$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft File: J39oYmhAcrYqFW3fdd13JcOPUdA.mft (raw, json) Hash identifier: e1ekol65QPPcH9bW/CGduKsbQbi63VqYEUgxXCeQOE8= Subject key identifier: 12:88:27:AE:8F:67:75:8C:6E:4E:4A:A0:E4:E2:F4:EF:2D:1B:7C:A1 Authority key identifier: 27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 Certificate issuer: /CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Certificate serial: 0A45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft Manifest number: 0A3A Signing time: Wed 16 Apr 2025 19:34:25 +0000 Manifest this update: Wed 16 Apr 2025 19:34:25 +0000 Manifest next update: Wed 23 Apr 2025 19:34:25 +0000 Files and hashes: 1: J39oYmhAcrYqFW3fdd13JcOPUdA.crl (hash: kNIUqNJd8WtKskGggJB+PJTQvY3/LR3pHJXy2CeW+R4=) 2: 8AAEC8AEE48D11EF98A3562BC4F9AE02.roa (hash: 8qV4xNEzC9YwAyrCmGEDqkkT1vswlJKt6VLA8n7jDac=) 3: F0EC7AEAE48C11EF8BA4602AC4F9AE02.roa (hash: nsJgzUwSSMXcZYSBnW8T1s1Gr6R7nDs7M70WL4KuFGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 19:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2629 (0xa45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0BEC, serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Validity Not Before: Apr 16 19:34:25 2025 GMT Not After : Apr 23 19:34:25 2025 GMT Subject: CN=68000641-d968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:32:54:29:6d:69:31:ec:13:d8:ea:22:a2:3f: b8:51:a7:a3:5f:20:be:15:36:92:09:78:65:c7:15: 2f:17:0f:bf:03:05:b0:47:43:4d:ef:ab:2e:81:b7: 07:8a:51:4a:16:94:58:f4:49:f0:00:62:ab:7c:b5: 0c:ba:9c:b6:61:e5:df:bd:50:59:d7:2a:0e:a6:e0: 9e:46:e8:4e:37:99:41:ba:06:0d:b5:a1:4d:ed:3e: 0b:d8:39:ca:e7:68:0b:8a:74:73:d5:ed:12:ce:63: c3:7a:32:48:ca:a9:20:2f:d8:33:67:81:1b:70:6d: 55:e8:fb:ed:86:74:c6:db:cf:a1:3c:97:3f:12:30: 7b:3d:32:35:5c:26:ad:af:ae:29:1e:90:aa:19:ae: e4:7b:16:51:27:7f:be:c1:1a:43:6c:7d:13:e1:69: 12:7b:5a:1e:53:fa:7f:80:87:a7:dd:51:4f:c6:44: 84:5f:22:ea:48:ca:b9:78:c2:10:8f:7d:75:70:22: 32:f8:bb:ee:29:b1:52:2c:a9:d3:9f:1c:d3:d4:a5: 01:6e:d1:55:94:61:49:e4:bd:75:69:45:fc:17:80: 2f:e7:a1:cc:45:90:bd:04:de:93:68:44:2b:ea:b3: 34:3f:56:5b:22:5d:c3:43:bd:28:c6:53:6d:6c:59: 07:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:88:27:AE:8F:67:75:8C:6E:4E:4A:A0:E4:E2:F4:EF:2D:1B:7C:A1 X509v3 Authority Key Identifier: keyid:27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:cb:50:c4:f9:05:1f:db:fc:f4:89:2a:47:8a:27:bc:d1:98: b3:8a:f3:15:6b:c5:10:fa:83:3d:f4:26:6f:42:c0:db:25:e3: 78:3e:4f:9e:61:f0:6d:f1:c2:d4:af:de:47:49:ec:ef:cf:a3: 5f:04:c0:47:52:85:7e:51:9c:48:d2:8a:b7:cf:cc:ed:9f:1d: ae:78:25:f2:4e:e2:14:c9:56:8e:b6:bc:61:54:4c:ef:d9:11: 58:71:b1:71:d0:80:92:9e:e6:d8:e4:d2:56:61:1f:3d:c9:9d: 38:eb:20:81:29:77:68:79:a2:a1:bd:3f:71:ba:75:f6:46:f3: 96:9a:a5:08:58:78:87:3c:c6:41:e6:71:32:a9:ef:95:71:fa: ea:77:96:8f:22:3c:ee:b6:6d:aa:b2:79:b7:66:81:c2:e2:e0: 93:f2:d6:0a:d7:b5:c4:e5:1a:cb:1e:dd:51:bc:a9:8a:f7:cc: ce:9d:9d:55:cd:a4:7e:83:9d:78:11:57:dc:74:a4:56:c0:ca: 47:4b:04:f0:d9:ca:a3:bf:88:06:67:ab:f2:d8:73:57:5d:18: 67:da:f9:b5:04:86:18:a8:d8:29:13:a9:e8:97:35:fc:cc:0a: ba:dc:3e:e1:9a:bd:8d:38:65:87:3c:55:a0:eb:38:53:45:31: 14:3c:93:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBCRUMxMTAvBgNVBAUTKDI3N0Y2ODYyNjg0MDcyQjYyQTE1NkRERjc1REQ3NzI1 QzM4RjUxRDAwHhcNMjUwNDE2MTkzNDI1WhcNMjUwNDIzMTkzNDI1WjAYMRYwFAYD VQQDEw02ODAwMDY0MS1kOTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzJUKW1pMewT2Ooioj+4UaejXyC+FTaSCXhlxxUvFw+/AwWwR0NN76sugbcH ilFKFpRY9EnwAGKrfLUMupy2YeXfvVBZ1yoOpuCeRuhON5lBugYNtaFN7T4L2DnK 52gLinRz1e0SzmPDejJIyqkgL9gzZ4EbcG1V6PvthnTG28+hPJc/EjB7PTI1XCat r64pHpCqGa7kexZRJ3++wRpDbH0T4WkSe1oeU/p/gIen3VFPxkSEXyLqSMq5eMIQ j311cCIy+LvuKbFSLKnTnxzT1KUBbtFVlGFJ5L11aUX8F4Av56HMRZC9BN6TaEQr 6rM0P1ZbIl3DQ70oxlNtbFkHvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKIJ66P Z3WMbk5KoOTi9O8tG3yhMB8GA1UdIwQYMBaAFCd/aGJoQHK2KhVt33XddyXDj1HQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEJFQy83QjdGMjhFMjY3 N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNyWXFGVzNmZGQxM0pjT1BV ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozOW9ZbWhBY3JZcUZXM2ZkZDEzSmNPUFVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEJFQy83QjdGMjhFMjY3N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNy WXFGVzNmZGQxM0pjT1BVZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCy1DE+QUf2/z0iSpHiie80ZizivMVa8UQ+oM99CZvQsDbJeN4Pk+e YfBt8cLUr95HSezvz6NfBMBHUoV+UZxI0oq3z8ztnx2ueCXyTuIUyVaOtrxhVEzv 2RFYcbFx0ICSnubY5NJWYR89yZ046yCBKXdoeaKhvT9xunX2RvOWmqUIWHiHPMZB 5nEyqe+Vcfrqd5aPIjzutm2qsnm3ZoHC4uCT8tYK17XE5RrLHt1RvKmK98zOnZ1V zaR+g514EVfcdKRWwMpHSwTw2cqjv4gGZ6vy2HNXXRhn2vm1BIYYqNgpE6nolzX8 zAq63D7hmr2NOGWHPFWg6zhTRTEUPJPk -----END CERTIFICATE-----Generated at Fri Apr 18 18:18:20 2025 by rpki-client