$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft File: JXqeaRTVinRbDuar5UjNvgIEiNQ.mft (raw, json) Hash identifier: BPdcRImMXY2WX3lFYUexhDcM6QGo9i7/ksjaZ0yjB2Q= Subject key identifier: 58:D0:D9:58:27:4F:07:70:EA:CC:09:F5:BF:D7:DC:C5:88:78:95:06 Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft Manifest number: 0219 Signing time: Thu 17 Apr 2025 02:05:54 +0000 Manifest this update: Thu 17 Apr 2025 02:05:53 +0000 Manifest next update: Thu 24 Apr 2025 02:05:53 +0000 Files and hashes: 1: JXqeaRTVinRbDuar5UjNvgIEiNQ.crl (hash: MnIVpe7RGLpkCmgQS6sy0/YrdKO7PCXw6Imq87omPQ4=) 2: 59E393C204D011F0B464E44DC4F9AE02.roa (hash: F/d9YZwkTTfQMW9az/pHb2W2rOLLgswMCEvuqBHWldg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 02:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E015D, serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Validity Not Before: Apr 17 02:05:53 2025 GMT Not After : Apr 24 02:05:53 2025 GMT Subject: CN=68006201-f2c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:89:11:f8:a5:ce:ed:5f:ab:96:2f:6a:8c:2b: f6:0e:c6:de:6a:a2:a1:d2:2a:33:df:b5:0a:01:0c: ff:c6:fd:9a:b0:3b:01:ce:8a:5a:65:7e:2b:32:19: 75:f3:2f:00:93:7b:4b:6a:19:dd:48:97:d2:28:b3: 0d:70:c4:fc:1b:4d:12:52:5e:89:70:11:5b:aa:3f: a6:d1:43:5f:75:68:d7:be:6c:5b:1a:39:1c:e3:4c: ba:4b:87:bf:96:2d:b4:0e:a2:ef:e5:18:df:2b:f4: f4:a1:35:99:ea:b5:69:96:c9:11:62:db:b9:9e:47: 66:ec:0d:c8:bc:7d:30:26:e9:ae:7b:ba:97:03:65: dd:6a:4c:31:26:ee:94:86:88:d9:64:ef:6e:8f:c8: b4:6d:5c:47:29:be:b6:d4:24:59:5d:9b:3c:04:f8: 1e:77:20:26:49:59:10:db:df:f8:ff:3f:71:e0:dc: 94:04:aa:ec:20:14:eb:52:b8:d0:95:4e:93:9f:7e: f0:65:44:86:f1:04:1c:12:b7:f1:b5:6f:c9:dd:e0: 60:6e:a8:e7:3a:52:a5:e0:ba:25:25:d0:04:d5:04: 92:d3:2b:c2:e6:a1:aa:68:c3:e5:b4:1f:e2:c6:c9: 01:17:7d:37:e7:fe:55:c0:68:90:d0:43:2f:d5:f7: c7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D0:D9:58:27:4F:07:70:EA:CC:09:F5:BF:D7:DC:C5:88:78:95:06 X509v3 Authority Key Identifier: keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:74:b2:68:95:23:5a:8e:63:01:d5:46:46:c5:2a:52:db:ef: b6:18:8a:34:f8:34:57:56:6f:e0:a8:82:26:a7:48:65:82:bb: 22:44:31:9f:f6:a3:87:83:06:a8:7c:e2:91:8d:6e:ae:6b:d6: 88:cc:65:28:51:24:55:24:2c:8e:be:6e:cd:58:07:2f:5e:83: 5c:c4:ff:9a:06:94:b8:40:4b:ba:f3:cf:17:ef:3f:77:d9:a1: 81:ed:13:e3:1a:4e:3a:37:87:c4:17:44:9e:46:75:0b:24:53: 82:f8:87:a0:66:14:d3:92:4d:21:ec:9a:24:97:ed:50:10:6d: 63:7c:46:c2:49:35:6e:e6:0d:21:04:c0:7e:14:ad:c9:93:cb: f7:97:a5:dd:d6:d6:6b:36:dd:89:18:a5:65:fc:1c:e4:cb:77: 05:bf:71:d5:23:3d:ac:ca:f7:e5:49:5e:f1:bd:5c:90:3f:bc: 8d:89:ac:a1:ae:65:dc:d8:bc:01:00:f1:6c:da:ff:be:bb:27: fd:8d:8b:48:f5:ca:f4:29:f0:2b:11:a5:ce:f0:ae:43:52:c7: ea:57:97:ad:fc:e1:c0:8a:b7:6f:1b:f8:0b:82:41:3b:9c:69: 4e:b9:35:4b:a8:ab:0c:9b:7f:09:86:b1:51:f7:13:d1:bf:a1: 3c:13:ad:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxNUQxMTAvBgNVBAUTKDI1N0E5RTY5MTRENThBNzQ1QjBFRTZBQkU1NDhDREJF MDIwNDg4RDQwHhcNMjUwNDE3MDIwNTUzWhcNMjUwNDI0MDIwNTUzWjAYMRYwFAYD VQQDEw02ODAwNjIwMS1mMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIkR+KXO7V+rli9qjCv2DsbeaqKh0ioz37UKAQz/xv2asDsBzopaZX4rMhl1 8y8Ak3tLahndSJfSKLMNcMT8G00SUl6JcBFbqj+m0UNfdWjXvmxbGjkc40y6S4e/ li20DqLv5RjfK/T0oTWZ6rVplskRYtu5nkdm7A3IvH0wJumue7qXA2XdakwxJu6U hojZZO9uj8i0bVxHKb621CRZXZs8BPgedyAmSVkQ29/4/z9x4NyUBKrsIBTrUrjQ lU6Tn37wZUSG8QQcErfxtW/J3eBgbqjnOlKl4LolJdAE1QSS0yvC5qGqaMPltB/i xskBF3035/5VwGiQ0EMv1ffHRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFjQ2Vgn Twdw6swJ9b/X3MWIeJUGMB8GA1UdIwQYMBaAFCV6nmkU1Yp0Ww7mq+VIzb4CBIjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDE1RC82QzQ3NDkyMDcz MTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmluUmJEdWFyNVVqTnZnSUVp TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pYcWVhUlRWaW5SYkR1YXI1VWpOdmdJRWlOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDE1RC82QzQ3NDkyMDczMTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmlu UmJEdWFyNVVqTnZnSUVpTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFdLJolSNajmMB1UZGxSpS2++2GIo0+DRXVm/gqIImp0hlgrsiRDGf 9qOHgwaofOKRjW6ua9aIzGUoUSRVJCyOvm7NWAcvXoNcxP+aBpS4QEu6888X7z93 2aGB7RPjGk46N4fEF0SeRnULJFOC+IegZhTTkk0h7Jokl+1QEG1jfEbCSTVu5g0h BMB+FK3Jk8v3l6Xd1tZrNt2JGKVl/Bzky3cFv3HVIz2syvflSV7xvVyQP7yNiayh rmXc2LwBAPFs2v++uyf9jYtI9cr0KfArEaXO8K5DUsfqV5et/OHAirdvG/gLgkE7 nGlOuTVLqKsMm38JhrFR9xPRv6E8E61L -----END CERTIFICATE-----Generated at Fri Apr 18 19:17:23 2025 by rpki-client