$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft File: J8OQD7137iLLcempDoFXTN5GRK0.mft (raw, json) Hash identifier: iLjm/qbFC/y1VyaUhZOyXZV7uZ1ivcbLQOwVqMmx/aM= Subject key identifier: 67:B4:52:1E:AA:E1:59:92:97:BB:6A:5C:C4:87:27:18:8C:3D:67:25 Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 0750 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft Manifest number: 0749 Signing time: Fri 30 May 2025 21:53:23 +0000 Manifest this update: Fri 30 May 2025 21:53:23 +0000 Manifest next update: Fri 06 Jun 2025 21:53:23 +0000 Files and hashes: 1: J8OQD7137iLLcempDoFXTN5GRK0.crl (hash: +hXsoJS6irCl8BYLT85+HuKyOuvbvcIQdhCFLnzs7oI=) 2: 594EEA2CAEA711EE961B0558C4F9AE02.roa (hash: USU8pNkMAdz6WSNLBXiulBGQVhWKRWb5vA71xaDbimA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1872 (0x750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23, serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Validity Not Before: May 30 21:53:23 2025 GMT Not After : Jun 6 21:53:23 2025 GMT Subject: CN=683a28d3-fb12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4b:63:3b:cc:e9:51:5f:5a:95:b5:57:10:f2: 2a:60:92:6c:c2:c5:1c:a5:4c:da:48:4a:42:d2:27: ce:94:a9:5a:f1:b1:4d:3c:54:3d:3c:07:49:34:6f: 25:b1:48:fa:f8:5d:b8:16:00:28:8c:f8:eb:c4:91: ba:c6:17:09:97:26:f3:19:77:3d:4b:e1:02:c2:ee: b8:54:b6:a5:f3:0b:43:91:25:38:c7:82:16:0d:6c: 6b:fa:80:bb:93:99:0d:df:93:b7:73:a6:f4:e9:40: b5:97:ee:e1:fd:f7:d7:0f:ee:8d:21:c6:9c:22:e0: e0:e1:44:25:26:d3:9e:0e:c3:03:1d:ab:d4:42:ea: 19:86:80:c9:c7:9b:7f:36:cc:4b:86:24:df:6d:a4: df:eb:cc:1e:30:4f:4d:df:0b:55:bf:14:51:82:18: 71:eb:b6:e5:e3:9c:4a:62:6d:fe:42:fd:70:2d:4e: a4:1a:f9:69:85:96:84:24:df:ee:37:b6:df:cf:37: 66:99:c9:4a:e8:e6:71:f9:03:7e:28:29:81:1f:6e: 79:fe:a9:86:11:6a:ed:f9:1d:09:ec:d0:eb:9f:69: eb:92:0d:f9:90:60:cb:a1:67:ac:4b:19:97:af:a2: 2a:31:a0:44:12:d3:5d:4b:95:8c:b8:e4:d4:3d:82: c5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B4:52:1E:AA:E1:59:92:97:BB:6A:5C:C4:87:27:18:8C:3D:67:25 X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:44:1b:e9:39:4e:e0:e3:a4:1a:77:95:fc:f5:bf:bc:66:13: 64:b6:69:9c:de:21:d8:66:d5:ad:7c:bb:5f:8a:6c:7c:21:d1: a0:0c:61:c1:8e:fb:5f:09:9b:94:22:25:c8:ae:87:81:89:83: 9a:3b:40:75:3e:76:9c:5b:64:b6:48:2b:b1:c9:f6:32:96:74: 36:2b:05:a0:4b:75:83:71:1e:cf:10:00:67:33:98:83:83:1e: 25:96:fc:71:af:60:fa:ea:0f:0c:f4:2f:5e:f6:cc:7c:ce:84: 9f:f0:33:4d:6e:9b:cb:8e:e9:a2:22:63:18:e8:bb:38:cc:da: f2:97:6a:a4:fa:97:c6:7c:e9:7c:2a:69:15:c4:a5:4f:73:3e: 57:3f:de:f0:d8:0e:41:f7:44:00:c6:35:ab:b4:4a:20:a0:d3: c8:cc:5a:e8:cb:02:66:5b:f4:f0:4b:b1:f7:70:cf:af:f9:77: 9b:72:79:90:7e:f5:fa:7b:b2:f2:03:de:bc:51:d2:08:3b:a7: 4a:ac:0a:db:95:ff:b2:bf:18:33:7e:62:a2:68:2a:56:0b:ef: 24:48:44:f3:91:95:80:33:45:43:ae:ed:83:78:c1:f7:da:61: 25:b7:18:4e:35:54:eb:48:de:a3:f9:83:a6:ea:d5:74:21:f6: d4:f1:2b:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjUwNTMwMjE1MzIzWhcNMjUwNjA2MjE1MzIzWjAYMRYwFAYD VQQDEw02ODNhMjhkMy1mYjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ktjO8zpUV9albVXEPIqYJJswsUcpUzaSEpC0ifOlKla8bFNPFQ9PAdJNG8l sUj6+F24FgAojPjrxJG6xhcJlybzGXc9S+ECwu64VLal8wtDkSU4x4IWDWxr+oC7 k5kN35O3c6b06UC1l+7h/ffXD+6NIcacIuDg4UQlJtOeDsMDHavUQuoZhoDJx5t/ NsxLhiTfbaTf68weME9N3wtVvxRRghhx67bl45xKYm3+Qv1wLU6kGvlphZaEJN/u N7bfzzdmmclK6OZx+QN+KCmBH255/qmGEWrt+R0J7NDrn2nrkg35kGDLoWesSxmX r6IqMaBEEtNdS5WMuOTUPYLFnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGe0Uh6q 4VmSl7tqXMSHJxiMPWclMB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEyMy9BQzUzM0RFRTI4OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdp TExjZW1wRG9GWFRONUdSSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhRBvpOU7g46Qad5X89b+8ZhNktmmc3iHYZtWtfLtfimx8IdGgDGHB jvtfCZuUIiXIroeBiYOaO0B1PnacW2S2SCuxyfYylnQ2KwWgS3WDcR7PEABnM5iD gx4llvxxr2D66g8M9C9e9sx8zoSf8DNNbpvLjumiImMY6Ls4zNryl2qk+pfGfOl8 KmkVxKVPcz5XP97w2A5B90QAxjWrtEogoNPIzFroywJmW/TwS7H3cM+v+XebcnmQ fvX6e7LyA968UdIIO6dKrArblf+yvxgzfmKiaCpWC+8kSETzkZWAM0VDru2DeMH3 2mEltxhONVTrSN6j+YOm6tV0IfbU8Sub -----END CERTIFICATE-----Generated at Sat May 31 16:44:53 2025 by rpki-client