$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: rlStGsI556FBNwf8DVITyoG8sGwio9RbtJWNM4d9zzk= Subject key identifier: F1:9A:DD:F6:90:2E:DF:08:3E:B2:5A:5F:91:5D:26:4F:86:FC:54:C3 Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 065F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 065D Signing time: Wed 14 May 2025 22:28:25 +0000 Manifest this update: Wed 14 May 2025 22:28:25 +0000 Manifest next update: Wed 21 May 2025 22:28:25 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: bW1WNlnOxgDG27g1se5/A2a8Ksv/VmlN2f1w4IiRtR4=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: ukg+6KCGHkrsTy11bBIK1xYhpVPUVwZenM7mxd/8rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:28:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1631 (0x65f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: May 14 22:28:25 2025 GMT Not After : May 21 22:28:25 2025 GMT Subject: CN=68251909-199f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8d:fd:db:3a:3a:c8:06:38:07:58:15:b4:35: f4:9f:c2:2b:8f:a0:ae:96:24:b1:39:2c:18:ef:79: 27:c3:e1:59:6c:77:c4:81:f4:e0:1e:c8:2a:1e:02: 3d:68:91:f2:38:b7:90:73:a2:b3:33:72:2e:97:ab: 59:c9:00:9a:14:60:c5:66:6e:1f:ea:3b:73:83:63: 23:87:aa:67:c6:f7:af:1c:e2:cf:53:b9:b5:86:59: a8:54:e4:1a:b7:84:48:d7:a9:2e:70:3f:40:7a:66: 57:28:40:79:18:5f:25:0c:fd:63:16:16:ef:f4:96: f6:76:61:9b:63:e0:18:03:a8:22:4e:76:ce:8f:88: ab:db:7d:24:02:47:85:6c:a4:f0:ba:06:2a:86:1b: 49:a4:d9:be:eb:9e:d5:b6:ac:97:09:1d:5e:4c:55: 96:d8:c5:05:25:36:90:44:e6:ae:4c:eb:96:9d:a1: 36:c5:b3:45:a0:6c:57:42:24:34:1f:f5:c6:7e:41: ba:e8:d9:75:70:23:58:33:db:34:08:22:a8:2a:ff: aa:9c:78:d5:89:b8:e4:de:f7:67:3b:44:89:60:26: 62:74:1a:86:3a:11:1e:79:2a:47:f9:70:af:05:e1: ea:39:4b:cb:31:f6:b7:03:c8:30:82:e5:e6:0c:79: 28:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9A:DD:F6:90:2E:DF:08:3E:B2:5A:5F:91:5D:26:4F:86:FC:54:C3 X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:29:2d:5a:15:9e:3f:44:29:a1:ef:38:f8:d6:98:a7:0a:aa: db:90:84:da:29:68:71:10:dc:46:7a:84:df:6a:b7:bc:73:78: 8d:a8:e8:8f:ab:7d:7b:92:c2:27:d6:53:d4:e6:71:2f:2e:b0: b5:77:8e:b3:d1:41:e1:d1:08:ad:c7:67:ef:c3:d5:2f:b8:d2: a0:fc:d8:1e:34:85:5c:11:b1:11:85:cd:37:e3:78:11:15:5c: 0c:96:46:94:bd:30:d5:f9:15:cf:17:67:b2:c1:53:4b:fe:58: 7a:3d:46:a5:36:cf:cf:86:79:be:34:2b:08:7c:96:55:d7:98: 74:ea:23:7f:cf:c6:b2:ad:bd:24:03:a3:62:1b:cc:13:59:6d: 3b:7f:99:a5:91:11:b0:18:79:bf:7b:bc:5f:c8:1a:00:22:a4: 52:30:fc:bb:b7:5c:0c:8c:01:68:c6:ba:cb:9f:28:00:85:d4: 97:96:32:e1:be:a8:11:ce:eb:fa:b1:af:09:cf:d2:f0:4c:90: 5a:de:2e:2e:22:01:4b:f8:4d:5f:5a:0d:d3:72:e9:98:e8:84: 2e:05:5f:cd:96:f9:bc:8f:5a:a6:5f:2b:c7:f1:36:e0:10:03: b1:6e:66:f9:cd:b8:56:bb:91:74:ac:e3:5b:d2:a0:6f:2f:98: 33:6f:a3:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjUwNTE0MjIyODI1WhcNMjUwNTIxMjIyODI1WjAYMRYwFAYD VQQDEw02ODI1MTkwOS0xOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4392zo6yAY4B1gVtDX0n8Irj6CuliSxOSwY73knw+FZbHfEgfTgHsgqHgI9 aJHyOLeQc6KzM3Iul6tZyQCaFGDFZm4f6jtzg2Mjh6pnxvevHOLPU7m1hlmoVOQa t4RI16kucD9AemZXKEB5GF8lDP1jFhbv9Jb2dmGbY+AYA6giTnbOj4ir230kAkeF bKTwugYqhhtJpNm+657VtqyXCR1eTFWW2MUFJTaQROauTOuWnaE2xbNFoGxXQiQ0 H/XGfkG66Nl1cCNYM9s0CCKoKv+qnHjVibjk3vdnO0SJYCZidBqGOhEeeSpH+XCv BeHqOUvLMfa3A8gwguXmDHko1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGa3faQ Lt8IPrJaX5FdJk+G/FTDMB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWKS1aFZ4/RCmh7zj41pinCqrbkITaKWhxENxGeoTfare8c3iNqOiP q317ksIn1lPU5nEvLrC1d46z0UHh0Qitx2fvw9UvuNKg/NgeNIVcEbERhc0343gR FVwMlkaUvTDV+RXPF2eywVNL/lh6PUalNs/Phnm+NCsIfJZV15h06iN/z8ayrb0k A6NiG8wTWW07f5mlkRGwGHm/e7xfyBoAIqRSMPy7t1wMjAFoxrrLnygAhdSXljLh vqgRzuv6sa8Jz9LwTJBa3i4uIgFL+E1fWg3TcumY6IQuBV/Nlvm8j1qmXyvH8Tbg EAOxbmb5zbhWu5F0rONb0qBvL5gzb6Mg -----END CERTIFICATE-----Generated at Thu May 15 15:45:05 2025 by rpki-client