$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft File: J8OQD7137iLLcempDoFXTN5GRK0.mft (raw, json) Hash identifier: 0F1UCClxWXuQoHJW7breOEsP1y/KG300uxJ8ct+qlO4= Subject key identifier: B3:F3:A0:86:1B:37:A1:72:CD:DE:9C:F0:C8:DE:8D:1F:40:74:8B:43 Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 0735 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft Manifest number: 072E Signing time: Fri 04 Apr 2025 21:53:54 +0000 Manifest this update: Fri 04 Apr 2025 21:53:53 +0000 Manifest next update: Fri 11 Apr 2025 21:53:53 +0000 Files and hashes: 1: J8OQD7137iLLcempDoFXTN5GRK0.crl (hash: pRocmT1LN7/eQ8gs2ZPTBiPSO0tIO4CV11WyS0FqLzw=) 2: 594EEA2CAEA711EE961B0558C4F9AE02.roa (hash: USU8pNkMAdz6WSNLBXiulBGQVhWKRWb5vA71xaDbimA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23 Validity Not Before: Apr 4 21:53:53 2025 GMT Not After : Apr 11 21:53:53 2025 GMT Subject: CN=67f054f2-5128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:14:67:8c:de:d7:53:04:92:ea:8a:47:aa:99: 8f:6d:9e:44:e8:49:40:ed:fd:a0:6e:62:46:92:bb: 7a:04:6d:60:1c:d5:3e:d3:8b:9d:92:34:a6:00:32: ea:9d:1c:c3:eb:de:23:09:07:a2:56:8d:43:12:7d: 17:c0:9d:e1:7f:c3:4b:cc:1f:4f:de:58:ba:35:45: 61:fc:b2:2f:e6:63:03:ce:81:ce:bb:82:0c:87:10: 47:23:50:f5:7a:41:31:86:7f:df:b0:9c:0f:51:da: 6a:8f:7d:9c:39:c9:2d:ba:75:ee:08:7f:ac:56:15: 3d:ed:cf:14:1a:a4:cb:54:f1:27:88:cb:43:83:32: a7:1d:06:4a:f5:f0:cb:29:2c:06:b6:e8:09:c9:e9: 03:39:b9:d3:05:c5:88:66:e7:4c:5c:3b:7a:85:01: 00:62:4e:03:3a:0b:49:74:62:01:e5:09:13:3d:29: b6:d6:4b:a1:df:38:3e:b6:80:b5:c0:b2:76:e1:28: af:eb:37:32:91:c9:7e:e2:b8:e1:b8:a3:c4:8e:a3: ba:31:64:62:69:83:de:f1:cc:9e:ed:2f:7e:ea:32: b9:63:4e:5d:27:4d:e7:22:d5:a0:08:b3:7b:37:b6: 0f:ce:49:5f:43:0c:32:52:e3:1b:49:4f:89:fd:bb: 04:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F3:A0:86:1B:37:A1:72:CD:DE:9C:F0:C8:DE:8D:1F:40:74:8B:43 X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:25:a5:ed:71:2b:0a:a1:8d:b7:27:33:25:12:81:7f:46:40: de:12:4c:27:39:93:db:4f:c6:eb:ed:94:f5:cd:ef:f9:1b:ea: 28:59:22:3d:e4:96:5d:f5:2e:a2:3b:fb:d0:91:89:25:29:1b: a3:9f:e9:d9:00:32:32:c7:e7:67:5e:32:c7:52:6a:45:c1:52: 4e:e6:e5:a2:5c:80:b5:13:74:c8:5f:ac:e2:d0:9f:56:fc:06: 16:b2:34:5c:58:54:c5:1e:7b:ac:c8:0a:1f:95:53:24:5e:6a: c4:b8:46:f0:b1:97:64:d1:63:7d:11:d0:29:fd:74:89:b6:19: b4:67:5d:ba:28:b7:a1:e8:95:b8:be:7d:59:aa:e4:71:63:f1: 57:16:ee:42:34:ce:37:09:23:f7:6f:93:1a:3f:dd:f2:8c:86: f1:9c:e3:49:72:3c:d8:7f:93:6a:62:55:9c:7d:c9:93:ff:97: 7b:69:16:28:f8:39:d1:f7:b9:51:43:21:f6:7d:9a:05:53:93: 28:91:39:ca:4b:d9:0e:6b:41:fd:c9:cb:1c:54:88:fb:0c:c2: e1:c6:c1:32:c6:2a:f4:fe:0b:6c:f8:8a:a8:23:5e:d1:fe:8c: d4:16:9d:32:79:13:16:a6:08:2c:64:05:5e:7e:4f:10:8f:7e: ae:21:ca:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjUwNDA0MjE1MzUzWhcNMjUwNDExMjE1MzUzWjAYMRYwFAYD VQQDEw02N2YwNTRmMi01MTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRRnjN7XUwSS6opHqpmPbZ5E6ElA7f2gbmJGkrt6BG1gHNU+04udkjSmADLq nRzD694jCQeiVo1DEn0XwJ3hf8NLzB9P3li6NUVh/LIv5mMDzoHOu4IMhxBHI1D1 ekExhn/fsJwPUdpqj32cOcktunXuCH+sVhU97c8UGqTLVPEniMtDgzKnHQZK9fDL KSwGtugJyekDObnTBcWIZudMXDt6hQEAYk4DOgtJdGIB5QkTPSm21kuh3zg+toC1 wLJ24Siv6zcykcl+4rjhuKPEjqO6MWRiaYPe8cye7S9+6jK5Y05dJ03nItWgCLN7 N7YPzklfQwwyUuMbSU+J/bsEVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPzoIYb N6Fyzd6c8MjejR9AdItDMB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEyMy9BQzUzM0RFRTI4OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdp TExjZW1wRG9GWFRONUdSSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbJaXtcSsKoY23JzMlEoF/RkDeEkwnOZPbT8br7ZT1ze/5G+ooWSI9 5JZd9S6iO/vQkYklKRujn+nZADIyx+dnXjLHUmpFwVJO5uWiXIC1E3TIX6zi0J9W /AYWsjRcWFTFHnusyAoflVMkXmrEuEbwsZdk0WN9EdAp/XSJthm0Z126KLeh6JW4 vn1ZquRxY/FXFu5CNM43CSP3b5MaP93yjIbxnONJcjzYf5NqYlWcfcmT/5d7aRYo +DnR97lRQyH2fZoFU5MokTnKS9kOa0H9ycscVIj7DMLhxsEyxir0/gts+IqoI17R /ozUFp0yeRMWpggsZAVefk8Qj36uIcoP -----END CERTIFICATE-----Generated at Sun Apr 6 02:33:55 2025 by rpki-client