$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft File: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft (raw, json) Hash identifier: 5xcDkRe2LC5gTPboODrLWwcTmy0sPCw874Pn96WYtok= Subject key identifier: CD:7B:98:E2:EC:0F:1E:DF:2B:1A:79:B3:E4:1E:4D:74:94:B7:17:17 Authority key identifier: D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 Certificate issuer: /CN=A9123E38/serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Certificate serial: 0AA5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft Manifest number: 0AA5 Signing time: Mon 12 May 2025 16:37:50 +0000 Manifest this update: Mon 12 May 2025 16:37:50 +0000 Manifest next update: Mon 19 May 2025 16:37:50 +0000 Files and hashes: 1: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl (hash: yXXPHSX1m8A1TZitEfFnJ5MYRY2+XVxFoWVnRL9/6Rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2725 (0xaa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Validity Not Before: May 12 16:37:50 2025 GMT Not After : May 19 16:37:50 2025 GMT Subject: CN=682223de-d734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a0:13:46:3b:61:03:41:21:cc:4b:8c:88:67: 26:16:28:c6:52:d0:30:57:a8:b2:1d:29:e7:a3:0d: 51:56:53:ea:60:66:11:ea:54:5b:0d:85:f2:a2:de: 1f:d2:8f:c4:59:1a:b9:a3:26:bf:96:69:9f:21:f5: 39:a4:17:a7:96:fc:4a:48:8b:20:20:12:c1:d1:ad: dc:8d:56:4d:4a:01:01:ec:20:a2:59:b3:52:fb:a0: 71:80:d9:34:2a:6c:73:b4:ae:54:2f:cd:68:57:21: 0e:0e:3e:d5:38:23:87:68:aa:d7:8e:37:d6:1f:6c: 38:7a:64:ce:7a:1f:cc:3a:fc:d6:07:93:d7:74:9d: 3e:24:ad:c0:90:d0:a1:ec:bd:2b:5e:b8:e0:9a:23: 8a:cb:bf:f0:ce:4c:34:26:8f:ee:1f:08:84:db:94: 66:e9:40:b9:d7:17:79:a8:85:e3:57:7c:7b:51:83: 4d:c8:97:51:0b:7e:3a:37:a9:13:ec:6d:0c:87:00: 8a:bf:c1:f4:d0:fa:4e:1e:e2:a8:17:33:c2:27:0c: 5f:14:0d:94:1e:60:e4:70:a8:97:55:d9:6b:83:65: 58:ed:c1:b3:6a:a0:a7:af:f7:32:90:87:4a:66:39: 1d:4a:c9:4f:11:46:f4:06:99:cd:0b:7f:91:f8:c6: f6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:7B:98:E2:EC:0F:1E:DF:2B:1A:79:B3:E4:1E:4D:74:94:B7:17:17 X509v3 Authority Key Identifier: keyid:D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:af:f6:06:2b:ae:ab:f0:d0:86:ee:60:05:0b:35:4a:42:b9: 55:08:f2:1d:5c:8b:3f:95:25:24:af:b8:3b:d2:7a:39:de:51: 9d:d4:95:87:94:c5:d8:34:d6:09:c1:58:de:1f:40:35:72:c0: 02:3b:89:c4:ca:3c:11:52:76:88:01:01:27:2a:b3:99:8f:a7: 67:4b:2d:62:6a:df:86:64:2e:2c:b9:9a:bb:42:1a:68:75:6b: a4:8d:2e:2d:f8:70:7c:e8:4f:ad:c6:97:f8:d9:c1:76:f1:99: a3:e2:c0:eb:50:b0:e8:d6:3d:28:c4:32:ff:9e:ff:46:17:5c: 89:43:56:19:d4:49:5b:3f:f4:7b:d2:c7:ca:71:3e:e1:81:8e: e5:7c:66:37:80:0f:2d:cb:f0:96:46:7a:73:b6:ae:c3:73:26: 03:c9:11:0d:70:06:3b:45:90:ac:f4:cf:20:8d:be:f1:90:7d: e9:78:cd:3d:85:bd:01:4c:e4:b4:9f:4a:00:b0:12:04:89:47: 17:6a:59:35:12:89:aa:68:72:ff:46:ac:5b:8d:77:bb:d0:6b: f7:58:53:c9:24:21:45:a8:b1:0b:23:59:22:48:fe:c9:95:19: ab:4c:b1:9f:07:72:b1:e5:d9:02:04:64:f1:4e:de:19:a7:c4: d4:43:d9:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQwOTREMjQ3MTQzNTJFMEVCQ0QzRjg4Mjc1MjMyODI3 QkM2QUM4OTAwHhcNMjUwNTEyMTYzNzUwWhcNMjUwNTE5MTYzNzUwWjAYMRYwFAYD VQQDEw02ODIyMjNkZS1kNzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaATRjthA0EhzEuMiGcmFijGUtAwV6iyHSnnow1RVlPqYGYR6lRbDYXyot4f 0o/EWRq5oya/lmmfIfU5pBenlvxKSIsgIBLB0a3cjVZNSgEB7CCiWbNS+6BxgNk0 KmxztK5UL81oVyEODj7VOCOHaKrXjjfWH2w4emTOeh/MOvzWB5PXdJ0+JK3AkNCh 7L0rXrjgmiOKy7/wzkw0Jo/uHwiE25Rm6UC51xd5qIXjV3x7UYNNyJdRC346N6kT 7G0MhwCKv8H00PpOHuKoFzPCJwxfFA2UHmDkcKiXVdlrg2VY7cGzaqCnr/cykIdK ZjkdSslPEUb0BpnNC3+R+Mb2lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM17mOLs Dx7fKxp5s+QeTXSUtxcXMB8GA1UdIwQYMBaAFNCU0kcUNS4OvNP4gnUjKCe8asiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC82QjkxRURBMDUz NkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxnNjgwX2lDZFNNb0o3eHF5 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBKVFNSeFExTGc2ODBfaUNkU01vSjd4cXlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC82QjkxRURBMDUzNkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxn NjgwX2lDZFNNb0o3eHF5SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjr/YGK66r8NCG7mAFCzVKQrlVCPIdXIs/lSUkr7g70no53lGd1JWH lMXYNNYJwVjeH0A1csACO4nEyjwRUnaIAQEnKrOZj6dnSy1iat+GZC4suZq7Qhpo dWukjS4t+HB86E+txpf42cF28Zmj4sDrULDo1j0oxDL/nv9GF1yJQ1YZ1ElbP/R7 0sfKcT7hgY7lfGY3gA8ty/CWRnpztq7DcyYDyRENcAY7RZCs9M8gjb7xkH3peM09 hb0BTOS0n0oAsBIEiUcXalk1EomqaHL/RqxbjXe70Gv3WFPJJCFFqLELI1kiSP7J lRmrTLGfB3Kx5dkCBGTxTt4Zp8TUQ9mV -----END CERTIFICATE-----Generated at Wed May 14 16:12:33 2025 by rpki-client