$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft File: JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft (raw, json) Hash identifier: hlf+cHCClYlPD9JWu4Nmzykl4l4I1ARNsSZFcoL6UK0= Subject key identifier: E7:49:E7:46:4C:53:07:37:5A:67:86:98:8D:52:9B:77:31:A3:D6:84 Authority key identifier: 25:CA:44:C1:0E:A5:92:E4:2B:13:6E:59:D0:8F:67:51:D1:81:8F:AB Certificate issuer: /CN=A91E9004/serialNumber=25CA44C10EA592E42B136E59D08F6751D1818FAB Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft Manifest number: 019A Signing time: Sat 29 Mar 2025 02:57:02 +0000 Manifest this update: Sat 29 Mar 2025 02:57:02 +0000 Manifest next update: Sat 05 Apr 2025 02:57:02 +0000 Files and hashes: 1: JcpEwQ6lkuQrE25Z0I9nUdGBj6s.crl (hash: qZBo9UvKwqtfqDMhI5B7tX/twtyIRcAt9woXaOFsvU0=) 2: 6722D08898C711ED81343D33C4F9AE02.roa (hash: 3o5e8hyJbXp/j4htRJibyxHdp4yx/meEymWjr2xFXpw=) 3: 660CF80498C711ED81343D33C4F9AE02.roa (hash: wDHbsG2YGl+GXnSYTXXy/M2OjHqsvE/U5hf+DhsTgZo=) 4: 6696898E98C711ED81343D33C4F9AE02.roa (hash: EIHc4Dg0/wu4RlaphcEMaQew886A3AfHSeDepZKruxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.crl rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9004 Validity Not Before: Mar 29 02:57:02 2025 GMT Not After : Apr 5 02:57:02 2025 GMT Subject: CN=67e7617e-d71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:28:80:e4:8d:dd:23:e2:dc:9c:35:60:8d:ee: 6a:ad:74:d5:08:2c:a6:a9:43:ac:5b:26:59:25:d8: 36:b0:13:b1:cd:c9:26:81:0a:dc:51:dd:c7:71:4b: 7d:61:e1:08:b5:bd:cc:b0:d7:2d:08:c3:bb:2e:c6: 15:04:e2:50:3f:89:5d:d3:5c:2a:df:5a:60:1c:4f: ec:18:ba:6b:55:c5:a3:22:ef:60:a2:e8:a2:cd:7e: 82:98:97:32:a3:91:46:ef:af:f3:3c:fe:55:78:1e: 77:29:84:1b:48:f5:6a:fe:8f:1b:ec:b2:2d:65:63: 0c:2f:43:6c:da:dc:80:8c:52:28:34:a7:b8:1c:43: 81:46:5e:1e:2c:33:c4:11:09:56:d4:0b:0c:4c:2e: 44:64:e9:15:06:3f:a0:e7:b4:ef:d0:b6:f2:4d:3f: bb:53:1c:36:07:db:cc:8f:5a:bf:45:5d:5d:bd:dc: 4a:4d:33:df:c1:e1:93:4f:2d:60:79:91:09:a8:c5: d5:98:ba:0b:3e:78:55:34:ea:8a:91:02:57:31:d8: a7:77:41:61:cb:ec:98:f8:32:ae:ea:94:9c:7e:02: 2b:46:50:40:86:69:62:1b:92:3d:0f:ac:40:0d:98: bf:2d:86:67:8d:31:57:23:66:00:75:da:cc:38:de: 2a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:49:E7:46:4C:53:07:37:5A:67:86:98:8D:52:9B:77:31:A3:D6:84 X509v3 Authority Key Identifier: keyid:25:CA:44:C1:0E:A5:92:E4:2B:13:6E:59:D0:8F:67:51:D1:81:8F:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:52:33:c7:ec:f6:b0:36:72:ee:f1:be:c5:17:b7:7e:ac:b1: 99:fd:e8:61:bb:1d:6a:42:f0:fb:2f:98:96:6d:50:49:0a:0d: a7:5c:2e:04:c9:95:90:8a:53:06:05:46:19:94:de:1a:39:67: 49:67:f2:68:d4:aa:6d:d1:2b:7d:80:5c:ba:f0:2d:0e:2e:38: 82:ac:65:51:e6:b5:ec:ca:6e:15:dc:21:75:d4:46:7f:e9:a0: 46:a3:7d:40:11:3d:5d:a4:84:bb:1b:4b:71:6e:27:36:cc:f6: 82:71:bf:eb:b0:aa:ff:41:b0:15:a1:b2:cc:4a:01:14:83:78: a3:55:fa:fb:d2:1a:11:9f:77:1d:47:4f:1e:e0:00:13:29:69: cc:19:5a:f4:1b:ef:ad:26:a1:3e:72:21:b4:13:d3:15:ba:51: aa:5a:5d:d3:80:ff:59:64:58:69:16:ae:3c:a0:19:4b:f0:31: a1:f8:b8:29:5b:56:57:15:29:85:d1:21:5b:b2:bf:13:a5:da: 30:35:2f:b4:e8:3c:33:8d:8f:dd:e9:f5:0c:14:1c:23:cc:01: cd:3c:ed:d3:a3:2f:1c:59:fd:e4:b7:8d:05:35:69:ff:76:71: 69:39:d9:e2:53:b5:c4:8a:75:c0:fd:a4:75:4a:c7:46:91:cb: 3f:ef:50:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkwMDQxMTAvBgNVBAUTKDI1Q0E0NEMxMEVBNTkyRTQyQjEzNkU1OUQwOEY2NzUx RDE4MThGQUIwHhcNMjUwMzI5MDI1NzAyWhcNMjUwNDA1MDI1NzAyWjAYMRYwFAYD VQQDEw02N2U3NjE3ZS1kNzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiiA5I3dI+LcnDVgje5qrXTVCCymqUOsWyZZJdg2sBOxzckmgQrcUd3HcUt9 YeEItb3MsNctCMO7LsYVBOJQP4ld01wq31pgHE/sGLprVcWjIu9gouiizX6CmJcy o5FG76/zPP5VeB53KYQbSPVq/o8b7LItZWMML0Ns2tyAjFIoNKe4HEOBRl4eLDPE EQlW1AsMTC5EZOkVBj+g57Tv0LbyTT+7Uxw2B9vMj1q/RV1dvdxKTTPfweGTTy1g eZEJqMXVmLoLPnhVNOqKkQJXMdind0Fhy+yY+DKu6pScfgIrRlBAhmliG5I9D6xA DZi/LYZnjTFXI2YAddrMON4qhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdJ50ZM Uwc3WmeGmI1Sm3cxo9aEMB8GA1UdIwQYMBaAFCXKRMEOpZLkKxNuWdCPZ1HRgY+r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTAwNC81QjgyRUE5MDk4 QzQxMUVEOTg3MUU0MzFDNEY5QUUwMi9KY3BFd1E2bGt1UXJFMjVaMEk5blVkR0Jq NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pjcEV3UTZsa3VRckUyNVowSTluVWRHQmo2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTAwNC81QjgyRUE5MDk4QzQxMUVEOTg3MUU0MzFDNEY5QUUwMi9KY3BFd1E2bGt1 UXJFMjVaMEk5blVkR0JqNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhUjPH7PawNnLu8b7FF7d+rLGZ/ehhux1qQvD7L5iWbVBJCg2nXC4E yZWQilMGBUYZlN4aOWdJZ/Jo1Kpt0St9gFy68C0OLjiCrGVR5rXsym4V3CF11EZ/ 6aBGo31AET1dpIS7G0txbic2zPaCcb/rsKr/QbAVobLMSgEUg3ijVfr70hoRn3cd R08e4AATKWnMGVr0G++tJqE+ciG0E9MVulGqWl3TgP9ZZFhpFq48oBlL8DGh+Lgp W1ZXFSmF0SFbsr8TpdowNS+06DwzjY/d6fUMFBwjzAHNPO3Toy8cWf3kt40FNWn/ dnFpOdniU7XEinXA/aR1SsdGkcs/71Bu -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:16 2025 by rpki-client