$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft File: jnhDSe8t33hXX9VMx47YxFyXbL8.mft (raw, json) Hash identifier: 0ibOlX9o8DxhSkypepZ73kdim6B4C4Lpzm7JwE55qM8= Subject key identifier: FE:0E:CB:5C:D3:EA:D1:64:30:FD:BC:7E:3D:1D:3F:22:4F:72:46:25 Authority key identifier: 8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF Certificate issuer: /CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Certificate serial: 092E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft Manifest number: 091B Signing time: Fri 30 May 2025 20:32:49 +0000 Manifest this update: Fri 30 May 2025 20:32:49 +0000 Manifest next update: Fri 06 Jun 2025 20:32:49 +0000 Files and hashes: 1: jnhDSe8t33hXX9VMx47YxFyXbL8.crl (hash: Ozq0Fng+hjcbPNosT8CSZ27TcTdlmq1yI/BmAl8+dZg=) 2: A84D830AA54511EAA942C683C4F9AE02.roa (hash: LRUqK0HbwhlophByZnm497LSzITbbBMeAuaK57/ofL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2350 (0x92e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Validity Not Before: May 30 20:32:49 2025 GMT Not After : Jun 6 20:32:49 2025 GMT Subject: CN=683a15f1-737b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9e:d2:56:a2:c6:41:e0:df:31:cf:96:6b:ef: fe:e0:a1:a7:79:ba:d9:f2:92:1e:b5:36:ce:ea:2b: 62:de:32:d4:25:06:47:28:e7:1d:5c:e9:92:b2:9e: d1:57:f0:c9:ca:1b:7e:df:20:9d:39:87:ef:9c:d4: 8a:f9:76:8f:0c:fe:67:5b:32:e4:c9:b4:f8:96:ef: 69:0a:1a:e1:c4:0e:7c:6f:59:ea:8f:8f:74:12:e5: 1b:15:8b:66:c0:f8:d6:d6:40:5d:f8:86:55:4c:97: 45:e6:e5:34:99:ba:e3:e9:75:3f:b9:0c:e4:3e:15: 9c:f0:99:85:8e:2b:fd:9a:02:15:b4:b7:3e:59:3d: 4c:31:1e:a1:6e:f8:9d:d8:5c:81:43:06:d8:00:1b: 45:dc:01:2d:b5:d6:ba:c1:17:36:d2:cf:be:a8:60: cd:d1:94:c8:7b:d8:1a:2a:fb:9c:19:4e:b4:65:ba: 5f:23:0d:f9:19:b2:81:c9:ce:5e:bd:95:a0:ca:34: 85:db:6c:a6:b4:33:68:63:a3:ee:48:aa:2e:e9:38: dd:49:2b:4c:9a:c4:dd:90:f3:85:3a:1b:a6:33:b6: 78:8c:e9:89:3a:b2:c1:db:18:7a:2f:62:05:06:d7: b8:a7:5d:73:21:5b:4a:bc:dd:bf:fa:ef:a8:4e:e2: c7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:0E:CB:5C:D3:EA:D1:64:30:FD:BC:7E:3D:1D:3F:22:4F:72:46:25 X509v3 Authority Key Identifier: keyid:8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:f5:91:74:8f:df:59:1c:c7:da:c2:5d:af:e9:89:1b:03:0a: fa:7a:51:66:f2:e4:2e:67:f4:bb:4a:59:22:7c:de:4b:86:90: 8f:c8:c8:fd:71:7b:83:77:30:ea:8c:51:f5:73:9e:fb:82:1b: 13:de:c2:9b:9d:3e:ba:da:15:7f:80:db:89:e9:c1:a3:3b:86: ac:ea:06:cd:da:0b:8c:73:54:34:ba:de:5b:67:cf:52:e4:2d: d7:04:a4:b3:3f:ca:bf:6c:cf:9a:49:d3:b1:51:d5:90:e0:7c: 79:c0:22:03:60:75:62:3c:23:f9:88:72:50:07:e0:46:b8:ea: 21:6b:46:a9:4f:fc:51:94:42:53:1e:4e:1d:01:9c:50:b4:5a: b3:76:14:51:f4:85:18:27:cb:73:5a:63:11:1f:69:ed:d9:9d: a2:d1:c0:4a:0b:7e:87:56:6c:6b:51:7c:ca:ec:b2:37:b5:60: b5:1a:ec:18:50:b2:b8:63:f0:91:2d:78:92:32:57:cb:d3:93: 41:cf:54:26:bc:72:e3:04:1b:a1:3f:23:f5:90:27:f5:84:84: e2:20:8d:b4:c2:74:4c:a5:02:5e:eb:2b:7c:a6:1e:46:ba:0d: 40:ac:5d:78:ae:e2:97:93:5c:9a:ca:9b:e7:fc:e3:0a:73:f3: 9e:37:ba:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDhFNzg0MzQ5RUYyRERGNzg1NzVGRDU0Q0M3OEVEOEM0 NUM5NzZDQkYwHhcNMjUwNTMwMjAzMjQ5WhcNMjUwNjA2MjAzMjQ5WjAYMRYwFAYD VQQDEw02ODNhMTVmMS03MzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZ7SVqLGQeDfMc+Wa+/+4KGnebrZ8pIetTbO6iti3jLUJQZHKOcdXOmSsp7R V/DJyht+3yCdOYfvnNSK+XaPDP5nWzLkybT4lu9pChrhxA58b1nqj490EuUbFYtm wPjW1kBd+IZVTJdF5uU0mbrj6XU/uQzkPhWc8JmFjiv9mgIVtLc+WT1MMR6hbvid 2FyBQwbYABtF3AEttda6wRc20s++qGDN0ZTIe9gaKvucGU60ZbpfIw35GbKByc5e vZWgyjSF22ymtDNoY6PuSKou6TjdSStMmsTdkPOFOhumM7Z4jOmJOrLB2xh6L2IF Bte4p11zIVtKvN2/+u+oTuLHwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4Oy1zT 6tFkMP28fj0dPyJPckYlMB8GA1UdIwQYMBaAFI54Q0nvLd94V1/VTMeO2MRcl2y/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi9DQThFN0Y3RUE1 NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMzaFhYOVZNeDQ3WXhGeVhi TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puaERTZTh0MzNoWFg5Vk14NDdZeEZ5WGJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi9DQThFN0Y3RUE1NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMz aFhYOVZNeDQ3WXhGeVhiTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC79ZF0j99ZHMfawl2v6YkbAwr6elFm8uQuZ/S7SlkifN5LhpCPyMj9 cXuDdzDqjFH1c577ghsT3sKbnT662hV/gNuJ6cGjO4as6gbN2guMc1Q0ut5bZ89S 5C3XBKSzP8q/bM+aSdOxUdWQ4Hx5wCIDYHViPCP5iHJQB+BGuOoha0apT/xRlEJT Hk4dAZxQtFqzdhRR9IUYJ8tzWmMRH2nt2Z2i0cBKC36HVmxrUXzK7LI3tWC1GuwY ULK4Y/CRLXiSMlfL05NBz1QmvHLjBBuhPyP1kCf1hITiII20wnRMpQJe6yt8ph5G ug1ArF14ruKXk1yaypvn/OMKc/OeN7rz -----END CERTIFICATE-----Generated at Sat May 31 17:44:04 2025 by rpki-client