$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft File: JSnIA8s451HjaWq3li2CMUX81lk.mft (raw, json) Hash identifier: +SmuRjeQTRAO65T/JbSzjLPm9rvR5MKcChbvMmWUlv4= Subject key identifier: 23:32:F4:C9:8C:52:00:9A:24:26:83:6C:63:2B:2D:56:32:EB:17:12 Authority key identifier: 25:29:C8:03:CB:38:E7:51:E3:69:6A:B7:96:2D:82:31:45:FC:D6:59 Certificate issuer: /CN=A91B6CE4/serialNumber=2529C803CB38E751E3696AB7962D823145FCD659 Certificate serial: 12C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft Manifest number: 12B3 Signing time: Thu 08 May 2025 17:08:55 +0000 Manifest this update: Thu 08 May 2025 17:08:54 +0000 Manifest next update: Thu 15 May 2025 17:08:54 +0000 Files and hashes: 1: JSnIA8s451HjaWq3li2CMUX81lk.crl (hash: LWouG4r75W+nuiq5W6APIMgPRETGz5Kz6q9l+NocTPs=) 2: B3D4AEB8BFC011E8A7F4204CC4F9AE02.roa (hash: KCnIrYwfu7lFXb4I5Fn3ggrFhAeTiDDSoEEewMbwbp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.crl rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 17:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4800 (0x12c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6CE4, serialNumber=2529C803CB38E751E3696AB7962D823145FCD659 Validity Not Before: May 8 17:08:54 2025 GMT Not After : May 15 17:08:54 2025 GMT Subject: CN=681ce526-ef17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cd:ce:4f:d4:1f:a5:88:10:b7:8d:e1:17:da: e6:19:0f:f7:0d:99:e8:e1:76:f7:1a:04:0a:93:21: 36:76:fc:da:85:39:a2:9d:ae:95:a9:85:9b:dc:b4: f8:3b:b7:21:25:1c:11:dc:ee:1b:d2:14:78:ab:92: 5b:b3:21:01:b6:a7:8a:b2:37:fa:0c:48:97:16:ea: ba:01:26:07:4d:94:ac:da:e2:87:3f:dc:4c:6f:8c: 9c:9b:ed:78:6e:81:0b:2a:72:81:54:0c:58:cd:80: d6:9c:00:dd:bc:2c:6b:e6:f7:34:8a:a8:e8:2a:15: 83:1a:fb:5d:c3:37:a3:2e:88:c7:aa:07:cf:3c:10: f9:16:d0:62:c6:5c:0a:1e:89:df:fe:bb:57:31:36: 4c:b2:16:1b:b3:fb:09:c2:1d:2d:9f:98:29:1b:23: c2:97:aa:00:1d:bc:25:b9:13:e1:5d:3b:6d:83:cf: 80:cc:0c:43:04:db:8b:74:80:e5:fb:fb:b8:6a:80: 14:0a:cb:aa:e8:44:b8:ce:9c:df:2f:82:5e:48:f7: 03:07:46:bf:20:6c:aa:8f:c8:25:35:e3:19:c9:45: b7:69:b3:14:a8:31:ce:eb:21:12:f9:1e:23:ff:e7: 7b:86:f1:bd:64:41:b7:53:06:a8:37:76:4c:e3:9c: ff:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:32:F4:C9:8C:52:00:9A:24:26:83:6C:63:2B:2D:56:32:EB:17:12 X509v3 Authority Key Identifier: keyid:25:29:C8:03:CB:38:E7:51:E3:69:6A:B7:96:2D:82:31:45:FC:D6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:70:42:b0:72:f8:72:2d:9b:a1:88:6e:08:a8:20:0a:21:a6: 5d:eb:82:d2:de:77:11:3e:77:7c:c3:d4:85:89:db:4f:3e:d4: 32:1b:0b:b8:bb:13:9b:ef:47:ae:61:7f:0a:dd:fb:6f:2e:59: 78:c8:94:f3:fe:72:e8:9a:d3:ae:69:e4:2b:51:41:c9:4a:fa: 39:47:76:f4:31:6a:84:ce:03:ea:d1:dd:b1:a7:a1:06:9a:39: 36:53:0d:9f:f9:e7:e5:e6:90:51:8e:21:0e:e2:77:da:cb:ec: fd:69:d9:bd:12:3c:2c:e3:19:53:3b:38:65:ae:d2:cb:5e:b7: 51:a4:a1:fc:4d:6d:b5:71:1a:1e:8e:96:c7:c9:86:cc:36:85: 06:9c:86:8e:c1:82:ae:bc:36:ca:c4:b7:8c:e2:70:ab:b1:35: 02:7b:01:e2:f3:4b:4c:2b:2a:eb:79:04:6c:13:7b:80:72:86: 05:48:82:50:fb:10:88:a3:f7:9f:3e:24:65:a1:59:e7:b8:98: d8:3e:b8:bd:1f:11:06:6f:d5:a1:ad:43:72:42:24:67:ec:df: b1:09:71:f1:bf:ec:df:d2:5c:b7:16:ed:7d:d3:76:5a:29:8b: 47:2c:06:3d:bb:31:03:c4:68:62:40:ea:d7:64:01:e7:f7:cc: 49:f0:99:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDRTQxMTAvBgNVBAUTKDI1MjlDODAzQ0IzOEU3NTFFMzY5NkFCNzk2MkQ4MjMx NDVGQ0Q2NTkwHhcNMjUwNTA4MTcwODU0WhcNMjUwNTE1MTcwODU0WjAYMRYwFAYD VQQDEw02ODFjZTUyNi1lZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0M3OT9QfpYgQt43hF9rmGQ/3DZno4Xb3GgQKkyE2dvzahTmina6VqYWb3LT4 O7chJRwR3O4b0hR4q5JbsyEBtqeKsjf6DEiXFuq6ASYHTZSs2uKHP9xMb4ycm+14 boELKnKBVAxYzYDWnADdvCxr5vc0iqjoKhWDGvtdwzejLojHqgfPPBD5FtBixlwK Honf/rtXMTZMshYbs/sJwh0tn5gpGyPCl6oAHbwluRPhXTttg8+AzAxDBNuLdIDl +/u4aoAUCsuq6ES4zpzfL4JeSPcDB0a/IGyqj8glNeMZyUW3abMUqDHO6yES+R4j /+d7hvG9ZEG3UwaoN3ZM45z/NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMy9MmM UgCaJCaDbGMrLVYy6xcSMB8GA1UdIwQYMBaAFCUpyAPLOOdR42lqt5YtgjFF/NZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkNFNC8wOEVEMTc4OEJG QzAxMUU4QTZBODU1NEJDNEY5QUUwMi9KU25JQThzNDUxSGphV3EzbGkyQ01VWDgx bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTbklBOHM0NTFIamFXcTNsaTJDTVVYODFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkNFNC8wOEVEMTc4OEJGQzAxMUU4QTZBODU1NEJDNEY5QUUwMi9KU25JQThzNDUx SGphV3EzbGkyQ01VWDgxbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbcEKwcvhyLZuhiG4IqCAKIaZd64LS3ncRPnd8w9SFidtPPtQyGwu4 uxOb70euYX8K3ftvLll4yJTz/nLomtOuaeQrUUHJSvo5R3b0MWqEzgPq0d2xp6EG mjk2Uw2f+efl5pBRjiEO4nfay+z9adm9Ejws4xlTOzhlrtLLXrdRpKH8TW21cRoe jpbHyYbMNoUGnIaOwYKuvDbKxLeM4nCrsTUCewHi80tMKyrreQRsE3uAcoYFSIJQ +xCIo/efPiRloVnnuJjYPri9HxEGb9WhrUNyQiRn7N+xCXHxv+zf0ly3Fu1903Za KYtHLAY9uzEDxGhiQOrXZAHn98xJ8JnN -----END CERTIFICATE-----Generated at Fri May 9 11:30:04 2025 by rpki-client