$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft File: jiZ6MV35Dplf9M1LLPj8TDMksts.mft (raw, json) Hash identifier: UE8pxLuaClKwoGD7Pxy6xoAklcsyv0avYnEO5AXf8RU= Subject key identifier: 03:BE:EA:48:74:AA:E3:0E:AC:65:6E:42:BB:91:BB:B6:82:5D:B8:B8 Authority key identifier: 8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB Certificate issuer: /CN=A91B35DF/serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft Manifest number: 3A Signing time: Sun 11 May 2025 06:18:01 +0000 Manifest this update: Sun 11 May 2025 06:18:00 +0000 Manifest next update: Sun 18 May 2025 06:18:00 +0000 Files and hashes: 1: jiZ6MV35Dplf9M1LLPj8TDMksts.crl (hash: r/7oe59VbXtGV6ISefInbCItc8shjBzonuDP/A/rSI8=) 2: EF714C70D89F11EFA1D2E672C4F9AE02.roa (hash: RQguTQm7u/HopEKGt5+xwJ/Yt9Fvm6tqRZ2uC++bhEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35DF, serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Validity Not Before: May 11 06:18:00 2025 GMT Not After : May 18 06:18:00 2025 GMT Subject: CN=68204119-f7f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cc:2a:a4:54:eb:ca:19:3a:91:9b:6a:72:1b: 50:47:63:7d:e9:fc:20:73:e6:12:53:73:88:95:45: 0b:f9:8b:bf:4e:15:71:c6:d6:13:d8:90:75:1e:e2: c5:53:1d:7c:d0:b8:10:3f:37:47:c2:b7:c5:3a:ff: fb:46:7d:a6:33:71:61:9d:20:9f:91:b6:06:7d:61: a7:69:c5:e2:19:17:46:a6:72:fc:9b:c7:e0:f1:8e: 3b:e6:49:37:3f:ee:05:20:66:2a:17:c8:5d:29:7f: 60:fe:55:33:e5:18:94:55:09:d6:c2:a0:a4:bb:3b: bb:b9:4b:68:f9:55:a9:df:f9:7a:c4:eb:fa:0a:9d: 3c:40:74:8f:3b:2f:a5:32:43:9c:2f:9d:13:6b:f7: 04:e9:d2:7f:b8:57:a0:ed:73:52:7c:49:27:dd:ff: 89:2b:ad:48:d5:05:3b:ab:99:21:4a:1f:c3:25:99: 36:fa:79:7b:a2:8b:82:54:b1:c1:0b:7e:e5:11:59: ff:f8:ad:59:3c:2c:1e:73:f3:3a:19:7d:87:a2:63: 3f:9d:c2:d3:af:0f:47:a2:0b:e0:9c:c8:4b:a0:c0: ae:82:d5:69:2a:28:a1:3a:ee:4e:de:03:65:f2:c8: e8:f1:ff:08:b7:c4:2a:f0:14:14:ff:29:4b:7d:3e: c9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BE:EA:48:74:AA:E3:0E:AC:65:6E:42:BB:91:BB:B6:82:5D:B8:B8 X509v3 Authority Key Identifier: keyid:8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b7:57:d7:18:28:11:56:9a:08:2a:3c:c3:ea:1b:db:f5:15: 68:fe:66:59:4c:dd:55:80:f4:87:90:d9:04:f1:f8:c9:45:26: 21:bf:c5:1f:c4:dc:13:88:18:9a:39:58:23:92:14:78:15:f5: 42:ae:71:7b:4c:03:6c:c1:12:b9:5c:c1:da:90:c5:fa:f1:55: 05:ac:10:94:1a:ad:af:ab:e1:a0:92:62:8f:8f:fa:9f:60:91: 65:94:c8:be:ca:7d:19:65:5a:69:14:f7:9f:da:dd:e6:4d:33: a5:74:ac:30:09:1f:09:bd:d1:6f:89:53:a8:ab:01:4d:2b:13: 14:02:c9:6c:98:d8:a6:db:87:94:a7:a2:50:7f:56:3f:da:1e: 72:51:17:82:37:1d:6c:fd:a5:a2:3a:7d:14:2c:67:40:e3:60: 6e:cb:3c:4d:9b:3e:fa:5e:ff:59:d9:77:f3:b8:0f:eb:bd:aa: ac:0d:ed:a5:fc:a2:6d:60:53:6b:bf:eb:0a:57:92:43:6e:2d: 76:b6:b5:f7:15:8a:d9:f6:4b:ba:57:6e:dd:cc:39:1a:25:c6: 62:3f:40:16:60:18:0b:b1:93:79:09:c7:f8:64:ba:92:77:c8: 27:38:dc:20:46:52:c4:37:71:3b:69:66:1e:d9:ee:5e:d2:db: d6:3a:a4:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzVERjExMC8GA1UEBRMoOEUyNjdBMzE1REY5MEU5OTVGRjRDRDRCMkNGOEZDNEMz MzI0QjJEQjAeFw0yNTA1MTEwNjE4MDBaFw0yNTA1MTgwNjE4MDBaMBgxFjAUBgNV BAMTDTY4MjA0MTE5LWY3ZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFzCqkVOvKGTqRm2pyG1BHY33p/CBz5hJTc4iVRQv5i79OFXHG1hPYkHUe4sVT HXzQuBA/N0fCt8U6//tGfaYzcWGdIJ+RtgZ9YadpxeIZF0amcvybx+DxjjvmSTc/ 7gUgZioXyF0pf2D+VTPlGJRVCdbCoKS7O7u5S2j5Vanf+XrE6/oKnTxAdI87L6Uy Q5wvnRNr9wTp0n+4V6Dtc1J8SSfd/4krrUjVBTurmSFKH8MlmTb6eXuii4JUscEL fuURWf/4rVk8LB5z8zoZfYeiYz+dwtOvD0eiC+CcyEugwK6C1WkqKKE67k7eA2Xy yOjx/wi3xCrwFBT/KUt9PskxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA77qSHSq 4w6sZW5Cu5G7toJduLgwHwYDVR0jBBgwFoAUjiZ6MV35Dplf9M1LLPj8TDMkstsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzNURGLzFFQTAxOTlDRDg5 RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBsZjlNMUxMUGo4VERNa3N0 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamlaNk1WMzVEcGxmOU0xTExQajhURE1rc3RzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz NURGLzFFQTAxOTlDRDg5RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBs ZjlNMUxMUGo4VERNa3N0cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG63V9cYKBFWmggqPMPqG9v1FWj+ZllM3VWA9IeQ2QTx+MlFJiG/xR/E 3BOIGJo5WCOSFHgV9UKucXtMA2zBErlcwdqQxfrxVQWsEJQara+r4aCSYo+P+p9g kWWUyL7KfRllWmkU95/a3eZNM6V0rDAJHwm90W+JU6irAU0rExQCyWyY2Kbbh5Sn olB/Vj/aHnJRF4I3HWz9paI6fRQsZ0DjYG7LPE2bPvpe/1nZd/O4D+u9qqwN7aX8 om1gU2u/6wpXkkNuLXa2tfcVitn2S7pXbt3MORolxmI/QBZgGAuxk3kJx/hkupJ3 yCc43CBGUsQ3cTtpZh7Z7l7S29Y6pHU= -----END CERTIFICATE-----Generated at Sun May 11 13:50:10 2025 by rpki-client