$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft File: JTgA7RbtD_M39wQNDj3xFBwWFhw.mft (raw, json) Hash identifier: Mt65dC9Yu0MHXCTi0zdORJWmWbUXJSxgr1z3eiWAKPI= Subject key identifier: 72:DE:AA:8B:AC:7B:EF:A3:2A:E7:11:31:28:51:5C:DB:75:17:FC:84 Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft Manifest number: 01D1 Signing time: Sat 29 Mar 2025 02:31:23 +0000 Manifest this update: Sat 29 Mar 2025 02:31:22 +0000 Manifest next update: Sat 05 Apr 2025 02:31:22 +0000 Files and hashes: 1: JTgA7RbtD_M39wQNDj3xFBwWFhw.crl (hash: /lXJkYJLhdnAeJG7CTX1+bP5Lb5FPfQ8MyDZhdo0S3Y=) 2: 2D215B32584111EDBE50107CC4F9AE02.roa (hash: up6WHjnsfS0bIxQesxTATm4WYD2tutF7YiezZwJi2Bc=) 3: ED685B8CDFA511EF8CC2890BC4F9AE02.roa (hash: NqrZmcVp/US1PncX6fEsquuB9U+PwjdNaQFtiMmKje0=) 4: D45117DEEBF311EEAECC405FC4F9AE02.roa (hash: L3m+NQNaRyXNu/ZiemkthKYLeI1gIGN4M/qfSkh3IEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C9 Validity Not Before: Mar 29 02:31:22 2025 GMT Not After : Apr 5 02:31:22 2025 GMT Subject: CN=67e75b7b-62f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:29:12:fb:b1:7b:0b:e8:a3:4b:37:12:8b:5e: 20:48:77:27:79:d4:82:a0:75:47:18:e7:f8:90:28: 42:ea:a9:e6:a8:c6:3d:74:d0:cc:2c:2c:56:40:85: 13:56:a5:87:a2:3e:c6:60:c2:82:14:2a:52:46:3d: ca:2a:20:2f:65:a6:56:20:21:c8:bd:96:bd:7e:89: 4d:89:d0:e5:b9:b7:4e:a4:59:58:b9:3f:02:61:d7: 21:4c:cb:4a:4f:a9:bf:65:ba:88:30:e3:13:2d:5e: 3d:24:9b:d7:22:06:35:fd:a2:67:06:43:ed:0c:97: 20:b7:a8:25:47:c8:ac:38:08:13:98:4c:5a:ec:39: 3e:2d:f3:8d:6a:49:28:52:8a:65:72:70:2b:ce:cb: 2b:39:3b:29:09:a2:bb:f1:07:cf:4a:3c:c9:01:cd: f5:8c:f7:f4:2c:fa:fd:5b:89:1e:99:d2:20:df:e5: 44:c0:d4:67:05:44:85:8a:fb:11:4f:39:59:4c:78: f0:84:f9:ad:f7:7e:9d:99:b7:c9:69:c8:7d:f9:8e: 33:bb:9c:6d:5f:8c:d4:1e:64:81:51:11:22:a6:7b: f5:4e:6b:fb:f4:02:07:ca:44:94:ea:0f:0a:ca:07: d9:de:75:e0:58:de:14:2a:cf:da:5e:a1:0e:f9:14: ba:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DE:AA:8B:AC:7B:EF:A3:2A:E7:11:31:28:51:5C:DB:75:17:FC:84 X509v3 Authority Key Identifier: keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f8:ce:e9:96:5d:7b:c4:6b:f1:2d:ac:50:c8:16:b9:21:a5: 1d:88:55:4d:a4:59:0e:1a:52:cb:aa:3e:01:f1:75:22:d5:5a: d1:83:46:44:ac:aa:0c:8f:bf:11:a5:ef:2f:bc:f7:10:b0:47: 78:a5:57:04:4f:b7:17:52:8e:a4:41:8b:03:32:06:65:8d:37: 84:cb:6f:a1:1b:f6:da:f7:b4:2f:b4:2d:8e:4f:81:74:64:c7: f4:16:8c:ee:39:6c:5e:64:4d:ca:67:7b:63:f2:24:48:92:7c: 83:97:7a:f6:43:8b:1c:73:51:79:60:e0:a6:e0:50:60:b5:57: e7:18:ef:f2:1b:49:cc:c9:9e:a4:67:1c:56:91:d8:5a:7b:d5: a0:5b:0d:ed:a3:0c:aa:c2:7b:0f:87:92:93:35:46:df:22:f0: 24:4f:05:79:a6:03:39:4e:b6:40:41:7a:0e:17:0f:14:73:5d: 19:6f:ba:85:a3:e2:98:b2:1a:d7:e4:3c:a9:6e:6f:b8:2e:58: 08:66:9e:f0:e9:24:ad:cb:fd:64:f8:e8:7b:84:03:f3:cb:84: 29:48:fd:3e:54:ca:f3:45:3a:2e:c3:44:dc:69:27:f2:d4:d1: 75:a6:07:cc:cb:a0:ed:dc:ca:13:60:1a:fc:ff:66:17:00:51: cd:a2:3c:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzkxMTAvBgNVBAUTKDI1MzgwMEVEMTZFRDBGRjMzN0Y3MDQwRDBFM0RGMTE0 MUMxNjE2MUMwHhcNMjUwMzI5MDIzMTIyWhcNMjUwNDA1MDIzMTIyWjAYMRYwFAYD VQQDEw02N2U3NWI3Yi02MmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwykS+7F7C+ijSzcSi14gSHcnedSCoHVHGOf4kChC6qnmqMY9dNDMLCxWQIUT VqWHoj7GYMKCFCpSRj3KKiAvZaZWICHIvZa9folNidDlubdOpFlYuT8CYdchTMtK T6m/ZbqIMOMTLV49JJvXIgY1/aJnBkPtDJcgt6glR8isOAgTmExa7Dk+LfONakko UoplcnArzssrOTspCaK78QfPSjzJAc31jPf0LPr9W4kemdIg3+VEwNRnBUSFivsR TzlZTHjwhPmt936dmbfJach9+Y4zu5xtX4zUHmSBUREipnv1Tmv79AIHykSU6g8K ygfZ3nXgWN4UKs/aXqEO+RS6qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLeqous e++jKucRMShRXNt1F/yEMB8GA1UdIwQYMBaAFCU4AO0W7Q/zN/cEDQ498RQcFhYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOS8yMTk3QjA5MjU4 M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERfTTM5d1FORGozeEZCd1dG aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pUZ0E3UmJ0RF9NMzl3UU5EajN4RkJ3V0Zody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjhDOS8yMTk3QjA5MjU4M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERf TTM5d1FORGozeEZCd1dGaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt+M7pll17xGvxLaxQyBa5IaUdiFVNpFkOGlLLqj4B8XUi1VrRg0ZE rKoMj78Rpe8vvPcQsEd4pVcET7cXUo6kQYsDMgZljTeEy2+hG/ba97QvtC2OT4F0 ZMf0FozuOWxeZE3KZ3tj8iRIknyDl3r2Q4scc1F5YOCm4FBgtVfnGO/yG0nMyZ6k ZxxWkdhae9WgWw3towyqwnsPh5KTNUbfIvAkTwV5pgM5TrZAQXoOFw8Uc10Zb7qF o+KYshrX5Dypbm+4LlgIZp7w6SSty/1k+Oh7hAPzy4QpSP0+VMrzRTouw0TcaSfy 1NF1pgfMy6Dt3MoTYBr8/2YXAFHNojx/ -----END CERTIFICATE-----Generated at Fri Apr 4 18:34:01 2025 by rpki-client