$ rpki-client -vvf rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft File: JSQuExmXg1v8mxgEBceXxiiUR-c.mft (raw, json) Hash identifier: XcWlHSoH4zaOsR/ybEj2kPgoEZJNqj2MvqUr6LujAgg= Subject key identifier: 29:74:5B:B4:6B:3E:2E:9E:6C:B9:35:FD:7D:C5:A3:88:16:E7:C2:AD Authority key identifier: 25:24:2E:13:19:97:83:5B:FC:9B:18:04:05:C7:97:C6:28:94:47:E7 Certificate issuer: /CN=A91388E0/serialNumber=25242E131997835BFC9B180405C797C6289447E7 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft Manifest number: EA Signing time: Wed 09 Apr 2025 04:20:07 +0000 Manifest this update: Wed 09 Apr 2025 04:20:06 +0000 Manifest next update: Wed 16 Apr 2025 04:20:06 +0000 Files and hashes: 1: JSQuExmXg1v8mxgEBceXxiiUR-c.crl (hash: wJHcdW6XwK8NFpwvC22ePc/mhhuF3Eql2FZry0363cI=) 2: 1F5F5920B85F11EE9B53995FC4F9AE02.roa (hash: c6SlXvh5jnzbFaQ7XL8WHzhEyzH6pjJKr/W4VmAYxxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.crl rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91388E0 Validity Not Before: Apr 9 04:20:06 2025 GMT Not After : Apr 16 04:20:06 2025 GMT Subject: CN=67f5f576-ff5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7c:8c:3d:f6:c9:12:40:00:09:87:a3:83:e8: f9:4f:72:d6:45:38:0e:17:22:72:13:e1:19:88:64: fc:ee:ce:41:6e:32:53:73:2e:0e:3d:41:18:a7:a0: 0e:7a:e4:74:0e:27:8d:14:82:92:15:fa:8f:23:80: e1:4c:0a:8c:56:e7:b7:cf:b9:5a:dc:b3:1c:3f:90: 5a:ae:cc:3b:9d:56:8a:12:63:59:74:c5:ef:ce:c2: 5c:59:b6:f4:15:c6:32:5a:76:2f:ee:ed:59:ee:26: fc:fa:e4:12:e0:14:43:7a:d9:45:86:ac:64:a2:45: 7f:81:a9:83:7d:03:99:40:ae:c1:8e:65:64:d0:ce: 98:39:d5:03:63:21:a9:33:0f:c0:c9:5e:de:5a:fd: c7:fa:57:8c:c9:20:a7:17:ef:e7:60:10:64:81:ad: 8b:6b:c7:e9:86:96:80:04:d0:a7:9d:b5:e9:f7:0d: 1d:3c:0e:7a:be:c3:cc:3c:86:ce:c7:f8:34:c6:fc: 4d:de:e7:a0:27:d6:e0:d7:42:4e:27:3b:dd:32:8f: 7a:af:f9:c5:91:19:1d:0c:07:91:87:f9:c4:47:de: 0e:55:d9:51:23:cc:f7:41:4f:40:f6:27:51:e9:87: 16:9b:20:69:76:e7:b4:f4:fa:da:f4:14:6f:ae:c2: cf:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:74:5B:B4:6B:3E:2E:9E:6C:B9:35:FD:7D:C5:A3:88:16:E7:C2:AD X509v3 Authority Key Identifier: keyid:25:24:2E:13:19:97:83:5B:FC:9B:18:04:05:C7:97:C6:28:94:47:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:14:18:c3:56:c9:28:52:c9:7c:84:fe:a9:af:91:ce:1d:ba: d3:a9:7a:59:ef:ad:8a:f5:02:56:20:26:47:1c:6c:03:0d:cc: 85:24:b8:79:cf:44:ad:23:b2:67:91:2a:1c:1c:98:f2:6f:8d: 9d:6d:5f:04:bb:8e:ba:01:f3:a1:e0:55:1d:c6:ef:61:95:71: c9:ec:bb:d8:da:92:24:76:5b:cc:15:f9:9d:47:4d:f9:06:33: 36:0f:75:3e:14:fe:68:94:3d:b4:81:6c:97:04:d4:76:a8:4d: c1:45:5c:2b:6e:ea:7f:c6:32:86:f2:41:7c:66:a7:ae:9a:40: 93:61:c9:bc:70:53:d0:3b:5d:85:98:2e:19:39:e3:86:84:df: 2a:26:a0:c3:72:4c:9e:38:3b:9d:39:a5:aa:91:d3:db:f1:ad: 28:61:d1:b8:a2:7d:2e:fe:f9:f3:9c:f3:20:2e:30:de:e0:b7: d9:a7:fa:52:7e:e6:d1:88:a9:85:56:48:28:74:67:95:3f:b7: a5:a7:7a:f3:80:23:2c:de:66:eb:32:e3:58:f3:4a:c1:2a:3e: 21:f9:90:f5:1e:30:2d:45:e5:a6:a2:40:dd:25:1c:9c:bd:47: fc:7b:bc:00:66:1c:f5:14:30:07:a2:be:f1:9b:a8:8d:ea:7f: 97:42:09:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg4RTAxMTAvBgNVBAUTKDI1MjQyRTEzMTk5NzgzNUJGQzlCMTgwNDA1Qzc5N0M2 Mjg5NDQ3RTcwHhcNMjUwNDA5MDQyMDA2WhcNMjUwNDE2MDQyMDA2WjAYMRYwFAYD VQQDEw02N2Y1ZjU3Ni1mZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7XyMPfbJEkAACYejg+j5T3LWRTgOFyJyE+EZiGT87s5BbjJTcy4OPUEYp6AO euR0DieNFIKSFfqPI4DhTAqMVue3z7la3LMcP5Barsw7nVaKEmNZdMXvzsJcWbb0 FcYyWnYv7u1Z7ib8+uQS4BRDetlFhqxkokV/gamDfQOZQK7BjmVk0M6YOdUDYyGp Mw/AyV7eWv3H+leMySCnF+/nYBBkga2La8fphpaABNCnnbXp9w0dPA56vsPMPIbO x/g0xvxN3uegJ9bg10JOJzvdMo96r/nFkRkdDAeRh/nER94OVdlRI8z3QU9A9idR 6YcWmyBpdue09Pra9BRvrsLPwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCl0W7Rr Pi6ebLk1/X3Fo4gW58KtMB8GA1UdIwQYMBaAFCUkLhMZl4Nb/JsYBAXHl8YolEfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODhFMC80Q0JCMUIzMkI4 NTIxMUVFOEFDQUE5NkFDNEY5QUUwMi9KU1F1RXhtWGcxdjhteGdFQmNlWHhpaVVS LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pTUXVFeG1YZzF2OG14Z0VCY2VYeGlpVVItYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODhFMC80Q0JCMUIzMkI4NTIxMUVFOEFDQUE5NkFDNEY5QUUwMi9KU1F1RXhtWGcx djhteGdFQmNlWHhpaVVSLWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFFBjDVskoUsl8hP6pr5HOHbrTqXpZ762K9QJWICZHHGwDDcyFJLh5 z0StI7JnkSocHJjyb42dbV8Eu466AfOh4FUdxu9hlXHJ7LvY2pIkdlvMFfmdR035 BjM2D3U+FP5olD20gWyXBNR2qE3BRVwrbup/xjKG8kF8ZqeumkCTYcm8cFPQO12F mC4ZOeOGhN8qJqDDckyeODudOaWqkdPb8a0oYdG4on0u/vnznPMgLjDe4LfZp/pS fubRiKmFVkgodGeVP7elp3rzgCMs3mbrMuNY80rBKj4h+ZD1HjAtReWmokDdJRyc vUf8e7wAZhz1FDAHor7xm6iN6n+XQgld -----END CERTIFICATE-----Generated at Thu Apr 10 22:48:49 2025 by rpki-client