$ rpki-client -vvf rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft File: jhRqR_5i0JoyZs4IOlecrROlgGY.mft (raw, json) Hash identifier: CyKOJZNjkO0M4Wm6JIvNDp63HqMGb04VcGJhfjUVq+E= Subject key identifier: 8E:95:71:B2:6D:9E:76:01:C8:EA:FC:FB:3D:21:30:EB:19:C2:5C:17 Authority key identifier: 8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 Certificate issuer: /CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft Manifest number: 0159 Signing time: Sat 29 Mar 2025 03:31:33 +0000 Manifest this update: Sat 29 Mar 2025 03:31:33 +0000 Manifest next update: Sat 05 Apr 2025 03:31:33 +0000 Files and hashes: 1: jhRqR_5i0JoyZs4IOlecrROlgGY.crl (hash: bcnOBJC48Lj/5gU1jrc4nuE/nbpFcge6zHTFztjMttE=) 2: DFFEC4ECFA2B11ED89B90A2FC4F9AE02.roa (hash: u3KQ4+2IgJpu2VdTdgcmH5lKk3YgiV3NcKX66uGGiko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:31:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91570C9 Validity Not Before: Mar 29 03:31:33 2025 GMT Not After : Apr 5 03:31:33 2025 GMT Subject: CN=67e76995-dac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:98:23:0b:c8:41:c8:04:3c:94:cf:8c:c9:77: f3:b4:b2:88:71:84:db:ef:af:6e:a9:09:15:44:99: a2:06:5a:50:44:af:6f:48:5b:ba:ea:9e:8b:f8:03: 7d:ac:75:8f:91:51:38:d7:01:85:a6:86:73:82:e7: 8d:8a:74:a3:34:43:50:c0:36:79:d9:1e:ea:fb:ba: 00:fe:2d:06:61:2a:af:d3:76:27:47:92:01:af:b2: a8:ef:12:ab:57:79:8f:bd:50:3a:00:13:36:35:83: c5:1e:5d:56:6b:a0:d5:5a:1c:85:00:de:a6:51:91: 96:f6:4d:a6:dd:25:44:a4:f8:7f:42:20:89:e7:9b: 2d:eb:5b:e7:08:20:60:21:12:fc:4a:75:b2:3e:3e: 28:15:ff:70:96:b4:fa:82:47:68:1c:99:ea:86:ba: 11:75:5f:5f:63:b7:4e:04:e9:d2:d9:fc:16:b1:2b: fb:a5:54:93:f0:43:50:04:ef:a4:47:09:da:93:c7: 9c:3f:f1:d5:8d:1a:17:a4:c8:4a:37:7a:28:d4:ef: 48:dc:60:45:ed:8c:4f:90:c8:51:c9:a9:24:d0:18: 8d:cd:ae:d8:4b:0b:24:80:ba:c3:b9:34:89:e5:9a: 27:06:2f:40:d5:be:35:73:4b:0a:d5:af:c2:17:6b: 64:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:95:71:B2:6D:9E:76:01:C8:EA:FC:FB:3D:21:30:EB:19:C2:5C:17 X509v3 Authority Key Identifier: keyid:8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c7:b4:60:fd:85:51:43:c8:b6:e9:21:e3:2d:48:71:e0:9f: 3c:b5:26:0f:59:16:57:29:15:0b:d9:8f:1a:fa:1d:57:4b:d8: ec:7f:62:67:4c:83:d0:11:4c:23:6f:c3:bb:cf:ed:f4:5a:19: 5b:d9:60:84:eb:5b:95:2e:68:02:82:1a:10:2d:45:5d:00:d5: 04:f7:25:3a:d1:4a:7e:7b:81:0b:bf:a6:11:9a:91:26:99:45: ab:8f:64:ff:55:dc:2d:0d:5b:f4:9b:ca:e4:68:38:27:bb:b6: dc:7c:4a:20:6d:ae:34:61:59:3a:bf:8a:42:96:a4:4f:98:c9: f2:0e:3a:eb:7c:c7:91:58:66:d9:0a:de:d5:e5:d1:98:f7:a8: f4:86:49:40:53:18:10:7a:6b:5b:5c:8c:2a:c2:4d:ae:5a:b0: c1:4d:3d:fc:53:5c:03:7f:ec:be:14:aa:ca:d5:c1:b4:af:30: 6e:07:b3:1e:b4:7e:5f:0c:10:f3:68:ef:c5:ac:d9:21:24:51: c6:2c:78:6c:6d:1b:fc:fc:6d:2e:0d:0f:71:ee:52:bb:c0:75: b1:ff:1e:3f:46:59:56:dc:e9:d8:56:fa:56:ba:d2:7f:4d:a2: 54:6f:a3:93:f3:dc:0e:10:cd:3f:e4:fc:c2:b9:91:36:34:04: eb:84:d9:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwQzkxMTAvBgNVBAUTKDhFMTQ2QTQ3RkU2MkQwOUEzMjY2Q0UwODNBNTc5Q0FE MTNBNTgwNjYwHhcNMjUwMzI5MDMzMTMzWhcNMjUwNDA1MDMzMTMzWjAYMRYwFAYD VQQDEw02N2U3Njk5NS1kYWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJgjC8hByAQ8lM+MyXfztLKIcYTb769uqQkVRJmiBlpQRK9vSFu66p6L+AN9 rHWPkVE41wGFpoZzgueNinSjNENQwDZ52R7q+7oA/i0GYSqv03YnR5IBr7Ko7xKr V3mPvVA6ABM2NYPFHl1Wa6DVWhyFAN6mUZGW9k2m3SVEpPh/QiCJ55st61vnCCBg IRL8SnWyPj4oFf9wlrT6gkdoHJnqhroRdV9fY7dOBOnS2fwWsSv7pVST8ENQBO+k Rwnak8ecP/HVjRoXpMhKN3oo1O9I3GBF7YxPkMhRyakk0BiNza7YSwskgLrDuTSJ 5ZonBi9A1b41c0sK1a/CF2tkgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6VcbJt nnYByOr8+z0hMOsZwlwXMB8GA1UdIwQYMBaAFI4Uakf+YtCaMmbOCDpXnK0TpYBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzBDOS8wMjI3QjlBRUZB MjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBKb3laczRJT2xlY3JST2xn R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poUnFSXzVpMEpveVpzNElPbGVjclJPbGdHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzBDOS8wMjI3QjlBRUZBMjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBK b3laczRJT2xlY3JST2xnR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqx7Rg/YVRQ8i26SHjLUhx4J88tSYPWRZXKRUL2Y8a+h1XS9jsf2Jn TIPQEUwjb8O7z+30Whlb2WCE61uVLmgCghoQLUVdANUE9yU60Up+e4ELv6YRmpEm mUWrj2T/VdwtDVv0m8rkaDgnu7bcfEogba40YVk6v4pClqRPmMnyDjrrfMeRWGbZ Ct7V5dGY96j0hklAUxgQemtbXIwqwk2uWrDBTT38U1wDf+y+FKrK1cG0rzBuB7Me tH5fDBDzaO/FrNkhJFHGLHhsbRv8/G0uDQ9x7lK7wHWx/x4/RllW3OnYVvpWutJ/ TaJUb6OT89wOEM0/5PzCuZE2NATrhNk/ -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:33 2025 by rpki-client