$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft File: jhahBq30E6__xY8QEZJ09wDPpZM.mft (raw, json) Hash identifier: IgMoAwIic+PkiduSmKQQxnGjjli9r9WfE9xekUeYwcg= Subject key identifier: 4E:F1:0E:91:C1:04:85:62:D2:62:2D:DB:2F:1E:FF:E1:C1:3A:6E:DA Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 Certificate issuer: /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft Manifest number: 0258 Signing time: Tue 13 May 2025 01:37:20 +0000 Manifest this update: Tue 13 May 2025 01:37:20 +0000 Manifest next update: Tue 20 May 2025 01:37:20 +0000 Files and hashes: 1: jhahBq30E6__xY8QEZJ09wDPpZM.crl (hash: 0hzWQkzapz2cOeuJBBZMYJISGiT0bZpNGhCw4uM2iyA=) 2: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (hash: dftYADdFFUc1O011GFzDE5h9w7SMkc25c1t2QDLUX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF8E, serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Validity Not Before: May 13 01:37:20 2025 GMT Not After : May 20 01:37:20 2025 GMT Subject: CN=6822a250-5fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:92:bc:62:ff:2b:ce:3b:6e:96:f7:22:93:e8: 17:7f:4d:34:4d:86:3f:60:39:26:38:1a:2c:7b:92: 14:73:64:42:4a:c4:b5:55:33:0a:01:47:01:0a:80: f5:f4:7f:4e:43:87:d0:92:32:cc:e3:67:f8:54:9a: f5:0c:5d:6b:c4:c8:ec:83:0e:ca:e0:59:e1:c4:d2: 32:2c:50:67:b0:4d:5e:bc:b6:a5:11:c8:6a:17:f7: 9a:c3:c0:62:7c:a0:6a:01:ba:21:b7:f9:fb:c5:77: d9:04:ea:60:96:88:59:97:9c:58:68:34:aa:ec:d2: 59:94:eb:8d:63:4e:4c:b5:cf:63:d1:52:d4:e6:03: 7f:f2:fb:52:ea:c1:57:2c:b0:ae:28:7b:fa:cb:af: b2:c8:89:cc:f3:ef:7a:c1:98:8d:53:e5:fd:b1:66: a6:44:a7:88:0e:d0:12:24:3c:2d:34:d9:37:9c:f7: 40:51:16:ac:10:2f:5c:9a:a6:56:2b:0b:54:de:43: 7d:2e:66:31:ba:52:d5:36:f1:04:db:0a:0c:e1:98: 46:26:f0:e1:96:b4:c4:f6:a2:bc:9e:c9:85:97:04: 2c:3f:d4:f4:ca:c6:4e:3b:3e:35:89:04:02:28:4a: 8e:d4:6d:8e:3f:f1:a5:ff:a0:d4:82:0a:59:e8:ef: a2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F1:0E:91:C1:04:85:62:D2:62:2D:DB:2F:1E:FF:E1:C1:3A:6E:DA X509v3 Authority Key Identifier: keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e2:a0:fa:90:d8:f2:d7:4b:e8:31:b9:81:aa:9f:5c:68:aa: 19:94:c7:43:8a:06:bf:f8:97:49:9c:77:f0:e7:4f:c2:23:e0: 67:ea:c3:8f:af:70:3b:eb:ef:2c:67:36:69:af:34:c4:6e:39: 4e:4a:fe:11:85:72:45:41:9b:3c:a4:4f:d9:a7:67:fd:e9:10: cd:60:45:65:8f:a4:4b:4f:1e:d4:25:13:f3:29:7a:4e:a4:13: 77:f1:7a:ea:03:55:75:f8:41:ef:0a:1c:c9:e0:93:77:8c:70: 4c:e0:03:31:c2:e4:59:31:68:1c:3f:5d:e8:3e:89:4a:b8:4e: 51:2b:d1:54:c5:0c:0f:bb:30:7f:ab:00:cc:3e:a7:9a:de:01: c4:aa:19:ec:78:3e:92:9b:cc:41:83:f6:3b:5b:ef:4f:97:03: aa:62:c6:f6:66:84:7a:91:31:a9:3b:01:68:6f:3f:15:af:af: 48:f7:68:12:44:cf:7d:45:12:72:89:ea:6d:ea:d8:0a:96:90: f0:d7:b5:84:35:42:18:bc:75:3a:ec:dc:e9:a9:dd:c5:c8:25: 7f:1f:cd:0a:ed:fb:98:45:21:af:8c:41:ce:8e:b7:82:0c:26: 8c:f7:b6:8e:4f:aa:0e:d5:e0:41:10:06:a9:89:e2:9c:1b:8f: f3:06:64:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGOEUxMTAvBgNVBAUTKDhFMTZBMTA2QURGNDEzQUZGRkM1OEYxMDExOTI3NEY3 MDBDRkE1OTMwHhcNMjUwNTEzMDEzNzIwWhcNMjUwNTIwMDEzNzIwWjAYMRYwFAYD VQQDEw02ODIyYTI1MC01ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZK8Yv8rzjtulvcik+gXf000TYY/YDkmOBose5IUc2RCSsS1VTMKAUcBCoD1 9H9OQ4fQkjLM42f4VJr1DF1rxMjsgw7K4FnhxNIyLFBnsE1evLalEchqF/eaw8Bi fKBqAboht/n7xXfZBOpglohZl5xYaDSq7NJZlOuNY05Mtc9j0VLU5gN/8vtS6sFX LLCuKHv6y6+yyInM8+96wZiNU+X9sWamRKeIDtASJDwtNNk3nPdAURasEC9cmqZW KwtU3kN9LmYxulLVNvEE2woM4ZhGJvDhlrTE9qK8nsmFlwQsP9T0ysZOOz41iQQC KEqO1G2OP/Gl/6DUggpZ6O+iIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7xDpHB BIVi0mIt2y8e/+HBOm7aMB8GA1UdIwQYMBaAFI4WoQat9BOv/8WPEBGSdPcAz6WT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUY4RS8yQUIyNDkxODE3 MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2X194WThRRVpKMDl3RFBw Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poYWhCcTMwRTZfX3hZOFFFWkowOXdEUHBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUY4RS8yQUIyNDkxODE3MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2 X194WThRRVpKMDl3RFBwWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR4qD6kNjy10voMbmBqp9caKoZlMdDiga/+JdJnHfw50/CI+Bn6sOP r3A76+8sZzZprzTEbjlOSv4RhXJFQZs8pE/Zp2f96RDNYEVlj6RLTx7UJRPzKXpO pBN38XrqA1V1+EHvChzJ4JN3jHBM4AMxwuRZMWgcP13oPolKuE5RK9FUxQwPuzB/ qwDMPqea3gHEqhnseD6Sm8xBg/Y7W+9PlwOqYsb2ZoR6kTGpOwFobz8Vr69I92gS RM99RRJyiept6tgKlpDw17WENUIYvHU67Nzpqd3FyCV/H80K7fuYRSGvjEHOjreC DCaM97aOT6oO1eBBEAapieKcG4/zBmQ9 -----END CERTIFICATE-----Generated at Wed May 14 22:56:04 2025 by rpki-client