$ rpki-client -vvf rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft File: jFWTypaApeo4eDP9NEAjS56AINA.mft (raw, json) Hash identifier: uZ0mCoPIdnqqId8/Gem03Xebh+pAJmuPGTTAZajW8d8= Subject key identifier: FE:A7:09:64:E3:91:82:23:D1:38:17:2E:CD:D1:E6:84:65:2E:60:68 Authority key identifier: 8C:55:93:CA:96:80:A5:EA:38:78:33:FD:34:40:23:4B:9E:80:20:D0 Certificate issuer: /CN=A91D78FD/serialNumber=8C5593CA9680A5EA387833FD3440234B9E8020D0 Certificate serial: 0630 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft Manifest number: 0620 Signing time: Sun 04 May 2025 22:27:21 +0000 Manifest this update: Sun 04 May 2025 22:27:20 +0000 Manifest next update: Sun 11 May 2025 22:27:20 +0000 Files and hashes: 1: jFWTypaApeo4eDP9NEAjS56AINA.crl (hash: DXX7wWwxW55us3ezy1IXU6i97ycctU7bQs1STKNuls4=) 2: F603D584E99611EDB0837738C4F9AE02.roa (hash: 6nB/KmefxorxIHqA+6HljMV6NnIVdD7TanP2q7xzNf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.crl rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 22:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D78FD, serialNumber=8C5593CA9680A5EA387833FD3440234B9E8020D0 Validity Not Before: May 4 22:27:20 2025 GMT Not After : May 11 22:27:20 2025 GMT Subject: CN=6817e9c8-3f0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:00:dd:6c:a1:ea:b7:33:3d:34:5c:33:4c:aa: 16:4b:40:f8:f3:6c:0f:10:6a:6f:f0:77:23:78:39: 08:7e:56:c2:17:94:3c:b2:0a:2c:69:bc:e6:a2:08: ec:f0:b0:75:17:ef:5b:10:d2:0b:99:ed:c9:3d:06: 26:fa:1d:4b:73:c8:1d:03:37:fc:24:7f:16:ad:bf: 43:48:e4:76:29:11:ff:8d:22:29:12:8c:49:0f:fc: 6d:81:06:69:6c:5b:5c:9b:a2:88:2a:e6:6e:5b:10: f9:cb:f1:6f:e3:e8:4d:78:c5:b3:f8:d3:72:a6:97: 0d:88:70:5a:42:df:9a:bb:6b:ea:70:8a:49:cb:21: 4c:3b:d8:fc:3f:c1:4b:7b:42:d5:92:a9:86:35:4d: 14:6a:a0:e5:0f:98:55:69:4e:d8:44:ec:fa:a5:36: 93:4d:cd:1e:22:50:b5:9f:9b:e4:cf:ac:a7:5b:24: 79:66:23:ce:a5:1a:03:2d:81:3b:e2:91:0a:92:0d: ea:9d:b1:12:47:91:b7:fb:b3:a5:d5:0a:ff:ce:d1: af:3c:76:60:20:f0:18:08:ff:ee:5e:ea:d9:39:39: 41:4e:27:da:7d:39:7c:d8:2f:aa:f9:ed:18:40:22: e9:36:af:91:3e:bb:2c:c3:10:19:7f:ed:5e:f6:d0: f1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A7:09:64:E3:91:82:23:D1:38:17:2E:CD:D1:E6:84:65:2E:60:68 X509v3 Authority Key Identifier: keyid:8C:55:93:CA:96:80:A5:EA:38:78:33:FD:34:40:23:4B:9E:80:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:e9:9e:b7:1d:8c:c2:49:19:5f:1d:4d:9e:30:2a:22:aa:10: e3:a2:e0:78:8f:64:01:f7:78:89:80:7a:6b:fd:d1:a4:6b:04: 4b:b7:2c:f3:49:7d:35:c9:a1:0f:90:5f:ae:e3:d0:6b:a5:35: b2:9b:90:3b:36:2d:b1:2d:84:da:f6:0b:2e:99:62:82:f2:41: ba:3a:64:1e:2e:8c:27:5b:15:da:c3:29:96:ea:69:50:e5:ac: f1:ad:a0:a1:af:4b:f1:95:64:3f:bf:be:78:68:ae:2d:fa:d0: 70:ca:53:97:40:a1:1c:d7:4f:23:f9:ab:b3:5e:f6:2f:b1:d1: b7:52:18:4c:02:1f:e7:e2:fd:b6:0f:ad:29:07:62:a7:9e:a5: 2c:2b:84:52:5b:b0:37:56:ce:fd:30:10:83:2b:0d:32:55:d5: e9:79:3f:3c:94:4c:64:6e:83:c0:a6:de:5a:a6:bb:b0:bd:21: 06:5a:e4:7a:83:1b:6c:69:7c:09:fb:d4:4f:90:7b:05:5d:5c: 08:a5:47:d9:76:c4:d0:aa:60:4a:2d:99:9d:df:66:ee:da:5e: c8:21:ac:45:16:0f:2c:88:c0:23:39:68:87:0a:24:63:e6:73: 6f:84:54:67:29:99:90:67:0f:e0:3f:c6:a1:5a:73:82:57:0c: af:26:b7:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc4RkQxMTAvBgNVBAUTKDhDNTU5M0NBOTY4MEE1RUEzODc4MzNGRDM0NDAyMzRC OUU4MDIwRDAwHhcNMjUwNTA0MjIyNzIwWhcNMjUwNTExMjIyNzIwWjAYMRYwFAYD VQQDEw02ODE3ZTljOC0zZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQDdbKHqtzM9NFwzTKoWS0D482wPEGpv8HcjeDkIflbCF5Q8sgosabzmogjs 8LB1F+9bENILme3JPQYm+h1Lc8gdAzf8JH8Wrb9DSOR2KRH/jSIpEoxJD/xtgQZp bFtcm6KIKuZuWxD5y/Fv4+hNeMWz+NNyppcNiHBaQt+au2vqcIpJyyFMO9j8P8FL e0LVkqmGNU0UaqDlD5hVaU7YROz6pTaTTc0eIlC1n5vkz6ynWyR5ZiPOpRoDLYE7 4pEKkg3qnbESR5G3+7Ol1Qr/ztGvPHZgIPAYCP/uXurZOTlBTifafTl82C+q+e0Y QCLpNq+RPrsswxAZf+1e9tDxLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6nCWTj kYIj0TgXLs3R5oRlLmBoMB8GA1UdIwQYMBaAFIxVk8qWgKXqOHgz/TRAI0uegCDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzhGRC9DODBGNkY5MDlC NkQxMUVCODJGQTAzM0VDNEY5QUUwMi9qRldUeXBhQXBlbzRlRFA5TkVBalM1NkFJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGV1R5cGFBcGVvNGVEUDlORUFqUzU2QUlOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzhGRC9DODBGNkY5MDlCNkQxMUVCODJGQTAzM0VDNEY5QUUwMi9qRldUeXBhQXBl bzRlRFA5TkVBalM1NkFJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ6Z63HYzCSRlfHU2eMCoiqhDjouB4j2QB93iJgHpr/dGkawRLtyzz SX01yaEPkF+u49BrpTWym5A7Ni2xLYTa9gsumWKC8kG6OmQeLownWxXawymW6mlQ 5azxraChr0vxlWQ/v754aK4t+tBwylOXQKEc108j+auzXvYvsdG3UhhMAh/n4v22 D60pB2KnnqUsK4RSW7A3Vs79MBCDKw0yVdXpeT88lExkboPApt5apruwvSEGWuR6 gxtsaXwJ+9RPkHsFXVwIpUfZdsTQqmBKLZmd32bu2l7IIaxFFg8siMAjOWiHCiRj 5nNvhFRnKZmQZw/gP8ahWnOCVwyvJrcL -----END CERTIFICATE-----Generated at Mon May 5 14:20:06 2025 by rpki-client