$ rpki-client -vvf rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft File: jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft (raw, json) Hash identifier: Vm80Upum6R4jIzWlGUNrLUuHayyBJeCEZ+B1muHwRfM= Subject key identifier: 46:E7:70:A4:02:2F:A6:A6:99:60:74:2B:F8:42:0A:91:44:94:A9:6A Authority key identifier: 8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 Certificate issuer: /CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Certificate serial: 04DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft Manifest number: 04D6 Signing time: Sat 29 Mar 2025 00:04:18 +0000 Manifest this update: Sat 29 Mar 2025 00:04:18 +0000 Manifest next update: Sat 05 Apr 2025 00:04:18 +0000 Files and hashes: 1: jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl (hash: uP3BmGABSHP1584d2ub4ZNaAbLRM64NI3noMXIkogBM=) 2: F85178E05DD111EF83CF1063C4F9AE02.roa (hash: DwXb+joRx9u0BG/TCkqlIKWQRw4604GMuFkdr4cvB14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91385F2 Validity Not Before: Mar 29 00:04:18 2025 GMT Not After : Apr 5 00:04:18 2025 GMT Subject: CN=67e73902-f322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b1:54:4a:94:fd:d3:82:42:10:67:5b:29:15: 40:b9:83:8f:9e:95:e9:7d:05:5d:d0:fa:22:03:84: 4c:94:fa:70:11:f5:d1:48:18:7b:9e:42:58:92:18: b1:60:eb:f0:16:1d:d0:90:ed:a4:49:8d:6b:51:89: 29:9e:96:0f:5b:3b:b1:bd:9e:40:53:c2:4e:14:a2: be:20:ee:4f:02:d1:6d:f6:cd:af:6e:f1:f5:5b:c6: f1:99:cb:bb:ed:7f:d4:c3:84:f8:67:e4:f4:da:81: 9a:28:a8:86:f1:49:07:35:33:6c:e6:fb:90:1c:c6: 7d:34:84:3c:0b:d1:30:14:15:c2:b9:80:d9:d1:2b: c6:46:e4:f8:c2:12:36:b7:8c:29:1e:c0:c5:8a:58: 93:b8:cb:53:aa:e4:bf:6e:48:7a:0c:56:8c:9e:45: 16:36:f3:47:6c:f5:3c:a9:b1:3e:19:f5:30:21:10: 7d:e5:18:fa:da:26:e1:4f:22:d6:f6:c9:5f:5b:5e: 96:8b:e4:2f:2c:4a:61:e7:35:41:36:2c:54:21:ce: e8:d0:2a:4a:da:b3:cb:8c:63:9d:c9:27:ea:54:f2: 05:99:56:3b:cf:d9:25:0d:d3:0b:0e:fb:19:af:b7: b2:fc:d9:d7:58:66:56:42:5c:96:7c:24:97:4a:50: df:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E7:70:A4:02:2F:A6:A6:99:60:74:2B:F8:42:0A:91:44:94:A9:6A X509v3 Authority Key Identifier: keyid:8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:73:69:4e:e6:35:e9:02:62:6c:b0:c6:21:f7:89:da:05:01: fa:62:67:4b:49:31:6f:57:01:c1:67:99:f4:cd:90:10:42:0e: 49:4e:59:27:86:2e:35:1b:e8:f6:6c:4c:55:7b:ff:6a:74:76: 71:62:b6:07:cc:fb:75:23:9e:5f:24:2a:20:21:75:fe:ce:52: 7a:18:e1:da:e8:6e:96:7c:34:f3:ae:01:5a:7c:f0:87:ad:40: 63:d1:b7:fe:a1:da:88:6b:ef:4b:24:e4:d8:7d:37:d1:93:06: f3:06:97:d9:73:1f:27:29:5c:95:13:ac:17:1f:0a:19:1d:b5: 17:6f:e7:f6:b2:58:5e:64:b8:23:f4:99:37:59:dc:6f:4f:ea: f3:e7:a9:d2:fe:22:72:2e:d4:b0:6b:5c:ba:96:61:b4:8b:63: d7:b5:39:b1:95:ce:0b:eb:75:0e:a7:fb:ba:91:f6:c1:3a:e5: 1c:8c:15:65:e0:6e:de:38:0d:bf:77:fe:cf:8c:f8:d7:74:e2: 49:06:1a:4a:ad:03:a7:46:de:24:e2:84:d2:bb:f1:73:59:3e: 8f:92:45:13:81:b7:cb:17:8d:3c:51:8d:72:29:8c:62:2d:5d: bc:aa:03:c9:c3:fb:82:79:b7:a7:e3:46:57:42:48:07:42:17: 10:1d:44:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg1RjIxMTAvBgNVBAUTKDhDMEExRkZGMUFBMzFDRUE2Q0MwQzg4QjY3QUMyMkQ1 OTQ2MzlDNzUwHhcNMjUwMzI5MDAwNDE4WhcNMjUwNDA1MDAwNDE4WjAYMRYwFAYD VQQDEw02N2U3MzkwMi1mMzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurFUSpT904JCEGdbKRVAuYOPnpXpfQVd0PoiA4RMlPpwEfXRSBh7nkJYkhix YOvwFh3QkO2kSY1rUYkpnpYPWzuxvZ5AU8JOFKK+IO5PAtFt9s2vbvH1W8bxmcu7 7X/Uw4T4Z+T02oGaKKiG8UkHNTNs5vuQHMZ9NIQ8C9EwFBXCuYDZ0SvGRuT4whI2 t4wpHsDFiliTuMtTquS/bkh6DFaMnkUWNvNHbPU8qbE+GfUwIRB95Rj62ibhTyLW 9slfW16Wi+QvLEph5zVBNixUIc7o0CpK2rPLjGOdySfqVPIFmVY7z9klDdMLDvsZ r7ey/NnXWGZWQlyWfCSXSlDfuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbncKQC L6ammWB0K/hCCpFElKlqMB8GA1UdIwQYMBaAFIwKH/8aoxzqbMDIi2esItWUY5x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODVGMi80RDMwMTZFODE1 MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhPcHN3TWlMWjZ3aTFaUmpu SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pBb2ZfeHFqSE9wc3dNaUxaNndpMVpSam5IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODVGMi80RDMwMTZFODE1MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhP cHN3TWlMWjZ3aTFaUmpuSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIc2lO5jXpAmJssMYh94naBQH6YmdLSTFvVwHBZ5n0zZAQQg5JTlkn hi41G+j2bExVe/9qdHZxYrYHzPt1I55fJCogIXX+zlJ6GOHa6G6WfDTzrgFafPCH rUBj0bf+odqIa+9LJOTYfTfRkwbzBpfZcx8nKVyVE6wXHwoZHbUXb+f2slheZLgj 9Jk3WdxvT+rz56nS/iJyLtSwa1y6lmG0i2PXtTmxlc4L63UOp/u6kfbBOuUcjBVl 4G7eOA2/d/7PjPjXdOJJBhpKrQOnRt4k4oTSu/FzWT6PkkUTgbfLF408UY1yKYxi LV28qgPJw/uCeben40ZXQkgHQhcQHUSJ -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:52 2025 by rpki-client