$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft File: jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft (raw, json) Hash identifier: 8iSF5/BKB2NBQJxcpPkmnREJvmvgRgdO1YcoqZRDI4k= Subject key identifier: D6:66:B9:86:5A:45:43:35:2B:DD:9D:D6:CA:2A:F9:D2:31:D4:66:53 Authority key identifier: 8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 Certificate issuer: /CN=A9149A6C/serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Certificate serial: 06D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft Manifest number: 06D2 Signing time: Sat 10 May 2025 21:39:35 +0000 Manifest this update: Sat 10 May 2025 21:39:35 +0000 Manifest next update: Sat 17 May 2025 21:39:35 +0000 Files and hashes: 1: jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl (hash: d/OAMspwXIW+/1AWTnRmTyqMOpnFUTjxS/EYHIUKCsA=) 2: 22D8137A51A711EBAAAB6410C4F9AE02.roa (hash: W1YtTgfcUQgVCMN18bivEJ+sBWqdB/GL1VhO0Gs0eBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A6C, serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Validity Not Before: May 10 21:39:35 2025 GMT Not After : May 17 21:39:35 2025 GMT Subject: CN=681fc797-051e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:92:54:69:fc:3c:29:2e:b6:dc:ee:b9:5b:07: f8:8a:34:88:41:17:23:8f:1f:fd:1c:0d:f4:ab:f3: ab:9f:7c:52:a5:8d:5b:02:8f:da:3f:51:15:e1:f8: 04:91:5b:85:ca:ee:ce:d4:af:a8:83:13:2b:a9:23: f5:25:6c:f0:1e:9d:b4:23:ca:03:17:76:cd:94:47: eb:dd:c8:16:e8:44:b4:9b:ab:48:0d:b0:36:73:21: 23:f3:12:9d:0a:71:60:34:c4:01:1b:33:75:8f:10: 73:ee:db:c5:47:6a:26:01:5c:00:69:5f:da:fa:e2: 15:c7:83:1e:33:94:5e:ed:1f:72:7f:14:15:14:a7: b6:e7:e8:bf:ce:fd:85:2d:e6:6f:f1:34:c6:06:44: 6a:db:3c:c7:8a:75:9b:89:95:c2:8b:b3:f9:bc:d1: 32:b2:e3:96:62:ef:62:12:40:9e:1c:3b:24:d9:c9: c4:01:16:02:4d:94:95:ee:04:98:1d:0f:ae:be:20: bd:81:c6:47:a3:e3:f0:e5:5f:20:2c:08:fe:25:3d: cb:25:75:bc:4c:7f:40:5e:1b:f7:c3:8b:e8:72:92: f1:d8:ea:be:8b:f9:a2:c9:09:20:ec:c1:da:07:5d: 94:1b:e7:2e:bf:e8:02:78:3c:6c:2d:c9:ac:af:05: 8f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:66:B9:86:5A:45:43:35:2B:DD:9D:D6:CA:2A:F9:D2:31:D4:66:53 X509v3 Authority Key Identifier: keyid:8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:a8:5d:c5:19:cc:3d:93:dd:f6:68:89:11:b2:4d:35:34:42: b2:98:4a:1a:20:7f:27:d6:84:ca:4b:d2:11:56:7d:76:5c:11: d4:f5:52:34:2f:72:f7:2e:ec:c0:24:1d:83:d3:89:d9:cb:af: b7:3c:7d:a9:c3:1c:e9:25:e5:24:7b:ce:68:26:63:8f:1a:55: e8:08:e6:a4:a1:4a:9f:7f:a0:cf:f8:95:a4:23:6e:8a:7d:13: ad:23:c9:5a:59:9b:70:5a:ac:0e:38:0e:86:f6:c2:88:13:d1: f9:9d:86:88:a6:e7:70:f0:72:3d:87:35:48:ef:75:72:21:8e: e1:7e:e3:7c:61:11:f4:5a:16:4d:36:17:c2:51:4d:7b:14:b4: 4a:53:35:22:56:c7:e3:20:b3:d9:dd:1b:71:cc:e1:9a:b3:a9: ed:7f:48:5e:ac:f4:8d:c9:cf:da:df:82:1d:bf:b2:b9:9d:f4: d7:08:72:ac:df:12:e3:72:3e:84:d0:c6:47:0b:25:c6:0b:09: 08:c6:20:3e:32:3f:76:93:b8:93:af:9e:00:ae:70:e7:84:3e: e9:8c:49:58:a7:42:f9:34:c7:ff:04:54:2a:3a:5b:dc:9d:1f: 69:19:48:28:03:f7:bf:80:b8:60:ac:c8:e7:b6:07:f3:da:41: 2e:01:ed:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBNkMxMTAvBgNVBAUTKDhEMTZGRDBFMjVGQjg5NkUyNkZBNzM0QUJDOTg0Q0U0 QjQ2OThERDMwHhcNMjUwNTEwMjEzOTM1WhcNMjUwNTE3MjEzOTM1WjAYMRYwFAYD VQQDEw02ODFmYzc5Ny0wNTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZJUafw8KS623O65Wwf4ijSIQRcjjx/9HA30q/Orn3xSpY1bAo/aP1EV4fgE kVuFyu7O1K+ogxMrqSP1JWzwHp20I8oDF3bNlEfr3cgW6ES0m6tIDbA2cyEj8xKd CnFgNMQBGzN1jxBz7tvFR2omAVwAaV/a+uIVx4MeM5Re7R9yfxQVFKe25+i/zv2F LeZv8TTGBkRq2zzHinWbiZXCi7P5vNEysuOWYu9iEkCeHDsk2cnEARYCTZSV7gSY HQ+uviC9gcZHo+Pw5V8gLAj+JT3LJXW8TH9AXhv3w4vocpLx2Oq+i/miyQkg7MHa B12UG+cuv+gCeDxsLcmsrwWPuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZmuYZa RUM1K92d1soq+dIx1GZTMB8GA1UdIwQYMBaAFI0W/Q4l+4luJvpzSryYTOS0aY3T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUE2Qy8zQjg0OTNCNDUx QTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lXNG0tbk5LdkpoTTVMUnBq ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pSYjlEaVg3aVc0bS1uTkt2SmhNNUxScGpkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUE2Qy8zQjg0OTNCNDUxQTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lX NG0tbk5LdkpoTTVMUnBqZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsqF3FGcw9k932aIkRsk01NEKymEoaIH8n1oTKS9IRVn12XBHU9VI0 L3L3LuzAJB2D04nZy6+3PH2pwxzpJeUke85oJmOPGlXoCOakoUqff6DP+JWkI26K fROtI8laWZtwWqwOOA6G9sKIE9H5nYaIpudw8HI9hzVI73VyIY7hfuN8YRH0WhZN NhfCUU17FLRKUzUiVsfjILPZ3RtxzOGas6ntf0herPSNyc/a34Idv7K5nfTXCHKs 3xLjcj6E0MZHCyXGCwkIxiA+Mj92k7iTr54ArnDnhD7pjElYp0L5NMf/BFQqOlvc nR9pGUgoA/e/gLhgrMjntgfz2kEuAe1M -----END CERTIFICATE-----Generated at Mon May 12 21:54:40 2025 by rpki-client