$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: uhGPVEAkvfcP2GWtTB3aLYLUw1trv9tL5XVCqKToZow= Subject key identifier: CA:4F:34:67:7E:47:85:8D:15:01:CC:89:FA:41:6E:A9:03:F0:13:A8 Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 066A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 0668 Signing time: Fri 06 Jun 2025 22:26:20 +0000 Manifest this update: Fri 06 Jun 2025 22:26:19 +0000 Manifest next update: Fri 13 Jun 2025 22:26:19 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: rhOL4waY9XeYku2QSoVFUuMAHYmh5aq5KaSez1P6d/4=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: ukg+6KCGHkrsTy11bBIK1xYhpVPUVwZenM7mxd/8rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 22:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1642 (0x66a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: Jun 6 22:26:19 2025 GMT Not After : Jun 13 22:26:19 2025 GMT Subject: CN=68436b0b-64fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c9:bf:ee:94:d7:6e:e3:3d:26:09:56:9c:38: a0:89:54:07:cd:fb:f3:13:a4:ce:f9:99:52:c1:70: 37:06:9e:b3:22:59:c3:27:31:ca:a0:25:58:a5:77: 18:19:26:46:cc:4b:23:2b:6b:35:8f:5d:55:39:98: 3c:ec:cd:7f:4b:64:eb:23:98:c3:77:a2:7c:54:12: bc:7a:bc:e4:5a:85:47:e9:f4:4f:56:8e:0e:23:25: 6a:32:e8:15:ad:5a:33:5c:54:62:5e:5c:9b:36:b1: 0e:4e:45:98:67:51:79:f3:aa:9c:88:a3:32:13:9c: 4f:ee:f5:14:77:ab:48:17:d0:8a:bc:36:df:2a:7d: 72:1b:7a:35:0e:e8:3a:1e:ab:0e:d7:48:11:c5:c4: fb:d3:cd:e7:41:31:8d:d7:c3:4e:c5:23:bd:6a:91: fe:fa:3b:a2:87:e8:b3:14:49:32:f8:e3:a5:ff:4c: a3:31:4c:e8:e2:04:98:78:39:c8:f2:e9:5c:87:fd: 51:5e:c0:c2:af:2e:87:5a:d2:10:7d:02:0e:24:15: fd:d4:7d:3b:12:6e:4f:fe:6c:86:e1:cc:92:8c:5c: ca:33:a9:60:24:d6:96:2c:75:94:9c:04:35:6b:ca: dd:ca:5e:d2:7d:8a:be:c5:8e:56:24:b6:28:78:bd: dc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:4F:34:67:7E:47:85:8D:15:01:CC:89:FA:41:6E:A9:03:F0:13:A8 X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:8a:ca:3d:24:bd:4f:ea:8e:ed:f0:4a:64:3c:df:46:18:ef: 85:60:2a:61:2c:46:4a:a1:46:d5:f5:12:ef:fe:42:96:10:c6: 1b:f6:9e:8e:67:a4:8f:b0:ab:32:19:e3:28:fa:8a:64:1d:e2: b7:47:60:f2:14:74:62:bc:66:95:ca:26:b7:f2:56:59:c7:39: 72:be:a0:cf:26:3f:39:32:ce:8b:72:bb:0e:6e:a4:f4:15:2d: af:49:8a:02:a2:31:2a:5f:f4:0f:b1:3f:fe:9c:b9:03:1b:88: 7a:ff:72:a1:30:cf:e6:c3:b7:9a:15:d3:ed:1e:ae:f9:ab:53: 5f:2e:fd:f7:1d:6a:26:06:0c:c9:9b:34:5a:eb:11:80:1e:c6: dc:13:e4:90:62:12:8d:8b:d2:61:ca:0c:01:c7:5e:fd:e4:e1: e0:e3:c5:f0:56:1c:37:81:50:55:bf:98:81:74:e5:94:5a:71: 4a:3e:e7:17:78:12:a6:aa:e5:3f:9a:ad:7e:6d:6c:26:88:16: d2:08:98:e0:3e:12:45:e0:98:98:d2:ac:ca:c3:93:7f:40:b6: 8b:51:50:a3:fd:7c:95:49:a8:58:36:d7:fe:03:36:cc:9b:03: b0:8c:f9:40:1c:d2:27:99:b1:43:84:83:1b:f1:6f:61:2a:85: dd:60:6f:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjUwNjA2MjIyNjE5WhcNMjUwNjEzMjIyNjE5WjAYMRYwFAYD VQQDEw02ODQzNmIwYi02NGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMm/7pTXbuM9JglWnDigiVQHzfvzE6TO+ZlSwXA3Bp6zIlnDJzHKoCVYpXcY GSZGzEsjK2s1j11VOZg87M1/S2TrI5jDd6J8VBK8erzkWoVH6fRPVo4OIyVqMugV rVozXFRiXlybNrEOTkWYZ1F586qciKMyE5xP7vUUd6tIF9CKvDbfKn1yG3o1Dug6 HqsO10gRxcT7083nQTGN18NOxSO9apH++juih+izFEky+OOl/0yjMUzo4gSYeDnI 8ulch/1RXsDCry6HWtIQfQIOJBX91H07Em5P/myG4cySjFzKM6lgJNaWLHWUnAQ1 a8rdyl7SfYq+xY5WJLYoeL3cNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpPNGd+ R4WNFQHMifpBbqkD8BOoMB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDiso9JL1P6o7t8EpkPN9GGO+FYCphLEZKoUbV9RLv/kKWEMYb9p6O Z6SPsKsyGeMo+opkHeK3R2DyFHRivGaVyia38lZZxzlyvqDPJj85Ms6LcrsObqT0 FS2vSYoCojEqX/QPsT/+nLkDG4h6/3KhMM/mw7eaFdPtHq75q1NfLv33HWomBgzJ mzRa6xGAHsbcE+SQYhKNi9JhygwBx1795OHg48XwVhw3gVBVv5iBdOWUWnFKPucX eBKmquU/mq1+bWwmiBbSCJjgPhJF4JiY0qzKw5N/QLaLUVCj/XyVSahYNtf+AzbM mwOwjPlAHNInmbFDhIMb8W9hKoXdYG8o -----END CERTIFICATE-----Generated at Sat Jun 7 05:35:41 2025 by rpki-client