$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: qQ1vZYL3Z6GJQCVBC1t5VMiDww3SoNcGB/geOFbZHhk= Subject key identifier: F3:70:D1:93:56:E4:16:3A:EB:7E:E9:D6:06:94:53:39:60:B0:AF:6F Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0CF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0CEF Signing time: Fri 16 May 2025 18:19:50 +0000 Manifest this update: Fri 16 May 2025 18:19:49 +0000 Manifest next update: Fri 23 May 2025 18:19:49 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: dQsBE693nWr+Sco7FMq/BQuAnUfkkRDLxRg6/2ECjs0=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: QrHwkCxaqX0D4CMUIb/gJ2hugEkme/UAAaAoVbq7U4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3321 (0xcf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: May 16 18:19:49 2025 GMT Not After : May 23 18:19:49 2025 GMT Subject: CN=682781c6-0b8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0d:4b:39:e4:ab:0a:01:f7:e2:7d:f7:37:a4: f8:d1:d6:15:1c:3c:e5:01:21:48:25:58:b4:fd:da: 4e:6c:b2:d3:8c:1a:54:01:c1:b6:f5:5c:ad:14:45: ce:49:83:4f:c9:05:c4:39:7e:58:5d:19:bd:0c:94: e6:61:bb:25:6a:f2:0a:81:bc:56:75:c3:68:7d:6f: 8a:fd:af:7c:a9:45:68:9c:26:e4:f7:1c:c9:e4:b6: 7e:93:1a:de:13:56:4f:6e:e4:fd:eb:0c:70:96:15: db:f8:cd:87:98:71:39:60:f8:3d:e9:b4:52:c8:92: 92:95:7d:87:2b:38:dd:99:2d:65:72:61:83:22:4f: 9b:c1:b9:5c:8c:f0:7e:ec:df:6d:a5:4f:76:1c:1f: e1:95:30:ea:ad:68:09:fe:9b:42:97:44:54:4e:d0: 1a:a5:92:a6:fa:d1:ff:a1:54:17:62:65:5e:49:6e: ed:30:94:ca:4f:95:e3:a4:4c:cb:c1:40:d7:7a:28: 96:90:dd:74:e4:ee:44:38:3b:9b:d5:02:df:25:97: d6:19:c9:b6:75:b4:89:7e:00:93:e6:31:a5:8d:fd: 5d:83:83:0a:bb:8a:06:e8:73:0c:92:7a:5e:52:04: eb:86:76:40:49:31:77:8d:b9:39:9f:5b:0d:1c:14: 96:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:70:D1:93:56:E4:16:3A:EB:7E:E9:D6:06:94:53:39:60:B0:AF:6F X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:0b:89:1d:75:68:a1:66:38:9c:dd:cb:57:e5:17:cc:56:59: 43:c6:3f:11:79:42:b7:33:de:07:bd:de:e9:d4:33:bf:86:3d: 0a:3d:fb:cf:5f:1e:2d:7f:45:aa:29:c9:0d:c3:04:7b:d6:0b: ab:36:81:1a:74:60:79:7a:f6:67:e0:a9:06:bf:11:5a:e8:b2: 91:0b:14:c7:4d:3e:52:62:c4:eb:4b:d0:43:45:89:de:82:68: 95:9d:44:06:8e:29:ec:76:55:e3:94:c1:a7:31:75:89:91:17: ab:88:49:94:d4:b6:ae:63:69:f3:b1:19:6d:c1:37:1a:4b:8d: ed:cc:a1:90:93:f0:77:c4:39:c3:f8:9b:fc:96:01:d0:8e:99: 56:0c:08:db:0f:9b:9d:dc:8b:91:c5:93:fd:80:0e:60:30:ff: b6:e4:c8:d6:8f:96:8e:d6:6c:6c:4f:27:2e:b6:58:fa:57:21: 47:b4:ea:fc:9e:6f:41:8d:70:43:2e:5f:36:0f:96:59:fe:08: 3e:7d:2c:2e:69:bf:3a:78:e4:83:68:92:b1:98:29:83:a8:f9: 8c:e0:5d:1d:f1:eb:fa:f5:a9:72:3c:ac:d1:d8:a3:52:12:68: 11:1f:0c:07:0b:79:34:37:9b:9e:f6:4f:31:a3:76:2d:43:cf: bc:10:de:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUwNTE2MTgxOTQ5WhcNMjUwNTIzMTgxOTQ5WjAYMRYwFAYD VQQDEw02ODI3ODFjNi0wYjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQ1LOeSrCgH34n33N6T40dYVHDzlASFIJVi0/dpObLLTjBpUAcG29VytFEXO SYNPyQXEOX5YXRm9DJTmYbslavIKgbxWdcNofW+K/a98qUVonCbk9xzJ5LZ+kxre E1ZPbuT96wxwlhXb+M2HmHE5YPg96bRSyJKSlX2HKzjdmS1lcmGDIk+bwblcjPB+ 7N9tpU92HB/hlTDqrWgJ/ptCl0RUTtAapZKm+tH/oVQXYmVeSW7tMJTKT5XjpEzL wUDXeiiWkN105O5EODub1QLfJZfWGcm2dbSJfgCT5jGljf1dg4MKu4oG6HMMknpe UgTrhnZASTF3jbk5n1sNHBSW+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNw0ZNW 5BY6637p1gaUUzlgsK9vMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfC4kddWihZjic3ctX5RfMVllDxj8ReUK3M94Hvd7p1DO/hj0KPfvP Xx4tf0WqKckNwwR71gurNoEadGB5evZn4KkGvxFa6LKRCxTHTT5SYsTrS9BDRYne gmiVnUQGjinsdlXjlMGnMXWJkReriEmU1LauY2nzsRltwTcaS43tzKGQk/B3xDnD +Jv8lgHQjplWDAjbD5ud3IuRxZP9gA5gMP+25MjWj5aO1mxsTycutlj6VyFHtOr8 nm9BjXBDLl82D5ZZ/gg+fSwuab86eOSDaJKxmCmDqPmM4F0d8ev69alyPKzR2KNS EmgRHwwHC3k0N5ue9k8xo3YtQ8+8EN4b -----END CERTIFICATE-----Generated at Fri May 16 21:40:21 2025 by rpki-client