$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: jVvlqKXtDozRxF6mECLp766uneMO+Zl3ByVQKfG9mcE= Subject key identifier: CF:E8:13:6B:A0:77:65:77:60:69:22:7B:BD:A1:98:75:E4:EE:C0:11 Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: 1D Signing time: Sat 05 Apr 2025 07:11:52 +0000 Manifest this update: Sat 05 Apr 2025 07:11:52 +0000 Manifest next update: Sat 12 Apr 2025 07:11:52 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: t0cT2yee+mrKDXG4Y1xzzTw7Jl61exWroDAzcSXOq7k=) 2: FD36CD26EC2211EFAE200F79C4F9AE02.roa (hash: 31Dxym1vHZAUuP9HrMGwdQy+0zNPX5MVVrv3CWlz3bg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E Validity Not Before: Apr 5 07:11:52 2025 GMT Not After : Apr 12 07:11:52 2025 GMT Subject: CN=67f0d7b8-0f2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c1:2d:48:9b:b9:7a:0e:65:da:41:4a:f8:cd: 53:38:fe:b4:70:05:f9:6b:01:f4:7b:ea:73:f2:7a: c4:4c:91:19:94:6d:23:2f:7b:57:7a:61:2e:c4:05: a5:53:99:d6:7d:71:df:44:14:8a:d1:23:bb:09:dc: 85:73:a9:f3:68:f7:ee:47:ee:e3:db:3b:56:2d:90: e7:9e:fe:bf:da:8d:2c:c2:82:18:52:5e:62:35:1f: 8a:d9:06:e5:f9:1c:b3:c2:1c:29:f6:a7:14:dc:c2: 1f:3d:dc:ac:0f:94:dd:57:16:eb:57:4a:48:cd:4d: e1:aa:58:9a:2f:f5:5a:da:79:97:7f:00:37:9c:98: 0e:15:59:76:f2:27:9c:70:52:16:7f:a1:67:9c:00: 0a:73:fb:99:3b:05:cd:5c:88:10:63:91:aa:68:46: 58:65:cd:94:b3:6c:7c:ba:c1:ac:28:b0:5d:ec:07: ec:22:0e:8c:a3:4f:2b:6a:87:ee:39:68:19:4a:ca: f8:d3:76:ab:ad:d5:f0:47:0e:89:f3:af:1e:02:01: 81:88:67:33:df:69:9c:6f:01:fd:a9:22:2c:40:0a: 9d:59:21:87:f5:fc:b1:f2:8f:c3:47:83:b3:78:42: 7d:b4:0e:f2:3e:34:29:e4:5e:4f:b1:09:ab:ef:75: d2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E8:13:6B:A0:77:65:77:60:69:22:7B:BD:A1:98:75:E4:EE:C0:11 X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:22:f3:f4:0e:43:be:4b:05:1c:92:61:ba:e1:3f:41:63:48: 3b:be:6e:9d:49:b8:a1:06:5b:51:14:3f:fd:1a:38:e6:5f:32: 6b:af:f3:28:37:97:ba:2e:54:ad:55:ad:56:d0:df:65:25:dc: 44:b8:fd:cc:ba:a7:20:a6:3f:72:68:93:9b:aa:5a:cd:5a:ad: 64:27:05:4a:4c:0a:9f:9d:33:00:10:47:6c:ef:51:b1:9e:f5: f0:b8:0c:0b:56:74:90:9e:cb:c7:c0:32:0b:5b:71:b3:0b:4e: fa:db:21:18:34:dd:05:91:68:41:ab:cc:97:4e:e2:81:a0:0e: 04:aa:1a:12:30:20:82:33:d3:39:48:b8:9a:dd:0c:79:65:9f: 58:89:0c:48:3f:12:33:a7:de:1e:5e:c2:26:cd:6a:70:31:43: 18:41:c5:91:02:d0:99:06:4c:0a:2f:9f:9d:e4:d1:1e:6b:0c: b0:6c:dd:f6:22:58:32:08:2e:76:e3:b3:0c:6d:4b:4a:1d:ee: 8a:ef:83:7a:19:34:2a:a9:29:96:db:14:b2:60:28:c4:60:63: 27:0e:07:72:14:6a:e4:81:6e:bf:31:ed:8f:2e:b3:23:53:35: 64:d3:8c:3e:3e:98:cc:ac:e8:53:cd:ef:70:47:4b:9b:36:b0: 3a:21:51:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTk2RTExMC8GA1UEBRMoMjQyOUEzRUU1MDg4RjNENDUzNzJBOEUzQjM2ODM0Qzc1 RUFFNkQyOTAeFw0yNTA0MDUwNzExNTJaFw0yNTA0MTIwNzExNTJaMBgxFjAUBgNV BAMTDTY3ZjBkN2I4LTBmMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXwS1Im7l6DmXaQUr4zVM4/rRwBflrAfR76nPyesRMkRmUbSMve1d6YS7EBaVT mdZ9cd9EFIrRI7sJ3IVzqfNo9+5H7uPbO1YtkOee/r/ajSzCghhSXmI1H4rZBuX5 HLPCHCn2pxTcwh893KwPlN1XFutXSkjNTeGqWJov9VraeZd/ADecmA4VWXbyJ5xw UhZ/oWecAApz+5k7Bc1ciBBjkapoRlhlzZSzbHy6wawosF3sB+wiDoyjTytqh+45 aBlKyvjTdqut1fBHDonzrx4CAYGIZzPfaZxvAf2pIixACp1ZIYf1/LHyj8NHg7N4 Qn20DvI+NCnkXk+xCavvddITAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz+gTa6B3 ZXdgaSJ7vaGYdeTuwBEwHwYDVR0jBBgwFoAUJCmj7lCI89RTcqjjs2g0x16ubSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTZFLzIzRDJGMTZFRUMy MTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkNtajdsQ0k4OVJUY3FqanMyZzB4MTZ1YlNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF OTZFLzIzRDJGMTZFRUMyMTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlS VGNxampzMmcweDE2dWJTay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALMi8/QOQ75LBRySYbrhP0FjSDu+bp1JuKEGW1EUP/0aOOZfMmuv8yg3 l7ouVK1VrVbQ32Ul3ES4/cy6pyCmP3Jok5uqWs1arWQnBUpMCp+dMwAQR2zvUbGe 9fC4DAtWdJCey8fAMgtbcbMLTvrbIRg03QWRaEGrzJdO4oGgDgSqGhIwIIIz0zlI uJrdDHlln1iJDEg/EjOn3h5ewibNanAxQxhBxZEC0JkGTAovn53k0R5rDLBs3fYi WDIILnbjswxtS0od7orvg3oZNCqpKZbbFLJgKMRgYycOB3IUauSBbr8x7Y8usyNT NWTTjD4+mMys6FPN73BHS5s2sDohUeU= -----END CERTIFICATE-----Generated at Sun Apr 6 00:17:51 2025 by rpki-client