$ rpki-client -vvf rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft File: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft (raw, json) Hash identifier: 1e95H5I4S88/q/arKVxSh6QGE8jITKQ7L/aM5HdRagk= Subject key identifier: D4:C8:10:1E:B4:D6:8E:80:5D:33:44:7E:BA:C4:AD:B0:38:F2:2A:27 Authority key identifier: 8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 Certificate issuer: /CN=A919DD2D/serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Certificate serial: 11F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft Manifest number: 11EE Signing time: Fri 30 May 2025 17:20:43 +0000 Manifest this update: Fri 30 May 2025 17:20:43 +0000 Manifest next update: Fri 06 Jun 2025 17:20:43 +0000 Files and hashes: 1: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl (hash: tOFa77UaWFeQWct+NwBd+bypVrys49m9WFS5oalODMw=) 2: A295F860E71011E8899C3917C4F9AE02.roa (hash: MpKbuC4p+zIoKJkZfEG3DvMzDY6zY/kK40o2YHQcwMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4597 (0x11f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DD2D, serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Validity Not Before: May 30 17:20:43 2025 GMT Not After : Jun 6 17:20:43 2025 GMT Subject: CN=6839e8eb-de49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:0f:c1:0c:ce:fc:a7:48:e0:83:aa:0b:9b: 83:1b:4b:59:3d:17:8c:ef:4e:d6:fb:4c:59:00:31: 10:0c:c4:fe:77:4b:9a:a5:2d:6d:15:81:9e:8c:8f: fd:e2:b1:3f:c4:74:5c:d2:ac:c8:34:11:8b:09:37: c6:67:21:96:8c:f0:ba:e5:fc:ad:f9:bc:65:a9:d4: 6e:dd:4e:d3:2e:da:45:d3:2c:71:f3:63:c4:27:c6: 70:4e:89:fb:eb:5e:5c:0d:ac:c7:fd:47:23:ea:ae: ca:3e:50:ac:53:2f:76:51:c3:9f:25:28:c2:1c:ee: 78:e3:c5:38:dd:05:9f:a8:7b:40:45:5e:08:24:4d: 7f:26:9e:18:3c:54:49:1e:5a:99:16:79:87:08:1e: 09:62:6c:94:c2:17:68:eb:37:82:6b:49:6e:71:e7: df:c7:c4:48:83:cc:6e:c0:53:92:ef:b6:05:4f:30: 81:f9:b6:73:e3:ee:a6:20:df:74:a5:e0:7b:3e:06: e5:fb:0f:32:12:1f:24:ff:28:1c:7b:a6:29:bf:16: 9c:3a:cd:9c:8e:31:d2:3a:d4:7c:b9:15:b3:a8:53: 27:98:75:8e:0e:06:4f:39:2d:02:8e:b7:c2:93:10: d8:c1:cf:bd:bf:13:47:9e:19:7a:bd:c7:76:17:d0: ee:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C8:10:1E:B4:D6:8E:80:5D:33:44:7E:BA:C4:AD:B0:38:F2:2A:27 X509v3 Authority Key Identifier: keyid:8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:f4:42:0b:a7:3e:ea:17:8d:e6:28:95:fd:4a:73:49:aa:3e: cf:f4:8a:1e:cf:3b:9a:2f:c0:36:f1:d4:ff:74:86:c7:1a:cd: 0c:49:88:d4:e3:1c:22:a9:22:3d:97:8d:59:02:b2:31:70:33: 8e:d5:85:fa:8a:1b:55:03:6d:61:43:2d:81:c8:90:06:75:05: 4d:a4:97:24:84:76:f0:48:aa:2b:db:cf:84:f3:df:3f:2c:13: dc:f5:fd:64:54:2d:ab:6a:f5:63:3f:5e:c7:34:b9:89:ff:d6: f0:28:1d:d3:1e:10:6a:6d:fc:c4:55:bf:5a:ef:ad:ff:3b:35: 84:c5:bc:ad:3d:a0:9a:aa:23:d4:fa:d1:35:e2:c1:45:91:ef: d6:ef:ad:db:aa:4b:57:4a:7e:b6:53:a8:1f:c3:54:66:5f:6a: c3:85:dd:db:46:4d:05:28:6c:39:d6:2d:ba:d1:69:dd:bd:e7: f5:f7:bd:6f:69:ef:21:f4:7a:ce:a3:f4:0f:be:b0:b2:65:09: 0e:a2:97:bf:ca:07:12:62:8f:a8:44:06:66:9f:ee:2d:97:93: d9:61:38:ed:e2:58:20:1f:3b:84:46:89:f0:94:7e:f1:36:bc: 02:9c:d5:0a:54:45:63:53:16:da:ca:86:ba:b2:9a:17:1f:0b: 04:1d:7e:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUREMkQxMTAvBgNVBAUTKDhDRjQyMzk4MEZEM0E3RjY3RUM1RjRBNTQzQTIwM0E1 M0UzQ0U2NzYwHhcNMjUwNTMwMTcyMDQzWhcNMjUwNjA2MTcyMDQzWjAYMRYwFAYD VQQDEw02ODM5ZThlYi1kZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjkPwQzO/KdI4IOqC5uDG0tZPReM707W+0xZADEQDMT+d0uapS1tFYGejI/9 4rE/xHRc0qzINBGLCTfGZyGWjPC65fyt+bxlqdRu3U7TLtpF0yxx82PEJ8ZwTon7 615cDazH/Ucj6q7KPlCsUy92UcOfJSjCHO5448U43QWfqHtARV4IJE1/Jp4YPFRJ HlqZFnmHCB4JYmyUwhdo6zeCa0luceffx8RIg8xuwFOS77YFTzCB+bZz4+6mIN90 peB7Pgbl+w8yEh8k/ygce6YpvxacOs2cjjHSOtR8uRWzqFMnmHWODgZPOS0CjrfC kxDYwc+9vxNHnhl6vcd2F9Du/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTIEB60 1o6AXTNEfrrErbA48ionMB8GA1UdIwQYMBaAFIz0I5gP06f2fsX0pUOiA6U+POZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REQyRC85RDEyNjk1Q0U3 MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBfWi14ZlNsUTZJRHBUNDg1 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQUWptQV9UcF9aLXhmU2xRNklEcFQ0ODVuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REQyRC85RDEyNjk1Q0U3MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBf Wi14ZlNsUTZJRHBUNDg1blkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD9EILpz7qF43mKJX9SnNJqj7P9IoezzuaL8A28dT/dIbHGs0MSYjU 4xwiqSI9l41ZArIxcDOO1YX6ihtVA21hQy2ByJAGdQVNpJckhHbwSKor28+E898/ LBPc9f1kVC2ravVjP17HNLmJ/9bwKB3THhBqbfzEVb9a763/OzWExbytPaCaqiPU +tE14sFFke/W763bqktXSn62U6gfw1RmX2rDhd3bRk0FKGw51i260Wndvef1971v ae8h9HrOo/QPvrCyZQkOope/ygcSYo+oRAZmn+4tl5PZYTjt4lggHzuERonwlH7x NrwCnNUKVEVjUxbayoa6spoXHwsEHX6E -----END CERTIFICATE-----Generated at Sat May 31 17:20:42 2025 by rpki-client