$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft File: CNJW1CbKIXH86BfGRSP4MqNpF70.mft (raw, json) Hash identifier: tjiOPe7H5w5MQwPZPkUzhLV8gyLCSMMBmwaPObhmcQc= Subject key identifier: BC:72:5E:30:F9:35:06:7E:C3:2B:41:FE:B5:F2:EA:F8:47:FD:73:D6 Authority key identifier: 08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD Certificate issuer: /CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Certificate serial: 0A3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft Manifest number: 0A1D Signing time: Thu 24 Apr 2025 19:44:15 +0000 Manifest this update: Thu 24 Apr 2025 19:44:15 +0000 Manifest next update: Thu 01 May 2025 19:44:15 +0000 Files and hashes: 1: CNJW1CbKIXH86BfGRSP4MqNpF70.crl (hash: YcesjsN9/fjtlhMgMk05OsnbZVsqGqhYg3Wy8jQ224w=) 2: F15AD62031FA11EE96640F3EC4F9AE02.roa (hash: ZBqZrZzLa2IT8UIY6w09sQHwLL5zrRzqV4vns9/3wIc=) 3: 54098620A37B11EFAC4F8E3CC4F9AE02.roa (hash: hSui0ebWc4lkxLtGfFPvwezZYPnLWYoUQ7IH9/TNQXs=) 4: 8F12C9C8391F11EFB455E565C4F9AE02.roa (hash: RxQekEsAzfRoaXQlF9gfuPb3rEYz9GMB9M+EsFimH7E=) 5: C6671418A37A11EFBED1AE3BC4F9AE02.roa (hash: t7QLTmlrwRSdzxwkZ3ICKVh+ifH3BRpvn3KoSgjF9OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2621 (0xa3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FCC, serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Validity Not Before: Apr 24 19:44:15 2025 GMT Not After : May 1 19:44:15 2025 GMT Subject: CN=680a948f-0ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:c0:08:25:f1:e3:87:e3:a4:de:f9:29:47: 5b:29:cc:a0:e0:34:54:ec:32:d8:e8:41:58:7e:45: e5:2d:3c:f8:cf:c3:83:81:67:9e:a9:7b:e2:0c:28: 8e:e4:4f:78:23:7f:00:0c:3e:b3:e7:65:81:ce:87: de:90:5c:32:7c:17:0e:eb:11:52:b2:22:83:da:ac: dd:ec:c5:dc:8a:7b:bd:32:14:7a:6b:59:35:07:07: 9c:14:b5:7e:74:d9:6a:c1:67:54:ff:74:9c:e8:c2: ac:64:5e:9d:20:5d:c7:9e:62:ab:4b:91:2a:94:09: a4:a4:0e:1c:79:f1:e5:68:e3:5c:f3:4c:71:f5:4d: 56:d7:f1:ea:ce:be:9f:d5:11:b5:49:8b:3f:db:d7: 82:ce:e1:74:bd:29:42:53:5b:db:69:ea:36:28:2c: c1:3f:fd:f3:20:c2:98:c5:da:9d:29:a8:37:38:c5: 8a:21:ac:13:70:c1:54:30:73:af:ef:38:08:9f:f6: 53:af:5b:cb:63:2a:03:4a:77:41:26:d9:3b:b6:98: de:87:9c:5d:83:05:fc:7f:00:3b:9d:6b:05:e2:42: 31:7a:4b:6d:a9:21:37:10:45:a0:d6:53:11:78:44: 71:dd:9c:a4:95:2a:8b:a2:d4:0c:63:ea:43:76:07: 11:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:72:5E:30:F9:35:06:7E:C3:2B:41:FE:B5:F2:EA:F8:47:FD:73:D6 X509v3 Authority Key Identifier: keyid:08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:31:22:c5:32:23:69:50:83:2e:b8:51:00:d4:a0:0b:d7:81: 79:c9:b1:ba:23:b0:5a:b9:6a:b3:53:92:aa:da:cb:45:25:d5: 82:75:97:03:e3:b7:21:6c:d2:46:62:2c:4f:99:f8:23:a8:49: ea:c3:17:2b:07:87:73:48:ea:f2:e3:72:f4:5f:b8:bb:fa:9b: 30:0c:79:0d:c0:9f:52:54:a0:df:26:33:93:ee:81:89:b8:19: 14:fa:c5:b0:e8:94:3c:be:30:18:94:aa:04:bf:af:ff:d7:13: 18:03:73:32:88:e4:8f:07:65:60:dd:39:5d:39:c3:69:aa:62: 4e:3a:83:52:76:b4:ee:e9:4a:da:cb:ba:e1:1e:48:93:b5:1b: 91:4e:5e:9c:08:3b:41:2c:6d:58:53:9d:63:8f:63:17:da:fe: 3f:22:e9:c9:ff:95:54:7f:c6:42:ec:b4:2b:b2:06:52:b8:80: 8a:ee:a3:7d:fe:4b:fd:9f:62:b4:3e:59:d1:8b:77:9f:0e:01: bd:16:13:d7:c3:19:fa:a3:f3:8e:08:47:1e:48:cc:ba:27:f7: fe:d8:88:0f:d8:81:15:5d:66:71:7b:16:34:f1:cc:70:4a:d0: ad:1f:b4:24:58:0a:f4:af:18:69:a6:d8:22:0f:14:55:0a:d1: e9:9d:c0:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQ0MxMTAvBgNVBAUTKDA4RDI1NkQ0MjZDQTIxNzFGQ0U4MTdDNjQ1MjNGODMy QTM2OTE3QkQwHhcNMjUwNDI0MTk0NDE1WhcNMjUwNTAxMTk0NDE1WjAYMRYwFAYD VQQDEw02ODBhOTQ4Zi0wY2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqPACCXx44fjpN75KUdbKcyg4DRU7DLY6EFYfkXlLTz4z8ODgWeeqXviDCiO 5E94I38ADD6z52WBzofekFwyfBcO6xFSsiKD2qzd7MXcinu9MhR6a1k1BwecFLV+ dNlqwWdU/3Sc6MKsZF6dIF3HnmKrS5EqlAmkpA4cefHlaONc80xx9U1W1/Hqzr6f 1RG1SYs/29eCzuF0vSlCU1vbaeo2KCzBP/3zIMKYxdqdKag3OMWKIawTcMFUMHOv 7zgIn/ZTr1vLYyoDSndBJtk7tpjeh5xdgwX8fwA7nWsF4kIxekttqSE3EEWg1lMR eERx3ZyklSqLotQMY+pDdgcR/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxyXjD5 NQZ+wytB/rXy6vhH/XPWMB8GA1UdIwQYMBaAFAjSVtQmyiFx/OgXxkUj+DKjaRe9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZDQy9DREJDNTk4Njcz MDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lYSDg2QmZHUlNQNE1xTnBG NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOSlcxQ2JLSVhIODZCZkdSU1A0TXFOcEY3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZDQy9DREJDNTk4NjczMDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lY SDg2QmZHUlNQNE1xTnBGNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGMSLFMiNpUIMuuFEA1KAL14F5ybG6I7BauWqzU5Kq2stFJdWCdZcD 47chbNJGYixPmfgjqEnqwxcrB4dzSOry43L0X7i7+pswDHkNwJ9SVKDfJjOT7oGJ uBkU+sWw6JQ8vjAYlKoEv6//1xMYA3MyiOSPB2Vg3TldOcNpqmJOOoNSdrTu6Ura y7rhHkiTtRuRTl6cCDtBLG1YU51jj2MX2v4/IunJ/5VUf8ZC7LQrsgZSuICK7qN9 /kv9n2K0PlnRi3efDgG9FhPXwxn6o/OOCEceSMy6J/f+2IgP2IEVXWZxexY08cxw StCtH7QkWAr0rxhpptgiDxRVCtHpncBX -----END CERTIFICATE-----Generated at Sat Apr 26 12:57:20 2025 by rpki-client