$ rpki-client -vvf rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft File: jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft (raw, json) Hash identifier: fVDutTlBIvy0jpRKTw3PoR63/pJoAKag7rW7dfzvsec= Subject key identifier: 1E:E5:A4:62:5A:AD:53:E8:9E:1F:85:DA:EA:2C:62:84:EF:CE:08:BE Authority key identifier: 8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90 Certificate issuer: /CN=A918497E/serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft Manifest number: 0104 Signing time: Sat 31 May 2025 04:43:53 +0000 Manifest this update: Sat 31 May 2025 04:43:52 +0000 Manifest next update: Sat 07 Jun 2025 04:43:52 +0000 Files and hashes: 1: jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl (hash: Xg5bRbPowqpyZ0n+0jm7GQRpDZLn3Fw4oAnwSk1iy1A=) 2: D8FEAF6C637611EFB2D9FD47C4F9AE02.roa (hash: Dufn2bl2x79yMqHJgaUJAzhvDE7hxEwAGg5UyaJazhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918497E, serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390 Validity Not Before: May 31 04:43:52 2025 GMT Not After : Jun 7 04:43:52 2025 GMT Subject: CN=683a8909-18b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:83:88:7d:02:8f:c9:04:9a:20:69:8d:01:85: 87:aa:f0:94:3c:03:fa:94:fc:f9:cb:7c:38:0b:1f: 2c:32:7d:36:ea:f7:89:c9:f5:f0:39:a3:f9:6b:12: e1:b5:e8:8f:f3:ff:1d:c1:8a:33:5c:64:ee:92:21: aa:62:74:ca:c7:d1:53:6e:d2:3e:df:ad:e8:f0:74: f0:99:d0:fa:f6:81:5d:8d:72:bb:88:f6:ee:e1:02: 4d:15:ce:0c:a1:94:47:cf:4c:84:5f:b1:87:26:b3: 8d:6c:24:e3:c0:7e:58:12:7f:3f:46:af:bc:63:5f: 48:1e:ed:34:8f:69:d2:78:a3:00:7d:92:9e:83:f9: dc:97:9f:0b:2d:21:83:95:7f:92:51:0c:f0:77:55: bf:62:92:c0:93:5c:6b:6e:58:56:31:32:53:8e:80: 05:02:3c:8e:bc:b8:c6:19:cf:42:d4:fa:49:1d:b7: 6b:81:1a:d4:4f:f4:17:da:aa:6a:81:7c:8a:c0:c6: e3:f1:66:1f:99:21:ce:25:c4:6f:af:91:d8:50:ea: 3f:0d:4a:7e:71:f0:47:3a:b4:b8:29:fa:21:ee:97: c0:5c:8b:e9:0d:f9:61:0b:bd:80:b5:9f:00:fe:57: 79:b5:39:04:ba:1f:1d:b4:aa:8d:4c:99:5b:ef:31: 70:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E5:A4:62:5A:AD:53:E8:9E:1F:85:DA:EA:2C:62:84:EF:CE:08:BE X509v3 Authority Key Identifier: keyid:8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:db:7f:fd:84:92:09:f8:b5:9e:25:d8:7e:35:9e:a9:ff:09: f3:10:4c:2d:7c:ae:b4:3f:77:06:b0:fe:26:97:87:02:0e:77: 6f:a1:a0:b7:4d:96:b5:33:cb:fd:0a:c3:a9:d9:68:7a:9a:68: f8:07:bd:86:4e:91:0c:48:66:11:2a:04:72:4d:c5:79:46:01: 94:08:14:dd:9f:fd:76:e5:01:3e:ff:c1:c0:3b:56:f1:75:09: a8:46:28:6b:e2:e2:8b:27:34:10:7e:14:f1:4d:47:05:15:b0: af:d6:bc:77:1f:08:2d:ba:95:ab:f3:ea:8c:5a:21:b3:fa:94: 8c:e4:97:bb:c2:6d:11:96:e5:93:b8:b3:e2:12:a5:1e:5f:9f: 45:25:3a:bb:cf:42:55:8e:dc:d6:a8:cf:fb:3b:a3:04:33:66: d4:e3:a4:b0:e6:6d:2f:a3:ac:5b:4e:1b:f4:d0:fa:bc:76:c7: 81:2c:8a:c8:97:81:d6:f1:91:a8:57:f1:e8:10:a8:e2:6c:9b: e9:e7:b7:10:04:06:53:d4:f5:06:eb:95:9b:09:6f:60:14:3c: c4:a9:dc:91:e0:07:32:87:04:44:fe:2e:da:38:aa:59:cd:8d: f0:5a:20:a9:4e:bf:27:be:85:d3:13:48:18:81:2b:3f:bf:18: 3d:6e:84:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5N0UxMTAvBgNVBAUTKDhENEJGNzlBNDE5RUVDMEZBNTMzRTVGQ0E1MEZGMzcy QTMzQ0IzOTAwHhcNMjUwNTMxMDQ0MzUyWhcNMjUwNjA3MDQ0MzUyWjAYMRYwFAYD VQQDEw02ODNhODkwOS0xOGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYOIfQKPyQSaIGmNAYWHqvCUPAP6lPz5y3w4Cx8sMn026veJyfXwOaP5axLh teiP8/8dwYozXGTukiGqYnTKx9FTbtI+363o8HTwmdD69oFdjXK7iPbu4QJNFc4M oZRHz0yEX7GHJrONbCTjwH5YEn8/Rq+8Y19IHu00j2nSeKMAfZKeg/ncl58LLSGD lX+SUQzwd1W/YpLAk1xrblhWMTJTjoAFAjyOvLjGGc9C1PpJHbdrgRrUT/QX2qpq gXyKwMbj8WYfmSHOJcRvr5HYUOo/DUp+cfBHOrS4Kfoh7pfAXIvpDflhC72AtZ8A /ld5tTkEuh8dtKqNTJlb7zFwUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7lpGJa rVPonh+F2uosYoTvzgi+MB8GA1UdIwQYMBaAFI1L95pBnuwPpTPl/KUP83KjPLOQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk3RS9DMzIwQzIyNkI1 RDgxMUVFOERBNjZEODVDNEY5QUUwMi9qVXYzbWtHZTdBLWxNLVg4cFFfemNxTThz NUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVdjNta0dlN0EtbE0tWDhwUV96Y3FNOHM1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDk3RS9DMzIwQzIyNkI1RDgxMUVFOERBNjZEODVDNEY5QUUwMi9qVXYzbWtHZTdB LWxNLVg4cFFfemNxTThzNUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA723/9hJIJ+LWeJdh+NZ6p/wnzEEwtfK60P3cGsP4ml4cCDndvoaC3 TZa1M8v9CsOp2Wh6mmj4B72GTpEMSGYRKgRyTcV5RgGUCBTdn/125QE+/8HAO1bx dQmoRihr4uKLJzQQfhTxTUcFFbCv1rx3HwgtupWr8+qMWiGz+pSM5Je7wm0RluWT uLPiEqUeX59FJTq7z0JVjtzWqM/7O6MEM2bU46Sw5m0vo6xbThv00Pq8dseBLIrI l4HW8ZGoV/HoEKjibJvp57cQBAZT1PUG65WbCW9gFDzEqdyR4AcyhwRE/i7aOKpZ zY3wWiCpTr8nvoXTE0gYgSs/vxg9boQh -----END CERTIFICATE-----Generated at Sat May 31 14:48:15 2025 by rpki-client