$ rpki-client -vvf rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft File: jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft (raw, json) Hash identifier: q5MwvnsAbefhimYpwMfIilMt1ztNpqu9wrxYMQVACQY= Subject key identifier: AA:43:0B:D1:E1:E2:47:32:0A:9E:90:98:B3:EA:43:81:B7:87:D9:88 Authority key identifier: 8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 Certificate issuer: /CN=A91190A9/serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Certificate serial: 0AF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft Manifest number: 0AEA Signing time: Fri 28 Mar 2025 19:32:25 +0000 Manifest this update: Fri 28 Mar 2025 19:32:25 +0000 Manifest next update: Fri 04 Apr 2025 19:32:25 +0000 Files and hashes: 1: jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl (hash: CdACam6AI2FhugPV5WXxHeuw18xCUEGEKFBAV//cZMM=) 2: 344C54A441B811EAA856BE49C4F9AE02.roa (hash: WrNvje3c+z7lsqTQqXn/sqPriUfd4/uYt7v0A72LhYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 19:32:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2800 (0xaf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190A9 Validity Not Before: Mar 28 19:32:25 2025 GMT Not After : Apr 4 19:32:25 2025 GMT Subject: CN=67e6f949-83ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:aa:e4:17:d5:da:a1:86:64:99:85:8c:c9:9e: be:2a:18:36:38:9b:2f:e0:56:fa:a1:d7:72:20:3e: 37:1c:ce:f7:14:fd:0f:77:cb:1e:ee:31:04:f9:09: 89:81:bb:9e:40:67:4b:3e:30:80:71:2b:65:7e:f3: 60:09:c9:16:cd:a9:e3:c3:e8:1b:a0:8b:7d:34:cb: 64:f2:01:d9:12:86:af:51:ec:db:06:1b:c0:f3:22: 91:3d:3a:90:c4:ae:d5:32:ed:a5:e1:b8:52:0c:fe: 71:8b:f8:7e:86:76:80:12:b4:03:d1:ae:b0:fd:be: 64:8b:6c:03:fe:55:da:ec:70:ab:ed:a9:35:ba:ef: 71:1d:a7:29:5c:52:e5:8d:92:af:2f:01:6f:e5:41: 6c:08:d8:af:97:1d:fd:b7:fa:ee:3b:4c:f7:82:a5: 05:be:57:81:52:2a:38:3e:92:bb:a1:e1:8c:13:68: 97:56:20:62:b6:99:60:46:ed:fe:61:a4:0d:47:17: 01:4d:d1:1c:0b:a9:ec:99:6c:ab:d3:70:54:ed:5c: 8e:e5:33:95:e0:0c:60:bb:b8:cf:c6:f5:50:9d:c3: 1f:46:6e:58:02:ae:89:5b:64:5d:11:87:42:9b:6b: 41:1c:8a:97:57:34:fa:dd:b6:d4:7e:5f:de:54:d3: 55:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:43:0B:D1:E1:E2:47:32:0A:9E:90:98:B3:EA:43:81:B7:87:D9:88 X509v3 Authority Key Identifier: keyid:8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:ac:4f:a5:f4:5b:55:ce:2b:d5:c7:a6:7c:0e:f9:a4:aa:e7: 40:d9:58:75:02:fc:fa:ee:de:98:38:15:45:4d:1e:24:5a:41: 0a:2d:85:83:84:5f:83:03:cb:76:f5:d8:5a:22:92:a7:6d:32: 7a:d5:58:07:79:3c:09:f7:81:b7:19:db:e0:7f:0b:c6:4f:e0: b6:73:6d:b2:a1:d1:43:ce:9c:3a:ad:b5:56:e6:4c:4d:f9:d5: 23:c7:24:eb:da:44:29:21:f0:5d:ae:d4:ed:9a:09:2b:31:c3: 4d:ed:54:15:10:71:63:d4:ad:a3:67:06:24:e0:ed:fd:28:87: 38:03:09:a6:87:82:60:4d:11:8a:45:ff:7b:64:55:6e:ec:ca: 21:fd:78:de:5a:91:e7:cf:c1:f6:11:d3:18:7a:48:3e:03:4c: 7c:e0:19:77:fa:09:00:ff:b5:ff:41:44:cf:8f:1a:71:9c:90: e7:e8:b1:bc:bb:93:ae:c4:71:5e:db:50:4c:e8:fc:a3:35:79: be:d2:34:09:33:d3:81:ef:b0:9b:6a:37:c0:50:fa:91:46:d8: 4f:3f:9b:cf:10:ff:ac:d9:a5:86:41:31:52:af:f8:78:07:fc: e8:57:e4:35:ce:35:2b:fd:56:87:c9:45:22:84:4e:74:79:29: 1c:d4:f1:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQTkxMTAvBgNVBAUTKDhENDczQkNDNTdDM0YyQUU0RTg3NDhFREVGRDNEMjgx N0MyMDY1NjYwHhcNMjUwMzI4MTkzMjI1WhcNMjUwNDA0MTkzMjI1WjAYMRYwFAYD VQQDEw02N2U2Zjk0OS04M2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6KrkF9XaoYZkmYWMyZ6+Khg2OJsv4Fb6oddyID43HM73FP0Pd8se7jEE+QmJ gbueQGdLPjCAcStlfvNgCckWzanjw+gboIt9NMtk8gHZEoavUezbBhvA8yKRPTqQ xK7VMu2l4bhSDP5xi/h+hnaAErQD0a6w/b5ki2wD/lXa7HCr7ak1uu9xHacpXFLl jZKvLwFv5UFsCNivlx39t/ruO0z3gqUFvleBUio4PpK7oeGME2iXViBitplgRu3+ YaQNRxcBTdEcC6nsmWyr03BU7VyO5TOV4Axgu7jPxvVQncMfRm5YAq6JW2RdEYdC m2tBHIqXVzT63bbUfl/eVNNVJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpDC9Hh 4kcyCp6QmLPqQ4G3h9mIMB8GA1UdIwQYMBaAFI1HO8xXw/KuTodI7e/T0oF8IGVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBBOS9BOTc0MDQ5QTQx QjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhxNU9oMGp0NzlQU2dYd2da V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVYzd6RmZEOHE1T2gwanQ3OVBTZ1h3Z1pXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBBOS9BOTc0MDQ5QTQxQjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhx NU9oMGp0NzlQU2dYd2daV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClrE+l9FtVzivVx6Z8DvmkqudA2Vh1Avz67t6YOBVFTR4kWkEKLYWD hF+DA8t29dhaIpKnbTJ61VgHeTwJ94G3GdvgfwvGT+C2c22yodFDzpw6rbVW5kxN +dUjxyTr2kQpIfBdrtTtmgkrMcNN7VQVEHFj1K2jZwYk4O39KIc4Awmmh4JgTRGK Rf97ZFVu7Moh/XjeWpHnz8H2EdMYekg+A0x84Bl3+gkA/7X/QUTPjxpxnJDn6LG8 u5OuxHFe21BM6PyjNXm+0jQJM9OB77CbajfAUPqRRthPP5vPEP+s2aWGQTFSr/h4 B/zoV+Q1zjUr/VaHyUUihE50eSkc1PG/ -----END CERTIFICATE-----Generated at Fri Apr 4 18:30:50 2025 by rpki-client