$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft File: jfabjPAtRHKg4tL07m5JMm09sMU.mft (raw, json) Hash identifier: pVAuqY1C5D2t1mPR2/rVfGR/PwecqKL20WqkDw+p2xk= Subject key identifier: AB:E0:46:09:D7:B4:CF:DA:AD:88:93:4E:FF:B9:CE:A4:97:30:42:8B Authority key identifier: 8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 Certificate issuer: /CN=A9147BA3/serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Certificate serial: 348D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft Manifest number: 3484 Signing time: Sat 10 May 2025 15:06:12 +0000 Manifest this update: Sat 10 May 2025 15:06:12 +0000 Manifest next update: Sat 17 May 2025 15:06:12 +0000 Files and hashes: 1: jfabjPAtRHKg4tL07m5JMm09sMU.crl (hash: Vro0QNUl4bzOmv1BDOKbAVnqQVBUmgZo5muZFYohpNc=) 2: 2B2C31BE3B8B11EB8D76362DC4F9AE02.roa (hash: END/X8NWEnYQqU51TlQvCrkCaUczqULOOoxx1HVtbaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13453 (0x348d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BA3, serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Validity Not Before: May 10 15:06:12 2025 GMT Not After : May 17 15:06:12 2025 GMT Subject: CN=681f6b64-c9a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e1:7b:14:d4:68:3f:18:34:3f:ad:d0:e0:29: 1d:d8:2d:47:9d:3e:39:52:69:ef:69:5d:05:fd:1b: 58:ae:7a:54:83:0f:6d:dc:66:39:ed:73:eb:61:2a: 41:b0:76:43:56:c6:27:3a:37:a9:a6:ae:4f:7f:5d: 70:38:fb:9e:bd:7d:11:8c:e7:78:fb:9a:89:9d:44: b8:9f:8c:e4:79:52:4f:8a:d4:11:81:62:48:e5:e8: 3f:d6:ba:20:90:12:27:1d:bf:94:50:db:99:78:63: a4:be:a9:0c:b9:19:a3:51:77:ad:df:00:65:df:2e: 02:0d:2c:e4:38:ab:8c:dc:21:d2:b3:e5:4b:3f:47: 47:17:d3:66:30:56:89:d3:6b:da:ad:3e:32:48:a5: 1c:4a:34:c7:53:80:54:6d:47:e9:37:86:fb:20:6b: 7a:82:e5:8f:fe:14:6c:e9:8c:f7:be:a3:72:5c:69: 94:3a:c8:47:28:1f:b0:98:3c:75:0c:74:e3:37:1a: cb:8b:3a:01:6f:94:0b:59:a4:2e:90:5c:4d:a5:3d: 07:a5:59:1b:56:a8:b5:fc:5e:8e:21:eb:3e:6e:87: a8:b0:8a:c1:80:82:b1:01:2c:32:b3:2e:20:9f:91: c1:55:58:f4:7d:50:b8:d8:ad:93:35:1b:fa:3d:d7: 76:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E0:46:09:D7:B4:CF:DA:AD:88:93:4E:FF:B9:CE:A4:97:30:42:8B X509v3 Authority Key Identifier: keyid:8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:76:fd:0d:14:f7:a3:c4:47:6b:de:d6:84:5e:2b:f3:4a:00: 89:f2:f9:b8:4c:f9:c5:2e:f8:00:24:41:1f:a0:78:88:90:48: 69:e4:4c:99:6c:4f:ce:aa:68:38:22:b3:8d:d6:ec:26:2b:f2: 43:b6:b8:a6:db:64:c2:be:39:0c:e8:90:bb:56:8c:b4:40:50: 8a:53:9a:b8:8e:c7:98:de:f8:88:2c:70:9c:bf:92:e9:63:37: 7c:3e:f3:e5:5a:04:f0:ae:8d:79:3a:28:3d:8f:94:02:ca:35: ed:13:af:1c:43:02:2c:f3:b7:b8:f7:ff:9c:6a:79:ef:b3:83: 50:78:3d:32:7b:a6:33:06:bf:65:d8:ec:ec:0a:21:9e:77:7e: f4:fe:b0:e5:26:35:c4:b2:49:b5:de:06:75:c2:7a:14:ed:44: 0f:a2:11:26:67:50:88:ca:c4:04:f3:35:5f:00:8c:e5:6c:5c: f7:28:a0:7f:47:02:dc:45:60:e2:f5:bf:77:ee:09:bc:c7:1c: 8c:c2:85:05:a4:f1:32:1f:85:96:79:91:59:04:e7:8b:6b:d3: 8a:6f:ce:98:38:85:05:7c:34:c4:bd:45:63:43:5a:19:84:5d: 6d:f2:80:91:77:67:d9:00:76:fa:4e:5d:31:a3:9a:36:e1:22: d1:9f:17:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCQTMxMTAvBgNVBAUTKDhERjY5QjhDRjAyRDQ0NzJBMEUyRDJGNEVFNkU0OTMy NkQzREIwQzUwHhcNMjUwNTEwMTUwNjEyWhcNMjUwNTE3MTUwNjEyWjAYMRYwFAYD VQQDEw02ODFmNmI2NC1jOWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uF7FNRoPxg0P63Q4Ckd2C1HnT45UmnvaV0F/RtYrnpUgw9t3GY57XPrYSpB sHZDVsYnOjeppq5Pf11wOPuevX0RjOd4+5qJnUS4n4zkeVJPitQRgWJI5eg/1rog kBInHb+UUNuZeGOkvqkMuRmjUXet3wBl3y4CDSzkOKuM3CHSs+VLP0dHF9NmMFaJ 02varT4ySKUcSjTHU4BUbUfpN4b7IGt6guWP/hRs6Yz3vqNyXGmUOshHKB+wmDx1 DHTjNxrLizoBb5QLWaQukFxNpT0HpVkbVqi1/F6OIes+boeosIrBgIKxASwysy4g n5HBVVj0fVC42K2TNRv6Pdd2hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvgRgnX tM/arYiTTv+5zqSXMEKLMB8GA1UdIwQYMBaAFI32m4zwLURyoOLS9O5uSTJtPbDF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0JBMy83N0VBN0EyNDFE QTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJIS2c0dEwwN201Sk1tMDlz TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pmYWJqUEF0UkhLZzR0TDA3bTVKTW0wOXNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0JBMy83N0VBN0EyNDFEQTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJI S2c0dEwwN201Sk1tMDlzTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYdv0NFPejxEdr3taEXivzSgCJ8vm4TPnFLvgAJEEfoHiIkEhp5EyZ bE/Oqmg4IrON1uwmK/JDtrim22TCvjkM6JC7Voy0QFCKU5q4jseY3viILHCcv5Lp Yzd8PvPlWgTwro15Oig9j5QCyjXtE68cQwIs87e49/+cannvs4NQeD0ye6YzBr9l 2OzsCiGed370/rDlJjXEskm13gZ1wnoU7UQPohEmZ1CIysQE8zVfAIzlbFz3KKB/ RwLcRWDi9b937gm8xxyMwoUFpPEyH4WWeZFZBOeLa9OKb86YOIUFfDTEvUVjQ1oZ hF1t8oCRd2fZAHb6Tl0xo5o24SLRnxfB -----END CERTIFICATE-----Generated at Sun May 11 09:07:30 2025 by rpki-client