$ rpki-client -vvf rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft File: j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft (raw, json) Hash identifier: t8Xy6QNTmtteT7Kk1rucVlbV6Oz5O3puoSSCgq4jYDo= Subject key identifier: 2E:41:F3:40:C5:99:5F:76:87:FB:82:7A:1B:94:37:00:A8:F5:2A:4C Authority key identifier: 8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 Certificate issuer: /CN=A91644A4/serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Certificate serial: 0298 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft Manifest number: 0291 Signing time: Sun 11 May 2025 01:07:29 +0000 Manifest this update: Sun 11 May 2025 01:07:28 +0000 Manifest next update: Sun 18 May 2025 01:07:28 +0000 Files and hashes: 1: j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl (hash: 0k1e8lo7fP5zfAhnUjto6LC35u0taA6SVwAF6JNigAo=) 2: 3B501252140811EDBF3D2F27C4F9AE02.roa (hash: UP0rzzGm1RNNAwSNVW6RQ9A/3hrn3jElJIPxPVvX0ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91644A4, serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Validity Not Before: May 11 01:07:28 2025 GMT Not After : May 18 01:07:28 2025 GMT Subject: CN=681ff850-fc4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5a:fe:ef:cc:77:10:00:f7:0b:77:db:49:9f: df:8e:a2:03:8c:46:9e:4b:27:cb:75:a6:5f:92:30: e6:50:0a:41:e4:9a:14:21:ed:37:07:00:a4:e8:82: b6:f7:6f:29:c5:e0:5c:58:95:73:c2:80:1e:35:35: fb:ac:ee:22:4a:2d:48:41:39:7a:a7:3d:0c:56:bd: 2d:a3:62:77:e4:15:cf:c7:4c:3d:be:50:71:d8:3f: 01:a4:36:1e:a1:42:02:d1:d9:89:e9:06:26:f2:e1: e0:4b:1d:e5:11:72:93:d5:d7:ee:d9:1f:2c:53:31: 4b:79:48:81:16:21:45:db:4a:02:09:85:36:d9:83: c2:bf:b3:80:7c:2b:6c:28:56:85:2c:42:bf:70:97: 14:92:d3:df:5c:8f:0a:b9:58:74:c1:57:27:10:81: b3:cb:d6:6d:69:3c:97:66:ab:7b:d6:5b:23:9e:1e: b9:f1:ee:d0:d1:a0:8b:2c:93:da:f7:20:54:c6:14: e2:ed:bd:2a:e0:3d:a4:fd:f7:ef:4a:96:f6:c0:72: 02:24:c3:b2:d6:23:22:73:97:25:a2:50:f9:28:cb: 68:05:ae:7c:50:29:1f:2a:69:a4:ed:78:15:7f:74: 24:73:64:bc:9f:79:d6:86:fb:09:30:01:a0:00:76: 15:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:41:F3:40:C5:99:5F:76:87:FB:82:7A:1B:94:37:00:A8:F5:2A:4C X509v3 Authority Key Identifier: keyid:8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:e8:19:cf:d7:28:72:87:92:00:3e:9a:22:b9:a5:ef:14:ed: a8:d8:8c:2c:da:41:d1:e4:92:d0:bf:2c:09:13:35:1c:c9:6f: 83:c6:2c:78:aa:7d:66:b7:9f:18:97:5f:a7:23:57:a6:bf:c4: 34:55:16:98:d7:e4:e8:31:f7:6a:30:60:46:8e:ea:88:17:0a: 67:73:ff:ba:6d:a4:eb:4e:8d:50:fd:98:a3:22:7c:ea:a6:89: 5b:b7:70:c0:eb:62:87:70:59:d8:68:04:e1:f8:e1:ce:08:dc: 68:b7:5f:ac:f5:d4:e0:85:29:5a:78:c9:88:e6:11:bb:63:0b: c4:66:c2:87:35:32:71:b8:dc:27:80:e1:a1:29:d9:65:a7:31: 0e:64:fb:ce:9e:27:8a:52:18:ef:c7:3a:cf:ce:19:55:2e:22: de:e7:db:7f:10:35:58:e3:85:81:ee:ca:41:e9:dc:05:50:55: 1b:f1:04:35:6b:e9:58:c4:05:f2:47:10:c1:96:81:90:0f:0f: 7d:7b:79:af:bc:a4:1b:3a:7f:15:c5:04:0d:e2:4a:03:ad:0c: fb:98:63:52:10:1b:e7:39:ce:8e:f1:d8:97:7f:d4:8f:9b:f5: cb:e4:a2:d0:cc:36:fa:5a:60:2a:1e:06:16:6f:d3:ca:6a:81: 73:0d:22:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ0QTQxMTAvBgNVBAUTKDhGQzY2MUExOTMzMkFFODY0QkM4NzkwMDc0NERBMzM3 RjlBNzAwQTkwHhcNMjUwNTExMDEwNzI4WhcNMjUwNTE4MDEwNzI4WjAYMRYwFAYD VQQDEw02ODFmZjg1MC1mYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslr+78x3EAD3C3fbSZ/fjqIDjEaeSyfLdaZfkjDmUApB5JoUIe03BwCk6IK2 928pxeBcWJVzwoAeNTX7rO4iSi1IQTl6pz0MVr0to2J35BXPx0w9vlBx2D8BpDYe oUIC0dmJ6QYm8uHgSx3lEXKT1dfu2R8sUzFLeUiBFiFF20oCCYU22YPCv7OAfCts KFaFLEK/cJcUktPfXI8KuVh0wVcnEIGzy9ZtaTyXZqt71lsjnh658e7Q0aCLLJPa 9yBUxhTi7b0q4D2k/ffvSpb2wHICJMOy1iMic5clolD5KMtoBa58UCkfKmmk7XgV f3Qkc2S8n3nWhvsJMAGgAHYVXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5B80DF mV92h/uCehuUNwCo9SpMMB8GA1UdIwQYMBaAFI/GYaGTMq6GS8h5AHRNozf5pwCp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDRBNC8yRDIzQTRDQzAy MDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJvWkx5SGtBZEUyak5fbW5B S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4WmhvWk15cm9aTHlIa0FkRTJqTl9tbkFLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDRBNC8yRDIzQTRDQzAyMDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJv Wkx5SGtBZEUyak5fbW5BS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF6BnP1yhyh5IAPpoiuaXvFO2o2Iws2kHR5JLQvywJEzUcyW+Dxix4 qn1mt58Yl1+nI1emv8Q0VRaY1+ToMfdqMGBGjuqIFwpnc/+6baTrTo1Q/ZijInzq polbt3DA62KHcFnYaATh+OHOCNxot1+s9dTghSlaeMmI5hG7YwvEZsKHNTJxuNwn gOGhKdllpzEOZPvOnieKUhjvxzrPzhlVLiLe59t/EDVY44WB7spB6dwFUFUb8QQ1 a+lYxAXyRxDBloGQDw99e3mvvKQbOn8VxQQN4koDrQz7mGNSEBvnOc6O8diXf9SP m/XL5KLQzDb6WmAqHgYWb9PKaoFzDSJc -----END CERTIFICATE-----Generated at Mon May 12 15:50:49 2025 by rpki-client