$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft File: JCq5H6fHpkrOd9m09mHijAsVuOA.mft (raw, json) Hash identifier: eUZn5H+oNb4gAelodKWo8rc4+XKVonIMCvqk857ArBE= Subject key identifier: 7E:E2:45:0E:15:CA:37:F9:E0:15:40:CA:69:BC:83:81:DA:A3:3D:BB Authority key identifier: 24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 Certificate issuer: /CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft Manifest number: AC Signing time: Tue 03 Jun 2025 05:50:25 +0000 Manifest this update: Tue 03 Jun 2025 05:50:25 +0000 Manifest next update: Tue 10 Jun 2025 05:50:25 +0000 Files and hashes: 1: JCq5H6fHpkrOd9m09mHijAsVuOA.crl (hash: eSax+SyVb84Hj2zsN0EGKhwEw3voYABRSW2qAJ5FU6E=) 2: 95C79E36379611EF87CBA24DC4F9AE02.roa (hash: VSLP0SurFYr7NQK9R5lJWuMTjXBESVuwKDdrtUvBsXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E, serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Validity Not Before: Jun 3 05:50:25 2025 GMT Not After : Jun 10 05:50:25 2025 GMT Subject: CN=683e8d21-b222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:19:db:e4:47:00:e4:37:47:f6:9a:9b:31:8d: e2:92:f4:35:d7:3f:dc:0b:a8:ea:2c:19:b3:40:f7: 63:87:db:28:4f:cf:d5:88:43:67:37:a1:b6:bd:59: 90:bf:5c:30:8b:f9:66:43:f7:47:3f:d6:ac:82:54: 20:a2:96:40:51:28:f5:67:e8:f0:cf:a5:08:27:9c: 81:f5:3f:5a:b0:0a:aa:77:be:f1:62:cd:76:dc:e1: 21:42:7e:af:d7:dc:fc:0e:28:a8:b8:d3:c1:ea:53: 30:0d:fb:45:5f:37:de:bf:d7:59:1f:26:18:41:11: 69:b6:ec:fb:3a:8b:fe:0b:c4:58:c7:83:e5:a5:37: 46:17:de:14:00:59:f2:44:51:28:74:68:36:9e:c9: 15:10:1c:41:85:f2:f4:8b:a1:cd:e1:0c:ef:14:d4: f6:65:c3:7c:47:ab:0e:f0:07:9b:29:39:e5:a2:d0: d8:6f:44:a0:ae:1f:e1:2e:5b:97:74:dc:64:8d:0a: e1:8b:bc:bd:d2:d4:f8:78:46:6e:7b:f9:1c:69:85: af:b7:98:e6:b3:24:e1:46:d4:ca:11:24:d2:9e:10: 1b:b2:1d:07:b5:46:6a:0b:e3:ee:92:ca:47:aa:c6: e5:59:87:84:ca:cc:e5:8c:3c:43:43:24:08:c6:d1: 4e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E2:45:0E:15:CA:37:F9:E0:15:40:CA:69:BC:83:81:DA:A3:3D:BB X509v3 Authority Key Identifier: keyid:24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:68:c2:66:71:89:34:12:a9:bd:c8:9b:d9:a8:87:c8:54:10: 18:8d:88:94:0a:3c:ef:98:ed:62:45:bd:37:54:72:9f:73:42: 54:22:0a:09:68:32:e5:2d:ff:98:90:87:1a:5b:4d:95:ae:65: 3d:c8:9f:c7:72:70:fe:3f:cb:53:1f:a7:21:33:32:dd:05:69: 90:1d:b6:75:19:a0:4c:13:d7:1a:75:7f:9c:34:9a:db:64:bb: 48:48:63:9d:1a:34:69:5a:f0:34:fb:b4:47:28:34:ad:b0:cc: eb:bc:1a:bb:7f:5e:87:d3:c8:88:a8:b9:99:bf:b5:09:4e:ae: 7b:4e:e2:7c:03:b7:4c:3e:70:d2:0b:ad:e9:ee:33:e2:5c:e2: 93:53:5c:bd:fe:02:07:de:3e:47:1f:23:d5:ce:7f:46:cf:fe: e8:2c:fd:a4:81:c9:34:69:98:a5:d6:d1:34:50:f2:b5:9f:d9: 85:21:4b:59:aa:5d:10:74:6b:95:e1:5e:1c:9c:67:ee:c2:3f: 1e:20:ca:b2:f5:f2:29:c4:98:98:45:8a:28:9a:b5:39:45:93: 71:34:ae:da:a9:b1:c6:dc:be:e8:41:6c:81:5b:6f:6a:e6:ad: 3b:f9:75:43:dc:6b:dc:3d:59:fb:54:19:a9:3d:78:35:b3:af: 0b:9c:38:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIyMkUxMTAvBgNVBAUTKDI0MkFCOTFGQTdDN0E2NEFDRTc3RDlCNEY2NjFFMjhD MEIxNUI4RTAwHhcNMjUwNjAzMDU1MDI1WhcNMjUwNjEwMDU1MDI1WjAYMRYwFAYD VQQDEw02ODNlOGQyMS1iMjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxnb5EcA5DdH9pqbMY3ikvQ11z/cC6jqLBmzQPdjh9soT8/ViENnN6G2vVmQ v1wwi/lmQ/dHP9asglQgopZAUSj1Z+jwz6UIJ5yB9T9asAqqd77xYs123OEhQn6v 19z8DiiouNPB6lMwDftFXzfev9dZHyYYQRFptuz7Oov+C8RYx4PlpTdGF94UAFny RFEodGg2nskVEBxBhfL0i6HN4QzvFNT2ZcN8R6sO8AebKTnlotDYb0Sgrh/hLluX dNxkjQrhi7y90tT4eEZue/kcaYWvt5jmsyThRtTKESTSnhAbsh0HtUZqC+PukspH qsblWYeEyszljDxDQyQIxtFOsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7iRQ4V yjf54BVAymm8g4Haoz27MB8GA1UdIwQYMBaAFCQquR+nx6ZKznfZtPZh4owLFbjg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjIyRS84MzQxNUIzNjM3 OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi9KQ3E1SDZmSHBrck9kOW0wOW1IaWpBc1Z1 T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pDcTVINmZIcGtyT2Q5bTA5bUhpakFzVnVPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjIyRS84MzQxNUIzNjM3OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi9KQ3E1SDZmSHBr ck9kOW0wOW1IaWpBc1Z1T0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAraMJmcYk0Eqm9yJvZqIfIVBAYjYiUCjzvmO1iRb03VHKfc0JUIgoJ aDLlLf+YkIcaW02VrmU9yJ/HcnD+P8tTH6chMzLdBWmQHbZ1GaBME9cadX+cNJrb ZLtISGOdGjRpWvA0+7RHKDStsMzrvBq7f16H08iIqLmZv7UJTq57TuJ8A7dMPnDS C63p7jPiXOKTU1y9/gIH3j5HHyPVzn9Gz/7oLP2kgck0aZil1tE0UPK1n9mFIUtZ ql0QdGuV4V4cnGfuwj8eIMqy9fIpxJiYRYoomrU5RZNxNK7aqbHG3L7oQWyBW29q 5q07+XVD3GvcPVn7VBmpPXg1s68LnDgX -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:16 2025 by rpki-client