$ rpki-client -vvf rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft File: JhOQ197eXRxAsfPigPOKCNqv3N4.mft (raw, json) Hash identifier: 1u++Q773CYb8AqlUbWAMV/NfYbLs0k7AeTTUkzYoLQg= Subject key identifier: 57:60:DD:9F:C8:C8:85:08:E7:68:BC:D4:1D:A9:A9:D6:F2:AA:86:84 Authority key identifier: 26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE Certificate issuer: /CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft Manifest number: 01BB Signing time: Tue 01 Jul 2025 03:26:11 +0000 Manifest this update: Tue 01 Jul 2025 03:26:11 +0000 Manifest next update: Tue 08 Jul 2025 03:26:11 +0000 Files and hashes: 1: JhOQ197eXRxAsfPigPOKCNqv3N4.crl (hash: xEyu5uCO3I5rYRWqmm192i1ZuWbJ2i6q3NfuLaqagK0=) 2: 738195EEB11811ED997EA457C4F9AE02.roa (hash: Y3uWvVWc5h8AjMOh0rbq998afPQd3Tj5ztFh5AezKOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E367, serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Validity Not Before: Jul 1 03:26:11 2025 GMT Not After : Jul 8 03:26:11 2025 GMT Subject: CN=68635553-74d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:2b:01:e0:84:88:40:c3:b4:32:2f:f4:87: e8:0d:4d:c6:05:e8:f3:e2:a5:09:c8:4f:87:1a:88: 66:06:85:32:50:c2:e8:bb:33:42:d9:64:6c:47:47: fd:66:33:02:36:44:f7:76:b7:6c:fe:65:4d:64:3b: 0c:12:dd:a0:34:9b:af:a5:84:d9:bc:27:86:1e:e2: 7f:df:de:a7:23:f2:1a:f5:f4:b9:3d:83:c7:5e:4a: a6:9b:b5:13:09:ae:48:b2:93:fa:59:7e:a2:57:7b: 30:8b:26:67:8e:d3:79:85:26:6a:39:34:4f:11:56: 07:ea:2a:7b:4c:c5:af:6a:bc:11:a4:05:80:cf:54: 37:3c:d1:c1:77:d6:74:fd:88:7e:4b:f3:69:77:0f: eb:cc:68:c8:40:0e:37:6c:42:fd:06:c2:f4:d5:8a: 39:48:26:ef:fb:c2:07:a0:0d:69:e9:28:e2:2a:ef: be:b0:89:65:4d:e2:46:3b:9d:80:9f:2b:81:74:35: b0:8b:09:f2:d5:91:c6:f2:73:bd:41:c7:ec:36:95: 62:7d:6a:9e:41:56:73:82:c9:67:2a:ad:dc:10:cc: 8a:a4:7f:33:96:66:a4:33:d5:12:24:2c:8d:7b:9a: 59:7c:75:8c:78:8a:31:98:a2:b2:17:5b:5d:ce:4b: 05:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:60:DD:9F:C8:C8:85:08:E7:68:BC:D4:1D:A9:A9:D6:F2:AA:86:84 X509v3 Authority Key Identifier: keyid:26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:b5:ff:27:7b:3e:26:ad:2f:61:9d:05:c9:c5:0d:98:c1:20: d9:59:cb:be:f9:45:f6:8b:f9:d7:25:ef:12:64:2a:00:e2:5a: fd:0b:9b:d3:ab:b1:71:c7:d7:41:bd:89:ed:d5:d8:d3:a5:54: 6c:70:98:20:1b:75:1c:a0:17:92:14:e9:9f:43:8f:1c:00:6a: 63:9a:80:2b:ef:ad:d2:ed:be:29:fe:2c:7a:bf:11:d5:7e:3a: 7f:3e:52:cd:68:5f:df:2f:63:6e:aa:7e:93:08:50:68:d2:b7: 41:bd:ab:1f:c5:df:11:8d:b7:f9:57:48:77:5c:8e:3d:3b:5b: 07:3c:b1:b5:8d:4f:3c:2a:c7:bb:dd:de:e6:d8:27:f7:4a:32: 03:44:f1:c3:79:64:49:e2:4f:05:cf:f7:b5:b9:55:19:b9:9b: fc:ec:b3:18:79:50:de:6d:28:07:10:80:d7:0d:16:36:b0:54: 6d:6c:b3:9a:5c:be:a2:b3:6f:7a:c5:d8:61:d5:d7:0a:05:47: 8a:bd:55:f2:2d:d5:b1:77:a8:82:8a:cd:e0:c7:24:dc:66:d1: 0c:73:d2:bb:73:0b:8b:06:cf:51:c9:71:b5:1c:71:29:a1:78: 04:ed:e3:8d:38:8a:3d:8c:cc:f5:70:fb:20:8c:fc:d9:00:f4: 97:30:15:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzNjcxMTAvBgNVBAUTKDI2MTM5MEQ3REVERTVEMUM0MEIxRjNFMjgwRjM4QTA4 REFBRkRDREUwHhcNMjUwNzAxMDMyNjExWhcNMjUwNzA4MDMyNjExWjAYMRYwFAYD VQQDEw02ODYzNTU1My03NGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs04rAeCEiEDDtDIv9IfoDU3GBejz4qUJyE+HGohmBoUyUMLouzNC2WRsR0f9 ZjMCNkT3drds/mVNZDsMEt2gNJuvpYTZvCeGHuJ/396nI/Ia9fS5PYPHXkqmm7UT Ca5IspP6WX6iV3swiyZnjtN5hSZqOTRPEVYH6ip7TMWvarwRpAWAz1Q3PNHBd9Z0 /Yh+S/Npdw/rzGjIQA43bEL9BsL01Yo5SCbv+8IHoA1p6SjiKu++sIllTeJGO52A nyuBdDWwiwny1ZHG8nO9QcfsNpVifWqeQVZzgslnKq3cEMyKpH8zlmakM9USJCyN e5pZfHWMeIoxmKKyF1tdzksFUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdg3Z/I yIUI52i81B2pqdbyqoaEMB8GA1UdIwQYMBaAFCYTkNfe3l0cQLHz4oDzigjar9ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTM2Ny82QkNFQ0UwQUFE RjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhSeEFzZlBpZ1BPS0NOcXYz TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0poT1ExOTdlWFJ4QXNmUGlnUE9LQ05xdjNONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTM2Ny82QkNFQ0UwQUFERjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhS eEFzZlBpZ1BPS0NOcXYzTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATtf8nez4mrS9hnQXJxQ2YwSDZWcu++UX2i/nXJe8SZCoA4lr9C5vT q7Fxx9dBvYnt1djTpVRscJggG3UcoBeSFOmfQ48cAGpjmoAr763S7b4p/ix6vxHV fjp/PlLNaF/fL2Nuqn6TCFBo0rdBvasfxd8Rjbf5V0h3XI49O1sHPLG1jU88Kse7 3d7m2Cf3SjIDRPHDeWRJ4k8Fz/e1uVUZuZv87LMYeVDebSgHEIDXDRY2sFRtbLOa XL6is296xdhh1dcKBUeKvVXyLdWxd6iCis3gxyTcZtEMc9K7cwuLBs9RyXG1HHEp oXgE7eONOIo9jMz1cPsgjPzZAPSXMBWi -----END CERTIFICATE-----Generated at Thu Jul 3 01:15:54 2025 by rpki-client