$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: IJGacdmp5MdSIRt1/HxiuoePX3F4QS7J1JIyBh4povo= Subject key identifier: CB:09:D3:18:C6:85:3E:FC:20:9B:69:98:2D:09:E5:0B:1C:7A:F7:E5 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: D1 Signing time: Fri 25 Apr 2025 04:42:48 +0000 Manifest this update: Fri 25 Apr 2025 04:42:48 +0000 Manifest next update: Fri 02 May 2025 04:42:48 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: IEVaKdQYSsmgWzyHvGOMUVRpKGHnESgprLxgIRsUzwY=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Apr 25 04:42:48 2025 GMT Not After : May 2 04:42:48 2025 GMT Subject: CN=680b12c8-654f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bb:8b:b4:72:0d:5b:0d:19:0b:2e:e5:dd:49: 93:a0:b7:bc:51:76:de:01:8a:2a:1b:e8:ee:53:95: c2:3b:fc:5f:9a:f6:a2:a9:44:23:f6:80:99:c1:27: 99:57:e1:d2:78:84:99:44:a7:3f:ad:9f:cd:b3:f6: 96:02:38:12:41:4d:f3:b7:1e:f5:8f:ae:b2:e7:41: d5:3f:99:1c:d5:6d:dc:aa:97:61:df:69:d5:3c:56: a9:d7:57:70:1f:20:00:50:8f:7e:ae:16:a2:7a:e8: 22:31:d0:94:32:e8:c1:2c:c7:42:ab:77:66:58:1e: e5:05:39:be:93:d6:00:f2:07:bd:fb:f9:94:6f:4b: ee:9f:34:d3:3a:8f:1c:d1:79:c8:fe:86:5e:f4:7a: 80:f1:86:8a:a8:43:37:c1:81:af:81:48:c0:ea:59: d6:e0:08:ff:f9:b1:2b:f8:80:45:48:77:7e:d7:17: 11:ae:33:5a:da:96:a8:ad:64:3f:a4:96:93:9c:a1: 12:53:8e:fe:9f:7c:9b:bc:70:9d:08:1f:69:11:12: fe:fe:2a:f9:f9:cb:7e:34:2f:52:24:01:dd:df:57: 68:42:22:14:38:80:7f:76:ff:8e:a3:46:3d:c2:cf: ca:17:9c:e2:40:bc:9c:95:a4:cd:4f:e1:b5:05:8a: 3d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:09:D3:18:C6:85:3E:FC:20:9B:69:98:2D:09:E5:0B:1C:7A:F7:E5 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:4a:7d:ae:ae:c9:d9:d5:0a:a0:bb:9f:d6:79:27:cb:45:63: 91:da:ac:7c:68:70:a8:e5:7c:19:26:b7:33:96:1c:31:42:3a: da:63:10:4a:db:1e:69:a4:bc:0a:20:0a:10:03:8e:89:6e:7f: 47:83:b1:56:25:c7:bb:d0:c7:ee:2d:5e:46:42:ca:19:77:53: ff:04:42:88:be:39:d7:10:88:28:d0:b9:b6:d4:d6:24:cf:6e: 72:d6:0f:56:49:f7:59:e0:c1:74:72:4e:d7:a2:6a:e5:87:42: d2:99:84:bd:57:eb:c5:b3:3b:f3:79:4c:6c:d4:2d:b8:01:83: 22:b6:89:9a:16:21:39:c9:c5:05:a8:52:1e:9c:6d:16:c3:fa: b9:df:a7:f8:18:13:e0:b9:98:b4:1d:a9:0f:9b:1e:1a:3b:5d: 05:c0:38:6a:a8:f4:53:de:0e:a8:3e:e2:2c:2c:80:a2:50:95: 37:d9:8a:2d:68:c5:61:89:58:fe:89:57:99:f6:6d:02:32:86: 44:f8:f9:bf:49:bf:42:33:db:8b:09:79:d9:93:1c:59:48:c2: 68:d4:27:fe:90:5d:9b:d9:0c:c5:90:9c:5a:59:76:f9:23:a1: 73:68:d1:cd:b9:13:8d:d4:39:b3:da:14:84:f9:db:5d:98:59: 20:47:08:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUwNDI1MDQ0MjQ4WhcNMjUwNTAyMDQ0MjQ4WjAYMRYwFAYD VQQDEw02ODBiMTJjOC02NTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7uLtHINWw0ZCy7l3UmToLe8UXbeAYoqG+juU5XCO/xfmvaiqUQj9oCZwSeZ V+HSeISZRKc/rZ/Ns/aWAjgSQU3ztx71j66y50HVP5kc1W3cqpdh32nVPFap11dw HyAAUI9+rhaieugiMdCUMujBLMdCq3dmWB7lBTm+k9YA8ge9+/mUb0vunzTTOo8c 0XnI/oZe9HqA8YaKqEM3wYGvgUjA6lnW4Aj/+bEr+IBFSHd+1xcRrjNa2paorWQ/ pJaTnKESU47+n3ybvHCdCB9pERL+/ir5+ct+NC9SJAHd31doQiIUOIB/dv+Oo0Y9 ws/KF5ziQLyclaTNT+G1BYo9FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsJ0xjG hT78IJtpmC0J5QscevflMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Sn2ursnZ1Qqgu5/WeSfLRWOR2qx8aHCo5XwZJrczlhwxQjraYxBK 2x5ppLwKIAoQA46Jbn9Hg7FWJce70MfuLV5GQsoZd1P/BEKIvjnXEIgo0Lm21NYk z25y1g9WSfdZ4MF0ck7Xomrlh0LSmYS9V+vFszvzeUxs1C24AYMitomaFiE5ycUF qFIenG0Ww/q536f4GBPguZi0HakPmx4aO10FwDhqqPRT3g6oPuIsLICiUJU32Yot aMVhiVj+iVeZ9m0CMoZE+Pm/Sb9CM9uLCXnZkxxZSMJo1Cf+kF2b2QzFkJxaWXb5 I6FzaNHNuRON1Dmz2hSE+dtdmFkgRwj5 -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:22 2025 by rpki-client