$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft File: jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft (raw, json) Hash identifier: yRXchHp8BpWbcFyVp/6+qslYuv8yXZRrSpMUPpsNrJs= Subject key identifier: 6B:71:B5:06:77:1E:BB:32:45:6D:95:23:07:6C:76:FA:E2:30:7C:64 Authority key identifier: 8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 Certificate issuer: /CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Certificate serial: 03F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft Manifest number: 03EA Signing time: Sat 31 May 2025 00:42:22 +0000 Manifest this update: Sat 31 May 2025 00:42:21 +0000 Manifest next update: Sat 07 Jun 2025 00:42:21 +0000 Files and hashes: 1: jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl (hash: 4x4aMbEKKdS7wlvCAY22LT/JVdSX2Xs3vr7zkH2dUTU=) 2: D9470BFE7DC811ECB84BD174C4F9AE02.roa (hash: wmK7x3Sk5UopVQwNMRtsiduu1nPhJgBS/7n4gUWasIc=) 3: 84F58DCA7DCB11EC99806E25C4F9AE02.roa (hash: Gd7JCr1281wWWtBPVf/kwPfiC4gERpM54Kx0s/D+laI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8265, serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Validity Not Before: May 31 00:42:21 2025 GMT Not After : Jun 7 00:42:21 2025 GMT Subject: CN=683a506e-e210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ff:19:7d:de:96:5a:bb:5d:32:a3:e3:a5:3d: 5f:80:98:f9:88:9d:01:47:8b:ec:20:6f:fa:1f:4a: cf:eb:21:ea:25:c5:13:18:42:a9:8e:62:4f:32:5e: 64:dc:1b:24:6b:d1:ab:73:c1:35:7a:bb:22:34:7a: 6b:7c:c3:96:11:c2:a3:92:f5:54:d8:cb:a2:48:f4: c1:8a:37:cf:42:25:51:e3:d3:e6:e2:1c:2e:7c:d9: 3a:ff:3d:a4:1b:2c:6e:c8:8a:81:23:57:fa:11:8a: d1:ab:29:4e:41:8d:4f:e1:74:8d:93:ec:3d:26:88: 91:8e:4c:a7:81:2c:bb:a4:06:3f:9d:69:27:06:88: e7:45:f2:90:86:da:7c:93:3c:50:b8:38:79:6a:7f: 90:9f:e5:be:74:3a:cc:d0:1a:21:8c:c1:32:ee:e0: f1:24:b5:34:fb:86:a3:67:ee:99:08:d3:66:23:54: 86:a0:90:c9:68:d6:b9:2e:53:59:94:47:b7:b6:02: 6a:f2:87:63:81:5a:ef:7a:7e:e7:7c:44:06:ac:c0: 43:c4:cf:61:1f:58:c7:86:8d:29:ad:e7:f6:2e:4e: fd:3c:b8:8c:55:63:26:65:ee:dd:c8:e1:5b:4b:c9: 93:fc:77:0a:67:9d:3c:58:c7:ab:8e:60:32:ed:a7: a9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:71:B5:06:77:1E:BB:32:45:6D:95:23:07:6C:76:FA:E2:30:7C:64 X509v3 Authority Key Identifier: keyid:8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:1b:f8:06:41:3a:33:f8:d8:58:5c:b7:7c:b6:ca:b3:16:f0: a5:af:66:53:38:26:bf:a1:ac:3b:88:d2:30:fc:51:3c:42:c8: 44:41:88:5f:5f:56:d1:78:c7:45:6d:fa:ab:02:15:76:64:fc: c4:67:14:77:ca:14:ae:a6:54:69:3e:3e:55:74:3f:31:27:54: 8d:30:cb:20:89:84:2c:bf:89:84:78:53:e7:52:91:1e:cb:9d: f5:4a:02:1a:04:60:fe:31:ee:8f:14:73:94:6e:6a:7d:d9:d1: 6c:b0:77:21:2d:7d:37:d3:d0:28:f0:f2:40:2f:0a:21:86:ef: b0:f1:40:b8:73:0f:15:40:78:f3:ed:96:b2:58:25:10:93:d6: c8:c6:a7:22:f4:7d:a9:a8:c2:9d:05:26:ee:28:f5:36:20:70: 01:dc:48:63:46:c1:27:98:22:d4:8d:e2:92:a1:f9:86:51:31: 3a:cc:90:b3:13:3c:55:f3:35:47:21:11:ef:be:68:84:a6:d5: 08:87:8c:12:8e:45:26:39:0d:56:0f:60:46:19:e9:56:01:b0: 47:5a:bb:ed:e4:e1:b5:14:3b:45:72:1b:e5:45:3d:c8:92:bb: 43:ce:58:b3:b9:d7:32:36:14:ce:60:d8:c6:3a:24:c7:e7:44: 3d:f3:46:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyNjUxMTAvBgNVBAUTKDhGMTFDNDdFMkZFQTE5OUMyNzI3Qzg2QjQ5OTBGM0JG QUU4MjAxNjIwHhcNMjUwNTMxMDA0MjIxWhcNMjUwNjA3MDA0MjIxWjAYMRYwFAYD VQQDEw02ODNhNTA2ZS1lMjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuf8Zfd6WWrtdMqPjpT1fgJj5iJ0BR4vsIG/6H0rP6yHqJcUTGEKpjmJPMl5k 3Bska9Grc8E1ersiNHprfMOWEcKjkvVU2MuiSPTBijfPQiVR49Pm4hwufNk6/z2k GyxuyIqBI1f6EYrRqylOQY1P4XSNk+w9JoiRjkyngSy7pAY/nWknBojnRfKQhtp8 kzxQuDh5an+Qn+W+dDrM0BohjMEy7uDxJLU0+4ajZ+6ZCNNmI1SGoJDJaNa5LlNZ lEe3tgJq8odjgVrven7nfEQGrMBDxM9hH1jHho0pref2Lk79PLiMVWMmZe7dyOFb S8mT/HcKZ508WMerjmAy7aepIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtxtQZ3 HrsyRW2VIwdsdvriMHxkMB8GA1UdIwQYMBaAFI8RxH4v6hmcJyfIa0mQ87+uggFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI2NS80Q0Q1RkUwRTdE QzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUdad25KOGhyU1pEenY2NkNB V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p4SEVmaV9xR1p3bko4aHJTWkR6djY2Q0FXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI2NS80Q0Q1RkUwRTdEQzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUda d25KOGhyU1pEenY2NkNBV0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTG/gGQToz+NhYXLd8tsqzFvClr2ZTOCa/oaw7iNIw/FE8QshEQYhf X1bReMdFbfqrAhV2ZPzEZxR3yhSuplRpPj5VdD8xJ1SNMMsgiYQsv4mEeFPnUpEe y531SgIaBGD+Me6PFHOUbmp92dFssHchLX0309Ao8PJALwohhu+w8UC4cw8VQHjz 7ZayWCUQk9bIxqci9H2pqMKdBSbuKPU2IHAB3EhjRsEnmCLUjeKSofmGUTE6zJCz EzxV8zVHIRHvvmiEptUIh4wSjkUmOQ1WD2BGGelWAbBHWrvt5OG1FDtFchvlRT3I krtDzlizudcyNhTOYNjGOiTH50Q980aj -----END CERTIFICATE-----Generated at Sat May 31 17:22:12 2025 by rpki-client