$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft File: jIdTtwqo02LsUz6Sfxlv62mbGF0.mft (raw, json) Hash identifier: tLys0nhJbzNRQ0DusqRmhYb/+oyYpferb0N3+DNchYo= Subject key identifier: 94:DE:01:B7:C7:71:CB:F5:21:AB:2E:A7:0D:C1:FB:39:D6:B8:CC:67 Authority key identifier: 8C:87:53:B7:0A:A8:D3:62:EC:53:3E:92:7F:19:6F:EB:69:9B:18:5D Certificate issuer: /CN=A91E7BD5/serialNumber=8C8753B70AA8D362EC533E927F196FEB699B185D Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft Manifest number: 0281 Signing time: Wed 07 May 2025 01:27:20 +0000 Manifest this update: Wed 07 May 2025 01:27:20 +0000 Manifest next update: Wed 14 May 2025 01:27:20 +0000 Files and hashes: 1: jIdTtwqo02LsUz6Sfxlv62mbGF0.crl (hash: N5bTm6/FTq0iHanhVxPtSWI4pFqJOeDv/AmiBcBHj00=) 2: 286A010405AB11EDB94A1E32C4F9AE02.roa (hash: y1hhWIvYIRZY5Wcz830NbFtZiEa8PFTfSRZiRyReX/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.crl rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 01:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD5, serialNumber=8C8753B70AA8D362EC533E927F196FEB699B185D Validity Not Before: May 7 01:27:20 2025 GMT Not After : May 14 01:27:20 2025 GMT Subject: CN=681ab6f8-032f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:83:73:c2:03:e8:47:f4:68:dd:06:c2:2e:d0: f0:47:ed:85:85:99:5a:a8:3b:c8:6c:74:57:6d:c5: af:59:be:42:82:94:23:ed:73:16:15:5f:7e:46:77: bf:69:12:45:18:3f:91:9d:d1:1a:f3:8f:e7:24:76: 3a:22:6a:30:ff:a4:58:30:0f:57:53:d5:59:c5:48: f3:de:18:95:de:e0:97:65:d7:ab:fa:9d:1c:23:fe: 18:0d:b7:ac:6b:3a:e8:5f:f8:38:61:fa:8a:dd:f5: a2:51:e3:b4:36:d7:14:57:e9:cc:7e:c8:c2:70:54: 55:bc:10:1c:1f:24:6f:2d:28:d3:68:2b:a2:4c:bf: f1:ed:7b:a4:39:9c:4b:cd:08:ef:dc:c5:b7:2d:f6: 07:c8:ca:7c:75:4a:2a:a4:c9:ff:46:ca:67:f3:5b: 16:91:d0:a6:c7:d3:1b:ff:75:aa:0f:8d:01:f9:8f: 6f:da:ad:d5:5c:5f:57:53:2e:70:fa:54:65:ab:6e: 0c:1b:5f:8e:5c:22:17:4f:39:a4:8a:20:77:00:ad: 40:d9:00:66:93:dd:2e:6b:13:5f:15:42:7f:5f:8f: c0:6c:df:b3:03:6d:fc:6b:ef:64:8a:6a:a5:f9:16: 85:fe:1f:65:e5:cc:f5:ab:ce:44:ca:92:0d:6c:af: e0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:DE:01:B7:C7:71:CB:F5:21:AB:2E:A7:0D:C1:FB:39:D6:B8:CC:67 X509v3 Authority Key Identifier: keyid:8C:87:53:B7:0A:A8:D3:62:EC:53:3E:92:7F:19:6F:EB:69:9B:18:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:98:13:6d:32:4b:2c:f9:05:2f:2f:fa:7d:73:c0:38:b1:32: 20:68:2c:94:1a:da:14:88:7a:24:a6:0d:97:14:d8:83:15:49: 31:02:a4:54:aa:cf:22:9e:e9:a3:27:19:16:23:d6:d3:9d:07: ac:39:04:7d:9c:e4:06:cc:40:72:b2:08:54:80:c5:d9:36:db: 2a:a1:e2:a4:c1:6b:4d:3e:a1:fd:e2:55:ca:6a:1b:cf:0d:a4: 1b:26:67:e6:94:c9:99:8f:e8:6f:60:25:97:3b:a4:22:7f:cb: ab:c8:f2:d3:52:ef:e1:74:01:2c:fb:92:0c:05:6a:25:6c:c1: 8b:f7:b7:d6:82:1b:df:9b:ab:92:c0:f8:bb:e3:70:e4:4e:79: e8:a2:40:4a:bb:3f:5f:16:e8:3b:fa:60:a9:f8:40:e8:c9:f0: cf:36:f5:16:8d:73:cb:f5:b0:fd:8d:98:33:f5:7c:b9:d7:9b: 4d:31:47:ba:3e:1f:3b:67:d3:49:ed:6a:99:a8:ed:15:e9:92: 4c:62:5b:6a:e7:5c:98:67:1b:fa:2c:6d:a3:b5:29:ee:b1:39: 38:8c:77:cf:89:44:a2:eb:68:3f:6e:bc:a7:38:fa:2c:1a:e6: a2:90:b1:6b:45:36:3a:61:9a:da:32:69:15:83:dd:07:57:94: 25:67:a3:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDUxMTAvBgNVBAUTKDhDODc1M0I3MEFBOEQzNjJFQzUzM0U5MjdGMTk2RkVC Njk5QjE4NUQwHhcNMjUwNTA3MDEyNzIwWhcNMjUwNTE0MDEyNzIwWjAYMRYwFAYD VQQDEw02ODFhYjZmOC0wMzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+oNzwgPoR/Ro3QbCLtDwR+2FhZlaqDvIbHRXbcWvWb5CgpQj7XMWFV9+Rne/ aRJFGD+RndEa84/nJHY6Imow/6RYMA9XU9VZxUjz3hiV3uCXZder+p0cI/4YDbes azroX/g4YfqK3fWiUeO0NtcUV+nMfsjCcFRVvBAcHyRvLSjTaCuiTL/x7XukOZxL zQjv3MW3LfYHyMp8dUoqpMn/Rspn81sWkdCmx9Mb/3WqD40B+Y9v2q3VXF9XUy5w +lRlq24MG1+OXCIXTzmkiiB3AK1A2QBmk90uaxNfFUJ/X4/AbN+zA238a+9kimql +RaF/h9l5cz1q85EypINbK/gIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTeAbfH ccv1Iasupw3B+znWuMxnMB8GA1UdIwQYMBaAFIyHU7cKqNNi7FM+kn8Zb+tpmxhd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENS8yMDFFQjQzNDA1 QTgxMUVEODNGRDc0ODRDNEY5QUUwMi9qSWRUdHdxbzAyTHNVejZTZnhsdjYybWJH RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pJZFR0d3FvMDJMc1V6NlNmeGx2NjJtYkdGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENS8yMDFFQjQzNDA1QTgxMUVEODNGRDc0ODRDNEY5QUUwMi9qSWRUdHdxbzAy THNVejZTZnhsdjYybWJHRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmmBNtMkss+QUvL/p9c8A4sTIgaCyUGtoUiHokpg2XFNiDFUkxAqRU qs8inumjJxkWI9bTnQesOQR9nOQGzEBysghUgMXZNtsqoeKkwWtNPqH94lXKahvP DaQbJmfmlMmZj+hvYCWXO6Qif8uryPLTUu/hdAEs+5IMBWolbMGL97fWghvfm6uS wPi743DkTnnookBKuz9fFug7+mCp+EDoyfDPNvUWjXPL9bD9jZgz9Xy515tNMUe6 Ph87Z9NJ7WqZqO0V6ZJMYltq51yYZxv6LG2jtSnusTk4jHfPiUSi62g/brynOPos GuaikLFrRTY6YZraMmkVg90HV5QlZ6Nw -----END CERTIFICATE-----Generated at Thu May 8 07:24:09 2025 by rpki-client