$ rpki-client -vvf rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft File: jUEzbLXQr_8QKCFtlTS7fgLD54U.mft (raw, json) Hash identifier: VW5hTtUnTUwLp7n5WD8saoCuwv6ENj7JbLIo1AzE0KQ= Subject key identifier: D2:44:AD:D2:2A:E5:1E:EE:D9:28:B9:57:FB:53:BD:F2:73:A7:80:10 Authority key identifier: 8D:41:33:6C:B5:D0:AF:FF:10:28:21:6D:95:34:BB:7E:02:C3:E7:85 Certificate issuer: /CN=A91C254D/serialNumber=8D41336CB5D0AFFF1028216D9534BB7E02C3E785 Certificate serial: 0862 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft Manifest number: 085D Signing time: Sun 06 Apr 2025 20:25:32 +0000 Manifest this update: Sun 06 Apr 2025 20:25:31 +0000 Manifest next update: Sun 13 Apr 2025 20:25:31 +0000 Files and hashes: 1: jUEzbLXQr_8QKCFtlTS7fgLD54U.crl (hash: mzrDUnx7HpK09o/cikZGa6kspqByeWYL3iofK3i7HN8=) 2: B4D2B6A2C1A811EA80577A47C4F9AE02.roa (hash: 2JmA3PkYqpUMmOVyVV5dhFWFglZf8xMS4jIUqW1KOUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.crl rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 20:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2146 (0x862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C254D Validity Not Before: Apr 6 20:25:31 2025 GMT Not After : Apr 13 20:25:31 2025 GMT Subject: CN=67f2e33c-5bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:98:fa:2b:e7:a7:01:83:91:29:4e:77:76:4f: 5b:d0:83:c2:23:0c:82:a1:4b:08:1b:a6:b9:31:42: 9e:7e:6a:0e:64:ef:06:0b:d9:13:b3:8c:7f:f4:46: ea:c5:e4:1d:d5:18:5b:f3:7f:b3:ca:9e:f1:d7:bc: 17:88:e0:76:15:fa:da:d3:5d:3a:f6:3c:49:74:82: 49:bd:7b:d3:d2:4e:32:09:52:f8:6e:b5:79:01:7a: 2f:46:4e:13:34:82:94:d5:b0:b8:72:c9:b9:6f:17: 53:07:11:2b:96:e5:3c:e6:44:e5:00:e1:65:63:e3: b0:c1:71:61:af:ea:4e:2d:61:e5:1b:a3:56:ad:4c: 4a:e6:cc:77:80:28:69:f2:6e:f6:95:08:2c:39:f8: 17:5a:e9:0d:db:cd:b4:91:18:11:df:8b:73:2c:c3: 34:6a:5d:02:c3:b0:02:c7:47:8e:1c:92:0e:3a:f4: 3c:5f:5e:58:df:87:5d:03:d1:a5:0d:27:58:14:7c: 9d:e5:9e:64:88:bb:df:ed:d4:f4:c0:04:b0:ba:c9: 3c:34:0a:33:59:03:15:2c:ec:c7:b3:9b:4b:a1:1a: a5:09:21:cc:98:4e:03:7f:48:ef:06:04:13:b8:05: 2a:46:ae:72:65:23:47:0f:ca:c0:12:97:9d:c1:67: ac:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:44:AD:D2:2A:E5:1E:EE:D9:28:B9:57:FB:53:BD:F2:73:A7:80:10 X509v3 Authority Key Identifier: keyid:8D:41:33:6C:B5:D0:AF:FF:10:28:21:6D:95:34:BB:7E:02:C3:E7:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:08:89:74:7f:c4:87:ff:b8:b2:d8:e0:c5:bf:0e:3d:3e:9c: 80:6d:e1:32:e7:14:6f:8a:d4:f9:75:60:bd:be:07:94:57:b7: b5:8e:45:d2:0d:8a:42:ca:5e:10:a9:c0:06:9e:19:51:03:3a: 68:eb:a4:d2:0e:b3:00:a4:3b:90:bf:54:43:dc:47:a3:db:24: 6f:8b:f9:88:ec:cd:5b:51:38:64:00:f8:be:ba:a5:fc:55:d2: c2:d6:2c:6c:1d:74:0b:a1:d4:0b:05:b5:44:7d:f7:c9:bb:92: 86:92:6c:cd:c9:43:5f:d2:d9:b5:02:05:d9:f6:ef:ea:b1:de: a8:bf:33:3d:69:3a:ff:73:d4:e9:25:19:50:1a:4e:6b:76:bd: e9:ed:fd:25:4b:82:75:da:1a:9b:04:b7:46:54:e8:7a:be:15: 9e:ea:c8:2c:ac:76:fb:fc:b8:d4:99:b5:8f:6d:b0:ee:8f:fc: a6:21:ab:5e:fc:65:52:54:a2:81:10:a2:0e:08:fd:c1:c9:ec: 56:1f:7f:d7:27:09:a9:d6:26:bf:74:75:2b:9c:f1:1a:80:64: 40:a4:d6:e8:77:44:c2:93:37:a0:01:60:bf:3d:74:0f:6a:a6: 73:84:98:de:6d:58:4e:47:8d:e7:8c:f6:58:fa:81:a7:cc:e1: 52:fb:65:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI1NEQxMTAvBgNVBAUTKDhENDEzMzZDQjVEMEFGRkYxMDI4MjE2RDk1MzRCQjdF MDJDM0U3ODUwHhcNMjUwNDA2MjAyNTMxWhcNMjUwNDEzMjAyNTMxWjAYMRYwFAYD VQQDEw02N2YyZTMzYy01YmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Zj6K+enAYORKU53dk9b0IPCIwyCoUsIG6a5MUKefmoOZO8GC9kTs4x/9Ebq xeQd1Rhb83+zyp7x17wXiOB2Ffra01069jxJdIJJvXvT0k4yCVL4brV5AXovRk4T NIKU1bC4csm5bxdTBxErluU85kTlAOFlY+OwwXFhr+pOLWHlG6NWrUxK5sx3gChp 8m72lQgsOfgXWukN2820kRgR34tzLMM0al0Cw7ACx0eOHJIOOvQ8X15Y34ddA9Gl DSdYFHyd5Z5kiLvf7dT0wASwusk8NAozWQMVLOzHs5tLoRqlCSHMmE4Df0jvBgQT uAUqRq5yZSNHD8rAEpedwWesMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJErdIq 5R7u2Si5V/tTvfJzp4AQMB8GA1UdIwQYMBaAFI1BM2y10K//ECghbZU0u34Cw+eF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjU0RC84Q0U2MkRGQUMx QTcxMUVBOUQ2Qjg3NDNDNEY5QUUwMi9qVUV6YkxYUXJfOFFLQ0Z0bFRTN2ZnTEQ1 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVRXpiTFhRcl84UUtDRnRsVFM3ZmdMRDU0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjU0RC84Q0U2MkRGQUMxQTcxMUVBOUQ2Qjg3NDNDNEY5QUUwMi9qVUV6YkxYUXJf OFFLQ0Z0bFRTN2ZnTEQ1NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqCIl0f8SH/7iy2ODFvw49PpyAbeEy5xRvitT5dWC9vgeUV7e1jkXS DYpCyl4QqcAGnhlRAzpo66TSDrMApDuQv1RD3Eej2yRvi/mI7M1bUThkAPi+uqX8 VdLC1ixsHXQLodQLBbVEfffJu5KGkmzNyUNf0tm1AgXZ9u/qsd6ovzM9aTr/c9Tp JRlQGk5rdr3p7f0lS4J12hqbBLdGVOh6vhWe6sgsrHb7/LjUmbWPbbDuj/ymIate /GVSVKKBEKIOCP3ByexWH3/XJwmp1ia/dHUrnPEagGRApNbod0TCkzegAWC/PXQP aqZzhJjebVhOR43njPZY+oGnzOFS+2V6 -----END CERTIFICATE-----Generated at Mon Apr 7 16:56:50 2025 by rpki-client