$ rpki-client -vvf rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft File: jMU6mSl_HMCgv73r8k4TKw2EHHY.mft (raw, json) Hash identifier: ROVzNEnenTaVM6Zur8bv2qRzFXv/CQNFd675FKf5GHs= Subject key identifier: B6:F9:9E:FC:0D:CE:94:40:EB:96:76:DB:72:C9:D7:50:8C:32:5D:67 Authority key identifier: 8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 Certificate issuer: /CN=A9139D93/serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft Manifest number: EB Signing time: Sat 31 May 2025 04:59:28 +0000 Manifest this update: Sat 31 May 2025 04:59:27 +0000 Manifest next update: Sat 07 Jun 2025 04:59:27 +0000 Files and hashes: 1: jMU6mSl_HMCgv73r8k4TKw2EHHY.crl (hash: l0zJwYXKaTekvEwD2t3dlmnyxIZhEYcp1tT6drQkXZU=) 2: E614FEEED6AF11EEAB03B528C4F9AE02.roa (hash: G17ALsZLxeT9rUtyM+i2zf7iC28VSeb9B4i0ScAYOoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139D93, serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Validity Not Before: May 31 04:59:27 2025 GMT Not After : Jun 7 04:59:27 2025 GMT Subject: CN=683a8caf-52ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4c:ae:71:c3:56:ac:73:23:2e:1b:ea:a8:80: 26:4b:2d:7c:13:b6:46:ca:39:cc:dc:4a:a2:a2:07: 0e:62:7d:f0:fe:68:ed:0f:07:65:90:13:d9:03:4e: ea:12:ba:d0:19:e3:a8:f7:b9:94:e0:6b:11:cd:1c: 08:a6:35:4b:7d:c4:6d:d1:78:f4:ba:b4:45:80:4b: 07:4b:9c:24:6f:9c:0e:67:f7:1d:7e:fe:2d:c0:68: c8:d0:61:21:4e:7b:42:a3:b0:9a:ad:e5:10:1d:8b: 85:b3:ba:81:db:8c:10:02:9f:f6:70:f3:7c:c0:dc: 79:c1:af:c6:f1:e4:4f:c4:6c:41:9c:71:e0:3c:3d: 8e:22:33:ac:c0:0d:7d:97:14:08:6b:c0:df:25:01: dc:1e:9d:82:f1:bd:33:10:e4:6d:d2:18:c0:73:65: 3b:43:85:3e:1d:ee:bc:e1:84:42:78:1e:7c:18:03: cb:62:23:df:13:a2:46:b1:a6:2a:5e:9e:3c:0e:3e: d9:9e:13:cb:bf:32:ec:75:b4:45:c3:dc:79:97:05: 43:46:5c:ee:40:c8:90:36:44:11:fb:ea:98:ac:85: c4:af:8a:c4:4b:a0:cf:e5:b4:e5:c7:d1:6b:4d:f0: 38:1e:f3:77:2c:bb:ec:82:a8:22:ec:b4:10:ab:08: 96:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:F9:9E:FC:0D:CE:94:40:EB:96:76:DB:72:C9:D7:50:8C:32:5D:67 X509v3 Authority Key Identifier: keyid:8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:e0:e8:df:23:ca:f5:67:b2:e0:61:0e:8f:37:c4:ea:6e:f3: 96:2b:14:9a:c4:86:a1:e1:39:3b:95:b5:54:ce:a0:08:db:d8: c0:97:d4:d2:0c:f1:4f:ce:de:86:2b:54:7a:af:81:9f:d1:7f: bd:f0:73:1d:ce:f4:40:6d:26:10:2b:80:36:27:7d:7b:80:d3: 0d:4e:68:38:3a:a1:41:df:2c:1a:78:f2:4e:0f:80:61:d0:23: 67:9e:d5:e3:ac:f7:04:cd:c7:ef:b5:5f:ea:94:af:85:04:b8: 3a:40:09:4d:08:9f:9d:ba:b1:b2:fd:c4:5f:d7:9d:a7:04:8f: c0:b9:c4:58:e0:83:fb:10:a6:9d:ce:c9:9e:c7:e6:ee:bf:5c: 56:47:32:f4:ff:cb:83:af:6c:54:e6:3a:8c:de:3d:2f:5e:10: cf:3c:a9:f3:19:ab:d2:d0:87:16:59:ce:6f:43:93:57:50:a5: 3d:d0:a9:91:18:39:6c:a9:35:b4:a8:6e:6d:99:53:63:1f:a0: 1a:98:5b:d9:03:18:60:b3:59:8a:97:b6:66:c2:2b:80:35:38: db:b6:87:8c:41:e7:96:89:11:4d:5c:03:54:af:84:c2:0c:2f: ea:c6:6f:3f:d8:dc:b5:7b:72:e1:c1:9f:80:40:18:46:a9:59: d3:3f:bf:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlEOTMxMTAvBgNVBAUTKDhDQzUzQTk5Mjk3RjFDQzBBMEJGQkRFQkYyNEUxMzJC MEQ4NDFDNzYwHhcNMjUwNTMxMDQ1OTI3WhcNMjUwNjA3MDQ1OTI3WjAYMRYwFAYD VQQDEw02ODNhOGNhZi01MmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUyuccNWrHMjLhvqqIAmSy18E7ZGyjnM3EqiogcOYn3w/mjtDwdlkBPZA07q ErrQGeOo97mU4GsRzRwIpjVLfcRt0Xj0urRFgEsHS5wkb5wOZ/cdfv4twGjI0GEh TntCo7CareUQHYuFs7qB24wQAp/2cPN8wNx5wa/G8eRPxGxBnHHgPD2OIjOswA19 lxQIa8DfJQHcHp2C8b0zEORt0hjAc2U7Q4U+He684YRCeB58GAPLYiPfE6JGsaYq Xp48Dj7ZnhPLvzLsdbRFw9x5lwVDRlzuQMiQNkQR++qYrIXEr4rES6DP5bTlx9Fr TfA4HvN3LLvsgqgi7LQQqwiWVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLb5nvwN zpRA65Z223LJ11CMMl1nMB8GA1UdIwQYMBaAFIzFOpkpfxzAoL+96/JOEysNhBx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUQ5My9DQ0JBQUFEQUQ2 QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hNQ2d2NzNyOGs0VEt3MkVI SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNVTZtU2xfSE1DZ3Y3M3I4azRUS3cyRUhIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OUQ5My9DQ0JBQUFEQUQ2QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hN Q2d2NzNyOGs0VEt3MkVISFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC34OjfI8r1Z7LgYQ6PN8TqbvOWKxSaxIah4Tk7lbVUzqAI29jAl9TS DPFPzt6GK1R6r4Gf0X+98HMdzvRAbSYQK4A2J317gNMNTmg4OqFB3ywaePJOD4Bh 0CNnntXjrPcEzcfvtV/qlK+FBLg6QAlNCJ+durGy/cRf152nBI/AucRY4IP7EKad zsmex+buv1xWRzL0/8uDr2xU5jqM3j0vXhDPPKnzGavS0IcWWc5vQ5NXUKU90KmR GDlsqTW0qG5tmVNjH6AamFvZAxhgs1mKl7ZmwiuANTjbtoeMQeeWiRFNXANUr4TC DC/qxm8/2Ny1e3LhwZ+AQBhGqVnTP78b -----END CERTIFICATE-----Generated at Sat May 31 17:04:59 2025 by rpki-client