$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: SL9CLqZB18vQ4v+MRogy+W9md/DOvXp0boJt8GCLFT4= Subject key identifier: 5D:20:79:AE:3C:06:6D:A6:60:07:8C:11:8C:24:16:38:7D:6F:EF:1D Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0E12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0E07 Signing time: Fri 30 May 2025 17:59:58 +0000 Manifest this update: Fri 30 May 2025 17:59:58 +0000 Manifest next update: Fri 06 Jun 2025 17:59:58 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: 7RKqf0iVIs36Bbee0U3EpDfnuRyygiAni1lOk55kzYs=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3602 (0xe12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: May 30 17:59:58 2025 GMT Not After : Jun 6 17:59:58 2025 GMT Subject: CN=6839f21e-cfde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:57:ee:ec:f9:0a:c5:74:8b:83:51:ff:5f:fb: 97:81:55:d9:e4:d5:30:54:82:9b:62:bf:eb:74:8b: c7:1b:cf:93:1e:9f:63:2c:8a:90:ee:54:d7:72:e5: 20:4f:05:f7:e5:04:6f:05:6d:c6:ff:6c:a6:50:72: ba:49:f3:f6:37:42:b4:51:13:c5:8b:44:6c:77:97: c3:23:f0:32:f6:03:d4:5d:70:08:2e:d7:ec:52:b2: 04:a1:60:f5:d9:0d:a4:26:27:71:e5:89:37:a0:16: 5c:14:b3:e2:5c:1b:1d:08:0c:8c:af:60:8c:f0:5b: 69:81:bf:bc:fc:9f:bf:f6:37:1d:ec:2f:72:b6:92: 3c:76:f7:56:72:52:e2:f9:3f:12:53:95:e8:ef:be: 96:c4:5c:9b:25:0e:07:15:e2:e0:38:d5:e3:04:7e: f2:1a:70:a5:41:99:95:61:9e:70:48:83:98:72:51: 3e:85:a5:45:99:36:00:86:13:0b:4e:d2:e9:ca:9a: 29:7c:92:ac:19:b4:ad:1a:ba:ec:35:e1:3a:d3:61: 00:aa:56:1a:04:0a:be:20:71:cd:2b:96:64:42:8a: 48:b0:eb:7c:7b:cd:28:db:f9:b1:fc:2a:d5:d7:eb: 73:ba:d2:4e:ff:b7:ee:81:63:fb:a9:77:ce:1f:cd: 8b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:20:79:AE:3C:06:6D:A6:60:07:8C:11:8C:24:16:38:7D:6F:EF:1D X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:7b:43:d0:bc:74:bc:34:26:1a:79:6d:d0:28:1f:03:fd:06: 1c:63:f8:64:90:14:20:8c:aa:f4:3d:c1:a8:47:ba:94:f9:cd: 72:48:b3:a9:e7:46:95:95:d3:4e:aa:93:cb:fa:f8:b5:26:58: da:6e:1b:8f:53:36:52:c8:e9:a3:9a:ff:98:5c:60:67:b4:36: 94:38:01:c4:1a:4a:6f:e1:91:b2:38:5a:d8:cd:4c:6f:4f:b6: 5e:4c:a8:f7:f9:dd:e9:05:38:1e:17:de:e5:d3:be:03:98:7a: 77:30:f7:e6:1b:43:8f:34:46:47:1b:79:f1:ca:d8:58:82:85: 79:55:9c:f9:3f:88:6b:1c:89:ca:18:44:fa:8f:64:63:14:2e: 1e:be:31:32:50:55:89:32:83:9c:cb:46:d9:64:d5:bc:c5:3a: b7:58:2b:df:60:50:d0:b1:6b:1a:f3:be:eb:05:a8:e8:32:09: 82:ef:f7:39:95:66:83:2a:a5:8b:db:53:cc:ca:c7:42:ad:92: 42:12:5b:7d:01:52:c2:d4:98:02:18:cd:e7:e8:63:2b:a0:f7: 83:43:dd:c4:5d:57:7d:21:c3:3c:58:f4:a4:fb:f9:6f:57:37: e7:65:b5:3b:ec:0a:f3:39:0e:ab:db:dd:a7:5b:ee:8c:b3:07: ff:f8:c8:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUwNTMwMTc1OTU4WhcNMjUwNjA2MTc1OTU4WjAYMRYwFAYD VQQDEw02ODM5ZjIxZS1jZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVfu7PkKxXSLg1H/X/uXgVXZ5NUwVIKbYr/rdIvHG8+THp9jLIqQ7lTXcuUg TwX35QRvBW3G/2ymUHK6SfP2N0K0URPFi0Rsd5fDI/Ay9gPUXXAILtfsUrIEoWD1 2Q2kJidx5Yk3oBZcFLPiXBsdCAyMr2CM8Ftpgb+8/J+/9jcd7C9ytpI8dvdWclLi +T8SU5Xo776WxFybJQ4HFeLgONXjBH7yGnClQZmVYZ5wSIOYclE+haVFmTYAhhML TtLpypopfJKsGbStGrrsNeE602EAqlYaBAq+IHHNK5ZkQopIsOt8e80o2/mx/CrV 1+tzutJO/7fugWP7qXfOH82LeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0gea48 Bm2mYAeMEYwkFjh9b+8dMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBke0PQvHS8NCYaeW3QKB8D/QYcY/hkkBQgjKr0PcGoR7qU+c1ySLOp 50aVldNOqpPL+vi1JljabhuPUzZSyOmjmv+YXGBntDaUOAHEGkpv4ZGyOFrYzUxv T7ZeTKj3+d3pBTgeF97l074DmHp3MPfmG0OPNEZHG3nxythYgoV5VZz5P4hrHInK GET6j2RjFC4evjEyUFWJMoOcy0bZZNW8xTq3WCvfYFDQsWsa877rBajoMgmC7/c5 lWaDKqWL21PMysdCrZJCElt9AVLC1JgCGM3n6GMroPeDQ93EXVd9IcM8WPSk+/lv VzfnZbU77ArzOQ6r292nW+6Mswf/+MjO -----END CERTIFICATE-----Generated at Sat May 31 17:20:31 2025 by rpki-client