$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft File: CJx_ANge3WTbq20DcSKyoh8NO-Y.mft (raw, json) Hash identifier: SQhwcqqf8RcnJdKuSqKXTdjZFhhFLtjInhci3gZkJo0= Subject key identifier: 11:AD:55:F0:07:00:F3:94:52:9B:72:B7:76:81:72:E4:B9:F7:93:D2 Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft Manifest number: 01EA Signing time: Tue 13 May 2025 01:53:19 +0000 Manifest this update: Tue 13 May 2025 01:53:19 +0000 Manifest next update: Tue 20 May 2025 01:53:19 +0000 Files and hashes: 1: CJx_ANge3WTbq20DcSKyoh8NO-Y.crl (hash: p6/1S5HpihukVc5S3PI8vxBQoH8MOmSSWW+/D+6Pb2M=) 2: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (hash: BP/glgq2z1dVEQeJ08W20vuLvcBOY54eQXp8HeomvRk=) 3: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (hash: FNYorUcrDZxaoz80iDO589JZkm4kbfGRGurVB7ty8DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: May 13 01:53:19 2025 GMT Not After : May 20 01:53:19 2025 GMT Subject: CN=6822a60f-6302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d4:85:66:03:4b:50:ad:d7:12:cf:20:ba:e5: 6c:e9:96:e0:34:0c:18:4a:1a:e9:72:94:72:58:ba: 94:40:ae:3f:55:9e:ea:12:43:28:2d:19:4b:e5:57: 3c:39:47:fc:4b:a9:97:90:c8:b5:66:7c:3b:5c:74: 9a:e9:79:71:1e:c1:68:30:b2:4b:7a:65:2b:35:fd: c6:15:f9:dc:b2:7a:d2:14:9e:1d:f8:b5:68:23:ef: d9:f1:58:56:ff:ce:cb:97:ea:a4:ee:20:54:bc:d5: ed:64:ab:ff:5d:3d:d4:be:c2:a7:f0:56:f4:3a:81: 36:c6:28:7b:dd:3f:4f:84:da:da:eb:05:54:f1:a5: 3d:34:6d:4f:77:7b:61:6f:a7:2c:e6:c6:e1:b3:99: 15:02:57:a9:d5:64:34:38:06:f5:60:6c:e6:3d:66: d8:08:5e:ac:e4:28:e3:03:b7:f4:df:2e:07:aa:f3: 10:f8:b1:3b:4a:ca:8d:14:51:f6:45:2e:48:65:35: 73:cb:90:be:41:9d:02:1b:62:c5:26:56:ba:a8:b3: 30:e1:27:30:bc:d8:0e:ca:43:99:9c:e9:5f:10:4c: ea:69:6a:85:2d:4b:11:40:6c:b0:44:71:9f:20:f2: fb:e1:b7:28:3d:d4:46:b1:c0:d1:68:2a:df:22:79: d3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AD:55:F0:07:00:F3:94:52:9B:72:B7:76:81:72:E4:B9:F7:93:D2 X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e9:e0:2b:f9:ae:c9:f3:86:e1:77:27:87:8c:cb:cc:1d:81: 50:2c:1e:4f:90:6f:ed:4d:40:8a:b9:4e:82:59:78:c8:cb:0d: bc:23:65:53:c4:e3:ab:54:a0:a8:e6:fe:ee:b9:5d:21:8a:52: f4:3b:5f:8f:1c:fa:d8:3d:a3:ec:66:7f:6b:42:b9:69:f8:e2: e4:f6:85:90:b6:cc:2d:01:4d:cf:81:3c:c3:0b:2d:86:e0:e2: 31:df:9b:8b:77:ce:10:71:d6:93:50:e1:3f:6c:da:f6:e1:f9: 3a:a1:d7:05:88:0f:98:62:9b:bc:51:1c:8e:97:85:40:49:72: 9f:ba:23:97:d8:0a:90:40:42:f4:c0:8b:f7:17:74:bb:34:59: a8:ab:2b:80:a3:56:6c:96:a2:07:8d:c8:c7:8f:47:88:82:ed: e6:a9:24:98:79:c3:f1:d4:5f:79:82:57:71:54:48:2b:62:4e: 3d:38:27:d3:84:54:b5:8a:72:1d:e4:60:1d:57:4a:a2:58:6b: d3:7a:46:fe:99:10:ec:f4:32:f9:62:83:14:33:e5:f3:14:43: 1c:6a:c5:98:71:f4:a7:0e:68:16:17:34:4d:1d:82:60:9c:7e: c0:bd:a8:b9:e0:8e:08:ee:1b:ea:42:c0:22:3f:2b:cd:42:72: ca:3d:98:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjUwNTEzMDE1MzE5WhcNMjUwNTIwMDE1MzE5WjAYMRYwFAYD VQQDEw02ODIyYTYwZi02MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdSFZgNLUK3XEs8guuVs6ZbgNAwYShrpcpRyWLqUQK4/VZ7qEkMoLRlL5Vc8 OUf8S6mXkMi1Znw7XHSa6XlxHsFoMLJLemUrNf3GFfncsnrSFJ4d+LVoI+/Z8VhW /87Ll+qk7iBUvNXtZKv/XT3UvsKn8Fb0OoE2xih73T9PhNra6wVU8aU9NG1Pd3th b6cs5sbhs5kVAlep1WQ0OAb1YGzmPWbYCF6s5CjjA7f03y4HqvMQ+LE7SsqNFFH2 RS5IZTVzy5C+QZ0CG2LFJla6qLMw4ScwvNgOykOZnOlfEEzqaWqFLUsRQGywRHGf IPL74bcoPdRGscDRaCrfInnTzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGtVfAH APOUUptyt3aBcuS595PSMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjVGMi80QUVFRDkxQzQzQjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNX VGJxMjBEY1NLeW9oOE5PLVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd6eAr+a7J84bhdyeHjMvMHYFQLB5PkG/tTUCKuU6CWXjIyw28I2VT xOOrVKCo5v7uuV0hilL0O1+PHPrYPaPsZn9rQrlp+OLk9oWQtswtAU3PgTzDCy2G 4OIx35uLd84QcdaTUOE/bNr24fk6odcFiA+YYpu8URyOl4VASXKfuiOX2AqQQEL0 wIv3F3S7NFmoqyuAo1ZslqIHjcjHj0eIgu3mqSSYecPx1F95gldxVEgrYk49OCfT hFS1inId5GAdV0qiWGvTekb+mRDs9DL5YoMUM+XzFEMcasWYcfSnDmgWFzRNHYJg nH7Avai54I4I7hvqQsAiPyvNQnLKPZjS -----END CERTIFICATE-----Generated at Wed May 14 17:59:42 2025 by rpki-client