$ rpki-client -vvf rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft File: JhOQ197eXRxAsfPigPOKCNqv3N4.mft (raw, json) Hash identifier: 7pQaZaLO9uQikmGZaZq82EokZj+mbM/fyRhLa2HPibI= Subject key identifier: D0:D9:87:13:84:06:ED:7F:9D:85:7F:CB:3C:E9:01:C7:2A:54:78:38 Authority key identifier: 26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE Certificate issuer: /CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft Manifest number: 01A3 Signing time: Tue 13 May 2025 02:33:09 +0000 Manifest this update: Tue 13 May 2025 02:33:09 +0000 Manifest next update: Tue 20 May 2025 02:33:09 +0000 Files and hashes: 1: JhOQ197eXRxAsfPigPOKCNqv3N4.crl (hash: EuM+zxXWUSJGQIurdLJ7w4wuBjJxMFlwYLxDlHDDAsg=) 2: 738195EEB11811ED997EA457C4F9AE02.roa (hash: Y3uWvVWc5h8AjMOh0rbq998afPQd3Tj5ztFh5AezKOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E367, serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Validity Not Before: May 13 02:33:09 2025 GMT Not After : May 20 02:33:09 2025 GMT Subject: CN=6822af65-a0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6f:b1:37:58:d7:fc:48:ac:48:2b:f9:85:77: 7a:b6:6c:f7:d2:45:c7:4f:ff:9b:bc:33:2e:83:49: c3:ff:c1:ed:51:43:80:10:ba:ec:df:f8:b6:91:b7: 89:c1:8d:6f:67:17:95:b6:a1:33:45:bb:c9:19:f7: 59:86:f5:03:7e:68:21:71:0d:52:a6:be:18:2c:ee: 7d:f4:33:fc:26:32:50:99:38:a2:6f:c8:c1:c3:86: e8:c0:88:ef:16:07:72:57:2e:27:25:46:8c:19:f1: cd:37:44:9f:71:71:65:c8:3f:8a:a1:e1:86:2b:cb: de:24:a5:70:73:b9:0b:b1:02:3c:7d:64:75:01:62: 5d:f8:0d:7b:1b:24:16:2e:7f:c6:b0:23:34:9b:81: 5f:85:ca:ca:62:6f:6d:38:29:66:30:3a:91:ac:f3: 3d:5f:c3:a6:ef:bf:c0:da:39:e6:77:6a:9b:39:36: 91:f2:89:0f:32:3b:3f:2a:a4:55:54:ed:fc:b8:8a: 41:f0:2d:7a:e3:15:7a:8d:44:64:ce:f4:37:57:15: 58:84:8a:63:f0:4a:9f:aa:86:f9:d9:2c:c0:03:a8: 19:e3:75:b6:3c:34:e3:4a:fb:be:cf:94:22:00:d9: 0c:fb:8f:b9:ef:2c:e1:1e:bd:2a:b6:00:71:4d:30: 15:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D9:87:13:84:06:ED:7F:9D:85:7F:CB:3C:E9:01:C7:2A:54:78:38 X509v3 Authority Key Identifier: keyid:26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:eb:28:0e:2d:35:c2:c9:e3:cb:8e:80:3b:e0:89:c6:fa:b9: c4:6b:90:7d:7e:c2:48:12:2d:6d:bf:c5:c0:51:7d:77:91:7e: 3d:47:4c:15:10:da:e1:3a:31:4f:fa:c1:f7:2b:f3:3e:e1:a1: 44:a5:a1:dc:4a:b5:a2:3d:30:1e:57:fd:d3:0b:f7:9b:ec:7f: b7:94:2e:93:ec:29:0f:5f:c1:c4:25:17:9a:76:0e:f0:5c:9a: 30:0e:6f:4d:ca:77:1a:c0:78:6d:5c:e9:24:5a:45:35:a1:26: 82:b1:eb:6b:2b:5d:16:84:46:f6:81:1d:f9:ce:28:d2:ad:a6: 6f:02:af:bb:3d:90:81:da:36:94:d1:74:24:82:56:da:2b:8e: 82:95:c5:b1:9d:20:c5:4a:e5:e5:aa:1e:84:d1:8d:cd:92:5e: 61:5f:f4:3d:46:a0:ae:18:7a:3c:3a:da:8a:0d:92:6f:bc:e7: 3b:3b:f2:01:03:70:e8:dd:77:cc:d0:4b:4a:ca:22:c0:c3:17: 3d:a8:f3:bc:95:12:a7:34:88:bf:49:76:39:ee:f3:15:6c:29: bc:e5:8f:df:4f:e7:4b:b6:77:d8:88:f6:f7:45:eb:19:9d:67: bf:70:a1:be:ab:bc:e3:ef:10:c3:a7:5f:ba:67:6a:9e:80:d3: 43:cc:af:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzNjcxMTAvBgNVBAUTKDI2MTM5MEQ3REVERTVEMUM0MEIxRjNFMjgwRjM4QTA4 REFBRkRDREUwHhcNMjUwNTEzMDIzMzA5WhcNMjUwNTIwMDIzMzA5WjAYMRYwFAYD VQQDEw02ODIyYWY2NS1hMGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1m+xN1jX/EisSCv5hXd6tmz30kXHT/+bvDMug0nD/8HtUUOAELrs3/i2kbeJ wY1vZxeVtqEzRbvJGfdZhvUDfmghcQ1Spr4YLO599DP8JjJQmTiib8jBw4bowIjv FgdyVy4nJUaMGfHNN0SfcXFlyD+KoeGGK8veJKVwc7kLsQI8fWR1AWJd+A17GyQW Ln/GsCM0m4FfhcrKYm9tOClmMDqRrPM9X8Om77/A2jnmd2qbOTaR8okPMjs/KqRV VO38uIpB8C164xV6jURkzvQ3VxVYhIpj8Eqfqob52SzAA6gZ43W2PDTjSvu+z5Qi ANkM+4+57yzhHr0qtgBxTTAV/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDZhxOE Bu1/nYV/yzzpAccqVHg4MB8GA1UdIwQYMBaAFCYTkNfe3l0cQLHz4oDzigjar9ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTM2Ny82QkNFQ0UwQUFE RjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhSeEFzZlBpZ1BPS0NOcXYz TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0poT1ExOTdlWFJ4QXNmUGlnUE9LQ05xdjNONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTM2Ny82QkNFQ0UwQUFERjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhS eEFzZlBpZ1BPS0NOcXYzTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg6ygOLTXCyePLjoA74InG+rnEa5B9fsJIEi1tv8XAUX13kX49R0wV ENrhOjFP+sH3K/M+4aFEpaHcSrWiPTAeV/3TC/eb7H+3lC6T7CkPX8HEJReadg7w XJowDm9NyncawHhtXOkkWkU1oSaCsetrK10WhEb2gR35zijSraZvAq+7PZCB2jaU 0XQkglbaK46ClcWxnSDFSuXlqh6E0Y3Nkl5hX/Q9RqCuGHo8OtqKDZJvvOc7O/IB A3Do3XfM0EtKyiLAwxc9qPO8lRKnNIi/SXY57vMVbCm85Y/fT+dLtnfYiPb3ResZ nWe/cKG+q7zj7xDDp1+6Z2qegNNDzK9T -----END CERTIFICATE-----Generated at Wed May 14 11:32:57 2025 by rpki-client