$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft File: JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft (raw, json) Hash identifier: 66ZlJtAr1+hox6AFiEDZOPxvtG2FFye83HKL6m7nDjQ= Subject key identifier: 12:1A:25:9C:B0:6B:31:E1:42:EA:77:C5:E2:E9:48:4A:F7:0B:A0:01 Authority key identifier: 24:52:18:1C:B1:08:AF:11:F4:62:87:37:1B:04:13:FF:5F:82:E8:2E Certificate issuer: /CN=A91D8392/serialNumber=2452181CB108AF11F46287371B0413FF5F82E82E Certificate serial: 0635 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft Manifest number: 0630 Signing time: Mon 12 May 2025 22:28:53 +0000 Manifest this update: Mon 12 May 2025 22:28:53 +0000 Manifest next update: Mon 19 May 2025 22:28:53 +0000 Files and hashes: 1: JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl (hash: 7aosKfAIUiTz0I0DTJpUaYqBFRg7WlmRC9q+x6rnKB4=) 2: 7510FBA2928911EBB0B38272C4F9AE02.roa (hash: vY9vDu953Z8A1LvSP1j7BcrWJjcpDb2f8NtmWuSIPts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1589 (0x635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8392, serialNumber=2452181CB108AF11F46287371B0413FF5F82E82E Validity Not Before: May 12 22:28:53 2025 GMT Not After : May 19 22:28:53 2025 GMT Subject: CN=68227625-13bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:22:7c:28:3a:5c:e6:4a:65:47:02:06:e3:03: 9b:a5:d2:60:f2:f9:47:16:8e:be:61:66:28:e5:f8: 8f:37:3e:1e:ff:19:57:0a:a9:46:4e:94:f4:4f:c2: 60:52:ee:a2:41:eb:93:d7:40:db:d9:f1:59:09:12: 5c:9e:68:b7:8c:53:05:16:9b:f2:3e:96:5a:77:b5: f7:47:5f:42:46:c1:d1:30:a6:42:5d:89:02:2f:c6: 16:61:b5:9a:52:f3:3c:b7:58:a4:22:57:06:4c:40: 0f:c5:60:d2:bd:58:d5:22:8e:de:64:ea:ec:17:bf: e0:f4:ae:90:db:e9:35:d0:01:39:fd:82:18:98:96: 76:77:ce:24:6e:37:f4:74:8b:76:b6:6b:a8:d2:ad: cd:d4:ca:62:40:b9:d7:15:30:d6:1a:d7:e2:cd:43: 5d:f2:8c:a7:c1:0c:65:73:42:02:8c:35:27:32:ca: ac:44:6c:46:1c:06:b9:35:27:e8:c7:71:e1:63:78: 98:71:39:15:57:d7:bb:0e:d2:1f:fe:e4:c5:c7:d0: 58:5a:02:d5:2f:31:b7:98:ab:63:85:2c:77:51:62: b4:20:51:fe:79:60:b7:67:38:1f:e2:1b:c6:73:3a: a9:8b:dc:3c:12:6d:2f:02:31:d6:f0:6f:66:32:70: b4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1A:25:9C:B0:6B:31:E1:42:EA:77:C5:E2:E9:48:4A:F7:0B:A0:01 X509v3 Authority Key Identifier: keyid:24:52:18:1C:B1:08:AF:11:F4:62:87:37:1B:04:13:FF:5F:82:E8:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e9:69:d9:cb:03:bd:28:75:97:6f:33:88:4e:51:55:88:b4: f9:c8:f4:21:cc:5c:10:07:44:30:7c:28:a7:77:11:4c:35:b3: 95:0d:e5:16:bf:cc:96:89:4f:a9:0e:f1:38:16:e6:23:7f:8d: 84:52:21:c3:c5:e3:a6:f6:dd:7e:42:c2:1d:8d:19:ff:13:38: 90:b5:5c:72:5e:ba:23:70:08:28:cd:8b:69:9c:4e:53:d1:d7: 15:17:e0:ce:92:6a:f8:2d:ac:23:3e:33:c8:90:bc:40:c0:ff: 59:18:eb:2a:11:3f:40:f7:bb:ea:3f:09:78:cf:99:0c:82:3d: c9:b8:1e:dd:b0:94:62:ae:08:f4:5b:53:36:b4:fd:d3:01:55: 68:0f:02:7d:0a:e1:3f:55:6d:e7:05:5d:61:50:dd:be:ca:c2: a6:98:cc:f8:21:3e:1a:fb:1d:d6:b5:f5:5a:67:aa:74:bd:1c: aa:59:c3:73:bd:c5:30:02:5e:d9:06:be:9c:e2:dc:f1:c8:b5: 27:7f:53:a5:c0:b2:37:d9:4a:2e:ff:6c:5f:cf:a2:d1:4c:c8: 9c:de:b1:90:ab:2e:79:18:1e:c9:b6:17:fe:92:2a:cd:52:1e: 6e:4e:cc:b7:9d:af:7f:48:00:2f:40:a4:0c:a6:42:48:e8:11: 1a:37:9a:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzOTIxMTAvBgNVBAUTKDI0NTIxODFDQjEwOEFGMTFGNDYyODczNzFCMDQxM0ZG NUY4MkU4MkUwHhcNMjUwNTEyMjIyODUzWhcNMjUwNTE5MjIyODUzWjAYMRYwFAYD VQQDEw02ODIyNzYyNS0xM2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iJ8KDpc5kplRwIG4wObpdJg8vlHFo6+YWYo5fiPNz4e/xlXCqlGTpT0T8Jg Uu6iQeuT10Db2fFZCRJcnmi3jFMFFpvyPpZad7X3R19CRsHRMKZCXYkCL8YWYbWa UvM8t1ikIlcGTEAPxWDSvVjVIo7eZOrsF7/g9K6Q2+k10AE5/YIYmJZ2d84kbjf0 dIt2tmuo0q3N1MpiQLnXFTDWGtfizUNd8oynwQxlc0ICjDUnMsqsRGxGHAa5NSfo x3HhY3iYcTkVV9e7DtIf/uTFx9BYWgLVLzG3mKtjhSx3UWK0IFH+eWC3Zzgf4hvG czqpi9w8Em0vAjHW8G9mMnC01wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIaJZyw azHhQup3xeLpSEr3C6ABMB8GA1UdIwQYMBaAFCRSGByxCK8R9GKHNxsEE/9fgugu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM5Mi8xNEQ5RTM4QTky ODgxMUVCQkJENDU2NzFDNEY5QUUwMi9KRklZSExFSXJ4SDBZb2MzR3dRVF8xLUM2 QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pGSVlITEVJcnhIMFlvYzNHd1FUXzEtQzZDNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM5Mi8xNEQ5RTM4QTkyODgxMUVCQkJENDU2NzFDNEY5QUUwMi9KRklZSExFSXJ4 SDBZb2MzR3dRVF8xLUM2QzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI6WnZywO9KHWXbzOITlFViLT5yPQhzFwQB0QwfCindxFMNbOVDeUW v8yWiU+pDvE4FuYjf42EUiHDxeOm9t1+QsIdjRn/EziQtVxyXrojcAgozYtpnE5T 0dcVF+DOkmr4LawjPjPIkLxAwP9ZGOsqET9A97vqPwl4z5kMgj3JuB7dsJRirgj0 W1M2tP3TAVVoDwJ9CuE/VW3nBV1hUN2+ysKmmMz4IT4a+x3WtfVaZ6p0vRyqWcNz vcUwAl7ZBr6c4tzxyLUnf1OlwLI32Uou/2xfz6LRTMic3rGQqy55GB7Jthf+kirN Uh5uTsy3na9/SAAvQKQMpkJI6BEaN5o/ -----END CERTIFICATE-----Generated at Wed May 14 18:26:17 2025 by rpki-client