$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: nINbOmZkSgHJKbCqC971lFn85gbF8TpraeuazRpKl6k= Subject key identifier: 1C:41:46:20:1B:4C:A9:DA:52:DC:00:B5:F9:8B:62:29:62:CF:CC:48 Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0C3B Signing time: Mon 12 May 2025 18:22:42 +0000 Manifest this update: Mon 12 May 2025 18:22:42 +0000 Manifest next update: Mon 19 May 2025 18:22:42 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: 0isEKBpxAEcR0Q0gPiBiCLabhX6p5XNTFkFWObgZT8E=) 2: 02D73B5ED1A911EC97A6335DC4F9AE02.roa (hash: JkiQjxSrG6/RaUVfR49c5xHDDJTw7u5WZLOBsd3qe+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: May 12 18:22:42 2025 GMT Not After : May 19 18:22:42 2025 GMT Subject: CN=68223c72-2d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:47:f6:56:38:79:b9:1f:37:06:e6:82:ec:24: 78:ca:88:d6:57:5b:39:ba:e7:bf:54:df:ca:f8:d9: 83:54:91:04:14:ae:98:ce:9a:83:41:6d:91:72:78: ac:9d:48:26:4b:ab:31:23:31:34:c9:e4:59:0b:c2: de:d2:4e:c1:9e:24:0a:48:f2:1f:cf:43:e8:38:e5: 65:10:79:74:13:b8:94:a8:34:85:87:ae:31:67:34: 5e:f8:ee:49:d6:38:02:44:a1:98:de:57:75:70:94: fb:b1:7b:55:06:83:eb:de:8d:7e:e1:7d:03:a4:b5: e1:ef:b8:0a:6c:22:db:7f:1e:06:24:a1:78:02:85: 66:fe:1a:1d:bb:45:a8:85:57:03:34:f5:20:9e:26: fd:e8:d2:73:e9:0f:75:ce:10:9b:6c:43:52:dd:6b: 9d:68:03:07:67:65:1f:77:90:30:fe:8a:ec:02:af: ef:3f:97:04:02:73:36:09:2d:3c:35:4b:50:83:f4: 90:33:a1:16:38:3d:54:e6:28:be:62:b0:a1:a7:9c: 7f:e9:45:af:19:b9:54:a1:25:9d:46:27:c7:7a:69: 82:25:16:79:9f:91:bb:b4:fa:70:43:97:00:8d:55: 95:fa:69:e6:6b:e3:b9:d4:bb:59:86:59:3e:25:d8: 47:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:41:46:20:1B:4C:A9:DA:52:DC:00:B5:F9:8B:62:29:62:CF:CC:48 X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a7:30:45:c0:3e:15:ab:35:d4:5a:a3:90:89:34:a0:86:f3: 73:53:a8:3d:00:52:d5:a8:cf:e4:0c:56:7a:c6:20:6d:1d:6e: 12:aa:bb:73:ff:94:c0:93:fe:4e:0b:49:12:fb:80:19:12:47: 39:6c:bb:63:0c:b0:f8:be:dd:93:54:72:9e:cf:f1:57:8a:b8: c7:59:f6:bb:1e:9c:dd:2c:8c:f7:80:4e:4e:35:18:47:ed:42: be:47:c4:cd:66:b0:5e:96:d3:02:4c:d8:6a:85:10:05:07:fa: 3f:db:d5:7f:28:c0:74:dc:b9:e7:c1:56:03:7e:ea:28:bf:cb: ed:61:49:fc:b3:1f:96:04:e2:2a:98:05:84:eb:ec:61:37:79: d2:b3:a8:f3:d7:60:54:3c:c8:40:65:be:f4:43:21:73:1c:c3: 8c:bc:1e:d6:fa:a3:2a:77:2a:8f:84:6e:c7:5b:49:45:5f:48: 72:5e:f8:b4:f7:1d:81:44:c3:60:b8:1b:ef:4c:d0:92:b4:99: 32:63:f1:26:e8:af:14:52:c5:df:d4:5a:83:e0:d0:d0:15:bc: c2:5b:82:ab:90:75:39:78:b4:14:e5:7c:3f:4f:ba:30:f2:ee: 8c:12:63:8c:77:df:35:d0:99:27:cf:02:65:9d:e9:ed:40:54: 9b:7c:cd:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjUwNTEyMTgyMjQyWhcNMjUwNTE5MTgyMjQyWjAYMRYwFAYD VQQDEw02ODIyM2M3Mi0yZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0f2Vjh5uR83BuaC7CR4yojWV1s5uue/VN/K+NmDVJEEFK6YzpqDQW2Rcnis nUgmS6sxIzE0yeRZC8Le0k7BniQKSPIfz0PoOOVlEHl0E7iUqDSFh64xZzRe+O5J 1jgCRKGY3ld1cJT7sXtVBoPr3o1+4X0DpLXh77gKbCLbfx4GJKF4AoVm/hodu0Wo hVcDNPUgnib96NJz6Q91zhCbbENS3WudaAMHZ2Ufd5Aw/orsAq/vP5cEAnM2CS08 NUtQg/SQM6EWOD1U5ii+YrChp5x/6UWvGblUoSWdRifHemmCJRZ5n5G7tPpwQ5cA jVWV+mnma+O51LtZhlk+JdhHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxBRiAb TKnaUtwAtfmLYiliz8xIMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBpzBFwD4VqzXUWqOQiTSghvNzU6g9AFLVqM/kDFZ6xiBtHW4Sqrtz /5TAk/5OC0kS+4AZEkc5bLtjDLD4vt2TVHKez/FXirjHWfa7HpzdLIz3gE5ONRhH 7UK+R8TNZrBeltMCTNhqhRAFB/o/29V/KMB03LnnwVYDfuoov8vtYUn8sx+WBOIq mAWE6+xhN3nSs6jz12BUPMhAZb70QyFzHMOMvB7W+qMqdyqPhG7HW0lFX0hyXvi0 9x2BRMNguBvvTNCStJkyY/Em6K8UUsXf1FqD4NDQFbzCW4KrkHU5eLQU5Xw/T7ow 8u6MEmOMd9810JknzwJlnentQFSbfM2U -----END CERTIFICATE-----Generated at Wed May 14 14:10:23 2025 by rpki-client