$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft File: jPbyYoPglD4X1BKxnKKvLNYNRYc.mft (raw, json) Hash identifier: Vi0qtOuZdOPzfZTNwrGy6v5V8iqy5hChAbG6DtVBJuw= Subject key identifier: C0:E8:79:B5:B0:E9:3D:DF:AA:CC:DB:C0:E6:34:B5:38:83:55:E6:D9 Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 Certificate issuer: /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Certificate serial: 0A2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft Manifest number: 0A1D Signing time: Fri 30 May 2025 20:01:09 +0000 Manifest this update: Fri 30 May 2025 20:01:09 +0000 Manifest next update: Fri 06 Jun 2025 20:01:09 +0000 Files and hashes: 1: jPbyYoPglD4X1BKxnKKvLNYNRYc.crl (hash: AWiRsxt0emOzF1g7K6CuxhTKiyb4bJWO84jxWeiv82g=) 2: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (hash: NYdc2f4yDizOBPmg8EBE/rQVPUKcax5Hh13GoWVtgRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2603 (0xa2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B7EB, serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Validity Not Before: May 30 20:01:09 2025 GMT Not After : Jun 6 20:01:09 2025 GMT Subject: CN=683a0e85-f32d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d5:af:03:68:88:9f:ab:cb:6a:15:40:2a:a8: c6:2c:b0:c3:f4:cc:dc:20:40:bf:63:38:41:62:82: 58:2d:08:1e:10:ab:54:d9:4b:8a:e3:9f:79:d2:1f: c1:7a:61:10:ba:14:22:88:e2:a2:33:e7:32:5d:d0: 2f:8c:66:1c:66:84:e6:60:c0:5f:8e:28:d1:1a:3f: d1:d5:64:22:0f:41:3f:71:cb:8a:7a:d6:b0:08:32: b3:52:61:9e:ef:12:fc:75:98:46:15:46:cf:74:ba: e6:b7:6a:bd:0d:04:02:1c:82:15:ea:6d:e8:cf:cf: 04:c3:45:6c:20:5a:19:1e:0a:c5:4a:1a:3a:b2:0f: 09:e6:d9:0a:88:4d:ca:d2:cd:e3:45:54:27:57:1d: e1:bc:8d:c1:68:dc:03:4a:d6:2b:5a:78:33:37:47: ae:57:5d:de:41:fc:dc:c3:ac:64:ba:61:8e:69:1a: 72:73:22:a6:85:1d:70:ca:0b:d8:05:2f:e8:dc:dc: da:dd:34:56:f2:b1:e6:fa:6f:b4:bf:c3:d7:0a:82: bf:f7:37:ff:4e:6d:c7:9f:3a:c1:23:69:1e:26:59: 58:54:30:db:e7:74:72:41:03:25:9d:0f:e7:2a:e3: 21:e9:d9:e9:88:e3:81:cc:62:1e:10:b3:97:f9:54: f9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E8:79:B5:B0:E9:3D:DF:AA:CC:DB:C0:E6:34:B5:38:83:55:E6:D9 X509v3 Authority Key Identifier: keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:d9:8b:a0:af:e2:f8:17:c8:23:2a:c5:94:a2:8e:7a:0a:9d: 97:c4:96:f5:d2:ca:f9:85:c5:80:74:a8:75:8b:a8:80:fe:81: e3:07:9f:64:d4:cc:59:de:23:9b:c9:ee:02:98:ca:3f:b7:48: 18:4f:61:8a:78:cf:0c:0a:bb:24:c2:64:f7:57:a6:e9:76:14: 23:f8:a3:79:78:29:92:bf:fc:34:9a:2c:e9:af:93:5b:c2:df: 4b:11:77:e8:34:b7:ac:5d:3e:a9:f1:ed:d6:a9:65:f8:bd:75: b6:7c:ee:6b:14:2e:27:1c:50:d8:1d:d4:16:f4:a2:c8:ea:ca: 7a:2b:00:01:cb:f7:3f:42:ba:51:0e:7f:93:16:a2:c5:c9:c0: 9a:ef:62:86:38:23:bc:0e:03:a6:4c:d8:5b:e9:0c:6e:0e:b3: e7:4c:ae:f4:0a:98:f7:b9:aa:54:76:75:a2:9f:c1:b9:1a:93: 60:87:f2:bc:23:bf:59:e0:65:5b:3b:3d:78:d0:e9:73:a8:ae: c7:aa:3e:6c:6f:31:2b:08:4a:b5:da:45:b7:4f:86:45:0b:bb: 12:52:a2:72:9b:31:b8:d9:4f:52:49:19:75:34:3c:88:f5:a8: 5d:d9:36:16:86:6c:f5:30:57:ff:16:59:a8:a0:63:0c:cc:de: f3:df:50:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI3RUIxMTAvBgNVBAUTKDhDRjZGMjYyODNFMDk0M0UxN0Q0MTJCMTlDQTJBRjJD RDYwRDQ1ODcwHhcNMjUwNTMwMjAwMTA5WhcNMjUwNjA2MjAwMTA5WjAYMRYwFAYD VQQDEw02ODNhMGU4NS1mMzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9WvA2iIn6vLahVAKqjGLLDD9MzcIEC/YzhBYoJYLQgeEKtU2UuK45950h/B emEQuhQiiOKiM+cyXdAvjGYcZoTmYMBfjijRGj/R1WQiD0E/ccuKetawCDKzUmGe 7xL8dZhGFUbPdLrmt2q9DQQCHIIV6m3oz88Ew0VsIFoZHgrFSho6sg8J5tkKiE3K 0s3jRVQnVx3hvI3BaNwDStYrWngzN0euV13eQfzcw6xkumGOaRpycyKmhR1wygvY BS/o3Nza3TRW8rHm+m+0v8PXCoK/9zf/Tm3HnzrBI2keJllYVDDb53RyQQMlnQ/n KuMh6dnpiOOBzGIeELOX+VT5rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDoebWw 6T3fqszbwOY0tTiDVebZMB8GA1UdIwQYMBaAFIz28mKD4JQ+F9QSsZyiryzWDUWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjdFQi83OTFGNEU3Njcz RTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xENFgxQkt4bktLdkxOWU5S WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQYnlZb1BnbEQ0WDFCS3huS0t2TE5ZTlJZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjdFQi83OTFGNEU3NjczRTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xE NFgxQkt4bktLdkxOWU5SWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ2Yugr+L4F8gjKsWUoo56Cp2XxJb10sr5hcWAdKh1i6iA/oHjB59k 1MxZ3iObye4CmMo/t0gYT2GKeM8MCrskwmT3V6bpdhQj+KN5eCmSv/w0mizpr5Nb wt9LEXfoNLesXT6p8e3WqWX4vXW2fO5rFC4nHFDYHdQW9KLI6sp6KwABy/c/QrpR Dn+TFqLFycCa72KGOCO8DgOmTNhb6QxuDrPnTK70Cpj3uapUdnWin8G5GpNgh/K8 I79Z4GVbOz140OlzqK7Hqj5sbzErCEq12kW3T4ZFC7sSUqJymzG42U9SSRl1NDyI 9ahd2TYWhmz1MFf/FlmooGMMzN7z31Ag -----END CERTIFICATE-----Generated at Sat May 31 14:56:24 2025 by rpki-client