$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft File: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft (raw, json) Hash identifier: Z5tcjKCKPy/C+VXBiTQyteNnYmlm3yLnACll04tpTzk= Subject key identifier: 14:A3:15:BA:07:82:92:C4:82:68:16:8C:D8:14:36:71:92:C0:C1:8B Authority key identifier: 27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B Certificate issuer: /CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft Manifest number: 012A Signing time: Fri 09 May 2025 03:43:48 +0000 Manifest this update: Fri 09 May 2025 03:43:48 +0000 Manifest next update: Fri 16 May 2025 03:43:48 +0000 Files and hashes: 1: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl (hash: SBPcJjhVIs3BkiYDarbDvTIiLjRYmtx1QmhMmr7mKLU=) 2: D2FA5DBE6C1E11EEBB9EAB7AC4F9AE02.roa (hash: VxCtnEbF2p63KawOX+Ec2pPAYcngxsY5VpNi8SAFc50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 03:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCAF, serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Validity Not Before: May 9 03:43:48 2025 GMT Not After : May 16 03:43:48 2025 GMT Subject: CN=681d79f4-a216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:13:66:91:20:1a:6f:c8:3f:e9:29:a8:1b:76: c0:b7:fe:f0:f0:ff:ed:e2:23:16:0d:ef:9d:90:f4: 8e:db:4b:1b:94:18:fc:62:db:11:ae:f4:8f:a2:87: 7f:d8:86:a8:7d:ec:2d:05:77:20:9c:8f:82:f1:a3: 24:6c:47:47:eb:eb:0c:31:c4:82:2a:0d:8a:6e:82: 48:fb:fb:7c:af:c1:9f:a6:33:7c:8d:22:3b:31:93: 9b:a7:db:c6:67:0d:9a:73:2d:07:44:68:c8:b9:7c: 24:1a:c0:7f:70:7e:b9:40:73:9a:6a:cd:b7:47:8a: 35:53:b0:24:93:39:bc:04:f2:20:d5:6d:9b:ad:36: ab:4e:8c:2c:e3:2a:b4:5d:c9:6c:18:03:e0:65:70: 80:7a:78:2a:ca:f8:c9:d5:99:71:af:c2:47:95:df: 57:df:32:de:6d:2a:8b:33:e2:ba:59:be:bc:13:b1: d6:84:a4:43:9d:04:2f:b7:4c:cf:06:80:b0:90:d5: 6e:dc:94:bc:e0:3d:56:96:f4:ca:d5:51:0d:2e:4c: 92:b9:7f:5a:bb:b6:9c:5c:b9:4d:35:07:57:e4:df: 03:be:20:95:27:f1:e2:ad:5c:01:ee:66:8e:57:dd: ab:4d:17:80:71:22:03:93:db:40:84:84:fc:a3:ea: 53:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A3:15:BA:07:82:92:C4:82:68:16:8C:D8:14:36:71:92:C0:C1:8B X509v3 Authority Key Identifier: keyid:27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:d0:0c:de:d2:35:a4:64:c0:1f:b6:76:af:ec:2c:14:07:93: 91:d6:91:09:f4:1a:17:28:60:14:8f:ed:66:f0:05:3f:01:db: 25:82:ad:f2:89:42:c2:8a:ba:6c:4a:ef:82:60:a4:2c:35:b1: 48:37:53:09:0d:9d:cd:88:b1:ba:26:de:27:48:27:dd:7a:4c: 75:c9:34:e6:c5:83:3c:a5:da:13:54:77:1d:4d:d8:b8:27:94: 85:0f:b0:63:ff:73:37:b4:09:e2:4c:30:0a:8a:da:a4:1e:51: 8b:28:9c:d5:b8:93:de:39:69:88:93:a8:17:cf:5b:ce:a6:3a: 17:21:a5:1b:fa:1b:06:c9:75:fa:bf:13:f6:d8:0a:7d:1f:0a: 02:cb:4f:50:80:20:d4:06:8c:d7:c3:78:e1:9a:c5:20:19:be: eb:f9:7a:64:96:1f:00:fa:85:d6:02:57:99:91:a3:8d:7c:51: a7:8f:88:a4:d5:9c:69:98:70:42:09:98:59:ad:8c:c4:86:6a: d8:15:07:ee:08:0a:12:ab:34:92:11:be:fd:5b:bd:43:e4:5c: 26:35:f0:b2:32:a0:12:06:62:02:6d:8b:ec:4e:a1:c4:c6:ff: 55:38:9f:22:e2:b5:49:bf:8b:b2:b9:e8:94:ff:57:b8:a4:8d: 40:4a:85:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQUYxMTAvBgNVBAUTKDI3QjJFNjYyOTE0ODIyMTM2QjA5NjJEQkI1QkE0NDdD MjUzRjUyMUIwHhcNMjUwNTA5MDM0MzQ4WhcNMjUwNTE2MDM0MzQ4WjAYMRYwFAYD VQQDEw02ODFkNzlmNC1hMjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RNmkSAab8g/6SmoG3bAt/7w8P/t4iMWDe+dkPSO20sblBj8YtsRrvSPood/ 2IaofewtBXcgnI+C8aMkbEdH6+sMMcSCKg2KboJI+/t8r8GfpjN8jSI7MZObp9vG Zw2acy0HRGjIuXwkGsB/cH65QHOaas23R4o1U7Akkzm8BPIg1W2brTarTows4yq0 XclsGAPgZXCAengqyvjJ1Zlxr8JHld9X3zLebSqLM+K6Wb68E7HWhKRDnQQvt0zP BoCwkNVu3JS84D1WlvTK1VENLkySuX9au7acXLlNNQdX5N8DviCVJ/HirVwB7maO V92rTReAcSIDk9tAhIT8o+pTAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSjFboH gpLEgmgWjNgUNnGSwMGLMB8GA1UdIwQYMBaAFCey5mKRSCITawli27W6RHwlP1Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNBRi8wRjYxODg2QTZC MzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUloTnJDV0xidGJwRWZDVV9V aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3TG1ZcEZJSWhOckNXTGJ0YnBFZkNVX1Vocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNBRi8wRjYxODg2QTZCMzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUlo TnJDV0xidGJwRWZDVV9VaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn0Aze0jWkZMAftnav7CwUB5OR1pEJ9BoXKGAUj+1m8AU/Adslgq3y iULCirpsSu+CYKQsNbFIN1MJDZ3NiLG6Jt4nSCfdekx1yTTmxYM8pdoTVHcdTdi4 J5SFD7Bj/3M3tAniTDAKitqkHlGLKJzVuJPeOWmIk6gXz1vOpjoXIaUb+hsGyXX6 vxP22Ap9HwoCy09QgCDUBozXw3jhmsUgGb7r+Xpklh8A+oXWAleZkaONfFGnj4ik 1ZxpmHBCCZhZrYzEhmrYFQfuCAoSqzSSEb79W71D5FwmNfCyMqASBmICbYvsTqHE xv9VOJ8i4rVJv4uyueiU/1e4pI1ASoXR -----END CERTIFICATE-----Generated at Sat May 10 03:53:56 2025 by rpki-client