$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: podSbHoSWvejdG+D3QEop3Hic6ZYJxalFolq+7EpX6E= Subject key identifier: D1:3C:AE:5A:B1:0A:B2:52:08:A6:6D:0B:50:63:48:24:26:9E:44:77 Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 0231 Signing time: Mon 07 Apr 2025 01:33:00 +0000 Manifest this update: Mon 07 Apr 2025 01:33:00 +0000 Manifest next update: Mon 14 Apr 2025 01:33:00 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: udyMV3RrnNMWr4a477vm8WerB01WwageXJy5enXskzQ=) 2: E60CA9B06B3311EFB79B5F87C4F9AE02.roa (hash: xA2I3SK1LrwCNTYfAy8aXGaXpbqj6PnMmp3xWe4cBbs=) 3: 274B6ADCF15B11ED950C456FC4F9AE02.roa (hash: BiugR8dn8pnpzPHCg7eZaT65u46wR3tiYmJITlqhZck=) 4: 26C50D3EF15B11ED950C456FC4F9AE02.roa (hash: H9+at/H3w6hcTEAgzVR2r70qV9olS6sufdVX4JIUdXE=) 5: 285AD17A061811EEADC2405AC4F9AE02.roa (hash: WVJ4UwY6KypbKvk4Ln4sfzY4jnw/x07G6eZ4nvVHo1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE Validity Not Before: Apr 7 01:33:00 2025 GMT Not After : Apr 14 01:33:00 2025 GMT Subject: CN=67f32b4c-2a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ee:21:ec:a3:9f:ea:c0:d9:b2:bb:2b:12:4c: 1a:0d:1d:a8:ca:cf:5a:53:89:ba:a2:b1:38:28:06: 5e:2c:76:fb:b4:75:ef:e0:a4:94:6f:8e:31:50:4a: 61:06:8b:80:25:c7:51:e7:b2:bb:15:44:21:2e:36: cd:6a:92:3c:15:a1:09:e7:15:38:9f:33:45:70:7c: e9:b5:d4:39:c2:81:ce:8c:3b:12:cf:a4:4e:2a:d9: 16:50:1b:37:3a:5b:e7:c2:92:b1:34:22:70:4a:03: 1f:8f:bc:59:8e:49:61:18:cd:3c:0c:15:2f:68:a6: 6f:30:0f:95:f7:82:09:6b:78:cb:b3:71:f5:99:1e: 8c:f0:a5:98:f2:97:77:d4:36:1d:e4:6f:2a:a1:a0: 89:77:90:a8:4d:86:c4:b0:70:2d:2b:00:8d:8c:aa: ae:74:20:e9:86:a7:90:b9:35:77:95:77:67:59:c2: fc:e1:5d:3c:79:34:9a:3e:19:77:ab:a4:ed:85:92: 7f:a9:13:17:e6:1f:1f:8b:3d:78:e8:05:45:2d:ba: ac:38:97:b1:98:28:b0:88:76:a0:9b:ce:56:8e:74: a0:4d:bf:1d:65:71:66:63:9f:66:37:05:16:b4:d4: 84:23:cf:05:94:d2:b0:ed:52:1a:89:00:b7:4f:43: 41:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3C:AE:5A:B1:0A:B2:52:08:A6:6D:0B:50:63:48:24:26:9E:44:77 X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:c1:82:96:9a:22:6f:7e:c5:7e:2b:9c:2d:2d:a9:18:b6:c1: 99:39:2b:eb:60:a6:61:8b:7f:43:e4:89:04:e2:4c:92:32:3f: c7:98:e7:7c:f3:10:b0:fa:19:72:8b:0d:c1:a1:33:ad:aa:e9: 83:1f:42:6c:d1:6d:de:c1:1f:42:a5:00:57:93:87:25:22:37: d8:dd:23:22:9f:99:99:c1:85:e6:95:22:53:51:ad:a2:fb:9b: 30:41:90:09:00:3a:0c:f5:40:3a:5d:5c:d2:93:8d:bb:61:3c: 1a:8d:ad:e8:4e:f6:65:c5:d4:ef:79:5e:fa:3b:34:67:69:0f: 4f:02:fc:53:18:09:7e:c2:0c:b4:2d:d4:33:86:e7:43:30:95: 9d:3c:23:c7:d1:a6:c9:32:1b:33:32:31:77:62:21:52:36:7e: eb:9f:d2:e8:3d:fc:5e:37:ed:4d:3b:da:4f:7d:24:2b:64:2b: c7:f7:7e:1f:35:83:e0:f7:cf:62:34:52:1d:39:c0:18:44:31: 74:fc:18:0a:8d:8d:c2:4b:bc:12:ff:2e:57:19:be:12:25:17: 2a:7f:19:6f:9c:91:2c:ed:2d:1b:d4:0f:7e:f4:02:e4:36:3e: a6:17:7e:26:96:df:a5:2f:8e:78:8a:99:44:24:25:09:a9:12: a3:cc:ed:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjUwNDA3MDEzMzAwWhcNMjUwNDE0MDEzMzAwWjAYMRYwFAYD VQQDEw02N2YzMmI0Yy0yYTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1e4h7KOf6sDZsrsrEkwaDR2oys9aU4m6orE4KAZeLHb7tHXv4KSUb44xUEph BouAJcdR57K7FUQhLjbNapI8FaEJ5xU4nzNFcHzptdQ5woHOjDsSz6ROKtkWUBs3 OlvnwpKxNCJwSgMfj7xZjklhGM08DBUvaKZvMA+V94IJa3jLs3H1mR6M8KWY8pd3 1DYd5G8qoaCJd5CoTYbEsHAtKwCNjKqudCDphqeQuTV3lXdnWcL84V08eTSaPhl3 q6TthZJ/qRMX5h8fiz146AVFLbqsOJexmCiwiHagm85WjnSgTb8dZXFmY59mNwUW tNSEI88FlNKw7VIaiQC3T0NB+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNE8rlqx CrJSCKZtC1BjSCQmnkR3MB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8wYKWmiJvfsV+K5wtLakYtsGZOSvrYKZhi39D5IkE4kySMj/HmOd8 8xCw+hlyiw3BoTOtqumDH0Js0W3ewR9CpQBXk4clIjfY3SMin5mZwYXmlSJTUa2i +5swQZAJADoM9UA6XVzSk427YTwaja3oTvZlxdTveV76OzRnaQ9PAvxTGAl+wgy0 LdQzhudDMJWdPCPH0abJMhszMjF3YiFSNn7rn9LoPfxeN+1NO9pPfSQrZCvH934f NYPg989iNFIdOcAYRDF0/BgKjY3CS7wS/y5XGb4SJRcqfxlvnJEs7S0b1A9+9ALk Nj6mF34mlt+lL454iplEJCUJqRKjzO0O -----END CERTIFICATE-----Generated at Mon Apr 7 03:44:01 2025 by rpki-client