$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft File: JXqeaRTVinRbDuar5UjNvgIEiNQ.mft (raw, json) Hash identifier: +8RM/lgTiZ/jyxoEubO2JFh5rmvuR8LOc3gKDNCKbdw= Subject key identifier: 78:BE:45:7E:F9:B1:DB:4D:32:BA:D1:DC:9B:11:4B:39:92:43:A1:85 Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Certificate serial: 0277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft Manifest number: 0233 Signing time: Thu 05 Jun 2025 02:13:04 +0000 Manifest this update: Thu 05 Jun 2025 02:13:04 +0000 Manifest next update: Thu 12 Jun 2025 02:13:04 +0000 Files and hashes: 1: JXqeaRTVinRbDuar5UjNvgIEiNQ.crl (hash: vqUX0xNTob11Sht18LQZN65mDoWV43e9glqD26lbxBk=) 2: 105CF2182FEE11F0A3938C3BC4F9AE02.roa (hash: 59eyuT2URuKIljZ2Lh3Qk0mAQWOkmIViAcmW+OHdvw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 02:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E015D, serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Validity Not Before: Jun 5 02:13:04 2025 GMT Not After : Jun 12 02:13:04 2025 GMT Subject: CN=6840fd30-8d4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1f:2a:c8:e1:d8:1e:74:5c:98:05:72:b5:1e: d9:92:73:99:31:9b:42:82:0b:97:e0:68:0f:b9:6c: 80:28:28:6b:b9:b7:3b:7c:45:7d:51:ff:68:51:c4: 27:92:ad:a2:16:7f:f4:f1:59:43:d1:72:02:7e:66: c6:2b:bf:6a:94:6a:db:5c:d9:db:ad:df:22:00:06: 24:aa:2e:a2:8d:09:aa:d3:66:37:d0:e4:7f:93:57: 16:52:82:60:83:7a:02:13:35:86:86:6b:89:8d:74: 1e:a2:f8:87:f6:03:75:13:ac:37:2c:6f:23:b8:a5: f0:6c:35:10:69:fa:e3:fb:a5:e3:e9:95:a8:55:58: a8:28:16:23:30:2a:4b:3d:58:46:a2:ab:0e:d4:ee: 3c:01:86:c5:e6:d7:9f:da:68:28:fa:03:38:eb:33: d8:15:33:44:c6:43:34:df:47:6f:c7:fa:0f:b8:78: 44:0a:91:89:c2:ca:c9:1e:2a:36:36:92:7a:04:82: 71:2f:6a:fb:3c:fd:20:1e:be:0f:2c:09:c5:40:a0: 84:82:15:df:9d:c9:7c:21:3f:59:36:3d:64:58:4e: b7:76:23:24:04:cb:27:c3:2a:f2:ff:e5:1b:a6:91: 50:82:a4:29:13:f2:5e:06:49:dd:e1:50:0b:ce:42: 87:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:BE:45:7E:F9:B1:DB:4D:32:BA:D1:DC:9B:11:4B:39:92:43:A1:85 X509v3 Authority Key Identifier: keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c1:c9:7e:fc:11:ed:d5:5b:0a:87:c9:75:b4:5e:b1:7b:8a: 0f:b1:cc:32:8e:23:33:e2:16:8e:10:8d:99:ba:6c:43:12:30: 3e:1b:9e:37:8b:c3:46:8d:47:00:d2:5d:ca:b8:3a:7c:c3:4e: b3:41:8a:36:91:bb:9d:5e:e7:d4:56:34:82:41:16:67:e1:ce: 6f:cd:3e:28:18:25:3d:72:ea:f5:29:23:2c:f5:35:7f:f9:41: 7e:b7:66:d6:8f:42:2c:4a:9b:aa:81:19:c3:ce:78:fe:0c:8d: 09:46:65:b1:54:19:0c:9f:c9:ee:14:58:8f:42:1b:64:1b:92: 14:33:49:0b:6d:3a:dd:5d:37:c0:a5:6a:70:54:ab:a1:f1:39: de:92:8f:4e:21:9a:b5:34:fe:22:74:e6:19:37:6d:db:a0:e6: 9c:de:47:24:1a:8a:20:36:b1:12:67:2a:e0:8e:d8:d4:24:c5: 70:77:8c:6d:54:99:bd:70:91:29:b4:8e:9d:05:a9:1a:ed:6d: c5:c2:bf:dd:21:c2:cf:93:cf:d7:e5:86:63:bb:14:c5:74:32: 3f:a9:b5:bd:f4:83:fe:5c:62:43:9d:7d:f2:82:36:40:4b:87: b5:bf:8f:91:86:90:ce:ac:7f:e3:74:d6:76:b3:5e:82:b0:2f: 03:49:bd:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxNUQxMTAvBgNVBAUTKDI1N0E5RTY5MTRENThBNzQ1QjBFRTZBQkU1NDhDREJF MDIwNDg4RDQwHhcNMjUwNjA1MDIxMzA0WhcNMjUwNjEyMDIxMzA0WjAYMRYwFAYD VQQDEw02ODQwZmQzMC04ZDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvx8qyOHYHnRcmAVytR7ZknOZMZtCgguX4GgPuWyAKChrubc7fEV9Uf9oUcQn kq2iFn/08VlD0XICfmbGK79qlGrbXNnbrd8iAAYkqi6ijQmq02Y30OR/k1cWUoJg g3oCEzWGhmuJjXQeoviH9gN1E6w3LG8juKXwbDUQafrj+6Xj6ZWoVVioKBYjMCpL PVhGoqsO1O48AYbF5tef2mgo+gM46zPYFTNExkM030dvx/oPuHhECpGJwsrJHio2 NpJ6BIJxL2r7PP0gHr4PLAnFQKCEghXfncl8IT9ZNj1kWE63diMkBMsnwyry/+Ub ppFQgqQpE/JeBknd4VALzkKHLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHi+RX75 sdtNMrrR3JsRSzmSQ6GFMB8GA1UdIwQYMBaAFCV6nmkU1Yp0Ww7mq+VIzb4CBIjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDE1RC82QzQ3NDkyMDcz MTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmluUmJEdWFyNVVqTnZnSUVp TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pYcWVhUlRWaW5SYkR1YXI1VWpOdmdJRWlOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDE1RC82QzQ3NDkyMDczMTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmlu UmJEdWFyNVVqTnZnSUVpTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0wcl+/BHt1VsKh8l1tF6xe4oPscwyjiMz4haOEI2ZumxDEjA+G543 i8NGjUcA0l3KuDp8w06zQYo2kbudXufUVjSCQRZn4c5vzT4oGCU9cur1KSMs9TV/ +UF+t2bWj0IsSpuqgRnDznj+DI0JRmWxVBkMn8nuFFiPQhtkG5IUM0kLbTrdXTfA pWpwVKuh8Tneko9OIZq1NP4idOYZN23boOac3kckGoogNrESZyrgjtjUJMVwd4xt VJm9cJEptI6dBaka7W3Fwr/dIcLPk8/X5YZjuxTFdDI/qbW99IP+XGJDnX3ygjZA S4e1v4+RhpDOrH/jdNZ2s16CsC8DSb1E -----END CERTIFICATE-----Generated at Thu Jun 5 19:02:48 2025 by rpki-client