$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft File: JCI9DH0QHbetfjy43bFwYpNlyu4.mft (raw, json) Hash identifier: U+oGCWDTvPQ69imtqgyy+8YaK/iwR3IEr7o2H12NetQ= Subject key identifier: 1F:C3:15:F5:0C:D9:F2:AD:A1:3B:20:FB:E9:F4:14:9B:0E:68:10:F3 Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft Manifest number: 016B Signing time: Sat 29 Mar 2025 03:29:10 +0000 Manifest this update: Sat 29 Mar 2025 03:29:10 +0000 Manifest next update: Sat 05 Apr 2025 03:29:10 +0000 Files and hashes: 1: JCI9DH0QHbetfjy43bFwYpNlyu4.crl (hash: +A79DhMNJKgN3mJxQczwdIjS8UBL/1w5Oh/fB0EhhAw=) 2: EDDDD55C252E11EEB91A8941C4F9AE02.roa (hash: FVltAYipOD9ESgI+qOY0I+92Q4+raVRl2aTMJVFkTA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24 Validity Not Before: Mar 29 03:29:10 2025 GMT Not After : Apr 5 03:29:10 2025 GMT Subject: CN=67e76906-ec27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d5:22:16:38:bb:f4:78:7b:9d:71:59:c9:56: 0c:c6:49:6a:94:d5:70:80:6f:ba:9a:b9:2d:5d:5d: 95:78:d5:e4:34:3b:d7:65:3a:15:39:16:96:0b:04: f2:44:26:2a:0c:5d:92:d2:51:c8:fa:f6:f7:94:66: df:5f:d1:23:7d:bd:32:b8:5a:c4:94:b5:d1:d0:4f: 2e:96:37:f2:0f:6c:fb:e4:8c:e1:ed:e2:b6:d3:b0: 1d:6c:a6:da:d5:4c:13:e4:fa:2a:23:79:ed:27:98: 7f:c2:c3:2b:16:fc:cb:08:f7:8c:a3:1f:5d:46:01: b3:a2:b4:54:ec:21:d1:70:bc:50:ee:f6:c4:fd:18: 9d:d5:f8:06:d1:e6:11:36:46:01:ee:f4:05:02:0c: 2b:8a:bf:94:df:e0:47:b2:c6:aa:8f:49:16:d1:50: f9:83:89:5d:6a:bb:57:f5:fe:93:17:e4:44:1a:14: 2c:cf:af:b6:e5:ca:26:d3:79:c0:0f:d6:56:a4:1a: fc:e5:e0:45:f3:8d:1b:3a:cf:92:86:f5:2f:15:ea: fd:4f:3c:40:f3:68:72:d1:f9:61:45:d9:8c:5f:c0: d8:67:30:dd:bb:79:d6:0e:4b:4f:2d:a3:da:df:c3: e3:90:59:65:f7:54:76:5c:c1:dd:dc:96:db:44:5e: c5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C3:15:F5:0C:D9:F2:AD:A1:3B:20:FB:E9:F4:14:9B:0E:68:10:F3 X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:1f:49:be:22:b5:d3:d7:fc:aa:d7:19:01:9f:f9:7e:a7:e0: 22:3b:6b:2f:0d:62:ea:9d:88:c1:f1:4a:85:1b:67:2b:9e:20: 90:67:6b:dc:f7:7d:81:32:ad:8a:a0:dc:0a:6f:76:e9:fd:c3: 1a:37:65:15:e1:a5:34:4a:e3:18:d5:56:66:3d:c8:9d:60:08: d7:2e:69:2c:1e:69:44:6a:b7:50:f0:55:24:63:13:ce:97:d0: 06:14:4c:92:42:bd:aa:d4:6e:01:17:49:83:96:38:70:23:c9: ae:a0:cd:7b:00:82:0f:b4:a0:f3:01:37:7e:21:8d:aa:84:18: 22:6e:b4:e1:35:84:15:86:88:cc:2f:e1:b9:07:09:cb:b5:e3: 29:cf:74:81:7d:65:b7:9e:be:79:f4:f7:c6:33:e3:db:a7:fe: 39:13:db:96:cc:39:06:33:c5:1c:72:12:2d:0f:2b:e7:68:9f: c7:b5:bc:06:12:da:ea:95:d7:0c:03:f7:b0:eb:4f:83:68:f6: 66:4e:fd:1b:a6:5a:41:a0:0e:09:b2:e8:ed:a3:88:32:17:db: 68:55:2f:39:46:fe:56:b4:1f:fd:53:9c:fd:5f:76:bc:bb:22: 31:f7:f2:22:e6:ad:85:4b:fe:59:40:03:4d:84:45:c3:0d:1e: 09:9f:0c:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFMjQxMTAvBgNVBAUTKDI0MjIzRDBDN0QxMDFEQjdBRDdFM0NCOEREQjE3MDYy OTM2NUNBRUUwHhcNMjUwMzI5MDMyOTEwWhcNMjUwNDA1MDMyOTEwWjAYMRYwFAYD VQQDEw02N2U3NjkwNi1lYzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtUiFji79Hh7nXFZyVYMxklqlNVwgG+6mrktXV2VeNXkNDvXZToVORaWCwTy RCYqDF2S0lHI+vb3lGbfX9Ejfb0yuFrElLXR0E8uljfyD2z75Izh7eK207AdbKba 1UwT5PoqI3ntJ5h/wsMrFvzLCPeMox9dRgGzorRU7CHRcLxQ7vbE/Rid1fgG0eYR NkYB7vQFAgwrir+U3+BHssaqj0kW0VD5g4ldartX9f6TF+REGhQsz6+25com03nA D9ZWpBr85eBF840bOs+ShvUvFer9TzxA82hy0flhRdmMX8DYZzDdu3nWDktPLaPa 38PjkFll91R2XMHd3JbbRF7FOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/DFfUM 2fKtoTsg++n0FJsOaBDzMB8GA1UdIwQYMBaAFCQiPQx9EB23rX48uN2xcGKTZcru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUUyNC9GMkY2NzVGRUYz RkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhiZXRmank0M2JGd1lwTmx5 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUUyNC9GMkY2NzVGRUYzRkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhi ZXRmank0M2JGd1lwTmx5dTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkH0m+IrXT1/yq1xkBn/l+p+AiO2svDWLqnYjB8UqFG2crniCQZ2vc 932BMq2KoNwKb3bp/cMaN2UV4aU0SuMY1VZmPcidYAjXLmksHmlEardQ8FUkYxPO l9AGFEySQr2q1G4BF0mDljhwI8muoM17AIIPtKDzATd+IY2qhBgibrThNYQVhojM L+G5BwnLteMpz3SBfWW3nr559PfGM+Pbp/45E9uWzDkGM8UcchItDyvnaJ/HtbwG EtrqldcMA/ew60+DaPZmTv0bplpBoA4Jsujto4gyF9toVS85Rv5WtB/9U5z9X3a8 uyIx9/Ii5q2FS/5ZQANNhEXDDR4JnwwR -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:39 2025 by rpki-client