIEAeyGPvSkQqNURAHY7x5fE=) 3: 07CD68A213AD11EFADED003DC4F9AE02.roa (hash: gbSrDMCrPI8A3+3d0sfCicNLcWdleMd0w7YOfrmP/TI=) 4: DB701E584E6311EEBED9743CC4F9AE02.roa (hash: Zd7NoechSfahxSRsj2v3JsOwSTFCMebH21LUprHvV20=) 5: 011CBE6CDF8911ED942E2A67C4F9AE02.roa (hash: SFbvxZ2XG8g69o3YZw4mocDKsXgtaeblyR+TN86Ur60=) 6: 8D864528E26911EFB89A9142C4F9AE02.roa (hash: y31kJqG82XvEmO9/QRkcWiRFKFh5zoKjaSnnJfP7MyE=) 7: 8A533506C9DC11EE8B24C55EC4F9AE02.roa (hash: L2UnCfNPLgYDfL3nmk5SGHkno1H3kXJJBZN9FhtxlXQ=) 8: DC4A492A4E6311EEBED9743CC4F9AE02.roa (hash: GMZ//QDkBiynojhpbrl7EytSa00iqEIB/AB0/Z7GlXI=) 9: 66E400CACB4C11EE8E404546C4F9AE02.roa (hash: mvVRFtNTY10bq4ZO+LKEMEdrzCb/tsvmp6na5wzt45Q=) 10: 01D6C542776C11EF9A0CEA56C4F9AE02.roa (hash: yd/SOlvp9mrxaUSwn8FcZ74+WiXfNeapwvKAhRJ4Sx8=) 11: 8A916FDC83D711EAAA5AEC56C4F9AE02.roa (hash: 4HveBCpHvV1swaBGF9e6bY77B+cKbG0JrVqTZsmASrs=) 12: BACC498C9EFC11EC856FCB09C4F9AE02.roa (hash: 2GC7KAVMhvV+YXc4GAZ/vzQonWiNlY6zwWOHBpULon8=) 13: 8B083190C9DC11EE8B24C55EC4F9AE02.roa (hash: MEzvVgdoK3WuLUFmv9SwilQrCS7SZE01USmJAX6/Oss=) 14: 8B8856F4C9DC11EE8B24C55EC4F9AE02.roa (hash: 9pxxuNY/fuCdOuU7dA3COe6L1OGNmS3muKknh0X0O9M=) 15: 8C0868D0C9DC11EE8B24C55EC4F9AE02.roa (hash: Mm2/BkteGaDDz+jKCOQ2/1mPEBu0lMlfQI/ZFwneEPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2685 (0xa7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Apr 24 19:38:58 2025 GMT Not After : May 1 19:38:58 2025 GMT Subject: CN=680a9352-8494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:54:46:99:41:72:d9:92:87:e6:60:75:65:c5: 32:41:fc:9c:59:b4:2e:65:f3:b7:2a:c9:9f:09:85: 7f:a0:10:00:70:fe:e2:ec:01:cd:1f:f4:79:d5:da: 68:3b:f3:3f:69:86:a3:9b:f3:25:c1:b8:44:cf:27: a0:d9:87:a4:13:3a:c4:4d:33:7c:ea:0e:48:06:66: a0:6b:d3:d1:7a:53:03:cf:01:6b:0c:22:9a:5b:18: 5c:db:21:84:44:ef:27:fa:3f:56:63:39:27:22:d8: d8:b4:be:46:62:e7:b6:62:81:a1:7e:eb:3f:fc:ea: 34:fc:99:58:f7:76:00:4c:0e:8b:0c:c8:ce:e6:ff: c8:e4:60:9a:cc:80:36:e0:ae:fe:46:a1:c9:a2:34: 54:96:08:e4:50:87:f1:e6:87:05:56:30:0c:f3:15: ce:f1:2f:95:3e:11:3a:c1:a2:25:a0:76:67:f5:86: 8a:25:58:b5:39:8f:a3:4b:dd:ef:19:00:71:d6:16: 71:02:84:10:c0:37:c3:67:8b:94:8f:56:93:e0:bf: 1c:66:f2:36:ec:e1:e6:e9:f8:c1:37:71:8d:0d:ba: 1c:bd:c6:08:1b:ed:2c:d1:e3:d5:5d:16:48:c3:e5: bd:95:9b:95:2d:5f:63:5e:73:b8:4c:7e:a3:25:ef: 18:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3A:10:C7:48:B0:60:69:59:F6:C2:B3:2D:09:40:D2:BE:85:E1:E9 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:31:cd:b9:50:37:0b:40:8c:97:5d:44:76:68:f5:b2:d7:16: 95:8e:48:e5:74:52:21:51:d2:c2:46:c6:ba:a6:10:1c:bd:d4: 99:52:2f:4f:1b:c7:00:1d:62:58:35:6d:28:c1:a1:f7:2e:3d: 03:99:71:f4:c6:c1:e4:b7:d9:2e:71:2c:92:77:50:5d:7a:de: 8d:33:5b:6c:8b:a3:4f:31:c6:91:50:8d:cf:9d:9e:ba:18:e2: 67:2d:3b:ba:3f:8e:9e:b8:bd:f6:18:29:03:f6:90:3d:d1:16: 49:16:63:ce:26:65:61:28:99:31:47:a6:06:c6:ba:da:e2:c4: 7e:f7:8a:e4:08:53:cf:a1:95:23:4a:45:80:e0:8f:c2:93:98: c4:02:62:de:9c:c8:58:95:5a:b2:ed:39:9f:10:64:da:9f:c6: c9:b5:ce:fd:39:95:98:8c:b3:ad:33:fa:f6:ae:e0:64:bb:dd: 7d:9e:1c:fb:33:70:20:67:7e:2e:2d:e2:b2:81:d4:e5:48:4c: 90:89:da:72:c0:de:98:40:29:12:76:5a:a4:43:86:b8:80:3f: 51:5b:cf:4b:58:3a:a4:27:a1:e7:f5:8e:d4:ca:d4:21:a4:ca: 97:23:8b:3e:58:5f:9f:ed:ef:21:23:ce:ce:45:1d:c6:64:7d: dd:cf:bb:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUwNDI0MTkzODU4WhcNMjUwNTAxMTkzODU4WjAYMRYwFAYD VQQDEw02ODBhOTM1Mi04NDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFRGmUFy2ZKH5mB1ZcUyQfycWbQuZfO3KsmfCYV/oBAAcP7i7AHNH/R51dpo O/M/aYajm/MlwbhEzyeg2YekEzrETTN86g5IBmaga9PRelMDzwFrDCKaWxhc2yGE RO8n+j9WYzknItjYtL5GYue2YoGhfus//Oo0/JlY93YATA6LDMjO5v/I5GCazIA2 4K7+RqHJojRUlgjkUIfx5ocFVjAM8xXO8S+VPhE6waIloHZn9YaKJVi1OY+jS93v GQBx1hZxAoQQwDfDZ4uUj1aT4L8cZvI27OHm6fjBN3GNDbocvcYIG+0s0ePVXRZI w+W9lZuVLV9jXnO4TH6jJe8YGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH46EMdI sGBpWfbCsy0JQNK+heHpMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5My81RkNBQjY3MjY4RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENX MC0zWWdHRHRUWkdEeS1HR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAMc25UDcLQIyXXUR2aPWy1xaVjkjldFIhUdLCRsa6phAcvdSZUi9P G8cAHWJYNW0owaH3Lj0DmXH0xsHkt9kucSySd1Bdet6NM1tsi6NPMcaRUI3PnZ66 GOJnLTu6P46euL32GCkD9pA90RZJFmPOJmVhKJkxR6YGxrra4sR+94rkCFPPoZUj SkWA4I/Ck5jEAmLenMhYlVqy7TmfEGTan8bJtc79OZWYjLOtM/r2ruBku919nhz7 M3AgZ34uLeKygdTlSEyQidpywN6YQCkSdlqkQ4a4gD9RW89LWDqkJ6Hn9Y7UytQh pMqXI4s+WF+f7e8hI87ORR3GZH3dz7ux -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:26 2025 by rpki-client