$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft File: JSwA6X56eGlZOIzyBKTH5kVYDGg.mft (raw, json) Hash identifier: oWjSv+g7FAyUELt7QYH9+KLv5kOWK01RFmAtbZpupiQ= Subject key identifier: 41:0A:D1:B5:19:CC:27:77:F4:95:7E:1C:89:43:25:9F:DB:6E:DC:A4 Authority key identifier: 25:2C:00:E9:7E:7A:78:69:59:38:8C:F2:04:A4:C7:E6:45:58:0C:68 Certificate issuer: /CN=A919DA26/serialNumber=252C00E97E7A786959388CF204A4C7E645580C68 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft Manifest number: 5D Signing time: Tue 13 May 2025 02:23:31 +0000 Manifest this update: Tue 13 May 2025 02:23:31 +0000 Manifest next update: Tue 20 May 2025 02:23:31 +0000 Files and hashes: 1: JSwA6X56eGlZOIzyBKTH5kVYDGg.crl (hash: W6UQl8zGkZsIl8viJStnsfJ2wJrpeijh3Xh9Hy7BMUQ=) 2: F17996F2B21C11EFBDB2BA25C4F9AE02.roa (hash: Ha8TSc6ylXlULsjvosE3YzdnyL+kFFYkOUZjNUZAybA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.crl rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA26, serialNumber=252C00E97E7A786959388CF204A4C7E645580C68 Validity Not Before: May 13 02:23:31 2025 GMT Not After : May 20 02:23:31 2025 GMT Subject: CN=6822ad23-04f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:04:fa:28:30:87:49:61:72:c5:9c:f5:d4:d9: 91:eb:2e:8b:84:3e:4a:3a:bd:2c:9f:20:7b:f7:f3: 37:c0:55:93:c7:0f:11:2a:27:8e:61:3a:d4:c9:0f: 1e:0e:12:f0:70:36:fc:69:65:4f:73:c8:e1:57:2b: 46:93:aa:c5:9e:7a:54:d5:10:b7:9d:ea:1d:eb:92: 69:8d:f1:01:86:91:4b:fe:44:01:23:bb:f3:cb:37: 07:de:7f:4a:61:ed:2d:11:1c:ac:f1:fb:cf:1b:ad: dc:d1:1f:9f:46:bd:e8:bb:85:e2:03:40:3e:da:c0: fd:0f:11:23:30:bc:9e:ef:c8:7c:73:37:09:8a:59: c7:15:c6:42:38:9c:44:c2:8f:48:43:12:ca:e1:2d: b1:3d:69:e2:d3:cc:67:a8:67:38:43:2e:b9:c0:ff: 55:39:02:b5:2f:78:27:ce:04:a0:cc:52:f8:17:10: a4:c3:fc:3f:23:a6:2c:05:0a:bd:6b:ce:81:bb:b4: 1c:ca:f9:f0:c4:7a:63:79:3a:55:42:9a:a7:9a:4b: c9:23:8b:03:91:d4:54:25:a8:bf:9a:63:c8:37:5e: b7:fd:53:32:9e:ba:0f:f1:40:16:79:a0:ff:60:d7: c2:f1:69:25:46:af:2d:75:58:b9:33:51:7d:df:33: 84:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:0A:D1:B5:19:CC:27:77:F4:95:7E:1C:89:43:25:9F:DB:6E:DC:A4 X509v3 Authority Key Identifier: keyid:25:2C:00:E9:7E:7A:78:69:59:38:8C:F2:04:A4:C7:E6:45:58:0C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:a5:5c:8b:7b:9b:19:86:b0:c8:34:2e:b5:78:36:df:f8:8f: 74:75:25:2a:07:30:0d:e9:7e:c0:cb:64:74:7a:0c:ff:fd:5a: 5f:e9:f5:0a:b8:74:68:44:97:da:e6:46:b3:44:3c:1b:ef:bb: d9:72:7e:34:ab:35:d1:59:5b:34:49:b4:8c:80:d1:6a:d9:59: 94:30:11:e8:1e:ed:ad:cb:f8:09:59:e0:22:ea:31:09:e7:3e: c7:87:75:7d:84:c2:a0:c0:de:03:ba:63:2f:3b:60:a1:ab:89: 39:8c:2a:e9:ec:12:c3:66:d8:80:e0:98:8d:28:ee:06:c3:c5: 87:56:25:8b:68:c9:24:01:2e:a3:b8:63:3b:5a:f1:2e:d5:f6: 09:79:ed:48:d6:db:01:f3:c2:25:3a:d6:9e:6f:cb:eb:d7:ba: df:52:7d:2f:b6:28:c8:9a:ae:8e:be:9b:d3:1b:85:31:09:dc: 8a:cb:12:d7:3b:9f:62:58:cd:45:77:4e:3e:d6:c4:ba:79:2f: 7f:0c:16:e5:55:c2:7c:4f:e8:aa:ee:b8:dc:62:bc:34:3a:de: 7a:dc:04:ee:58:d9:8a:c3:f8:81:59:31:00:a1:84:61:69:05: e5:c2:5a:44:15:7c:b7:5e:08:48:f8:73:22:44:39:f5:07:a5: 55:7a:88:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 REEyNjExMC8GA1UEBRMoMjUyQzAwRTk3RTdBNzg2OTU5Mzg4Q0YyMDRBNEM3RTY0 NTU4MEM2ODAeFw0yNTA1MTMwMjIzMzFaFw0yNTA1MjAwMjIzMzFaMBgxFjAUBgNV BAMTDTY4MjJhZDIzLTA0ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOBPooMIdJYXLFnPXU2ZHrLouEPko6vSyfIHv38zfAVZPHDxEqJ45hOtTJDx4O EvBwNvxpZU9zyOFXK0aTqsWeelTVELed6h3rkmmN8QGGkUv+RAEju/PLNwfef0ph 7S0RHKzx+88brdzRH59Gvei7heIDQD7awP0PESMwvJ7vyHxzNwmKWccVxkI4nETC j0hDEsrhLbE9aeLTzGeoZzhDLrnA/1U5ArUveCfOBKDMUvgXEKTD/D8jpiwFCr1r zoG7tBzK+fDEemN5OlVCmqeaS8kjiwOR1FQlqL+aY8g3Xrf9UzKeug/xQBZ5oP9g 18LxaSVGry11WLkzUX3fM4TxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQQrRtRnM J3f0lX4ciUMln9tu3KQwHwYDVR0jBBgwFoAUJSwA6X56eGlZOIzyBKTH5kVYDGgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEQTI2L0Y1MTA1RTRDQTJG NzExRUZBMjM2OEY3N0M0RjlBRTAyL0pTd0E2WDU2ZUdsWk9JenlCS1RINWtWWURH Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSlN3QTZYNTZlR2xaT0l6eUJLVEg1a1ZZREdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE QTI2L0Y1MTA1RTRDQTJGNzExRUZBMjM2OEY3N0M0RjlBRTAyL0pTd0E2WDU2ZUds Wk9JenlCS1RINWtWWURHZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJulXIt7mxmGsMg0LrV4Nt/4j3R1JSoHMA3pfsDLZHR6DP/9Wl/p9Qq4 dGhEl9rmRrNEPBvvu9lyfjSrNdFZWzRJtIyA0WrZWZQwEege7a3L+AlZ4CLqMQnn PseHdX2EwqDA3gO6Yy87YKGriTmMKunsEsNm2IDgmI0o7gbDxYdWJYtoySQBLqO4 Yzta8S7V9gl57UjW2wHzwiU61p5vy+vXut9SfS+2KMiaro6+m9MbhTEJ3IrLEtc7 n2JYzUV3Tj7WxLp5L38MFuVVwnxP6KruuNxivDQ63nrcBO5Y2YrD+IFZMQChhGFp BeXCWkQVfLdeCEj4cyJEOfUHpVV6iMs= -----END CERTIFICATE-----Generated at Tue May 13 21:40:12 2025 by rpki-client