$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft File: JHItMcJRPk5_h-23Df6dyU-EaLo.mft (raw, json) Hash identifier: hS4kTH+sexlwfYeJsCIl3HQWc3GyE5Bqyp5a9oyTLTA= Subject key identifier: 53:3C:37:6F:C0:BD:C7:E6:A5:AC:20:D0:08:4C:EE:5B:31:87:2F:33 Authority key identifier: 24:72:2D:31:C2:51:3E:4E:7F:87:ED:B7:0D:FE:9D:C9:4F:84:68:BA Certificate issuer: /CN=A91186C2/serialNumber=24722D31C2513E4E7F87EDB70DFE9DC94F8468BA Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft Manifest number: 3E Signing time: Sun 11 May 2025 06:13:31 +0000 Manifest this update: Sun 11 May 2025 06:13:30 +0000 Manifest next update: Sun 18 May 2025 06:13:30 +0000 Files and hashes: 1: JHItMcJRPk5_h-23Df6dyU-EaLo.crl (hash: yI11TTKDFWMmA/8dWiCyB3P+TTAPSUPZbDMJsAI7iQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.crl rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=24722D31C2513E4E7F87EDB70DFE9DC94F8468BA Validity Not Before: May 11 06:13:30 2025 GMT Not After : May 18 06:13:30 2025 GMT Subject: CN=6820400b-03f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:e1:8d:76:aa:fa:d8:6f:95:d1:56:48:52:9e: 58:91:6a:0f:8e:03:74:e0:cc:10:85:09:eb:a7:57: e2:af:24:94:da:c7:89:d5:93:5e:c8:01:bb:2c:ac: 2e:9a:5c:cd:3d:55:b3:ec:ec:b5:84:3b:69:02:54: 0c:91:72:b7:fe:22:24:ad:11:02:bd:dd:46:68:f9: c0:5a:ce:67:2d:7d:76:b4:bc:72:47:47:e9:25:40: 3b:19:3d:97:4d:5a:bd:52:b6:d2:64:85:86:c1:66: 8e:a7:59:6c:38:16:c5:ce:61:3e:70:c6:cb:61:78: 3d:2f:ae:ce:30:8a:9e:22:7c:b0:0f:e9:6e:0c:6b: 17:67:ac:d2:d6:ac:f5:8d:df:7c:83:3c:bd:aa:c9: f6:42:8c:5f:39:07:a2:85:a7:d6:ca:04:97:6b:48: 7e:e2:f7:4d:12:8c:42:f2:09:8e:15:39:37:da:1b: f0:e8:a5:67:fe:11:8b:49:5e:b8:df:9d:20:8d:91: f1:68:0a:35:4e:b6:1a:12:a0:8f:2f:e6:c3:b5:ba: 3e:54:ec:78:81:04:ad:79:00:53:ca:4e:76:56:4b: dd:34:14:0d:6c:65:2a:30:ae:ef:f1:32:ab:76:33: 7e:c6:b5:6f:2c:ad:bb:e3:b6:a3:c3:7e:26:24:25: 3e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3C:37:6F:C0:BD:C7:E6:A5:AC:20:D0:08:4C:EE:5B:31:87:2F:33 X509v3 Authority Key Identifier: keyid:24:72:2D:31:C2:51:3E:4E:7F:87:ED:B7:0D:FE:9D:C9:4F:84:68:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ff:af:9d:43:97:15:78:a8:33:54:38:c3:8a:06:1e:fd:51: 4d:52:7c:f6:20:17:a7:7f:3c:26:bc:69:05:c3:49:41:71:19: 87:d8:b8:06:9b:45:f6:19:a1:8c:37:4a:04:6e:22:ce:c2:d1: f9:3e:27:70:a0:3b:e6:d9:f9:0c:0b:dd:55:1e:03:ef:5e:c3: 46:5d:87:91:8b:7f:e1:41:3b:2e:b1:fe:02:ba:62:d8:a9:79: 7e:5b:8a:d1:6f:f6:a1:18:43:c0:e5:25:f5:1d:70:74:f7:fc: 41:d6:d5:1f:90:91:eb:2c:e5:f5:3b:00:74:db:82:33:31:68: 18:cc:07:6e:21:a3:8d:2d:51:e6:38:f6:de:5a:7f:2f:22:f5: ed:75:8a:c5:ee:02:1b:f6:c2:bd:03:06:44:68:4a:40:79:81: 3b:1a:cb:b3:cb:5c:59:9f:a1:c1:3b:d2:37:75:37:a2:d8:ad: f3:7d:93:8f:d5:57:3d:4d:4a:56:b4:5c:c6:7a:a0:f2:57:2e: 9a:c3:43:0d:2a:7e:1f:02:12:60:1f:e0:b3:47:af:d7:c1:f8: 68:ca:2a:8a:1c:6e:d8:d0:db:89:c7:95:50:6a:a3:a1:21:cc: 6f:34:20:e5:0d:8d:e8:2b:a1:b4:d1:0b:c4:aa:01:c4:a7:77: 8b:4a:08:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODZDMjExMC8GA1UEBRMoMjQ3MjJEMzFDMjUxM0U0RTdGODdFREI3MERGRTlEQzk0 Rjg0NjhCQTAeFw0yNTA1MTEwNjEzMzBaFw0yNTA1MTgwNjEzMzBaMBgxFjAUBgNV BAMTDTY4MjA0MDBiLTAzZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDz4Y12qvrYb5XRVkhSnliRag+OA3TgzBCFCeunV+KvJJTax4nVk17IAbssrC6a XM09VbPs7LWEO2kCVAyRcrf+IiStEQK93UZo+cBazmctfXa0vHJHR+klQDsZPZdN Wr1SttJkhYbBZo6nWWw4FsXOYT5wxstheD0vrs4wip4ifLAP6W4MaxdnrNLWrPWN 33yDPL2qyfZCjF85B6KFp9bKBJdrSH7i900SjELyCY4VOTfaG/DopWf+EYtJXrjf nSCNkfFoCjVOthoSoI8v5sO1uj5U7HiBBK15AFPKTnZWS900FA1sZSowru/xMqt2 M37GtW8srbvjtqPDfiYkJT4bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUzw3b8C9 x+alrCDQCEzuWzGHLzMwHwYDVR0jBBgwFoAUJHItMcJRPk5/h+23Df6dyU+EaLow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NkMyLzI1NTVCRjA2RDE3 RjExRUZCMzg0NjkyOEM0RjlBRTAyL0pISXRNY0pSUGs1X2gtMjNEZjZkeVUtRWFM by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkhJdE1jSlJQazVfaC0yM0RmNmR5VS1FYUxvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NkMyLzI1NTVCRjA2RDE3RjExRUZCMzg0NjkyOEM0RjlBRTAyL0pISXRNY0pSUGs1 X2gtMjNEZjZkeVUtRWFMby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGj/r51DlxV4qDNUOMOKBh79UU1SfPYgF6d/PCa8aQXDSUFxGYfYuAab RfYZoYw3SgRuIs7C0fk+J3CgO+bZ+QwL3VUeA+9ew0Zdh5GLf+FBOy6x/gK6Ytip eX5bitFv9qEYQ8DlJfUdcHT3/EHW1R+Qkess5fU7AHTbgjMxaBjMB24ho40tUeY4 9t5afy8i9e11isXuAhv2wr0DBkRoSkB5gTsay7PLXFmfocE70jd1N6LYrfN9k4/V Vz1NSla0XMZ6oPJXLprDQw0qfh8CEmAf4LNHr9fB+GjKKoocbtjQ24nHlVBqo6Eh zG80IOUNjegrobTRC8SqAcSnd4tKCMA= -----END CERTIFICATE-----Generated at Mon May 12 08:19:46 2025 by rpki-client