$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: Q6w1rZl/6OamIpDJOaS4IWrRycNysoiXaceeofTWtZ0= Subject key identifier: 7A:C0:ED:4E:ED:DD:C4:A1:34:E0:A7:B3:62:FB:12:78:6B:A6:CE:95 Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: 27 Signing time: Fri 25 Apr 2025 06:47:29 +0000 Manifest this update: Fri 25 Apr 2025 06:47:28 +0000 Manifest next update: Fri 02 May 2025 06:47:28 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: 8ZctPRll+6ay7THSNEY+pCmbDSi2ZAxs4JnMWucSG1Y=) 2: FD36CD26EC2211EFAE200F79C4F9AE02.roa (hash: 31Dxym1vHZAUuP9HrMGwdQy+0zNPX5MVVrv3CWlz3bg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E, serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Validity Not Before: Apr 25 06:47:28 2025 GMT Not After : May 2 06:47:28 2025 GMT Subject: CN=680b3000-2986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:90:b5:f5:35:2b:05:8f:03:8c:fe:64:2e:46: 61:39:47:09:62:cb:f7:70:85:2d:18:a9:98:ab:ff: 98:9f:86:46:3d:f4:4e:55:49:83:bb:d0:db:ed:72: 48:30:36:8e:03:57:4e:a6:d2:05:1e:63:f1:4f:4a: a4:2f:df:e7:6a:ef:a7:72:07:0c:1e:20:ad:30:c0: 0a:93:65:7b:e4:a2:4d:7b:72:21:65:20:d8:9c:fa: ac:30:66:9d:1b:43:64:ca:6d:cc:55:23:b6:97:32: 55:46:17:26:a4:07:30:b0:c3:a8:28:4b:f2:69:58: 60:08:7c:e5:ca:80:ab:d7:5e:f3:78:70:78:35:9e: 72:2d:d6:9c:96:47:3b:67:98:a8:92:ef:d0:8e:a9: 89:97:5c:39:07:f0:48:67:5c:f5:6a:94:55:99:62: 0c:c8:cc:5e:02:3e:3a:16:39:48:ea:6d:96:f0:36: 49:8a:ed:63:2e:79:e3:2b:47:26:d4:92:78:58:80: 30:68:81:84:9e:1e:0a:fa:8b:6f:c4:1d:00:48:88: 88:07:6b:5f:fc:19:d5:5e:8e:f3:11:b7:9a:03:d5: c8:9f:f6:98:5b:52:84:32:c9:1a:7f:ff:24:60:20: 24:61:85:73:e3:c4:f3:a7:c4:b6:61:e5:d0:47:18: 13:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C0:ED:4E:ED:DD:C4:A1:34:E0:A7:B3:62:FB:12:78:6B:A6:CE:95 X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:4b:88:c1:80:bd:a8:ca:94:30:bf:50:3b:cf:1e:2d:25:4c: f5:b6:c2:8b:48:c9:1c:28:65:fa:0e:e9:14:0d:fd:c5:22:38: 96:44:97:c2:be:e4:68:01:9b:ec:6e:f7:5a:30:79:dc:8c:31: b8:69:80:0f:13:11:47:ac:eb:2b:fd:32:95:fa:63:2e:c5:5b: 46:7f:68:ab:1b:6f:a1:e4:ba:9e:9d:df:af:9f:7b:26:35:31: e6:33:d2:8c:4c:ba:bc:a1:a4:4e:5a:f2:b8:62:8b:d2:0c:aa: b7:56:fb:e2:74:2a:93:11:c8:41:5f:af:e0:1b:fd:17:db:3b: 3f:42:ba:50:2a:30:67:d5:e1:ee:8d:56:d4:39:50:5f:83:38: ea:5b:8d:45:08:28:cf:98:3a:05:5e:e2:49:46:93:c4:7b:36: b9:6e:3e:57:9e:9f:a1:55:14:16:47:ab:95:e7:16:e2:b2:2a: e9:40:b1:9b:91:37:b7:cf:29:62:58:82:2c:f9:c3:a5:34:7f: da:77:79:de:d2:27:be:11:f9:1f:fa:42:2d:93:15:70:a8:fb: 65:45:37:21:42:f3:7b:c8:fa:03:5b:76:33:f8:7f:87:71:3b: d0:ce:32:75:aa:6f:ed:4b:3e:57:18:19:0b:5e:ab:01:ce:5d: 8b:22:f9:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTk2RTExMC8GA1UEBRMoMjQyOUEzRUU1MDg4RjNENDUzNzJBOEUzQjM2ODM0Qzc1 RUFFNkQyOTAeFw0yNTA0MjUwNjQ3MjhaFw0yNTA1MDIwNjQ3MjhaMBgxFjAUBgNV BAMTDTY4MGIzMDAwLTI5ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSkLX1NSsFjwOM/mQuRmE5Rwliy/dwhS0YqZir/5ifhkY99E5VSYO70Nvtckgw No4DV06m0gUeY/FPSqQv3+dq76dyBwweIK0wwAqTZXvkok17ciFlINic+qwwZp0b Q2TKbcxVI7aXMlVGFyakBzCww6goS/JpWGAIfOXKgKvXXvN4cHg1nnIt1pyWRztn mKiS79COqYmXXDkH8EhnXPVqlFWZYgzIzF4CPjoWOUjqbZbwNkmK7WMueeMrRybU knhYgDBogYSeHgr6i2/EHQBIiIgHa1/8GdVejvMRt5oD1cif9phbUoQyyRp//yRg ICRhhXPjxPOnxLZh5dBHGBOvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUesDtTu3d xKE04KezYvsSeGumzpUwHwYDVR0jBBgwFoAUJCmj7lCI89RTcqjjs2g0x16ubSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTZFLzIzRDJGMTZFRUMy MTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkNtajdsQ0k4OVJUY3FqanMyZzB4MTZ1YlNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF OTZFLzIzRDJGMTZFRUMyMTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlS VGNxampzMmcweDE2dWJTay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMpLiMGAvajKlDC/UDvPHi0lTPW2wotIyRwoZfoO6RQN/cUiOJZEl8K+ 5GgBm+xu91owedyMMbhpgA8TEUes6yv9MpX6Yy7FW0Z/aKsbb6Hkup6d36+feyY1 MeYz0oxMuryhpE5a8rhii9IMqrdW++J0KpMRyEFfr+Ab/RfbOz9CulAqMGfV4e6N VtQ5UF+DOOpbjUUIKM+YOgVe4klGk8R7NrluPleen6FVFBZHq5XnFuKyKulAsZuR N7fPKWJYgiz5w6U0f9p3ed7SJ74R+R/6Qi2TFXCo+2VFNyFC83vI+gNbdjP4f4dx O9DOMnWqb+1LPlcYGQteqwHOXYsi+aI= -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:53 2025 by rpki-client