$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: 3D/ISVNfxOhLoMP92034XdNEwxFRN8x1wrJ/WW1C+88= Subject key identifier: 42:D1:CF:3A:7B:1C:D9:D3:AE:92:9D:8B:14:13:E8:1E:1D:C8:2E:A0 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D18 Signing time: Sat 10 May 2025 16:04:51 +0000 Manifest this update: Sat 10 May 2025 16:04:50 +0000 Manifest next update: Sat 17 May 2025 16:04:50 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: +q77eJLFOQWIVPtbBqb6wrtmpxxIzCNT1jfuxkV8w/Y=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: 5WitENJnrkIaDKSZdGfav4jBMV1MXsoOLjamdvAz9SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7462 (0x1d26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: May 10 16:04:50 2025 GMT Not After : May 17 16:04:50 2025 GMT Subject: CN=681f7922-2022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3b:93:d7:d0:a8:a2:89:0e:77:22:c2:65:a5: b5:9e:13:e1:44:06:61:2f:9e:43:70:7e:8c:78:b7: 22:22:de:38:37:e4:2b:13:e1:2f:a3:aa:f5:63:65: 66:24:12:c5:c8:90:ff:41:34:f0:b6:34:8d:ee:fe: 77:cd:0b:09:bc:e5:36:15:90:20:34:93:ad:14:cd: 91:13:2e:80:ad:de:5b:1d:b2:ad:64:91:e8:40:cc: 66:1a:3d:e5:c4:cb:ec:47:81:4d:6a:4d:13:e7:ce: 61:b2:8e:a0:83:01:85:3e:01:16:8b:f1:87:30:e0: c6:a0:bc:e8:37:77:c8:d1:17:a5:9b:b6:b2:fe:9c: bd:c6:28:a2:6e:96:b7:7c:0b:9a:84:bb:7b:2c:f5: e2:21:6c:20:81:21:3b:92:47:38:84:f8:f5:46:08: e2:1f:58:3b:dd:4a:3e:ea:f8:d5:87:53:04:a9:be: 53:18:b2:91:5d:e0:b0:d1:fd:7f:8b:5f:13:21:0a: 97:7b:02:8d:34:2a:d8:28:0c:73:72:d4:3b:0c:68: 42:f2:5d:49:bc:48:2e:af:d0:ef:cc:7f:91:a2:18: 4a:66:f1:a8:82:fe:6d:fc:7a:69:8d:5a:ec:24:23: ff:78:24:75:13:83:95:49:2b:8c:8e:40:7d:60:f7: 69:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D1:CF:3A:7B:1C:D9:D3:AE:92:9D:8B:14:13:E8:1E:1D:C8:2E:A0 X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:7f:7e:b0:1f:98:02:17:0f:09:35:1f:ce:33:0a:c7:82:ab: cd:44:19:54:61:a1:a2:69:37:2b:6b:16:bd:ce:ef:ed:5b:07: bc:2b:31:76:c7:b0:f9:65:d8:95:a3:86:d3:1e:9e:bf:e9:f4: 3d:cd:9f:b9:08:2e:cd:94:0d:d5:ab:d6:c4:4c:42:82:3f:8a: f8:50:54:78:75:ba:0f:e1:c4:44:40:1c:09:f0:e6:1a:33:63: f4:6b:c0:6a:45:3f:c1:59:9e:09:26:03:7a:f6:2e:0e:30:fa: fa:fd:84:87:a6:0d:00:38:48:92:af:52:71:f3:5a:c3:28:ad: 9f:50:dc:03:6b:ae:32:5f:ab:74:26:ef:d6:4b:ca:03:c2:17: b6:2c:fa:e3:2f:5f:a8:e8:e9:33:7b:d1:ca:12:8c:49:f7:80: 0f:16:74:0b:23:d3:58:ca:43:d1:7f:29:2f:de:78:1f:48:5d: e5:8f:dc:72:62:7e:0a:ed:b5:33:7e:21:c2:7f:87:a9:ca:68: db:eb:e0:6c:02:6f:ae:50:21:b0:e1:4a:38:96:fb:09:a3:7b: b6:17:8c:23:8f:24:01:9f:39:2e:8e:21:50:5e:58:86:3c:df: d0:b5:06:bc:be:2a:30:84:29:1f:91:fe:90:9d:d3:01:ed:d9: 13:37:3d:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUwNTEwMTYwNDUwWhcNMjUwNTE3MTYwNDUwWjAYMRYwFAYD VQQDEw02ODFmNzkyMi0yMDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTuT19CoookOdyLCZaW1nhPhRAZhL55DcH6MeLciIt44N+QrE+Evo6r1Y2Vm JBLFyJD/QTTwtjSN7v53zQsJvOU2FZAgNJOtFM2REy6Ard5bHbKtZJHoQMxmGj3l xMvsR4FNak0T585hso6ggwGFPgEWi/GHMODGoLzoN3fI0Relm7ay/py9xiiibpa3 fAuahLt7LPXiIWwggSE7kkc4hPj1RgjiH1g73Uo+6vjVh1MEqb5TGLKRXeCw0f1/ i18TIQqXewKNNCrYKAxzctQ7DGhC8l1JvEgur9DvzH+RohhKZvGogv5t/HppjVrs JCP/eCR1E4OVSSuMjkB9YPdp9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELRzzp7 HNnTrpKdixQT6B4dyC6gMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwf36wH5gCFw8JNR/OMwrHgqvNRBlUYaGiaTcraxa9zu/tWwe8KzF2 x7D5ZdiVo4bTHp6/6fQ9zZ+5CC7NlA3Vq9bETEKCP4r4UFR4dboP4cREQBwJ8OYa M2P0a8BqRT/BWZ4JJgN69i4OMPr6/YSHpg0AOEiSr1Jx81rDKK2fUNwDa64yX6t0 Ju/WS8oDwhe2LPrjL1+o6Okze9HKEoxJ94APFnQLI9NYykPRfykv3ngfSF3lj9xy Yn4K7bUzfiHCf4epymjb6+BsAm+uUCGw4Uo4lvsJo3u2F4wjjyQBnzkujiFQXliG PN/QtQa8viowhCkfkf6QndMB7dkTNz1A -----END CERTIFICATE-----Generated at Sun May 11 05:34:49 2025 by rpki-client