$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: A5gh5fZpVowBhGyNU2AE5c9CQw0GNxj71TVL/iE0pEg= Subject key identifier: 42:7A:CC:76:10:77:79:60:B9:2D:0E:13:0A:82:D2:DA:EF:F6:2E:1A Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 27 Signing time: Sat 07 Jun 2025 07:17:46 +0000 Manifest this update: Sat 07 Jun 2025 07:17:45 +0000 Manifest next update: Sat 14 Jun 2025 07:17:45 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: zs+Vtd6pKuvSuMykYu8mNCJ9vXeu1gCo+RH8bTodywA=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: QZ2cZMYkPm+jK9/JMXPVcucYU0NqHDxW+giSXfrxEfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 07:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Jun 7 07:17:45 2025 GMT Not After : Jun 14 07:17:45 2025 GMT Subject: CN=6843e799-24b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:65:ba:0b:a6:93:08:1e:60:8a:45:7e:94:11: bc:80:64:dd:19:8b:c1:8f:6b:ab:83:f1:1f:e1:91: 9d:32:ac:a3:07:b4:a4:41:21:75:86:52:6e:3a:88: 29:95:47:12:fd:1f:e3:7a:e4:b5:3e:89:e3:d5:2d: 3b:a7:2a:c5:7e:a6:71:89:34:b4:92:55:7e:07:47: bc:58:ca:0e:5d:7a:68:14:da:54:94:74:af:23:2f: 98:37:d3:49:f6:29:4b:cb:5a:63:fc:f1:bb:9d:b0: 56:c8:7a:fb:9f:0d:c6:6b:e2:74:5c:b5:01:d7:cb: 7d:8f:06:83:a3:e6:1b:3f:bd:68:db:9d:ff:18:a7: 3e:2e:23:65:a6:fc:00:36:7c:c1:0b:45:22:8a:33: 8d:cb:0d:ce:90:d6:64:9e:9d:a0:0c:b3:14:c1:ba: 00:df:ee:39:93:8f:53:97:be:79:29:cb:e4:8f:44: 46:1c:9a:76:18:27:a3:29:ac:dc:e0:d5:81:f8:f4: 1c:c0:49:0d:c9:65:a9:17:3d:63:9b:be:d0:c6:51: c1:f5:cd:94:80:a3:16:54:61:57:93:20:f9:c4:ee: e6:b4:43:fa:19:53:c0:7c:76:3e:f3:48:4e:1e:ac: f3:44:8f:29:06:2b:ae:3f:5d:b0:7e:5f:44:61:68: 38:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7A:CC:76:10:77:79:60:B9:2D:0E:13:0A:82:D2:DA:EF:F6:2E:1A X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:bc:10:5e:67:13:b8:ba:b9:d0:2a:41:38:1d:e3:75:2c:d9: ac:91:1b:a9:42:49:ff:a2:06:ff:87:52:85:6f:0b:11:96:6e: b8:70:bf:2a:9c:48:c8:a0:1a:d3:6d:d6:20:67:f8:54:0e:6d: 0b:3f:d5:72:e9:c4:6f:01:d3:06:53:48:a9:06:7c:82:72:6a: dd:87:15:6a:74:96:c6:82:c1:14:eb:e3:bf:7a:ce:fc:70:c2: 9b:10:52:4e:57:80:40:a3:a4:77:97:dd:b4:e5:83:56:f4:61: 9f:e2:e8:f5:de:ed:15:52:2b:0d:b0:06:2c:ba:c5:56:4f:d8: 5c:78:e9:63:8a:81:4e:34:1a:7b:c3:23:1e:b0:d8:f3:91:0e: 2f:7d:6e:01:8e:68:5c:eb:40:6e:87:77:a8:f8:1d:e2:7a:7e: a7:60:d9:7d:89:e3:09:03:0c:c2:52:ea:50:c4:25:e8:c9:ca: a2:32:4b:87:da:00:87:6d:f7:60:dc:b6:12:f9:29:c1:85:e8: 07:fd:3c:20:0d:75:b4:e0:d0:ae:21:d4:29:23:6b:35:81:0f: f8:cc:77:76:06:68:8c:4e:bb:7c:61:10:20:20:a3:02:77:2b: a2:51:b1:ef:48:91:f2:1e:fa:b1:a0:0e:5a:9e:92:71:ef:0e: ba:03:98:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTA2MDcwNzE3NDVaFw0yNTA2MTQwNzE3NDVaMBgxFjAUBgNV BAMTDTY4NDNlNzk5LTI0YjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHZboLppMIHmCKRX6UEbyAZN0Zi8GPa6uD8R/hkZ0yrKMHtKRBIXWGUm46iCmV RxL9H+N65LU+iePVLTunKsV+pnGJNLSSVX4HR7xYyg5demgU2lSUdK8jL5g300n2 KUvLWmP88budsFbIevufDcZr4nRctQHXy32PBoOj5hs/vWjbnf8Ypz4uI2Wm/AA2 fMELRSKKM43LDc6Q1mSenaAMsxTBugDf7jmTj1OXvnkpy+SPREYcmnYYJ6MprNzg 1YH49BzASQ3JZakXPWObvtDGUcH1zZSAoxZUYVeTIPnE7ua0Q/oZU8B8dj7zSE4e rPNEjykGK64/XbB+X0RhaDhDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQnrMdhB3 eWC5LQ4TCoLS2u/2LhowHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdM SHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKi8EF5nE7i6udAqQTgd43Us2ayRG6lCSf+iBv+HUoVvCxGWbrhwvyqc SMigGtNt1iBn+FQObQs/1XLpxG8B0wZTSKkGfIJyat2HFWp0lsaCwRTr4796zvxw wpsQUk5XgECjpHeX3bTlg1b0YZ/i6PXe7RVSKw2wBiy6xVZP2Fx46WOKgU40GnvD Ix6w2PORDi99bgGOaFzrQG6Hd6j4HeJ6fqdg2X2J4wkDDMJS6lDEJejJyqIyS4fa AIdt92DcthL5KcGF6Af9PCANdbTg0K4h1CkjazWBD/jMd3YGaIxOu3xhECAgowJ3 K6JRse9IkfIe+rGgDlqeknHvDroDmJk= -----END CERTIFICATE-----Generated at Sun Jun 8 19:09:04 2025 by rpki-client