$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft File: jdQUSFkXzUyAFnvaGdcklkawZyU.mft (raw, json) Hash identifier: MqQgvI5a70NCvnrZjwUfCO50hUmF85pCRPCbXBaUIfM= Subject key identifier: 9B:CE:DA:08:F8:D0:DC:21:10:1C:C1:E4:11:50:6C:50:C4:28:96:9F Authority key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 Certificate issuer: /CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft Manifest number: 6D Signing time: Wed 09 Apr 2025 05:45:50 +0000 Manifest this update: Wed 09 Apr 2025 05:45:49 +0000 Manifest next update: Wed 16 Apr 2025 05:45:49 +0000 Files and hashes: 1: jdQUSFkXzUyAFnvaGdcklkawZyU.crl (hash: fFTcTMYTmTQCP/zoiNRJsBN0KPU0nxUKHqUrSwwb3jM=) 2: FF3D553675B711EF83FAAE42C4F9AE02.roa (hash: /HTBqf5H3Uz657hsatlKZqGr2vioW9ZJotjtVpnDq5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9 Validity Not Before: Apr 9 05:45:49 2025 GMT Not After : Apr 16 05:45:49 2025 GMT Subject: CN=67f6098d-0384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d7:62:ad:89:16:0f:83:c8:62:5a:ea:4b:9c: 4f:0c:9f:2f:ce:cc:90:20:70:a7:84:e4:d1:df:bc: a4:df:e6:7d:90:ff:cb:2e:27:f4:21:0b:0d:83:f2: 66:de:f1:43:c3:03:b5:54:85:4c:10:d6:eb:82:cd: 1e:0c:11:de:c7:fc:11:2a:93:38:98:2a:2a:64:ad: 4a:ff:bb:9c:76:99:f6:d1:86:74:b0:9d:4d:e7:3f: d7:6f:01:8d:36:fe:92:26:2c:6c:05:60:79:37:fb: cd:8f:bf:92:81:5e:1c:2c:ac:a5:cf:9a:4d:14:ee: 86:52:c2:ba:e7:f9:03:79:97:75:2c:54:af:95:ac: 95:0b:04:30:df:9a:8f:19:31:ef:d6:88:9d:24:31: 49:4a:fb:2c:51:c7:b9:4d:b0:bf:db:6f:11:89:d2: a0:fc:17:09:c0:49:f8:95:b3:71:9c:91:f3:96:74: db:5d:b3:63:85:ec:e7:5f:2a:1d:06:6e:83:68:de: 1f:c9:3d:89:10:3f:87:f4:23:44:96:d7:f0:29:82: d3:48:e7:ad:56:04:b8:8b:98:26:23:40:e3:1d:12: 29:54:e4:7f:33:6c:47:2d:9f:9d:52:a4:a1:f5:d2: b3:fe:8e:a8:c4:9a:09:83:62:15:77:2a:d0:5c:52: 35:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CE:DA:08:F8:D0:DC:21:10:1C:C1:E4:11:50:6C:50:C4:28:96:9F X509v3 Authority Key Identifier: keyid:8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:74:18:66:89:ec:33:af:06:61:f9:48:4a:da:97:e4:83:b6: 57:ab:bc:21:0b:51:46:b8:98:1e:05:c0:d5:8d:c3:65:89:13: 54:c7:f3:10:31:cd:72:62:e7:36:b6:2f:2b:47:20:c4:c7:58: ec:fa:36:79:d8:c6:1d:6b:a1:3e:1b:7b:40:3f:39:db:00:e7: bc:3f:04:43:e4:e1:f3:2f:ae:51:9b:76:47:be:56:b9:79:1f: f1:88:51:5c:f4:7b:29:ee:b1:d7:73:3d:35:10:a4:49:43:21: 9c:aa:00:4f:37:95:e6:a9:16:84:0f:43:01:9b:c8:21:2d:61: 37:9c:06:d0:7f:a6:08:1b:6d:10:ad:9f:60:d8:4d:2e:6d:35: a8:0e:03:3d:1b:da:8c:82:c3:55:e3:b3:48:84:1f:62:f5:bc: f2:82:e6:ed:aa:23:d1:40:eb:5d:8c:fc:f5:59:23:02:4d:bf: b1:98:86:e5:99:e9:65:c1:1d:b5:23:01:aa:af:78:fb:74:60: 67:1a:22:ec:6c:9d:eb:f6:71:58:ae:12:fe:d7:dd:a1:fc:84: bd:ea:7a:e2:01:f7:0a:2b:df:e8:a2:02:33:ed:bb:e2:68:0c: f3:52:e4:1a:48:d8:dd:f6:b8:63:70:e7:12:93:40:30:7c:59: 85:ed:66:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzdCOTExMC8GA1UEBRMoOERENDE0NDg1OTE3Q0Q0QzgwMTY3QkRBMTlENzI0OTY0 NkIwNjcyNTAeFw0yNTA0MDkwNTQ1NDlaFw0yNTA0MTYwNTQ1NDlaMBgxFjAUBgNV BAMTDTY3ZjYwOThkLTAzODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDH12KtiRYPg8hiWupLnE8Mny/OzJAgcKeE5NHfvKTf5n2Q/8suJ/QhCw2D8mbe 8UPDA7VUhUwQ1uuCzR4MEd7H/BEqkziYKipkrUr/u5x2mfbRhnSwnU3nP9dvAY02 /pImLGwFYHk3+82Pv5KBXhwsrKXPmk0U7oZSwrrn+QN5l3UsVK+VrJULBDDfmo8Z Me/WiJ0kMUlK+yxRx7lNsL/bbxGJ0qD8FwnASfiVs3GckfOWdNtds2OF7OdfKh0G boNo3h/JPYkQP4f0I0SW1/ApgtNI561WBLiLmCYjQOMdEilU5H8zbEctn51SpKH1 0rP+jqjEmgmDYhV3KtBcUjUTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm87aCPjQ 3CEQHMHkEVBsUMQolp8wHwYDVR0jBBgwFoAUjdQUSFkXzUyAFnvaGdcklkawZyUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3N0I5L0QyN0M5MTVDNzVC NjExRUZCOEUyMTUxNEM0RjlBRTAyL2pkUVVTRmtYelV5QUZudmFHZGNrbGthd1p5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvamRRVVNGa1h6VXlBRm52YUdkY2tsa2F3WnlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 N0I5L0QyN0M5MTVDNzVCNjExRUZCOEUyMTUxNEM0RjlBRTAyL2pkUVVTRmtYelV5 QUZudmFHZGNrbGthd1p5VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI90GGaJ7DOvBmH5SEral+SDtlervCELUUa4mB4FwNWNw2WJE1TH8xAx zXJi5za2LytHIMTHWOz6NnnYxh1roT4be0A/OdsA57w/BEPk4fMvrlGbdke+Vrl5 H/GIUVz0eynusddzPTUQpElDIZyqAE83leapFoQPQwGbyCEtYTecBtB/pggbbRCt n2DYTS5tNagOAz0b2oyCw1Xjs0iEH2L1vPKC5u2qI9FA612M/PVZIwJNv7GYhuWZ 6WXBHbUjAaqvePt0YGcaIuxsnev2cViuEv7X3aH8hL3qeuIB9wor3+iiAjPtu+Jo DPNS5BpI2N32uGNw5xKTQDB8WYXtZg8= -----END CERTIFICATE-----Generated at Thu Apr 10 23:59:29 2025 by rpki-client