$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft File: JXqeaRTVinRbDuar5UjNvgIEiNQ.mft (raw, json) Hash identifier: fLxSqFFj1YuXhp8+UGDbhsouVaT22T4tkv2otE0mWgg= Subject key identifier: A9:A7:20:07:29:06:4E:22:0D:F4:0F:EF:D3:A4:34:EE:52:04:BA:39 Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft Manifest number: 0200 Signing time: Thu 13 Mar 2025 02:05:47 +0000 Manifest this update: Thu 13 Mar 2025 02:05:47 +0000 Manifest next update: Thu 20 Mar 2025 02:05:47 +0000 Files and hashes: 1: JXqeaRTVinRbDuar5UjNvgIEiNQ.crl (hash: kJCoe6ODPEKtZBXlK2d2TKPtUEw79/aEo5CH+9OEjPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 02:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E015D Validity Not Before: Mar 13 02:05:47 2025 GMT Not After : Mar 20 02:05:47 2025 GMT Subject: CN=67d23d7b-8a58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:41:05:d2:a3:31:f5:1a:b0:9a:53:40:51:d8: 96:35:d5:1e:f9:b4:15:02:67:16:e3:86:27:10:c8: 87:9c:09:3d:2a:27:a4:d3:ce:16:9e:f4:59:06:b2: ee:7a:3c:6c:2a:6c:57:1c:a1:01:45:f0:15:4a:11: ca:b3:af:19:fb:ad:11:9f:da:c8:3e:32:b3:de:77: 79:75:20:5a:eb:7d:56:b9:e3:26:0e:8d:ce:b9:4b: 41:df:10:26:74:e2:71:c1:69:83:b9:30:77:fc:05: b3:6a:61:ef:84:d8:5a:21:c5:d5:cc:d2:91:fd:2f: 6c:3f:58:f2:9d:49:62:66:8f:af:e0:8a:0f:4a:4b: 76:8c:b6:8c:5a:c6:3c:cd:b6:3a:92:04:ae:ca:d2: 5c:8c:d6:ac:11:1a:52:35:89:62:09:ee:e0:e1:37: 16:f1:c6:d5:8f:d2:02:26:d6:89:f1:d1:28:0a:eb: 99:52:9b:f0:96:29:64:42:11:e5:34:52:31:c7:57: 34:b0:9a:0c:c6:0c:72:58:01:a8:b5:f4:47:d5:48: f9:39:26:1d:9d:ab:3a:37:1d:d5:e6:39:dc:c3:cc: 00:15:5c:a3:05:2c:c7:5d:52:fb:e8:ef:e9:23:32: b3:98:f7:c0:be:1a:d3:78:db:2d:d3:d5:59:01:12: fc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A7:20:07:29:06:4E:22:0D:F4:0F:EF:D3:A4:34:EE:52:04:BA:39 X509v3 Authority Key Identifier: keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:3d:6b:1d:b9:34:25:dc:22:54:60:b3:8f:d6:37:2b:d7:60: 43:95:a4:be:dc:79:3e:72:33:02:59:1a:13:9c:31:24:af:86: 44:fa:81:95:41:64:1f:ea:33:44:b9:bc:9e:8e:27:d1:71:73: e0:ce:ff:d9:e6:7a:27:ef:98:43:2d:e9:5a:88:ed:bf:fe:05: 91:93:cc:6b:1e:a8:33:1e:f7:a8:07:eb:81:2b:1c:38:e2:0d: 9b:1f:87:1e:09:7a:52:11:38:f0:f8:9b:1f:68:a8:ea:ef:f6: a6:05:83:74:9a:53:83:f5:93:48:32:ca:77:bc:de:4b:dd:63: f7:2c:59:5a:c9:61:a6:e5:d7:db:8d:83:64:32:16:5b:04:5d: 77:f9:35:ff:99:08:2c:87:c2:16:07:ba:95:b8:84:86:b5:ff: 75:01:a7:2c:ef:2b:be:7d:d2:4d:ea:07:44:90:86:be:a3:90: 7b:8c:3c:b8:b1:72:49:18:15:60:1a:89:51:10:88:bb:d6:7d: 9f:db:58:6b:79:23:66:be:fc:03:73:d2:ba:ad:0a:50:90:69: e6:33:b9:d3:77:24:34:8c:1a:e7:b7:4e:b4:4f:4b:4a:b3:2f: 58:b0:66:62:88:60:f1:aa:9c:68:ad:1d:b0:b0:eb:37:dd:82: 66:40:2a:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxNUQxMTAvBgNVBAUTKDI1N0E5RTY5MTRENThBNzQ1QjBFRTZBQkU1NDhDREJF MDIwNDg4RDQwHhcNMjUwMzEzMDIwNTQ3WhcNMjUwMzIwMDIwNTQ3WjAYMRYwFAYD VQQDEw02N2QyM2Q3Yi04YTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkEF0qMx9RqwmlNAUdiWNdUe+bQVAmcW44YnEMiHnAk9Kiek084WnvRZBrLu ejxsKmxXHKEBRfAVShHKs68Z+60Rn9rIPjKz3nd5dSBa631WueMmDo3OuUtB3xAm dOJxwWmDuTB3/AWzamHvhNhaIcXVzNKR/S9sP1jynUliZo+v4IoPSkt2jLaMWsY8 zbY6kgSuytJcjNasERpSNYliCe7g4TcW8cbVj9ICJtaJ8dEoCuuZUpvwlilkQhHl NFIxx1c0sJoMxgxyWAGotfRH1Uj5OSYdnas6Nx3V5jncw8wAFVyjBSzHXVL76O/p IzKzmPfAvhrTeNst09VZARL8SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmnIAcp Bk4iDfQP79OkNO5SBLo5MB8GA1UdIwQYMBaAFCV6nmkU1Yp0Ww7mq+VIzb4CBIjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDE1RC82QzQ3NDkyMDcz MTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmluUmJEdWFyNVVqTnZnSUVp TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pYcWVhUlRWaW5SYkR1YXI1VWpOdmdJRWlOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDE1RC82QzQ3NDkyMDczMTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmlu UmJEdWFyNVVqTnZnSUVpTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARPWsduTQl3CJUYLOP1jcr12BDlaS+3Hk+cjMCWRoTnDEkr4ZE+oGV QWQf6jNEubyejifRcXPgzv/Z5non75hDLelaiO2//gWRk8xrHqgzHveoB+uBKxw4 4g2bH4ceCXpSETjw+JsfaKjq7/amBYN0mlOD9ZNIMsp3vN5L3WP3LFlayWGm5dfb jYNkMhZbBF13+TX/mQgsh8IWB7qVuISGtf91Aacs7yu+fdJN6gdEkIa+o5B7jDy4 sXJJGBVgGolREIi71n2f21hreSNmvvwDc9K6rQpQkGnmM7nTdyQ0jBrnt060T0tK sy9YsGZiiGDxqpxorR2wsOs33YJmQCpZ -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:58 2025 by rpki-client