$ rpki-client -vvf rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft File: jZoijMUvgA7lpDIwezQyxj2KnYc.mft (raw, json) Hash identifier: jpGI2w1W9ofw/+fyM20GK+FJyvk8KWsRTCNzgXaSxQY= Subject key identifier: CE:CB:A0:3E:29:1F:3C:9F:E7:A3:8A:9D:A7:FC:A6:F9:C9:78:6F:10 Authority key identifier: 8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 Certificate issuer: /CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Certificate serial: 1BC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft Manifest number: 1BBE Signing time: Sat 10 May 2025 16:09:53 +0000 Manifest this update: Sat 10 May 2025 16:09:52 +0000 Manifest next update: Sat 17 May 2025 16:09:52 +0000 Files and hashes: 1: jZoijMUvgA7lpDIwezQyxj2KnYc.crl (hash: xSxqRXZpUNh3ATRIiNe9WZvJardmmnrN3ByRfY1xRTo=) 2: 1D88BC36F8C711E6B6C42C6CC4F9AE02.roa (hash: adZvd/ecrn/69jFBmaF8532OMU/h1NSuA6iJnPKo2nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7112 (0x1bc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FDBF, serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Validity Not Before: May 10 16:09:52 2025 GMT Not After : May 17 16:09:52 2025 GMT Subject: CN=681f7a50-47c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3c:9c:ac:59:83:cf:17:68:39:e0:c6:5b:14: 4d:52:bc:ab:65:19:a9:da:4d:5c:83:f6:f9:6b:df: 7d:70:c9:21:3c:69:fa:65:29:41:b5:0a:65:28:5a: 81:53:16:43:cb:2c:67:b0:97:0b:a0:bd:57:80:05: c6:81:27:60:d8:50:5e:c1:e7:af:7c:41:cb:aa:c7: 24:13:4e:7d:93:f4:9e:3a:c3:28:7d:47:16:4c:5c: 9d:bc:3c:85:77:7b:27:c1:cc:c4:3b:33:84:01:f2: 69:5f:f4:42:9a:e5:a3:ff:55:8e:eb:4f:92:45:44: 9a:cf:fb:1d:9b:03:fd:55:46:c1:b6:9a:d7:4a:98: 09:8e:60:87:af:28:74:7e:6a:85:3b:bb:52:6f:b0: fc:29:68:57:8b:be:cc:82:91:e5:e5:a4:d4:ac:80: ff:9c:a3:bc:47:bc:2d:4a:de:8a:a5:95:33:d6:5e: 4e:5f:14:77:b2:31:a9:79:9a:64:46:83:50:6b:0b: c9:4e:43:83:39:04:4f:36:73:f7:3b:67:1b:22:82: 01:be:65:2f:f2:8c:49:23:aa:18:87:77:87:34:38: 26:ab:33:14:e9:05:c7:f3:1a:c0:9f:d1:c9:e7:1e: ff:86:bc:4d:1d:be:ec:fc:3b:bd:e2:27:23:64:a7: 19:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CB:A0:3E:29:1F:3C:9F:E7:A3:8A:9D:A7:FC:A6:F9:C9:78:6F:10 X509v3 Authority Key Identifier: keyid:8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:96:d5:40:a8:a5:f1:58:e4:82:3d:d2:74:3b:fa:eb:10:e7: 7f:a9:e7:55:2e:02:ee:38:58:2d:29:a9:66:00:0b:2d:d1:75: eb:9f:a1:83:a6:d4:e5:a4:b0:9d:ef:a2:00:b7:cf:63:3d:5e: e5:f2:cf:e6:5d:bd:e7:ca:c3:a7:e4:2c:9d:c8:bd:0e:11:97: 46:73:5c:12:9b:76:1a:99:40:32:45:38:ad:80:f2:0f:43:e9: 88:39:0b:f8:dc:be:dc:31:22:a2:51:87:e6:f2:11:33:8d:26: 03:68:ec:18:77:e4:a3:ec:e0:57:f4:84:90:67:1d:f2:2f:a9: 13:94:88:99:d0:60:2d:ff:af:ce:a8:6b:6d:fa:51:e4:e5:b6: e4:a8:75:0a:19:f3:43:4b:2b:0b:bb:79:b2:67:be:d2:b0:5e: 52:a7:c0:c7:04:8e:c6:51:00:a2:cf:30:3c:25:e9:f6:e3:c9: c2:f4:ef:48:a2:84:ca:e9:4b:fb:f5:b4:8c:4a:c8:f4:07:30: f1:7f:59:2c:a2:c3:32:12:36:a3:02:3d:cd:29:8d:ae:39:d3: a0:2c:d2:d6:f8:2d:f6:fb:d1:7f:f3:32:1a:67:d1:69:24:47: 89:04:17:4c:de:41:78:c8:23:8d:d6:63:35:b3:62:be:50:5e: af:d7:e5:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEQkYxMTAvBgNVBAUTKDhEOUEyMjhDQzUyRjgwMEVFNUE0MzIzMDdCMzQzMkM2 M0Q4QTlEODcwHhcNMjUwNTEwMTYwOTUyWhcNMjUwNTE3MTYwOTUyWjAYMRYwFAYD VQQDEw02ODFmN2E1MC00N2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojycrFmDzxdoOeDGWxRNUryrZRmp2k1cg/b5a999cMkhPGn6ZSlBtQplKFqB UxZDyyxnsJcLoL1XgAXGgSdg2FBeweevfEHLqsckE059k/SeOsMofUcWTFydvDyF d3snwczEOzOEAfJpX/RCmuWj/1WO60+SRUSaz/sdmwP9VUbBtprXSpgJjmCHryh0 fmqFO7tSb7D8KWhXi77MgpHl5aTUrID/nKO8R7wtSt6KpZUz1l5OXxR3sjGpeZpk RoNQawvJTkODOQRPNnP3O2cbIoIBvmUv8oxJI6oYh3eHNDgmqzMU6QXH8xrAn9HJ 5x7/hrxNHb7s/Du94icjZKcZQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7LoD4p Hzyf56OKnaf8pvnJeG8QMB8GA1UdIwQYMBaAFI2aIozFL4AO5aQyMHs0MsY9ip2H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkRCRi85OUEzMEFGOEY4 QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdBN2xwREl3ZXpReXhqMktu WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pab2lqTVV2Z0E3bHBESXdlelF5eGoyS25ZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkRCRi85OUEzMEFGOEY4QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdB N2xwREl3ZXpReXhqMktuWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkltVAqKXxWOSCPdJ0O/rrEOd/qedVLgLuOFgtKalmAAst0XXrn6GD ptTlpLCd76IAt89jPV7l8s/mXb3nysOn5CydyL0OEZdGc1wSm3YamUAyRTitgPIP Q+mIOQv43L7cMSKiUYfm8hEzjSYDaOwYd+Sj7OBX9ISQZx3yL6kTlIiZ0GAt/6/O qGtt+lHk5bbkqHUKGfNDSysLu3myZ77SsF5Sp8DHBI7GUQCizzA8Jen248nC9O9I ooTK6Uv79bSMSsj0BzDxf1ksosMyEjajAj3NKY2uOdOgLNLW+C32+9F/8zIaZ9Fp JEeJBBdM3kF4yCON1mM1s2K+UF6v1+Xt -----END CERTIFICATE-----Generated at Sat May 10 19:51:41 2025 by rpki-client