$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: mBWvcu4WYlhVsKJrMMla59yQJqC1s3HBPXW/Gs17cH4= Subject key identifier: BA:DD:5E:32:51:E7:1F:3C:7C:BF:8F:E4:AB:BF:46:F2:F0:38:08:C0 Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 024E Signing time: Thu 05 Jun 2025 01:42:15 +0000 Manifest this update: Thu 05 Jun 2025 01:42:15 +0000 Manifest next update: Thu 12 Jun 2025 01:42:15 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: aYKSO7b7Q7GR8xAYXK9h0PQ9h2U5PEOmpcQ1yg+Vjlo=) 2: E60CA9B06B3311EFB79B5F87C4F9AE02.roa (hash: xA2I3SK1LrwCNTYfAy8aXGaXpbqj6PnMmp3xWe4cBbs=) 3: 274B6ADCF15B11ED950C456FC4F9AE02.roa (hash: BiugR8dn8pnpzPHCg7eZaT65u46wR3tiYmJITlqhZck=) 4: 26C50D3EF15B11ED950C456FC4F9AE02.roa (hash: H9+at/H3w6hcTEAgzVR2r70qV9olS6sufdVX4JIUdXE=) 5: 285AD17A061811EEADC2405AC4F9AE02.roa (hash: WVJ4UwY6KypbKvk4Ln4sfzY4jnw/x07G6eZ4nvVHo1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Jun 5 01:42:15 2025 GMT Not After : Jun 12 01:42:15 2025 GMT Subject: CN=6840f5f7-8f91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2a:f4:ea:c0:9f:08:f8:98:ba:27:ca:10:e6: 9e:e5:e3:f9:63:0d:42:dd:35:29:85:a8:c1:97:23: 5c:2c:c9:ce:d1:69:ea:a3:03:33:4a:b1:8c:0d:c6: 1f:8f:6f:f2:dd:4e:7f:03:e3:ff:f3:a4:b2:80:68: 23:7e:d9:fa:97:31:ee:c4:ad:1c:8d:ad:88:d8:b7: e4:1e:fe:4d:ef:41:1f:f2:1a:8b:7b:75:bc:74:a9: 3d:bf:2a:53:0c:b5:01:1c:54:c9:d9:ac:d0:25:9c: f5:d6:9c:f2:6f:98:8e:94:63:60:ad:b7:ee:41:3d: ac:c3:6a:3c:e0:6d:c1:61:8b:75:3d:5e:b1:99:13: d1:2a:88:52:32:fd:4d:19:e5:e7:d2:a8:5e:8a:1f: 2b:75:8a:d7:c0:54:23:d1:5c:7d:77:68:22:05:84: 48:6d:dd:7d:e5:5d:cf:74:8a:30:fd:87:3e:72:ab: 64:95:aa:ae:b0:58:9d:14:86:03:85:b5:c3:35:7b: 32:0a:31:2e:4d:07:be:1f:2b:d5:2a:75:e6:fc:2f: 65:2f:1d:e5:c5:40:e9:0e:0e:8c:3e:b4:f4:e4:89: b7:f7:70:18:22:b9:b4:a6:e0:1d:52:f8:a5:d3:e8: 5e:6a:a4:83:4d:0c:06:d6:d9:fa:de:6d:76:41:97: f1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:DD:5E:32:51:E7:1F:3C:7C:BF:8F:E4:AB:BF:46:F2:F0:38:08:C0 X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:2f:53:a3:ab:ec:1a:79:60:e1:da:e2:42:72:26:4a:97:8f: d6:05:08:2a:7f:25:a9:90:91:93:48:e1:f6:8f:04:6f:c8:88: 29:e0:9c:e5:38:b7:e4:c9:ec:f3:ba:1d:dc:06:a9:13:b4:4c: 9e:65:ec:69:5a:16:f8:be:6c:cd:ae:05:17:f0:d8:8d:4a:bc: d5:d8:9f:ed:79:31:e7:a9:90:55:d1:c0:e4:c0:24:13:45:e3: 28:45:2a:49:65:38:1a:f7:85:6d:24:0f:4f:74:da:10:67:f5: d0:be:95:a4:d8:c0:2a:a8:43:66:69:12:ed:40:72:05:68:17: b1:e9:2f:8e:9f:3a:58:3a:f3:de:cf:4b:83:cc:f4:0b:04:64: 58:47:e2:11:d9:1e:4d:c9:ca:4f:d6:59:9b:71:ce:3e:a8:d1: fc:cc:1a:ce:c7:c3:a3:57:9c:5a:3c:ef:68:0b:a6:ff:e1:76: cd:9f:38:03:39:66:54:b1:b3:f8:32:36:72:2f:f9:76:bb:54: fa:42:b0:54:d8:0e:a3:f2:25:81:6d:54:18:f7:90:a9:38:3d: 44:70:97:99:29:14:59:69:4f:b8:9f:0d:c6:fe:a6:29:88:92: e4:0e:bc:48:4e:45:d7:64:ac:5b:c5:ea:a8:ea:3e:fb:10:a1: 68:f9:a0:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjUwNjA1MDE0MjE1WhcNMjUwNjEyMDE0MjE1WjAYMRYwFAYD VQQDEw02ODQwZjVmNy04ZjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCr06sCfCPiYuifKEOae5eP5Yw1C3TUphajBlyNcLMnO0WnqowMzSrGMDcYf j2/y3U5/A+P/86SygGgjftn6lzHuxK0cja2I2LfkHv5N70Ef8hqLe3W8dKk9vypT DLUBHFTJ2azQJZz11pzyb5iOlGNgrbfuQT2sw2o84G3BYYt1PV6xmRPRKohSMv1N GeXn0qheih8rdYrXwFQj0Vx9d2giBYRIbd195V3PdIow/Yc+cqtklaqusFidFIYD hbXDNXsyCjEuTQe+HyvVKnXm/C9lLx3lxUDpDg6MPrT05Im393AYIrm0puAdUvil 0+heaqSDTQwG1tn63m12QZfx2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrdXjJR 5x88fL+P5Ku/RvLwOAjAMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvL1Ojq+waeWDh2uJCciZKl4/WBQgqfyWpkJGTSOH2jwRvyIgp4Jzl OLfkyezzuh3cBqkTtEyeZexpWhb4vmzNrgUX8NiNSrzV2J/teTHnqZBV0cDkwCQT ReMoRSpJZTga94VtJA9PdNoQZ/XQvpWk2MAqqENmaRLtQHIFaBex6S+OnzpYOvPe z0uDzPQLBGRYR+IR2R5NycpP1lmbcc4+qNH8zBrOx8OjV5xaPO9oC6b/4XbNnzgD OWZUsbP4MjZyL/l2u1T6QrBU2A6j8iWBbVQY95CpOD1EcJeZKRRZaU+4nw3G/qYp iJLkDrxITkXXZKxbxeqo6j77EKFo+aCW -----END CERTIFICATE-----Generated at Sat Jun 7 04:13:16 2025 by rpki-client