$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: ifEW3rpqfWfG0UBeqoT3HGs44+ezuLjf5ieg3Y9nNNk= Subject key identifier: 51:D3:43:DD:C1:78:8A:FF:0D:34:25:93:B5:AF:C7:1D:5D:4B:38:0E Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0C4C Signing time: Sat 14 Jun 2025 18:21:47 +0000 Manifest this update: Sat 14 Jun 2025 18:21:47 +0000 Manifest next update: Sat 21 Jun 2025 18:21:47 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: EgGOKi01P9KDr3UFODhif04XWAe2N5Sdybx/eMap/mQ=) 2: 02D73B5ED1A911EC97A6335DC4F9AE02.roa (hash: JkiQjxSrG6/RaUVfR49c5xHDDJTw7u5WZLOBsd3qe+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Jun 14 18:21:47 2025 GMT Not After : Jun 21 18:21:47 2025 GMT Subject: CN=684dbdbb-6b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:b5:5d:a9:7c:ad:75:25:53:ce:28:94:8c:f9: 6d:2f:0f:2f:08:54:f6:8d:72:b8:bb:d6:d6:e8:0a: 90:54:a5:9b:20:9a:38:a4:3f:c2:9a:e0:ff:7f:f7: 19:ec:01:c1:99:87:55:54:44:c3:78:4a:ce:ca:c8: 99:60:2d:ad:36:40:3f:df:f0:20:83:0d:d1:ba:7b: df:16:7d:b2:67:79:cd:25:c9:a7:5d:c2:16:06:23: 54:a5:f4:f0:9d:cf:d4:39:d6:10:7e:ef:55:47:b7: 2d:e6:76:f3:22:8c:28:bf:7d:c1:ec:55:dc:8f:49: b8:ac:2d:69:22:d4:d7:9b:0f:73:4f:78:b3:7b:14: 9a:4e:77:3b:ed:5e:f8:d5:72:fe:ef:2f:c2:60:7c: 59:b3:e2:84:83:53:75:67:a3:1a:5c:7d:84:3a:91: 4c:10:38:fe:6e:7b:0a:c2:03:a3:e2:35:97:ce:a8: 9d:24:c1:bd:cc:ff:4a:b7:15:b7:65:97:ed:2f:33: 0d:a7:42:b4:c1:25:27:cd:33:16:57:66:70:2c:3f: da:74:e9:2d:6d:24:90:7d:12:c9:96:b5:97:79:f9: ce:23:59:69:37:8a:7e:cc:01:2d:ce:55:73:61:dd: 06:bf:19:7f:a2:ff:b0:f2:ff:0f:a4:5d:99:92:65: 7f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D3:43:DD:C1:78:8A:FF:0D:34:25:93:B5:AF:C7:1D:5D:4B:38:0E X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a4:9b:9e:67:64:ed:66:68:a5:2c:35:e0:83:0e:83:9f:27: 42:e3:8d:09:b3:37:01:d3:fe:10:6b:a5:a2:c3:2f:bb:88:e5: 79:ab:c9:b1:ef:f2:13:17:f6:79:87:10:a7:c9:4e:22:e8:45: 0d:bd:66:06:67:e5:3c:a5:24:a3:e9:bb:73:50:46:11:da:77: 6c:b6:68:bf:bb:86:5e:63:65:e1:de:f6:42:19:80:fe:04:c9: b7:f3:38:80:07:2d:a2:fc:19:61:ad:d3:39:c5:62:23:e9:55: 77:61:7c:c0:7b:47:60:47:9b:f4:31:b2:15:87:ce:57:75:3f: e0:a8:65:aa:31:9c:17:92:c3:5d:43:0e:ad:40:ee:ff:62:9a: 48:3d:73:0b:ca:94:f0:c0:50:0a:81:a1:ce:c1:fc:f8:93:fc: 01:f9:35:fa:b5:fd:58:6d:a6:3e:b3:21:7d:5d:69:1b:7d:f1: d0:f5:12:5e:8d:4c:a0:7e:39:c5:ba:55:18:8d:7f:13:17:6a: 8f:18:30:ea:4f:a8:88:4a:48:65:c9:97:58:4b:36:84:03:1a: 7e:15:ed:9d:54:c0:ed:ff:fa:2a:a2:3f:1b:35:0f:b9:db:86: ac:34:81:6a:f6:19:9b:06:c0:96:31:94:2e:5f:96:d1:17:86: 04:f5:c1:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjUwNjE0MTgyMTQ3WhcNMjUwNjIxMTgyMTQ3WjAYMRYwFAYD VQQDEw02ODRkYmRiYi02YjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9bVdqXytdSVTziiUjPltLw8vCFT2jXK4u9bW6AqQVKWbIJo4pD/CmuD/f/cZ 7AHBmYdVVETDeErOysiZYC2tNkA/3/Aggw3RunvfFn2yZ3nNJcmnXcIWBiNUpfTw nc/UOdYQfu9VR7ct5nbzIowov33B7FXcj0m4rC1pItTXmw9zT3izexSaTnc77V74 1XL+7y/CYHxZs+KEg1N1Z6MaXH2EOpFMEDj+bnsKwgOj4jWXzqidJMG9zP9KtxW3 ZZftLzMNp0K0wSUnzTMWV2ZwLD/adOktbSSQfRLJlrWXefnOI1lpN4p+zAEtzlVz Yd0Gvxl/ov+w8v8PpF2ZkmV/7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHTQ93B eIr/DTQlk7Wvxx1dSzgOMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3pJueZ2TtZmilLDXggw6DnydC440JszcB0/4Qa6Wiwy+7iOV5q8mx 7/ITF/Z5hxCnyU4i6EUNvWYGZ+U8pSSj6btzUEYR2ndstmi/u4ZeY2Xh3vZCGYD+ BMm38ziABy2i/BlhrdM5xWIj6VV3YXzAe0dgR5v0MbIVh85XdT/gqGWqMZwXksNd Qw6tQO7/YppIPXMLypTwwFAKgaHOwfz4k/wB+TX6tf1YbaY+syF9XWkbffHQ9RJe jUygfjnFulUYjX8TF2qPGDDqT6iISkhlyZdYSzaEAxp+Fe2dVMDt//oqoj8bNQ+5 24asNIFq9hmbBsCWMZQuX5bRF4YE9cEa -----END CERTIFICATE-----Generated at Sun Jun 15 09:46:25 2025 by rpki-client