$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft File: JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft (raw, json) Hash identifier: CvI+tuHCc7NTBmE13XoSd6VLYf2pCSoFzQbqDBc17mg= Subject key identifier: C6:F6:59:51:30:87:76:9B:13:17:BD:48:82:48:25:51:68:9C:9C:19 Authority key identifier: 24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA Certificate issuer: /CN=A91AC73E/serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Certificate serial: 04B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft Manifest number: 04AF Signing time: Sat 10 May 2025 23:29:41 +0000 Manifest this update: Sat 10 May 2025 23:29:41 +0000 Manifest next update: Sat 17 May 2025 23:29:41 +0000 Files and hashes: 1: JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl (hash: jZrQijp6lm/+4QJXz87I0Bsn093Wd0SE4lSU4nKEa60=) 2: 020CA7B24E4C11EC8045E71EC4F9AE02.roa (hash: tyZWDAn9bcgruEQUmKMpj2KMCjpkdyP72IeeYTIEOW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC73E, serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Validity Not Before: May 10 23:29:41 2025 GMT Not After : May 17 23:29:41 2025 GMT Subject: CN=681fe165-50a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:ea:b8:17:f7:5f:77:d4:d1:68:fe:d4:a9: 64:56:8b:e2:ac:03:c0:71:da:a3:c5:e2:6d:83:fd: f8:79:9b:72:9f:34:f2:4f:71:27:0a:18:56:3d:5e: be:c5:b3:30:bc:36:a6:99:75:00:9d:83:db:08:e0: 98:e6:4a:de:e4:8a:0b:35:12:01:aa:d2:30:eb:ea: 73:0b:78:4f:29:91:42:cb:46:a5:f8:fe:dc:64:00: 84:29:af:2a:f3:2c:c0:05:06:81:35:17:d0:55:85: 55:f2:8e:07:bd:f5:07:7e:08:e7:99:c8:e7:13:8b: d9:25:20:c3:db:2c:d7:f6:69:e0:fc:ce:5e:5b:d5: 38:fa:23:9a:20:98:f8:90:12:90:68:a3:62:bd:61: 45:cf:a5:b5:61:d2:fb:20:42:80:18:16:0a:05:21: 0a:38:76:df:b3:85:ee:7d:2f:73:91:0d:c2:f9:8e: d8:7a:51:50:15:d9:f2:1a:51:75:ea:ce:c4:b4:4f: 96:95:0b:00:3b:a7:1e:8a:2f:37:99:ab:ea:4f:19: 2c:ff:0c:e0:be:ab:ee:bc:e5:33:1d:98:16:3f:c5: b0:9e:eb:bf:58:37:49:b2:86:c5:ab:26:82:b2:c4: a9:64:6d:aa:32:d7:89:81:51:06:fb:41:f0:25:53: 68:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F6:59:51:30:87:76:9B:13:17:BD:48:82:48:25:51:68:9C:9C:19 X509v3 Authority Key Identifier: keyid:24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:17:da:8a:0f:a2:6b:74:fd:d6:3e:94:a7:01:3d:f7:90:56: f2:0a:80:0f:a2:d2:57:b5:d2:65:14:f3:c7:5c:4f:e8:57:a6: ba:e8:fb:d8:36:1d:bf:ce:30:d6:e5:6c:77:6c:4c:01:ea:2f: d7:fe:b2:db:f0:57:56:e6:5c:8f:3a:93:84:e9:84:da:0a:cc: a1:be:78:11:b5:3a:88:10:04:65:02:f8:11:d3:e5:ec:94:6d: 79:6f:ea:7e:68:e5:da:74:a8:33:5a:60:e2:e2:2f:e5:ee:4d: 48:43:5e:1b:dc:68:9a:ae:70:f0:ca:5b:2c:56:9f:ce:16:bf: 04:38:db:8d:5b:b1:60:d8:30:ed:f1:0e:f9:9a:91:e6:78:08: 59:5e:c8:73:0c:72:c8:af:ec:fa:28:e1:09:8d:2f:ca:a2:c0: dc:d9:fc:33:ce:0e:e1:41:9f:da:fe:f2:32:fa:8a:04:35:49: 9a:ae:29:61:8b:a4:be:ab:5c:6d:b2:68:3f:64:98:ea:48:5e: 8c:2d:12:c1:f7:89:09:97:1e:15:c8:10:20:e2:38:72:7b:ae: ba:f6:65:da:c6:1b:c0:c9:e7:af:1a:63:5c:6e:56:3a:98:62: 40:48:16:97:2b:cd:9e:82:b5:cb:56:5c:86:e6:7e:fd:cf:83: cb:63:60:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3M0UxMTAvBgNVBAUTKDI0M0YyRDQ0NzI3RjFEMUI4MDc5RjQwMTRGNjlGNEEw NzREMUYxRUEwHhcNMjUwNTEwMjMyOTQxWhcNMjUwNTE3MjMyOTQxWjAYMRYwFAYD VQQDEw02ODFmZTE2NS01MGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiDquBf3X3fU0Wj+1KlkVovirAPAcdqjxeJtg/34eZtynzTyT3EnChhWPV6+ xbMwvDammXUAnYPbCOCY5kre5IoLNRIBqtIw6+pzC3hPKZFCy0al+P7cZACEKa8q 8yzABQaBNRfQVYVV8o4HvfUHfgjnmcjnE4vZJSDD2yzX9mng/M5eW9U4+iOaIJj4 kBKQaKNivWFFz6W1YdL7IEKAGBYKBSEKOHbfs4XufS9zkQ3C+Y7YelFQFdnyGlF1 6s7EtE+WlQsAO6ceii83mavqTxks/wzgvqvuvOUzHZgWP8Wwnuu/WDdJsobFqyaC ssSpZG2qMteJgVEG+0HwJVNofQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMb2WVEw h3abExe9SIJIJVFonJwZMB8GA1UdIwQYMBaAFCQ/LURyfx0bgHn0AU9p9KB00fHq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzczRS80NDU1NDU2MjJD OTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hSdUFlZlFCVDJuMG9IVFI4 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEOHRSSEpfSFJ1QWVmUUJUMm4wb0hUUjhlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzczRS80NDU1NDU2MjJDOTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hS dUFlZlFCVDJuMG9IVFI4ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnF9qKD6JrdP3WPpSnAT33kFbyCoAPotJXtdJlFPPHXE/oV6a66PvY Nh2/zjDW5Wx3bEwB6i/X/rLb8FdW5lyPOpOE6YTaCsyhvngRtTqIEARlAvgR0+Xs lG15b+p+aOXadKgzWmDi4i/l7k1IQ14b3GiarnDwylssVp/OFr8EONuNW7Fg2DDt 8Q75mpHmeAhZXshzDHLIr+z6KOEJjS/KosDc2fwzzg7hQZ/a/vIy+ooENUmarilh i6S+q1xtsmg/ZJjqSF6MLRLB94kJlx4VyBAg4jhye6669mXaxhvAyeevGmNcblY6 mGJASBaXK82egrXLVlyG5n79z4PLY2CC -----END CERTIFICATE-----Generated at Mon May 12 12:35:01 2025 by rpki-client