$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: Rj5WHrJUGWRBZWshNJbHjuGeYUtaBFYxe7b2oK3yGDE= Subject key identifier: D7:8F:D8:7A:CD:A8:4B:F1:D3:0C:97:61:42:55:F5:80:F6:E1:41:01 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: 84 Signing time: Fri 09 May 2025 05:37:38 +0000 Manifest this update: Fri 09 May 2025 05:37:38 +0000 Manifest next update: Fri 16 May 2025 05:37:38 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: nY68/oRldzWQ1hy+JeCTHRNdrTKCA9X9MpjdsKKIvwg=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: PB6LRHoIMyYv1uIUIe4A3HeqPVxI7OtzvXNUbqHxj3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: May 9 05:37:38 2025 GMT Not After : May 16 05:37:38 2025 GMT Subject: CN=681d94a2-9ba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:31:71:5e:97:2c:72:b0:5c:59:f2:bb:51:5c: 6b:bd:d4:d0:38:e0:b9:6f:9a:1a:56:af:32:af:4f: 1c:19:d3:68:d4:bd:95:18:c8:c8:95:ae:e1:30:d1: 73:86:f3:2c:7c:4b:f9:04:16:dc:40:39:f7:1a:20: 56:fc:6a:c9:25:14:28:d6:59:2c:84:1a:34:ec:93: e3:1b:69:9a:81:f9:31:d4:d0:5d:e7:e8:7e:5d:b9: df:77:5b:30:3c:1a:63:59:2b:da:74:06:db:47:c4: 6c:ff:f2:58:93:48:bf:88:1c:cb:8d:de:fe:ea:e3: 99:73:49:37:f4:11:ca:d9:3a:86:cf:5f:61:ff:73: 51:35:26:21:55:ae:8c:6a:76:e8:85:18:9f:14:98: c8:e5:e3:ac:58:f9:84:7c:ba:5e:bf:99:5c:2e:f6: 16:3d:76:ee:68:03:4a:51:a0:a8:9a:95:fd:c0:cb: 5a:34:60:2e:d6:ff:1f:72:d8:23:0d:dc:dd:ea:43: 53:e1:93:81:b4:78:0a:e1:57:29:15:46:66:94:19: 4a:40:af:d7:3a:e6:73:87:34:ab:f5:21:b6:47:ac: 53:d6:5f:54:96:df:15:50:85:51:35:80:a5:6a:73: 6a:fb:3b:20:07:e7:53:6d:23:53:6f:a5:6d:cc:3a: 5c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8F:D8:7A:CD:A8:4B:F1:D3:0C:97:61:42:55:F5:80:F6:E1:41:01 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:86:b9:69:08:1c:ba:d7:c0:37:6d:04:81:07:87:91:f4:bf: 4e:82:4f:31:57:7b:05:27:f4:3d:c0:ef:83:8a:a9:d5:88:0c: 8e:f6:81:b6:3e:09:69:14:df:8a:6d:ea:4c:06:57:6f:e5:81: cb:ca:90:60:f6:23:64:29:1d:1f:2f:f8:d5:c8:c7:29:9d:15: d7:c8:87:67:7b:71:66:5f:33:ce:b7:3a:eb:5f:4d:c9:7f:58: 59:6c:0f:c2:97:60:c1:7c:9b:38:9a:da:4c:6b:8d:1c:4a:33: eb:bb:9d:3c:8d:a4:35:11:5a:5c:71:8d:76:ba:6f:bf:f9:68: 00:16:cf:e0:ff:a1:ce:54:e9:af:9a:48:11:a9:b2:4e:d3:aa: d7:3b:16:c8:44:4c:a6:6a:27:0a:e7:bb:8b:86:9d:90:f1:5d: c1:f7:f7:85:df:fa:81:b0:d4:b1:14:ab:36:6d:c7:d6:b5:9a: 6c:a1:ba:84:37:b1:fe:a7:64:73:2e:e3:b5:8f:2e:18:3b:78: d1:2c:7d:69:a1:c9:15:47:82:1b:95:04:5b:16:8c:c1:61:a3: b0:13:ff:04:06:eb:e4:71:84:3d:34:5a:a1:00:db:70:ae:e5: 94:80:be:ef:be:d2:0f:6b:40:d5:0d:74:b7:b4:b9:35:70:c5: 40:92:47:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUwNTA5MDUzNzM4WhcNMjUwNTE2MDUzNzM4WjAYMRYwFAYD VQQDEw02ODFkOTRhMi05YmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7DFxXpcscrBcWfK7UVxrvdTQOOC5b5oaVq8yr08cGdNo1L2VGMjIla7hMNFz hvMsfEv5BBbcQDn3GiBW/GrJJRQo1lkshBo07JPjG2magfkx1NBd5+h+Xbnfd1sw PBpjWSvadAbbR8Rs//JYk0i/iBzLjd7+6uOZc0k39BHK2TqGz19h/3NRNSYhVa6M anbohRifFJjI5eOsWPmEfLpev5lcLvYWPXbuaANKUaCompX9wMtaNGAu1v8fctgj Ddzd6kNT4ZOBtHgK4VcpFUZmlBlKQK/XOuZzhzSr9SG2R6xT1l9Ult8VUIVRNYCl anNq+zsgB+dTbSNTb6VtzDpcpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeP2HrN qEvx0wyXYUJV9YD24UEBMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFhrlpCBy618A3bQSBB4eR9L9Ogk8xV3sFJ/Q9wO+DiqnViAyO9oG2 PglpFN+KbepMBldv5YHLypBg9iNkKR0fL/jVyMcpnRXXyIdne3FmXzPOtzrrX03J f1hZbA/Cl2DBfJs4mtpMa40cSjPru508jaQ1EVpccY12um+/+WgAFs/g/6HOVOmv mkgRqbJO06rXOxbIREymaicK57uLhp2Q8V3B9/eF3/qBsNSxFKs2bcfWtZpsobqE N7H+p2RzLuO1jy4YO3jRLH1pockVR4IblQRbFozBYaOwE/8EBuvkcYQ9NFqhANtw ruWUgL7vvtIPa0DVDXS3tLk1cMVAkkdz -----END CERTIFICATE-----Generated at Sun May 11 05:01:58 2025 by rpki-client