$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: 4BwIgHWt2bgmDMY93GCO6b6O+HZVxge8gaeFelGXfK8= Subject key identifier: D8:8B:78:A4:C4:5B:77:8B:A4:A7:98:F4:49:01:88:A4:59:C1:D4:E0 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 0284 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 027F Signing time: Sat 31 May 2025 01:50:54 +0000 Manifest this update: Sat 31 May 2025 01:50:54 +0000 Manifest next update: Sat 07 Jun 2025 01:50:54 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: vRabzRaJepopTYfTjnO/t1rnpkIfq/+ck20BXvK/4mk=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: hJkxXQfC6FPhKQvUl8F7nqWwJZPrWQsil7QshGWSWw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 644 (0x284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7, serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: May 31 01:50:54 2025 GMT Not After : Jun 7 01:50:54 2025 GMT Subject: CN=683a607e-1a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a0:90:22:57:93:46:69:d1:57:f2:92:6d:e8: 93:a3:6c:9b:6b:e7:c6:20:5a:f2:0c:72:c8:77:84: e0:b2:cc:2d:50:c4:98:60:5e:d3:fb:68:82:83:2f: 90:10:1d:5e:3c:2c:4d:91:38:ad:d9:76:2d:49:25: fb:e7:f5:ea:97:f6:5a:21:3b:c3:01:89:fc:a3:9c: 1e:ad:84:49:22:67:d2:dc:35:1f:6d:bc:31:4d:3b: 1c:9f:e9:3b:03:1f:b5:18:93:46:d1:4f:99:33:d6: 9a:68:e9:5c:fe:c7:68:be:d5:43:08:92:9b:5c:08: 2b:3e:c0:a4:e7:5d:3e:99:12:80:0c:2b:b7:8f:27: 8d:e7:79:18:57:e0:71:29:16:63:24:bc:98:b0:c7: 47:d8:a7:f3:c9:90:6e:99:21:a6:51:e2:27:9f:ac: b0:59:d9:cb:fb:2f:26:f1:33:f0:35:fa:1a:ae:08: 62:27:41:d5:cd:fd:22:d7:76:ba:29:b6:c6:98:69: 3a:8b:b4:b7:b3:e1:f1:2f:35:a2:77:62:c6:91:eb: a0:0b:e3:1f:eb:48:8a:15:a6:38:e2:a6:56:3d:35: 81:bd:55:00:01:2f:04:9f:41:91:60:bc:b8:b6:03: 6d:32:0d:c2:c4:f9:a1:e8:57:b8:ee:99:d4:61:d6: d4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8B:78:A4:C4:5B:77:8B:A4:A7:98:F4:49:01:88:A4:59:C1:D4:E0 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:d7:47:37:a6:03:80:d9:ec:29:af:54:40:14:fa:cb:cf:ab: c9:38:03:e5:2f:9c:b4:b3:fb:a8:30:6b:75:fa:85:a0:1b:e8: 0a:ac:67:c6:a7:24:ba:9e:a4:f7:12:0c:15:90:42:d1:a5:2c: 01:b5:fd:6e:ba:27:3d:77:81:5a:4a:fb:d9:cd:51:c9:86:96: b7:67:70:aa:46:80:a1:01:70:df:83:23:00:dc:8f:b8:d2:7e: 8a:03:8b:5e:b2:5e:4a:4f:3e:6f:27:45:f6:f7:f4:c0:d1:83: 0d:04:9a:23:a7:a8:e3:0b:4c:4d:e8:76:f1:25:9f:20:a3:ae: 9d:5a:2b:90:43:37:e3:f7:fe:ca:ba:5e:e0:94:10:51:75:67: b5:92:69:45:d1:73:5b:db:36:93:8a:4b:58:48:bd:bc:69:20: 5e:89:c6:37:0b:5f:4f:76:94:33:0e:78:ed:33:8d:a9:0a:b4: 77:12:5a:ce:ed:ef:04:68:f8:e7:be:84:2b:ea:36:fc:ae:d2: 74:e2:fb:b3:2b:e2:9f:bf:b3:ae:35:8d:16:a4:85:28:d0:37: 62:fc:3a:31:ed:f1:6c:22:5c:b9:a9:c3:ab:0a:b0:50:fc:d9: 4b:89:85:41:02:22:d7:23:f1:57:77:de:2c:ed:df:37:8a:f4: 71:4c:8d:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjUwNTMxMDE1MDU0WhcNMjUwNjA3MDE1MDU0WjAYMRYwFAYD VQQDEw02ODNhNjA3ZS0xYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KCQIleTRmnRV/KSbeiTo2yba+fGIFryDHLId4TgsswtUMSYYF7T+2iCgy+Q EB1ePCxNkTit2XYtSSX75/Xql/ZaITvDAYn8o5werYRJImfS3DUfbbwxTTscn+k7 Ax+1GJNG0U+ZM9aaaOlc/sdovtVDCJKbXAgrPsCk510+mRKADCu3jyeN53kYV+Bx KRZjJLyYsMdH2KfzyZBumSGmUeInn6ywWdnL+y8m8TPwNfoarghiJ0HVzf0i13a6 KbbGmGk6i7S3s+HxLzWid2LGkeugC+Mf60iKFaY44qZWPTWBvVUAAS8En0GRYLy4 tgNtMg3CxPmh6Fe47pnUYdbUcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiLeKTE W3eLpKeY9EkBiKRZwdTgMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO10c3pgOA2ewpr1RAFPrLz6vJOAPlL5y0s/uoMGt1+oWgG+gKrGfG pyS6nqT3EgwVkELRpSwBtf1uuic9d4FaSvvZzVHJhpa3Z3CqRoChAXDfgyMA3I+4 0n6KA4tesl5KTz5vJ0X29/TA0YMNBJojp6jjC0xN6HbxJZ8go66dWiuQQzfj9/7K ul7glBBRdWe1kmlF0XNb2zaTiktYSL28aSBeicY3C19PdpQzDnjtM42pCrR3ElrO 7e8EaPjnvoQr6jb8rtJ04vuzK+Kfv7OuNY0WpIUo0Ddi/Dox7fFsIly5qcOrCrBQ /NlLiYVBAiLXI/FXd94s7d83ivRxTI3V -----END CERTIFICATE-----Generated at Sat May 31 16:28:49 2025 by rpki-client