$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft File: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft (raw, json) Hash identifier: YmlbvJjJHbNF/NBjU9NswJJtIp0xtgPs/jCE8v6PTb4= Subject key identifier: 3F:2E:29:03:D2:4F:0B:07:75:C0:5E:29:F7:EE:48:18:99:7C:79:36 Authority key identifier: 24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D Certificate issuer: /CN=A91E8BAF/serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Certificate serial: 3491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft Manifest number: 3480 Signing time: Thu 24 Apr 2025 15:18:54 +0000 Manifest this update: Thu 24 Apr 2025 15:18:53 +0000 Manifest next update: Thu 01 May 2025 15:18:53 +0000 Files and hashes: 1: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl (hash: HKSsxpUrODTOauB5bPAnspN0YhCv5zQU1Ib3wNhMlmA=) 2: 2417A16240D111EEB97F9366C4F9AE02.roa (hash: 5HxbfCADS0YE8zgWBNeHaLAjeMofIFQYhkC/UJjBOds=) 3: F87DB8B440C811EEB681DC40C4F9AE02.roa (hash: qoJIoB5IZhCrFKoONH6w1qM5F//MbDhtykwiUAx2/AY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13457 (0x3491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BAF, serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Validity Not Before: Apr 24 15:18:53 2025 GMT Not After : May 1 15:18:53 2025 GMT Subject: CN=680a565e-0df7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:81:29:8b:ce:a0:54:39:fe:27:46:93:1b:b0: b3:ad:25:fb:39:e1:71:17:df:a0:84:5c:6d:32:5c: c3:ed:25:3b:67:34:d9:70:eb:6f:c3:07:55:89:e2: 7a:2e:60:e1:3d:64:01:94:99:fa:17:61:9b:a8:e3: 69:0a:1b:a3:73:6a:82:f8:da:83:92:5e:cd:54:a3: 7c:94:2e:11:ee:e1:c6:b9:08:7c:50:35:b1:a2:4d: 6e:61:00:3e:aa:2d:d4:ea:20:bc:7a:a8:ec:2b:3c: 13:2e:4c:b8:58:9c:68:74:2b:70:83:69:e7:0d:19: a6:ec:f3:ce:c6:77:74:59:ce:08:16:28:e0:a0:6c: 3e:7d:14:03:2b:80:17:28:14:58:9d:b3:33:85:c0: bb:cd:49:1e:58:54:b5:64:9e:46:0d:b6:ab:01:b9: 27:a6:4b:ef:45:0c:7b:28:6d:a9:bc:60:c8:f3:f6: d8:0e:6c:6e:db:a2:00:a2:a8:ae:8f:df:23:72:2d: 94:e6:8a:d5:4c:d0:87:0f:02:71:3b:89:98:a3:d4: 0f:2d:1f:18:8b:93:5d:af:9c:12:77:6e:80:b2:75: 77:dc:6d:bf:92:5b:b2:35:2e:63:c8:e0:ed:1b:bd: cb:41:20:db:0a:87:f8:52:9f:d6:8e:8e:4e:41:f7: 9b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2E:29:03:D2:4F:0B:07:75:C0:5E:29:F7:EE:48:18:99:7C:79:36 X509v3 Authority Key Identifier: keyid:24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:df:3a:9a:ed:56:0d:2f:48:71:a8:14:25:b1:31:6c:bc:29: 6c:4f:8a:80:0f:82:f3:36:98:d6:74:c6:0a:84:68:35:24:b4: f8:18:82:ea:61:6f:fd:08:3f:54:d1:cf:25:12:64:16:4d:c6: 6a:c8:23:96:af:3a:1d:84:10:db:6c:19:c6:f9:1b:28:30:6f: 37:40:83:25:18:51:c5:2d:79:c3:70:03:bd:cd:e3:64:03:82: 86:e3:bc:43:39:2a:12:77:33:a6:7d:af:99:30:74:a2:d7:c7: f0:3c:42:91:ab:5b:0f:6f:dc:9d:30:b4:0e:9e:69:fe:d8:5b: 5a:c9:0c:31:c2:c2:26:3a:6c:5a:47:49:53:3c:0c:d6:3d:2a: 35:c1:b0:80:94:d4:90:97:d8:7b:e2:6c:90:2d:ab:f3:5e:88: 34:91:12:f0:42:9c:76:f7:1f:ec:e7:f8:eb:3e:5d:1a:12:bc: ec:eb:a5:31:09:41:1c:93:14:a3:6a:59:46:8c:49:22:cb:2d: 0c:e6:fd:41:bc:12:84:9e:8b:ca:ab:37:d2:f8:9d:e5:de:d1: 11:3d:a2:2b:c5:ce:3d:b2:08:17:01:b1:ec:0c:0c:9f:a3:47: df:2a:4e:27:41:ed:dd:e4:68:5c:7d:81:35:28:61:49:69:75: 58:42:da:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCQUYxMTAvBgNVBAUTKDI0OERCMUZFRTU1MTBDOEE2QUY4NUVBQzgxMEVDNEND QUU4QkY5MEQwHhcNMjUwNDI0MTUxODUzWhcNMjUwNTAxMTUxODUzWjAYMRYwFAYD VQQDEw02ODBhNTY1ZS0wZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoEpi86gVDn+J0aTG7CzrSX7OeFxF9+ghFxtMlzD7SU7ZzTZcOtvwwdVieJ6 LmDhPWQBlJn6F2GbqONpChujc2qC+NqDkl7NVKN8lC4R7uHGuQh8UDWxok1uYQA+ qi3U6iC8eqjsKzwTLky4WJxodCtwg2nnDRmm7PPOxnd0Wc4IFijgoGw+fRQDK4AX KBRYnbMzhcC7zUkeWFS1ZJ5GDbarAbknpkvvRQx7KG2pvGDI8/bYDmxu26IAoqiu j98jci2U5orVTNCHDwJxO4mYo9QPLR8Yi5Ndr5wSd26AsnV33G2/kluyNS5jyODt G73LQSDbCof4Up/Wjo5OQfebEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8uKQPS TwsHdcBeKffuSBiZfHk2MB8GA1UdIwQYMBaAFCSNsf7lUQyKavherIEOxMyui/kN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJBRi8zMkQ4RTIyRTFE QUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJcHEtRjZzZ1E3RXpLNkwt UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJMnhfdVZSRElwcS1GNnNnUTdFeks2TC1RMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJBRi8zMkQ4RTIyRTFEQUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJ cHEtRjZzZ1E3RXpLNkwtUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC73zqa7VYNL0hxqBQlsTFsvClsT4qAD4LzNpjWdMYKhGg1JLT4GILq YW/9CD9U0c8lEmQWTcZqyCOWrzodhBDbbBnG+RsoMG83QIMlGFHFLXnDcAO9zeNk A4KG47xDOSoSdzOmfa+ZMHSi18fwPEKRq1sPb9ydMLQOnmn+2FtayQwxwsImOmxa R0lTPAzWPSo1wbCAlNSQl9h74myQLavzXog0kRLwQpx29x/s5/jrPl0aErzs66Ux CUEckxSjallGjEkiyy0M5v1BvBKEnovKqzfS+J3l3tERPaIrxc49sggXAbHsDAyf o0ffKk4nQe3d5GhcfYE1KGFJaXVYQtpQ -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:41 2025 by rpki-client