$ rpki-client -vvf rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft File: J5KVmyX7-evckzm6nH01VXJpaas.mft (raw, json) Hash identifier: 5HXqJ497aaAVyHwvnUqyMpG8nDVPs66FH0jakh4/C2U= Subject key identifier: 10:33:94:31:38:BE:E2:E5:F8:8D:F9:21:11:83:92:49:43:FF:3D:D4 Authority key identifier: 27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB Certificate issuer: /CN=A9189261/serialNumber=2792959B25FBF9EBDC9339BA9C7D3555726969AB Certificate serial: 063B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft Manifest number: 0636 Signing time: Fri 28 Mar 2025 22:54:49 +0000 Manifest this update: Fri 28 Mar 2025 22:54:49 +0000 Manifest next update: Fri 04 Apr 2025 22:54:49 +0000 Files and hashes: 1: J5KVmyX7-evckzm6nH01VXJpaas.crl (hash: WwgPnpckFTxywBzKaq+tGcinDVuI+9JHEhPgqtDQ4s4=) 2: CDACEC3686AD11EBBDFD106EC4F9AE02.roa (hash: U3xUizSTWdJYMjLLq4qIbC/HRkla7mf9lgp0wntQ29I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.crl rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189261 Validity Not Before: Mar 28 22:54:49 2025 GMT Not After : Apr 4 22:54:49 2025 GMT Subject: CN=67e728b9-5ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7c:89:69:89:1a:58:c5:87:7c:77:08:22:7b: b4:62:f0:a9:c9:91:3d:01:18:f3:dc:72:2f:32:d4: 9f:1b:c9:dc:a6:92:03:a8:e4:8a:cc:2d:f2:fc:24: ab:71:15:fa:0a:b4:20:84:8a:76:0d:4e:18:d5:f3: 97:7d:63:4e:f7:75:c5:f0:53:5f:3e:76:67:8a:08: ef:77:d2:d5:82:9f:c8:6f:6f:0c:2a:46:3e:66:b9: e0:92:b3:8e:0b:8a:cc:9a:e5:c5:a4:2d:4e:a5:cf: bd:5b:36:77:43:2e:03:a9:86:3b:4e:43:33:18:ab: fd:9a:4e:52:fa:e6:0e:ab:d3:6b:e6:d8:ef:1f:1a: b1:b7:13:7b:3b:3e:1e:98:53:d0:b3:1d:ae:b5:8c: cd:18:ed:34:95:84:ee:a7:1e:90:c6:5a:3d:a3:e9: 3b:ac:67:40:1e:e7:df:dc:42:9e:35:94:bf:51:83: 97:d8:c8:cb:bc:de:e9:5e:e7:2f:f7:43:56:ef:c6: ad:66:4a:84:6c:df:60:da:50:72:d1:f8:27:33:d6: 56:5b:59:e2:c9:a9:e8:b0:d5:a8:dd:15:2e:73:e6: ef:c4:ce:15:7f:00:14:be:27:80:3f:b7:2d:f0:d7: 63:cc:1d:a0:bc:4d:3a:28:6f:a0:f8:2b:f3:62:b1: e9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:33:94:31:38:BE:E2:E5:F8:8D:F9:21:11:83:92:49:43:FF:3D:D4 X509v3 Authority Key Identifier: keyid:27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ab:72:9b:76:5f:bd:b3:ca:7a:b7:90:9d:56:0c:0f:dd:00: f7:42:36:89:d7:e0:89:3c:5f:ee:38:ef:12:ad:25:57:9f:f1: ea:cb:83:ce:de:fc:8c:81:7f:c9:ea:fe:07:2b:34:a5:c6:b5: 08:27:cb:67:07:58:9f:9c:e4:1e:3b:d0:46:0a:b4:29:00:2d: 7d:d5:50:36:db:b0:72:db:c9:38:1a:26:f6:74:5b:f3:0e:87: 2a:1f:8a:93:ef:5e:7c:0b:b5:70:10:ce:b4:0a:e4:d2:fb:ea: 1f:32:b6:18:5d:03:72:00:d0:40:68:0b:50:85:fe:88:a2:91: be:7f:c2:4f:14:3d:d1:b2:8f:83:e6:2a:74:e6:bd:2a:2b:fc: ff:d9:10:f2:45:34:c4:62:f1:85:e8:47:d5:ad:2a:76:a2:7b: 03:04:42:15:dc:7d:b7:c5:5a:9c:9c:6b:de:64:85:39:dc:c1: 61:18:cb:2f:33:24:a3:17:ea:e4:eb:07:3c:23:bf:fa:e3:97: 13:31:a3:06:fb:c5:63:92:35:57:17:28:c4:45:15:72:22:c8: 8e:ef:0c:f1:71:b1:f0:94:ec:06:ed:11:4e:2f:be:3a:f9:d4: bc:58:d6:e7:a5:75:90:30:63:e5:5e:1a:28:2d:9e:2b:b5:9d: ad:ca:9b:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyNjExMTAvBgNVBAUTKDI3OTI5NTlCMjVGQkY5RUJEQzkzMzlCQTlDN0QzNTU1 NzI2OTY5QUIwHhcNMjUwMzI4MjI1NDQ5WhcNMjUwNDA0MjI1NDQ5WjAYMRYwFAYD VQQDEw02N2U3MjhiOS01ZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXyJaYkaWMWHfHcIInu0YvCpyZE9ARjz3HIvMtSfG8ncppIDqOSKzC3y/CSr cRX6CrQghIp2DU4Y1fOXfWNO93XF8FNfPnZnigjvd9LVgp/Ib28MKkY+ZrngkrOO C4rMmuXFpC1Opc+9WzZ3Qy4DqYY7TkMzGKv9mk5S+uYOq9Nr5tjvHxqxtxN7Oz4e mFPQsx2utYzNGO00lYTupx6Qxlo9o+k7rGdAHuff3EKeNZS/UYOX2MjLvN7pXucv 90NW78atZkqEbN9g2lBy0fgnM9ZWW1niyanosNWo3RUuc+bvxM4VfwAUvieAP7ct 8NdjzB2gvE06KG+g+CvzYrHpuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAzlDE4 vuLl+I35IRGDkklD/z3UMB8GA1UdIwQYMBaAFCeSlZsl+/nr3JM5upx9NVVyaWmr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTI2MS85MEI2RjcyRTg2 QUIxMUVCQTkwODYzNTBDNEY5QUUwMi9KNUtWbXlYNy1ldmNrem02bkgwMVZYSnBh YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o1S1ZteVg3LWV2Y2t6bTZuSDAxVlhKcGFhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTI2MS85MEI2RjcyRTg2QUIxMUVCQTkwODYzNTBDNEY5QUUwMi9KNUtWbXlYNy1l dmNrem02bkgwMVZYSnBhYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZq3Kbdl+9s8p6t5CdVgwP3QD3QjaJ1+CJPF/uOO8SrSVXn/Hqy4PO 3vyMgX/J6v4HKzSlxrUIJ8tnB1ifnOQeO9BGCrQpAC191VA227By28k4Gib2dFvz DocqH4qT7158C7VwEM60CuTS++ofMrYYXQNyANBAaAtQhf6IopG+f8JPFD3Rso+D 5ip05r0qK/z/2RDyRTTEYvGF6EfVrSp2onsDBEIV3H23xVqcnGveZIU53MFhGMsv MySjF+rk6wc8I7/645cTMaMG+8VjkjVXFyjERRVyIsiO7wzxcbHwlOwG7RFOL746 +dS8WNbnpXWQMGPlXhooLZ4rtZ2typu3 -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:58 2025 by rpki-client