$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: 5tfZwZ87DDujHCTA7Qp/GGfnXzFNzcXZTJ9Gy/zhkAA= Subject key identifier: 14:4E:7E:9E:D5:C3:9D:4C:5B:9A:84:5D:6E:E0:5C:FF:AB:CD:C0:01 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: DA Signing time: Tue 13 May 2025 04:46:12 +0000 Manifest this update: Tue 13 May 2025 04:46:12 +0000 Manifest next update: Tue 20 May 2025 04:46:12 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: oP2sFgFgrhVBkW5vYMlkDoHZQ56+/h3yQ2bp46WXQCE=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: May 13 04:46:12 2025 GMT Not After : May 20 04:46:12 2025 GMT Subject: CN=6822ce94-31f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:42:5a:00:21:5f:07:23:b8:c2:80:05:84:51: a2:22:21:22:11:2f:37:7e:38:86:28:31:b2:79:9a: 28:13:9d:3c:c0:6a:d2:d4:02:55:ed:90:05:c1:de: cd:f6:84:fd:1e:1d:87:00:74:13:c4:67:c5:e8:4e: 9e:69:97:a8:66:bf:7c:14:c8:bc:35:fc:3e:2b:3a: 8e:0f:10:40:e7:dd:41:e5:b8:b6:49:ca:c7:75:32: d2:dd:41:7c:62:23:2e:a5:fd:f2:35:e0:f3:3f:9d: f4:39:89:5a:94:a0:f0:6d:ab:7c:88:f7:41:31:f0: 48:4a:68:81:21:ce:bc:5b:e6:58:b1:da:d3:84:a9: 60:c3:62:86:be:e6:81:fd:6b:bf:a5:a9:83:b0:4e: 56:46:37:4d:b7:67:e9:af:13:ed:ff:5e:22:4c:6d: ae:e4:21:4b:f8:f4:68:aa:30:01:f1:5c:93:b9:5e: 38:21:40:78:3e:83:b1:b0:b3:af:2d:a2:69:43:2f: 82:4a:19:05:23:58:91:12:7d:7e:e4:b4:4e:e1:e2: cd:ad:a7:99:74:69:7a:de:e4:0f:41:84:ac:f8:d9: 5b:36:6e:c4:9b:df:bf:fa:e0:66:35:b8:a6:2a:04: 7d:dd:c6:27:75:d6:45:42:0c:ee:d3:d9:de:b2:a8: 27:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:4E:7E:9E:D5:C3:9D:4C:5B:9A:84:5D:6E:E0:5C:FF:AB:CD:C0:01 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:dd:98:55:de:aa:3a:35:da:9d:33:7b:c1:d8:8e:11:0c:b8: 28:a7:97:29:41:6b:03:a3:0a:18:3b:66:42:7f:89:b3:3d:60: 6f:48:bc:38:f4:f3:be:78:76:bd:35:8b:1f:3d:5d:6a:eb:cb: ab:13:a7:ac:26:5e:4e:aa:09:7d:23:af:24:a7:63:94:5c:55: ba:9e:3f:54:e8:a1:86:63:be:90:11:82:42:e0:fc:00:64:89: 7f:2c:2a:64:07:5c:51:6c:50:45:73:14:8f:9d:02:58:5a:f7: 36:4b:87:e1:0f:b2:5e:24:ad:f9:0b:8b:3c:29:ef:f4:58:5f: 2c:08:2f:56:58:1b:ce:de:2a:c2:98:30:ed:1a:7a:59:7b:56: 39:f1:57:82:6a:94:17:74:e2:c6:9e:a8:93:cf:ee:65:49:05: f3:29:1d:2e:99:a9:b2:7d:95:31:85:56:54:42:21:41:cf:22: c6:72:d4:ad:a7:96:19:5a:1f:9c:40:26:2d:f0:5f:e4:cf:4f: f3:ee:a6:dd:2d:e4:1f:5a:5a:f9:d6:15:60:7c:1d:04:97:86: a4:08:6c:32:89:d6:9d:cb:cc:5e:64:6f:ff:22:92:27:61:04: 6f:4e:83:db:23:c1:22:dc:b5:8f:67:60:6c:78:0c:4f:51:45: 9a:68:f8:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUwNTEzMDQ0NjEyWhcNMjUwNTIwMDQ0NjEyWjAYMRYwFAYD VQQDEw02ODIyY2U5NC0zMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEJaACFfByO4woAFhFGiIiEiES83fjiGKDGyeZooE508wGrS1AJV7ZAFwd7N 9oT9Hh2HAHQTxGfF6E6eaZeoZr98FMi8Nfw+KzqODxBA591B5bi2ScrHdTLS3UF8 YiMupf3yNeDzP530OYlalKDwbat8iPdBMfBISmiBIc68W+ZYsdrThKlgw2KGvuaB /Wu/pamDsE5WRjdNt2fprxPt/14iTG2u5CFL+PRoqjAB8VyTuV44IUB4PoOxsLOv LaJpQy+CShkFI1iREn1+5LRO4eLNraeZdGl63uQPQYSs+NlbNm7Em9+/+uBmNbim KgR93cYnddZFQgzu09nesqgnrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBROfp7V w51MW5qEXW7gXP+rzcABMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK3ZhV3qo6NdqdM3vB2I4RDLgop5cpQWsDowoYO2ZCf4mzPWBvSLw4 9PO+eHa9NYsfPV1q68urE6esJl5Oqgl9I68kp2OUXFW6nj9U6KGGY76QEYJC4PwA ZIl/LCpkB1xRbFBFcxSPnQJYWvc2S4fhD7JeJK35C4s8Ke/0WF8sCC9WWBvO3irC mDDtGnpZe1Y58VeCapQXdOLGnqiTz+5lSQXzKR0umamyfZUxhVZUQiFBzyLGctSt p5YZWh+cQCYt8F/kz0/z7qbdLeQfWlr51hVgfB0El4akCGwyidady8xeZG//IpIn YQRvToPbI8Ei3LWPZ2BseAxPUUWaaPhC -----END CERTIFICATE-----Generated at Wed May 14 11:27:19 2025 by rpki-client