$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: CsPNqPZBVtRnsqINOBhbJZVHC6KRAIyXjjzfGqhzXVk= Subject key identifier: 00:FE:65:37:F9:19:D1:DF:81:B6:15:27:DB:94:4D:74:BA:27:DD:87 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: E2 Signing time: Sat 31 May 2025 05:04:23 +0000 Manifest this update: Sat 31 May 2025 05:04:22 +0000 Manifest next update: Sat 07 Jun 2025 05:04:22 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: hZnCEf3I1YFZ4XCJlL6YQL8I9UxU1lKbUWLZ3Y0VDIo=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: May 31 05:04:22 2025 GMT Not After : Jun 7 05:04:22 2025 GMT Subject: CN=683a8dd6-9b0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:db:f3:46:ad:b1:77:9a:a3:4a:a4:52:3b: 87:ba:e2:e1:fa:5f:90:3a:d5:cd:5f:2e:29:46:fa: 5c:d1:95:e1:c8:ef:79:7d:16:74:a7:ec:3d:92:c6: 02:2c:ef:27:7c:c4:6e:d9:09:bb:9b:fe:83:e1:a9: 0c:4b:3c:a4:d0:86:3f:2f:2f:6e:9b:3b:17:3e:f5: 9a:c4:e6:c3:15:f9:57:73:2e:e3:d3:e8:5a:f3:38: d5:0d:bc:73:87:85:3e:5b:ea:7c:56:5c:cf:96:dc: de:20:22:86:4f:d0:f1:12:78:d3:91:1a:ec:c1:75: f7:8e:75:af:ea:4d:b3:7d:93:74:77:43:39:04:64: 36:f0:c7:80:23:f1:f4:2d:45:2e:f8:82:9b:1f:a4: 94:b3:3e:34:4b:56:d4:b8:45:60:75:3e:45:71:09: 7a:76:94:9d:3c:87:c1:05:2b:77:11:05:a4:a7:44: 82:a2:10:93:41:e6:fd:2f:e1:23:98:ee:94:54:0b: fc:7b:4d:9c:df:f8:bb:8d:c8:dd:5d:0d:fc:2c:e1: 90:41:4f:fb:03:79:d5:6d:bf:cd:7b:42:f0:9d:33: a8:9e:df:4e:cd:48:4b:b3:0e:2c:19:01:18:b6:42: 5a:ca:89:3a:f4:a5:aa:0f:1a:bb:52:30:5f:e7:9a: 0f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:FE:65:37:F9:19:D1:DF:81:B6:15:27:DB:94:4D:74:BA:27:DD:87 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:c7:c9:84:94:d8:b5:68:61:9a:ab:52:de:11:3f:a7:af:77: 68:38:9f:cf:ca:d4:6e:4e:ce:aa:6e:ea:a6:93:77:37:a6:fe: ce:03:e7:dc:56:a0:18:d5:4b:81:92:ad:57:01:6e:04:e6:66: 11:ab:76:79:d7:18:c3:74:b2:56:f8:c1:ba:00:7a:5f:44:8c: 2b:ef:9a:68:5d:81:07:72:39:5c:ce:f7:f2:28:bf:55:f2:8a: f4:90:4e:8d:a0:4d:c1:ca:85:12:9c:f4:bd:45:0e:d0:40:f8: 06:f7:8c:f2:d9:e4:f7:01:79:4e:24:89:ee:21:03:f4:16:39: 4b:ed:d6:d2:60:08:43:80:84:b2:b9:bd:2e:cc:bd:e3:4b:bb: 77:ef:c4:25:9d:1e:3f:ac:1b:d5:05:b7:db:c3:85:b4:34:d9: 25:eb:13:5d:b7:6c:6b:dd:32:1d:c2:8b:13:91:7f:03:fe:37: c7:59:8a:25:a0:66:c9:4c:85:e3:55:2e:96:62:ae:33:4e:d5: d7:03:22:ca:bb:d1:4b:9a:54:9e:f2:7e:3d:d2:2c:c0:6f:52: be:78:59:c3:5a:6a:e1:00:7d:66:8b:07:82:58:11:a3:e0:2e: 09:12:8b:53:71:64:de:a5:29:ce:79:fd:9d:7d:a8:a9:05:02: 9a:8a:43:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUwNTMxMDUwNDIyWhcNMjUwNjA3MDUwNDIyWjAYMRYwFAYD VQQDEw02ODNhOGRkNi05YjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqXb80atsXeao0qkUjuHuuLh+l+QOtXNXy4pRvpc0ZXhyO95fRZ0p+w9ksYC LO8nfMRu2Qm7m/6D4akMSzyk0IY/Ly9umzsXPvWaxObDFflXcy7j0+ha8zjVDbxz h4U+W+p8VlzPltzeICKGT9DxEnjTkRrswXX3jnWv6k2zfZN0d0M5BGQ28MeAI/H0 LUUu+IKbH6SUsz40S1bUuEVgdT5FcQl6dpSdPIfBBSt3EQWkp0SCohCTQeb9L+Ej mO6UVAv8e02c3/i7jcjdXQ38LOGQQU/7A3nVbb/Ne0LwnTOont9OzUhLsw4sGQEY tkJayok69KWqDxq7UjBf55oPzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAD+ZTf5 GdHfgbYVJ9uUTXS6J92HMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7x8mElNi1aGGaq1LeET+nr3doOJ/PytRuTs6qbuqmk3c3pv7OA+fc VqAY1UuBkq1XAW4E5mYRq3Z51xjDdLJW+MG6AHpfRIwr75poXYEHcjlczvfyKL9V 8or0kE6NoE3ByoUSnPS9RQ7QQPgG94zy2eT3AXlOJInuIQP0FjlL7dbSYAhDgISy ub0uzL3jS7t378QlnR4/rBvVBbfbw4W0NNkl6xNdt2xr3TIdwosTkX8D/jfHWYol oGbJTIXjVS6WYq4zTtXXAyLKu9FLmlSe8n490izAb1K+eFnDWmrhAH1miweCWBGj 4C4JEotTcWTepSnOef2dfaipBQKaikOw -----END CERTIFICATE-----Generated at Sat May 31 17:17:24 2025 by rpki-client