$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft File: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft (raw, json) Hash identifier: AXhBNZ4v/PcBzz940qQACK6H0EywlepBYGQpRjtwAP4= Subject key identifier: 23:61:E8:D8:F8:7B:84:2C:7C:B5:F3:66:17:0A:34:E6:C5:B9:39:C6 Authority key identifier: 27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B Certificate issuer: /CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft Manifest number: 0123 Signing time: Fri 25 Apr 2025 03:48:55 +0000 Manifest this update: Fri 25 Apr 2025 03:48:55 +0000 Manifest next update: Fri 02 May 2025 03:48:55 +0000 Files and hashes: 1: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl (hash: ZKmVxBmL9JgyAt5HxfB92o4vtpj+kCwuF4otcu2JAiI=) 2: D2FA5DBE6C1E11EEBB9EAB7AC4F9AE02.roa (hash: VxCtnEbF2p63KawOX+Ec2pPAYcngxsY5VpNi8SAFc50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCAF, serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Validity Not Before: Apr 25 03:48:55 2025 GMT Not After : May 2 03:48:55 2025 GMT Subject: CN=680b0627-c20e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:a2:40:44:cb:74:61:7b:0b:97:c0:e5:14:49: c1:09:07:6b:20:b6:e4:ac:70:d8:7b:c1:cf:e9:c3: 3f:84:d3:e6:82:a5:f4:6e:d6:fb:ca:cc:b1:40:1a: 2d:26:43:63:19:88:29:f4:a6:9e:7c:9c:12:a7:89: cc:7e:fb:23:c3:1c:1d:86:dc:b4:e7:01:ce:27:6a: 93:ab:d3:ef:2d:e0:82:49:e5:c9:4a:96:4e:38:bc: 24:4e:64:b5:58:14:59:28:fd:ac:64:be:09:b8:d6: ed:b1:47:d3:85:e2:7b:77:08:3a:06:9a:87:69:4a: c8:db:af:87:18:19:9b:07:b3:7a:ca:00:9a:c2:96: 11:40:af:8d:f2:43:a7:ac:4e:c8:21:0a:40:4f:c9: 18:2e:51:85:8c:33:7a:a7:d4:7a:67:c7:8d:d8:98: 06:76:4e:54:58:34:dd:4c:06:3b:92:4d:cb:33:4f: 22:56:05:41:24:4f:51:89:63:97:af:13:1b:00:d3: 0e:26:c7:ce:6c:70:1d:92:2b:e8:ac:fa:69:29:bf: 19:f2:d5:18:fd:b3:ed:e5:af:31:20:ab:94:10:ca: 13:19:40:3b:fd:dd:6e:d7:45:5f:2e:ac:57:77:63: 84:e4:bb:e9:4e:fa:7e:67:d0:14:b8:3c:d0:c6:d9: 0b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:61:E8:D8:F8:7B:84:2C:7C:B5:F3:66:17:0A:34:E6:C5:B9:39:C6 X509v3 Authority Key Identifier: keyid:27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:e0:76:46:8e:47:0a:46:cc:89:bb:08:79:7a:51:06:97:56: ab:5d:b4:bd:72:d2:28:02:8a:67:13:14:81:09:7a:eb:a0:ef: 7f:52:af:6b:e0:7f:fa:eb:dd:f4:16:a8:da:67:b6:fb:b1:a1: eb:df:78:f6:70:24:56:9e:36:fb:47:57:ef:c6:09:bd:a7:2a: 4f:c1:6f:e5:bb:4e:17:11:9c:10:43:a3:ba:67:ce:d1:b4:18: b2:72:45:14:82:b2:2d:d0:dd:5f:ee:ec:3f:15:0c:d7:be:74: 98:8e:6d:d1:f1:51:b5:fc:25:7a:b3:f5:f0:2d:bc:7c:0b:39: 6e:9a:4a:16:5c:ed:74:48:d2:29:50:dc:3b:ad:aa:14:f2:8b: cf:aa:95:8d:9a:be:06:13:c6:78:9e:a1:d9:e0:62:45:b4:60: 5e:a3:3d:4f:b5:f4:31:be:91:1b:3f:78:58:25:9c:e1:3f:b6: 8a:20:f5:63:08:ce:91:7a:a3:38:5c:b9:74:33:c4:63:e9:03: 90:bf:12:a7:df:fa:13:60:65:41:6f:11:7b:e0:bc:b5:43:30: bd:28:00:fc:f8:d5:0b:a6:d4:ba:fc:7b:58:eb:6c:95:d6:9f: 44:f4:c6:f5:3e:c2:d5:cb:82:e8:c9:13:07:da:2b:27:96:6d: da:41:fa:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQUYxMTAvBgNVBAUTKDI3QjJFNjYyOTE0ODIyMTM2QjA5NjJEQkI1QkE0NDdD MjUzRjUyMUIwHhcNMjUwNDI1MDM0ODU1WhcNMjUwNTAyMDM0ODU1WjAYMRYwFAYD VQQDEw02ODBiMDYyNy1jMjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8qJARMt0YXsLl8DlFEnBCQdrILbkrHDYe8HP6cM/hNPmgqX0btb7ysyxQBot JkNjGYgp9KaefJwSp4nMfvsjwxwdhty05wHOJ2qTq9PvLeCCSeXJSpZOOLwkTmS1 WBRZKP2sZL4JuNbtsUfTheJ7dwg6BpqHaUrI26+HGBmbB7N6ygCawpYRQK+N8kOn rE7IIQpAT8kYLlGFjDN6p9R6Z8eN2JgGdk5UWDTdTAY7kk3LM08iVgVBJE9RiWOX rxMbANMOJsfObHAdkivorPppKb8Z8tUY/bPt5a8xIKuUEMoTGUA7/d1u10VfLqxX d2OE5LvpTvp+Z9AUuDzQxtkLbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNh6Nj4 e4QsfLXzZhcKNObFuTnGMB8GA1UdIwQYMBaAFCey5mKRSCITawli27W6RHwlP1Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNBRi8wRjYxODg2QTZC MzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUloTnJDV0xidGJwRWZDVV9V aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3TG1ZcEZJSWhOckNXTGJ0YnBFZkNVX1Vocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNBRi8wRjYxODg2QTZCMzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUlo TnJDV0xidGJwRWZDVV9VaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB44HZGjkcKRsyJuwh5elEGl1arXbS9ctIoAopnExSBCXrroO9/Uq9r 4H/66930FqjaZ7b7saHr33j2cCRWnjb7R1fvxgm9pypPwW/lu04XEZwQQ6O6Z87R tBiyckUUgrIt0N1f7uw/FQzXvnSYjm3R8VG1/CV6s/XwLbx8CzlumkoWXO10SNIp UNw7raoU8ovPqpWNmr4GE8Z4nqHZ4GJFtGBeoz1PtfQxvpEbP3hYJZzhP7aKIPVj CM6ReqM4XLl0M8Rj6QOQvxKn3/oTYGVBbxF74Ly1QzC9KAD8+NULptS6/HtY62yV 1p9E9Mb1PsLVy4LoyRMH2isnlm3aQfrM -----END CERTIFICATE-----Generated at Sat Apr 26 03:24:56 2025 by rpki-client