$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: 6/8LBe2i60PEB5IdmrFxPvpuhxqGF+qEjx2EzszYuqo= Subject key identifier: BF:A0:9D:81:BF:8A:7F:BB:16:3D:43:D6:06:60:49:E4:F2:85:70:2A Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 06 Signing time: Thu 03 Apr 2025 07:29:01 +0000 Manifest this update: Thu 03 Apr 2025 07:29:01 +0000 Manifest next update: Thu 10 Apr 2025 07:29:01 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: +iFknZAd3X3bPqbaK7SW7/Tth3AzFmXoBrIr5xy/G3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC Validity Not Before: Apr 3 07:29:01 2025 GMT Not After : Apr 10 07:29:01 2025 GMT Subject: CN=67ee38bd-d66a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:36:ec:67:34:fd:da:64:a5:4e:de:91:c8:a4: 9a:db:09:b4:ce:c7:6a:06:25:1c:0f:f0:9c:3e:7b: 86:51:54:12:3c:89:04:75:66:a1:d4:81:3a:1b:c5: 33:5c:0e:53:9e:b2:8f:7d:b2:09:f0:a6:8f:d3:53: 10:59:d3:7e:00:c2:93:27:0a:c7:55:c9:53:36:cd: b0:68:64:e6:bd:cc:ce:46:6e:74:85:81:b1:0f:26: 78:14:a8:e4:05:76:e9:02:1c:cd:95:7e:6d:66:d6: ba:c6:38:84:db:79:44:06:4e:98:ac:f7:88:7b:31: 91:e4:78:67:7f:7a:de:85:fa:fb:32:57:1b:7e:9a: 4b:21:26:ff:80:9a:57:12:03:21:0c:37:74:a9:1f: f4:e7:d9:b3:64:ab:da:99:d6:5c:a8:d4:78:d0:a0: 36:47:7a:97:4d:4a:91:a8:b1:d1:a2:2d:2b:06:d2: 0e:7b:5f:28:a0:68:43:be:02:54:44:15:80:ca:42: 8d:b6:ae:97:41:ed:f5:c9:73:25:7b:d2:81:6d:20: e4:69:1e:1c:4a:c6:c7:a0:63:f3:b4:d8:e7:2b:8a: 3f:aa:01:4e:34:1c:05:8f:34:e0:e1:72:07:03:43: 55:6a:c8:15:41:6c:5e:68:cd:d0:9d:dd:f8:71:a2: 99:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A0:9D:81:BF:8A:7F:BB:16:3D:43:D6:06:60:49:E4:F2:85:70:2A X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:f9:6b:26:3d:90:b7:f0:74:1e:82:0c:39:59:cb:23:a1:36: c6:c8:85:58:49:1a:f9:af:c8:cb:87:5a:ef:ad:9e:5f:30:9f: 63:0e:fe:eb:08:02:c5:d1:96:1e:14:da:30:c8:39:54:5c:d6: 79:78:c8:42:41:4a:ea:b7:79:29:97:53:4a:4b:45:74:aa:27: 1b:dc:48:8c:3d:6c:2b:4b:6a:cb:b2:64:ae:13:9e:ec:d4:02: 73:1a:51:6a:69:2b:4e:18:4e:d0:b4:fd:ec:61:31:9c:cd:d0: 02:9f:51:97:1a:9d:00:9e:9c:40:18:9c:78:88:85:6b:33:8f: 59:01:33:08:84:30:4d:97:9e:10:e7:aa:94:32:c6:00:a7:21: e7:35:8f:18:6b:cd:2d:e3:1c:83:65:e0:91:af:e2:e0:2b:af: b3:0a:47:7b:4e:90:39:13:86:b0:6a:5d:e5:9a:1a:36:8f:9a: 02:a6:c3:81:b7:da:b7:87:c7:18:15:6b:f2:d3:28:5b:4f:82: f9:d2:e9:ad:af:62:6c:bb:4f:8d:a3:26:ed:76:f6:80:30:6d: b3:d5:11:c8:cb:ff:cd:96:70:9f:d5:6b:63:8e:cc:1a:5b:62: 63:0f:3e:83:d7:44:1e:93:de:63:e9:67:0a:d9:d1:55:db:25: d3:26:9e:cc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTA0MDMwNzI5MDFaFw0yNTA0MTAwNzI5MDFaMBgxFjAUBgNV BAMTDTY3ZWUzOGJkLWQ2NmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfNuxnNP3aZKVO3pHIpJrbCbTOx2oGJRwP8Jw+e4ZRVBI8iQR1ZqHUgTobxTNc DlOeso99sgnwpo/TUxBZ034AwpMnCsdVyVM2zbBoZOa9zM5GbnSFgbEPJngUqOQF dukCHM2Vfm1m1rrGOITbeUQGTpis94h7MZHkeGd/et6F+vsyVxt+mkshJv+AmlcS AyEMN3SpH/Tn2bNkq9qZ1lyo1HjQoDZHepdNSpGosdGiLSsG0g57XyigaEO+AlRE FYDKQo22rpdB7fXJcyV70oFtIORpHhxKxsegY/O02Ocrij+qAU40HAWPNODhcgcD Q1VqyBVBbF5ozdCd3fhxopnPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv6Cdgb+K f7sWPUPWBmBJ5PKFcCowHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdM SHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEz5ayY9kLfwdB6CDDlZyyOhNsbIhVhJGvmvyMuHWu+tnl8wn2MO/usI AsXRlh4U2jDIOVRc1nl4yEJBSuq3eSmXU0pLRXSqJxvcSIw9bCtLasuyZK4TnuzU AnMaUWppK04YTtC0/exhMZzN0AKfUZcanQCenEAYnHiIhWszj1kBMwiEME2XnhDn qpQyxgCnIec1jxhrzS3jHINl4JGv4uArr7MKR3tOkDkThrBqXeWaGjaPmgKmw4G3 2reHxxgVa/LTKFtPgvnS6a2vYmy7T42jJu129oAwbbPVEcjL/82WcJ/Va2OOzBpb YmMPPoPXRB6T3mPpZwrZ0VXbJdMmnsw= -----END CERTIFICATE-----Generated at Fri Apr 4 23:51:34 2025 by rpki-client