$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft File: jgK1xN61PytxL_B33gSQg3XoE9s.mft (raw, json) Hash identifier: IZxrkaHnC4EJEQnhj6ZOPdTIvHZ6HVxPWoqeUxMBVUc= Subject key identifier: 8B:C8:5A:4D:1B:B3:7B:D6:C6:E4:E1:20:58:80:1E:30:73:CD:37:26 Authority key identifier: 8E:02:B5:C4:DE:B5:3F:2B:71:2F:F0:77:DE:04:90:83:75:E8:13:DB Certificate issuer: /CN=A9185B6D/serialNumber=8E02B5C4DEB53F2B712FF077DE04908375E813DB Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft Manifest number: DE Signing time: Sat 31 May 2025 05:06:43 +0000 Manifest this update: Sat 31 May 2025 05:06:42 +0000 Manifest next update: Sat 07 Jun 2025 05:06:42 +0000 Files and hashes: 1: jgK1xN61PytxL_B33gSQg3XoE9s.crl (hash: ZD8KjuBZclt0r1s8QrZEt3wSBGgCwPtFfg7joCT05U4=) 2: 5A32E8DAE79111EE972FC923C4F9AE02.roa (hash: mY/bcg2+Nm0bHgEr5ZTRXdk5A4XIUo9DciT4aIgm6Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.crl rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=8E02B5C4DEB53F2B712FF077DE04908375E813DB Validity Not Before: May 31 05:06:42 2025 GMT Not After : Jun 7 05:06:42 2025 GMT Subject: CN=683a8e62-d8cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:38:5f:e0:71:cb:90:24:54:ee:d6:84:aa:ff: 38:70:ef:88:4d:54:8c:de:33:c9:55:fe:a2:97:88: 5e:08:d5:66:23:a7:a3:4e:b6:81:40:bd:44:18:67: 5f:e3:98:f1:4a:e9:2a:07:8a:ba:54:1d:1b:0c:92: c8:d1:3d:52:4c:5b:cf:da:d7:2d:20:80:46:9a:f8: de:a6:6d:75:2c:f3:a6:fb:44:10:e0:18:ba:36:08: b8:64:53:be:84:11:8a:16:5a:ef:ef:cc:4d:b0:f7: 69:e2:96:4d:bd:b4:a5:88:cf:10:d8:8a:a8:96:fd: fe:cb:cc:9a:32:44:41:0b:70:8b:86:2e:fd:78:21: c0:c9:36:e7:aa:c7:88:57:e2:f9:38:6b:bf:cd:19: c6:91:07:7e:d3:50:f1:c7:9a:e0:70:57:c2:c7:9b: d9:3b:cf:fe:06:5d:aa:33:c5:06:33:8f:e1:21:ea: e6:35:a4:1d:4e:cd:00:9e:00:90:42:9e:ee:0a:0d: f2:30:47:bf:0f:08:c3:28:18:71:04:4a:e7:1a:6a: 91:04:b5:7c:43:60:06:76:2d:dd:45:6e:36:8e:d5: d7:5c:72:a0:3d:e0:e3:69:f2:0d:f4:25:49:9f:62: 08:78:23:84:d8:7c:7f:12:46:18:d9:24:22:b6:ec: 41:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C8:5A:4D:1B:B3:7B:D6:C6:E4:E1:20:58:80:1E:30:73:CD:37:26 X509v3 Authority Key Identifier: keyid:8E:02:B5:C4:DE:B5:3F:2B:71:2F:F0:77:DE:04:90:83:75:E8:13:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:c7:12:ea:c3:e0:d3:99:b5:cf:be:e7:49:f7:b2:8e:0c:6e: fe:f4:39:2b:c3:4b:ab:a2:ef:96:34:4f:52:60:fd:35:46:8a: 78:c2:dc:87:84:f7:6e:66:11:b6:31:49:63:f2:ee:4e:b9:a3: d2:6c:68:be:5a:3e:fe:7b:0e:3e:b7:0e:a5:b9:8e:04:79:32: cf:58:c4:f8:a4:5e:41:03:4b:b4:49:29:0b:55:6a:b3:90:19: 23:a0:27:d4:6d:44:cb:0b:16:cb:2b:98:a4:50:f3:de:ea:1e: 17:a3:11:19:79:71:6b:4a:03:fd:e8:a1:f5:8e:50:33:26:21: 99:36:3c:fa:0d:91:41:a5:6f:e8:bf:a1:14:31:42:62:31:2b: f0:d8:87:54:a2:43:66:32:44:73:59:4c:55:9a:e4:4f:dc:32: e8:d2:3e:6d:32:65:39:d7:0f:a7:70:d4:5e:5f:a4:2b:28:e8: ed:8d:21:1e:b6:e6:95:c8:ed:a7:0f:84:43:1b:f7:69:8c:7c: 97:91:02:e5:85:a9:1d:6f:43:6a:30:d7:6b:fb:b3:8a:0f:76: 68:c9:85:b7:de:24:42:7e:48:33:db:66:28:6e:1f:f0:20:18: 9c:05:c3:8b:93:af:e6:f8:62:10:ec:5c:d7:bf:b5:6c:58:f1: 1b:c5:e4:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDhFMDJCNUM0REVCNTNGMkI3MTJGRjA3N0RFMDQ5MDgz NzVFODEzREIwHhcNMjUwNTMxMDUwNjQyWhcNMjUwNjA3MDUwNjQyWjAYMRYwFAYD VQQDEw02ODNhOGU2Mi1kOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDhf4HHLkCRU7taEqv84cO+ITVSM3jPJVf6il4heCNVmI6ejTraBQL1EGGdf 45jxSukqB4q6VB0bDJLI0T1STFvP2tctIIBGmvjepm11LPOm+0QQ4Bi6Ngi4ZFO+ hBGKFlrv78xNsPdp4pZNvbSliM8Q2Iqolv3+y8yaMkRBC3CLhi79eCHAyTbnqseI V+L5OGu/zRnGkQd+01Dxx5rgcFfCx5vZO8/+Bl2qM8UGM4/hIermNaQdTs0AngCQ Qp7uCg3yMEe/DwjDKBhxBErnGmqRBLV8Q2AGdi3dRW42jtXXXHKgPeDjafIN9CVJ n2IIeCOE2Hx/EkYY2SQituxB8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvIWk0b s3vWxuThIFiAHjBzzTcmMB8GA1UdIwQYMBaAFI4CtcTetT8rcS/wd94EkIN16BPb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8yMTUyMjE4MkU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9qZ0sxeE42MVB5dHhMX0IzM2dTUWczWG9F OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pnSzF4TjYxUHl0eExfQjMzZ1NRZzNYb0U5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8yMTUyMjE4MkU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9qZ0sxeE42MVB5 dHhMX0IzM2dTUWczWG9FOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFxxLqw+DTmbXPvudJ97KODG7+9Dkrw0urou+WNE9SYP01Rop4wtyH hPduZhG2MUlj8u5OuaPSbGi+Wj7+ew4+tw6luY4EeTLPWMT4pF5BA0u0SSkLVWqz kBkjoCfUbUTLCxbLK5ikUPPe6h4XoxEZeXFrSgP96KH1jlAzJiGZNjz6DZFBpW/o v6EUMUJiMSvw2IdUokNmMkRzWUxVmuRP3DLo0j5tMmU51w+ncNReX6QrKOjtjSEe tuaVyO2nD4RDG/dpjHyXkQLlhakdb0NqMNdr+7OKD3ZoyYW33iRCfkgz22Yobh/w IBicBcOLk6/m+GIQ7FzXv7VsWPEbxeSa -----END CERTIFICATE-----Generated at Sat May 31 16:31:25 2025 by rpki-client