$ rpki-client -vvf rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft File: jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft (raw, json) Hash identifier: tvl2vuITYCLcrmuPt95gTCWMDdE3DkUhqEM9jjahqrA= Subject key identifier: 18:2F:AE:46:89:17:C1:79:C1:6E:7B:56:E0:65:9B:71:8F:68:FB:C8 Authority key identifier: 8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 Certificate issuer: /CN=A91870C2/serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Certificate serial: 0C49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft Manifest number: 0C41 Signing time: Fri 04 Apr 2025 18:27:39 +0000 Manifest this update: Fri 04 Apr 2025 18:27:39 +0000 Manifest next update: Fri 11 Apr 2025 18:27:39 +0000 Files and hashes: 1: jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl (hash: u2QpNvTJsRPnyUds8CAwTEjdwndl+S5yMc6p/qrc7sI=) 2: 6FF4CA0E006311EAB403274DC4F9AE02.roa (hash: /mIKJtNFNWjniVzqj/Rj/Pp+GLlyWHhk+tCFjQhdH1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870C2 Validity Not Before: Apr 4 18:27:39 2025 GMT Not After : Apr 11 18:27:39 2025 GMT Subject: CN=67f0249b-f2e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d8:1e:2d:5b:b2:95:7d:01:25:0f:5c:87:d9: f5:80:c2:83:c9:d1:1b:97:6e:d2:44:66:98:d1:d6: 3b:50:ca:ca:e6:26:08:76:51:15:9d:34:f8:40:a3: 5d:4e:91:95:22:05:c9:ef:df:f1:61:14:e3:dd:9d: ac:3a:38:3e:8b:d7:ea:64:64:e2:48:f2:73:f2:c4: 68:57:87:ca:9d:2f:4f:dd:b6:aa:05:2e:84:e5:aa: 5e:d2:e6:1b:40:17:53:6c:1c:b1:c3:2b:12:d0:40: d7:e3:0b:15:5c:ab:aa:8d:1b:49:82:d5:2f:de:b3: 82:72:a0:ef:f9:69:2b:f9:53:c7:e0:45:bc:aa:75: 37:ac:cb:80:eb:5a:c4:fa:43:6a:ed:e2:c1:66:3a: 60:8c:1d:69:9f:68:84:4a:92:fe:f7:06:f8:db:cf: 3c:fa:59:8a:b9:30:8a:38:19:cc:aa:bc:95:fd:76: a5:15:65:81:b7:00:b4:2d:5e:0c:15:85:50:fb:44: bd:8b:76:4a:25:88:c6:1b:7b:f1:9c:50:1a:42:cb: 7b:cd:56:51:b6:89:6d:ca:ec:83:1e:6c:9a:92:d5: 9c:8b:41:4b:43:99:ef:e7:c4:48:14:dd:a9:43:21: 86:e3:db:40:e1:3c:17:4b:c0:23:a9:73:b6:41:65: c1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:2F:AE:46:89:17:C1:79:C1:6E:7B:56:E0:65:9B:71:8F:68:FB:C8 X509v3 Authority Key Identifier: keyid:8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:cd:cd:d0:34:b6:24:a0:0d:a7:c4:3e:ef:c2:14:33:cb:b9: 06:c7:d2:01:48:ba:13:cd:ef:ab:28:86:61:53:32:86:6d:ef: 46:6c:d5:fe:7c:0e:80:cb:c2:e8:2c:20:d8:34:95:a1:3d:3f: fc:91:12:d6:99:e6:d6:f2:6e:f2:e7:56:6a:72:b4:a9:0b:6e: 27:34:73:88:cc:71:0e:66:dc:f2:bf:a3:84:75:aa:ec:e2:b3: dd:c6:c2:6e:92:20:43:ec:51:5f:be:39:4b:5a:d2:44:02:bb: 9c:43:28:af:46:72:56:c2:ee:41:47:1b:08:2f:ae:ae:01:df: 7d:4a:73:60:47:13:ef:91:e8:f2:a1:26:61:f1:34:da:b4:86: 3d:51:6c:96:a0:eb:5c:45:2e:8b:07:9b:2f:58:4a:bb:d1:12: 9c:00:41:e9:20:ea:fd:55:09:fb:5f:af:01:fb:aa:ec:4d:18: 28:a0:3c:57:65:64:ab:50:58:45:e0:83:93:1a:77:5a:3f:63: 96:f2:c3:62:d9:3f:15:9a:be:01:3d:95:14:f5:c6:79:c7:e2: ca:1e:0c:58:72:56:1a:cf:f4:fc:7e:c5:f3:dd:02:9b:36:b1: 20:41:8e:10:ec:b1:63:19:06:38:29:9a:ed:ee:4f:12:80:f1: cf:55:0a:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQzIxMTAvBgNVBAUTKDhDNzhGRUM3NDU1OTIwQ0JGREUwMzBGRTU0NEU1N0Yx RUM5RkM4NjQwHhcNMjUwNDA0MTgyNzM5WhcNMjUwNDExMTgyNzM5WjAYMRYwFAYD VQQDEw02N2YwMjQ5Yi1mMmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztgeLVuylX0BJQ9ch9n1gMKDydEbl27SRGaY0dY7UMrK5iYIdlEVnTT4QKNd TpGVIgXJ79/xYRTj3Z2sOjg+i9fqZGTiSPJz8sRoV4fKnS9P3baqBS6E5ape0uYb QBdTbByxwysS0EDX4wsVXKuqjRtJgtUv3rOCcqDv+Wkr+VPH4EW8qnU3rMuA61rE +kNq7eLBZjpgjB1pn2iESpL+9wb42888+lmKuTCKOBnMqryV/XalFWWBtwC0LV4M FYVQ+0S9i3ZKJYjGG3vxnFAaQst7zVZRtoltyuyDHmyaktWci0FLQ5nv58RIFN2p QyGG49tA4TwXS8AjqXO2QWXB5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgvrkaJ F8F5wW57VuBlm3GPaPvIMB8GA1UdIwQYMBaAFIx4/sdFWSDL/eAw/lROV/Hsn8hk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBDMi84RDcxMkVBMjAw NjIxMUVBQUJFNzNGNENDNEY5QUUwMi9qSGoteDBWWklNdjk0REQtVkU1WDhleWZ5 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pIai14MFZaSU12OTRERC1WRTVYOGV5ZnlHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBDMi84RDcxMkVBMjAwNjIxMUVBQUJFNzNGNENDNEY5QUUwMi9qSGoteDBWWklN djk0REQtVkU1WDhleWZ5R1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQzc3QNLYkoA2nxD7vwhQzy7kGx9IBSLoTze+rKIZhUzKGbe9GbNX+ fA6Ay8LoLCDYNJWhPT/8kRLWmebW8m7y51ZqcrSpC24nNHOIzHEOZtzyv6OEdars 4rPdxsJukiBD7FFfvjlLWtJEArucQyivRnJWwu5BRxsIL66uAd99SnNgRxPvkejy oSZh8TTatIY9UWyWoOtcRS6LB5svWEq70RKcAEHpIOr9VQn7X68B+6rsTRgooDxX ZWSrUFhF4IOTGndaP2OW8sNi2T8Vmr4BPZUU9cZ5x+LKHgxYclYaz/T8fsXz3QKb NrEgQY4Q7LFjGQY4KZrt7k8SgPHPVQoz -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:01 2025 by rpki-client