$ rpki-client -vvf rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft File: jNZeQOKuy7xVttozRr8czjg1wnc.mft (raw, json) Hash identifier: 8Or2tpIgacJUTPbi1+nUI6C7R9JytBqoHREtKrC3sQs= Subject key identifier: 51:DE:8C:24:18:FA:44:A2:86:91:55:50:2E:74:BC:C3:17:0B:FA:FC Authority key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 Certificate issuer: /CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft Manifest number: 016D Signing time: Sat 31 May 2025 03:30:21 +0000 Manifest this update: Sat 31 May 2025 03:30:20 +0000 Manifest next update: Sat 07 Jun 2025 03:30:20 +0000 Files and hashes: 1: jNZeQOKuy7xVttozRr8czjg1wnc.crl (hash: 8yd64FC8d+bocohTWhiLxPzxdxv6UGMPrKOjBPnsYW8=) 2: 4CEE00EC0A8811EEA788A750C4F9AE02.roa (hash: QZB86xYAagOUVtXc6ojgleop4GqbWBDM0jf+6qBiFkY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A6EB, serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Validity Not Before: May 31 03:30:20 2025 GMT Not After : Jun 7 03:30:20 2025 GMT Subject: CN=683a77cd-8693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bb:92:b3:4c:43:7e:c4:2f:7e:12:5e:be:d8: f0:2b:d5:68:b9:dd:b5:31:cf:3f:df:66:ec:e7:c5: ee:1c:52:c1:79:33:07:4d:02:2c:4c:6f:49:8d:65: ec:db:92:80:8f:5d:d1:5f:70:c0:42:ed:3a:f5:39: e8:fd:a6:bc:d2:67:7e:37:a7:39:f2:f7:75:d5:11: 71:2a:53:05:95:a3:39:65:dd:ee:49:a6:0c:bb:49: a6:eb:d8:a9:a3:e9:af:32:60:32:b7:83:fd:d5:99: 6e:1f:09:c1:70:9b:bf:69:6d:70:a9:4b:97:82:c5: ba:97:ea:cd:34:1a:b1:00:92:cc:fa:39:20:e6:4e: f4:9a:5c:58:ef:57:33:92:08:af:58:29:7a:c9:63: ac:9f:8c:81:73:01:7b:c9:2a:41:7f:e6:8d:e9:e4: 0c:a2:87:27:35:f5:54:78:7c:81:29:c0:94:1d:12: 1b:ef:a8:9b:68:7c:35:0a:b1:dd:e5:73:cc:7a:df: 46:9d:f4:a5:31:0c:b5:e4:0b:bd:2d:17:2f:f7:cd: a1:d4:96:4e:27:f7:d9:44:58:5e:a4:ee:12:47:ba: 7a:bd:6a:5f:af:cd:78:69:53:4c:e2:6d:67:63:68: 60:3d:fc:bc:72:61:4c:36:29:6d:dc:cb:9d:d8:cb: ea:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:DE:8C:24:18:FA:44:A2:86:91:55:50:2E:74:BC:C3:17:0B:FA:FC X509v3 Authority Key Identifier: keyid:8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:db:70:af:e7:1b:f6:b6:6a:28:a2:4c:57:3c:fe:31:44:54: 2b:05:1a:59:b5:28:b1:c9:ba:c1:36:91:0c:13:b0:1d:d7:b4: 10:5c:f8:14:4b:90:9d:2c:4f:e5:01:1e:02:7d:71:d3:38:ad: 32:5a:ba:6a:c2:12:41:52:79:b5:80:bb:78:e2:88:a7:cd:be: 22:e0:86:40:a4:f0:07:9d:2f:9f:5e:c3:d2:d8:e0:0f:c5:03: 74:c5:3d:19:47:eb:14:03:c5:2d:47:25:44:4a:4b:c7:d8:9c: 8e:16:d5:e0:15:9c:67:4b:53:20:0b:d6:d3:ef:fe:69:9e:5c: 74:cc:e5:56:6b:db:56:de:2d:f4:66:53:ac:3a:08:59:02:d4: ab:c5:b0:4b:aa:a6:b5:6f:ec:29:d0:de:9c:51:42:72:44:2c: 76:6e:fe:27:36:1e:aa:dd:8d:91:b4:69:63:a1:56:e5:4c:65: f4:ba:0d:bd:42:4e:19:0b:40:2e:22:32:28:6f:ee:8c:b3:7e: db:b8:b0:c7:97:03:e4:38:29:c9:7e:00:3b:f6:6a:0c:2c:72: af:fb:6c:78:d2:db:37:b3:15:a9:04:2d:94:03:92:c0:b2:45: 36:44:f6:8d:38:a9:32:c9:92:1b:a0:1a:9f:c2:52:92:13:97: 0e:ae:68:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEzMzQ2QkYxQ0NF MzgzNUMyNzcwHhcNMjUwNTMxMDMzMDIwWhcNMjUwNjA3MDMzMDIwWjAYMRYwFAYD VQQDEw02ODNhNzdjZC04NjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4buSs0xDfsQvfhJevtjwK9Voud21Mc8/32bs58XuHFLBeTMHTQIsTG9JjWXs 25KAj13RX3DAQu069Tno/aa80md+N6c58vd11RFxKlMFlaM5Zd3uSaYMu0mm69ip o+mvMmAyt4P91ZluHwnBcJu/aW1wqUuXgsW6l+rNNBqxAJLM+jkg5k70mlxY71cz kgivWCl6yWOsn4yBcwF7ySpBf+aN6eQMoocnNfVUeHyBKcCUHRIb76ibaHw1CrHd 5XPMet9GnfSlMQy15Au9LRcv982h1JZOJ/fZRFhepO4SR7p6vWpfr814aVNM4m1n Y2hgPfy8cmFMNilt3Mud2Mvq0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHejCQY +kSihpFVUC50vMMXC/r8MB8GA1UdIwQYMBaAFIzWXkDirsu8VbbaM0a/HM44NcJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTZFQi9ERDRDMUIyQTBB NUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3eFZ0dG96UnI4Y3pqZzF3 bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOWmVRT0t1eTd4VnR0b3pScjhjempnMXduYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3 eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq23Cv5xv2tmoookxXPP4xRFQrBRpZtSixybrBNpEME7Ad17QQXPgU S5CdLE/lAR4CfXHTOK0yWrpqwhJBUnm1gLt44oinzb4i4IZApPAHnS+fXsPS2OAP xQN0xT0ZR+sUA8UtRyVESkvH2JyOFtXgFZxnS1MgC9bT7/5pnlx0zOVWa9tW3i30 ZlOsOghZAtSrxbBLqqa1b+wp0N6cUUJyRCx2bv4nNh6q3Y2RtGljoVblTGX0ug29 Qk4ZC0AuIjIob+6Ms37buLDHlwPkOCnJfgA79moMLHKv+2x40ts3sxWpBC2UA5LA skU2RPaNOKkyyZIboBqfwlKSE5cOrmiw -----END CERTIFICATE-----Generated at Sat May 31 17:53:12 2025 by rpki-client