$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: yzzKAGBn3I0mqiTQioid7DrEd9ES/LAFkMeGJ71/IxM= Subject key identifier: AF:FD:08:28:5F:0C:88:D6:B6:66:2F:5C:B4:80:4C:C5:A7:EC:CE:B5 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D22 Signing time: Fri 30 May 2025 16:19:38 +0000 Manifest this update: Fri 30 May 2025 16:19:37 +0000 Manifest next update: Fri 06 Jun 2025 16:19:37 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: LCQnzJE5g5/i3F+2H4/Hecm5w5+4dizsP8CIKtB1oTI=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: 5WitENJnrkIaDKSZdGfav4jBMV1MXsoOLjamdvAz9SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7472 (0x1d30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: May 30 16:19:37 2025 GMT Not After : Jun 6 16:19:37 2025 GMT Subject: CN=6839da9a-e1eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fb:86:01:1e:d6:1a:d3:c8:c3:dd:f7:a5:15: 09:51:5c:b0:63:4f:9f:a9:26:6a:26:4b:b1:92:e8: 18:e5:b7:53:a4:1f:23:a7:2e:55:5e:aa:e9:79:f4: 7a:e9:95:4a:61:a7:f6:bf:af:4e:3d:86:d4:95:c8: 95:bc:54:17:f6:8f:04:d2:9e:6e:e2:62:2f:a2:a8: cc:1e:ab:b6:c6:61:67:5b:be:ea:2e:e6:2f:7d:46: 33:25:22:ce:63:77:37:45:c1:87:95:5e:fe:f6:eb: e9:63:7c:4e:1a:fd:fa:18:c1:c0:18:f1:85:b1:6a: dc:23:63:b5:7b:3e:0f:dc:f1:3c:cb:f4:61:f8:4c: 68:0c:b1:99:13:d9:78:72:db:15:7d:15:04:5d:db: 16:cc:a9:5e:3c:16:04:68:d2:e5:a1:4f:08:ab:5b: 33:7f:c8:17:f4:cc:a6:da:c0:24:ab:e7:5f:14:74: eb:cf:6e:3f:d4:a1:43:d2:48:31:b1:a9:56:3d:fc: 38:be:7c:c6:f1:a3:8b:ef:42:44:0c:09:f7:b3:8b: d3:9a:40:61:bc:8a:69:2b:e0:37:21:0d:01:0a:43: f6:c6:df:f3:be:9e:60:ac:66:01:bc:b2:42:a0:dc: 3e:0c:64:e5:8f:48:94:c6:f9:77:b6:ba:24:f9:3a: 2c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FD:08:28:5F:0C:88:D6:B6:66:2F:5C:B4:80:4C:C5:A7:EC:CE:B5 X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:91:c2:0a:82:43:79:b2:99:61:71:15:3c:6d:38:c6:2b:c5: 07:45:94:8a:26:30:4d:0b:2c:b9:b3:d5:f1:29:a4:27:6e:d4: 17:a3:4e:ae:f6:be:a9:ae:30:f8:53:1a:f3:13:cc:f5:8f:e3: 02:a5:6e:29:ce:77:07:08:e2:c8:be:c6:fb:01:f7:90:f9:4d: c2:63:f9:31:10:a0:c6:dc:25:1f:4c:37:bd:83:20:7b:e5:e5: a3:07:3d:74:3c:41:cf:56:a4:6f:1b:10:eb:aa:21:3c:36:d4: 4e:80:90:e8:68:bd:18:ef:2a:fb:a3:74:b7:b7:ab:6a:79:ab: f1:57:0b:c2:81:91:41:83:92:bc:68:a6:67:03:2e:be:cf:6b: 6b:cb:75:84:4f:c6:3f:79:e1:6c:6f:5b:8a:59:4e:08:5f:e1: 80:94:5d:a5:45:cf:fd:d3:ea:ec:4e:bd:b8:60:96:e2:19:82: ca:bb:6f:d2:8a:2b:7c:e3:70:7a:a6:32:2f:ab:6b:14:2b:93: 3c:53:50:c3:e9:a9:55:21:b3:e9:2e:dc:1f:cb:d5:69:d5:f4: ad:bb:82:29:0c:70:7f:18:dc:84:89:90:59:4b:53:5b:6e:e7: cd:b4:33:da:2e:9b:25:81:8c:c9:30:2c:8a:ba:58:3a:68:88: e8:a9:5a:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUwNTMwMTYxOTM3WhcNMjUwNjA2MTYxOTM3WjAYMRYwFAYD VQQDEw02ODM5ZGE5YS1lMWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfuGAR7WGtPIw933pRUJUVywY0+fqSZqJkuxkugY5bdTpB8jpy5VXqrpefR6 6ZVKYaf2v69OPYbUlciVvFQX9o8E0p5u4mIvoqjMHqu2xmFnW77qLuYvfUYzJSLO Y3c3RcGHlV7+9uvpY3xOGv36GMHAGPGFsWrcI2O1ez4P3PE8y/Rh+ExoDLGZE9l4 ctsVfRUEXdsWzKlePBYEaNLloU8Iq1szf8gX9Mym2sAkq+dfFHTrz24/1KFD0kgx salWPfw4vnzG8aOL70JEDAn3s4vTmkBhvIppK+A3IQ0BCkP2xt/zvp5grGYBvLJC oNw+DGTlj0iUxvl3trok+Tos2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/9CChf DIjWtmYvXLSATMWn7M61MB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtkcIKgkN5splhcRU8bTjGK8UHRZSKJjBNCyy5s9XxKaQnbtQXo06u 9r6prjD4UxrzE8z1j+MCpW4pzncHCOLIvsb7AfeQ+U3CY/kxEKDG3CUfTDe9gyB7 5eWjBz10PEHPVqRvGxDrqiE8NtROgJDoaL0Y7yr7o3S3t6tqeavxVwvCgZFBg5K8 aKZnAy6+z2try3WET8Y/eeFsb1uKWU4IX+GAlF2lRc/90+rsTr24YJbiGYLKu2/S iit843B6pjIvq2sUK5M8U1DD6alVIbPpLtwfy9Vp1fStu4IpDHB/GNyEiZBZS1Nb bufNtDPaLpslgYzJMCyKulg6aIjoqVqK -----END CERTIFICATE-----Generated at Sat May 31 16:27:46 2025 by rpki-client