$ rpki-client -vvf rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft File: jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft (raw, json) Hash identifier: 7oXZMud5k127pW1lKVkw5OXDLNRf8c4U2SfVawjYrM8= Subject key identifier: BF:F1:A5:DA:76:50:33:B8:5A:7A:6C:DB:A9:07:CB:C4:8D:41:70:45 Authority key identifier: 8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 Certificate issuer: /CN=A91190A9/serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Certificate serial: 0B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft Manifest number: 0B02 Signing time: Wed 14 May 2025 19:25:43 +0000 Manifest this update: Wed 14 May 2025 19:25:42 +0000 Manifest next update: Wed 21 May 2025 19:25:42 +0000 Files and hashes: 1: jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl (hash: tcr1RpymJFwSCmONcsRAGL/QUXq3EpVexx5vGyWJuAA=) 2: 344C54A441B811EAA856BE49C4F9AE02.roa (hash: WrNvje3c+z7lsqTQqXn/sqPriUfd4/uYt7v0A72LhYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190A9, serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Validity Not Before: May 14 19:25:42 2025 GMT Not After : May 21 19:25:42 2025 GMT Subject: CN=6824ee37-8953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:90:e4:7e:c7:34:e6:e7:d9:ef:5d:7d:35:3f: 91:b1:9c:26:ed:f9:6c:6c:0f:56:ea:8b:50:19:0c: f5:c5:3e:de:8e:2d:23:f8:aa:e7:2b:44:47:b4:72: 7b:32:68:41:05:cf:ed:f4:59:af:81:34:31:c4:80: be:ff:20:91:1d:cb:2a:35:e6:c5:88:a1:ec:78:5e: b7:c7:d5:a0:1a:89:7c:e8:87:60:d9:92:b4:60:af: ad:bb:f7:9e:d3:2e:92:d8:b8:d8:b3:21:42:d6:5d: 84:ea:88:72:83:91:6b:82:a6:e4:ba:ae:80:3d:40: 02:b1:22:e7:49:4c:c6:b4:a2:19:51:d4:17:b0:be: 6d:2c:fe:df:13:22:1f:65:8b:eb:8a:dc:17:6d:13: 2a:a8:2a:f2:b4:85:0d:59:3e:e4:fd:41:ab:07:ec: c1:0c:33:ab:62:a6:e4:61:f2:95:59:9d:73:66:a3: e3:87:b3:06:ca:c5:a8:80:74:d8:17:d7:c2:fc:02: 9a:02:c1:cc:48:44:64:91:a8:0e:ce:ca:88:62:a7: c1:43:34:4e:7d:28:a5:11:d4:aa:eb:fa:a5:f7:a0: d7:b1:79:0b:73:71:c8:29:12:f6:56:4b:ef:fc:f9: 90:14:38:90:49:e8:66:9f:8e:6d:7e:f0:69:cf:3d: e2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F1:A5:DA:76:50:33:B8:5A:7A:6C:DB:A9:07:CB:C4:8D:41:70:45 X509v3 Authority Key Identifier: keyid:8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:1c:ce:ec:a9:5a:af:82:7e:c6:ac:a1:3c:94:13:20:85:b1: 6a:71:03:27:fd:cc:00:32:1d:07:f7:86:ea:63:3a:d3:57:1f: 3e:b7:11:52:f3:f0:d4:e9:d3:ac:2f:ac:5c:c6:09:3b:7b:42: 5f:2c:3e:a2:3a:35:f0:a6:6a:ad:2c:fe:59:fc:74:43:0b:92: 2c:fa:a7:ce:56:39:f7:82:a5:3e:77:46:52:b6:65:29:bd:30: 06:67:2b:72:09:1f:f4:29:80:ca:00:77:fd:02:88:e3:a6:a7: e9:81:a2:1b:6e:ac:d1:a5:66:ca:4b:53:9e:04:7e:67:23:3f: e9:da:89:8a:2a:09:78:60:ee:f5:65:af:23:26:2a:56:d5:51: 86:12:f4:d9:d4:4c:b4:16:c7:c7:83:b3:ba:9b:8b:b1:ce:9f: b8:8c:b0:2c:b6:22:cc:06:c0:f2:80:28:37:dc:63:49:43:49: 16:90:21:c4:b5:25:d8:bb:ec:24:b2:18:7e:ee:f3:dc:99:1d: b9:be:08:aa:59:32:33:aa:47:b1:ba:ba:48:12:35:85:07:7c: fc:57:7a:22:12:f8:2a:18:50:12:47:9f:38:59:e0:d2:f0:d5: bd:d7:b0:0c:71:f8:9d:36:be:b1:1b:62:e5:3e:67:67:cf:ea: fa:31:ff:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQTkxMTAvBgNVBAUTKDhENDczQkNDNTdDM0YyQUU0RTg3NDhFREVGRDNEMjgx N0MyMDY1NjYwHhcNMjUwNTE0MTkyNTQyWhcNMjUwNTIxMTkyNTQyWjAYMRYwFAYD VQQDEw02ODI0ZWUzNy04OTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJDkfsc05ufZ7119NT+RsZwm7flsbA9W6otQGQz1xT7eji0j+KrnK0RHtHJ7 MmhBBc/t9FmvgTQxxIC+/yCRHcsqNebFiKHseF63x9WgGol86Idg2ZK0YK+tu/ee 0y6S2LjYsyFC1l2E6ohyg5Frgqbkuq6APUACsSLnSUzGtKIZUdQXsL5tLP7fEyIf ZYvritwXbRMqqCrytIUNWT7k/UGrB+zBDDOrYqbkYfKVWZ1zZqPjh7MGysWogHTY F9fC/AKaAsHMSERkkagOzsqIYqfBQzROfSilEdSq6/ql96DXsXkLc3HIKRL2Vkvv /PmQFDiQSehmn45tfvBpzz3ibwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/xpdp2 UDO4Wnps26kHy8SNQXBFMB8GA1UdIwQYMBaAFI1HO8xXw/KuTodI7e/T0oF8IGVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBBOS9BOTc0MDQ5QTQx QjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhxNU9oMGp0NzlQU2dYd2da V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVYzd6RmZEOHE1T2gwanQ3OVBTZ1h3Z1pXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBBOS9BOTc0MDQ5QTQxQjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhx NU9oMGp0NzlQU2dYd2daV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWHM7sqVqvgn7GrKE8lBMghbFqcQMn/cwAMh0H94bqYzrTVx8+txFS 8/DU6dOsL6xcxgk7e0JfLD6iOjXwpmqtLP5Z/HRDC5Is+qfOVjn3gqU+d0ZStmUp vTAGZytyCR/0KYDKAHf9AojjpqfpgaIbbqzRpWbKS1OeBH5nIz/p2omKKgl4YO71 Za8jJipW1VGGEvTZ1Ey0FsfHg7O6m4uxzp+4jLAstiLMBsDygCg33GNJQ0kWkCHE tSXYu+wkshh+7vPcmR25vgiqWTIzqkexurpIEjWFB3z8V3oiEvgqGFASR584WeDS 8NW917AMcfidNr6xG2LlPmdnz+r6Mf8c -----END CERTIFICATE-----Generated at Fri May 16 09:27:57 2025 by rpki-client