$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: Jx8RhqjyjKfTSvH1dhMnet3DL5KRxS4nC5xRZPnSUTo= Subject key identifier: 9A:9D:D1:A1:A7:9D:1D:E1:17:85:A4:CB:55:E6:BD:8A:36:62:B3:0D Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: 3A Signing time: Sat 31 May 2025 07:09:58 +0000 Manifest this update: Sat 31 May 2025 07:09:57 +0000 Manifest next update: Sat 07 Jun 2025 07:09:57 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: WfWy2FNpq3MLQwE5PfFH7VBRUAi/3sL4owvx7U2SjvM=) 2: 92B377C82CB011F0A2E86B16C4F9AE02.roa (hash: jOhNPwVgr8IgRDHfIrJJZGVjc3Pfqrjw7RoDj2c/Y0o=) 3: 7F639A182CB011F08B722116C4F9AE02.roa (hash: spTkb5xEKtj6kOvbsLtYV5brzWGqrgveZXxT4s0PHa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:09:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E, serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Validity Not Before: May 31 07:09:57 2025 GMT Not After : Jun 7 07:09:57 2025 GMT Subject: CN=683aab46-cd15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fc:a6:d1:6e:09:f0:b2:59:fc:48:6f:29:10: c1:0b:2d:d2:f9:c3:ae:8d:9c:48:42:cb:dd:c4:3c: 2b:05:84:98:b8:57:57:7e:6f:d1:a0:64:ad:c2:e5: ed:19:43:e1:eb:4b:57:db:fe:24:95:37:f7:f2:0e: e4:2e:5b:83:51:62:61:78:88:81:ed:18:9f:38:4a: 43:b3:f5:13:f5:6d:e1:42:23:08:61:b1:aa:33:59: 7f:22:c3:cd:66:12:e6:01:91:8b:df:c1:70:d8:91: 1f:61:8b:34:98:4a:37:c1:70:78:f9:25:14:82:c0: 44:33:10:cf:2d:69:6a:68:32:03:fc:6f:d8:99:53: 3e:f4:f5:1f:73:22:af:8b:e2:4b:b2:b6:19:db:1e: b9:79:cf:dc:86:d8:08:de:46:e0:87:27:7b:20:62: 2f:66:e9:78:ab:e4:a9:87:ae:00:92:9e:95:8e:1c: 96:51:a9:9c:4e:f0:22:38:f9:c2:a9:10:e2:10:e0: b8:04:3c:d7:81:67:08:18:f3:bd:3d:4c:0c:ff:f5: 1f:09:f2:ca:9a:9f:bb:60:06:67:b2:72:f8:34:9a: 1b:9d:ca:10:64:70:61:7a:ca:98:dd:0b:cd:df:2a: ed:17:54:50:af:2d:e9:fd:5f:be:5f:8e:9e:5d:20: d0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:9D:D1:A1:A7:9D:1D:E1:17:85:A4:CB:55:E6:BD:8A:36:62:B3:0D X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:9a:f2:a7:42:f3:d4:3b:01:d4:e7:f7:bd:0e:5d:90:19:6b: 23:a6:c6:9c:60:24:fe:01:ba:c0:b3:50:c3:50:a9:82:ce:c5: d1:b2:e9:fa:90:56:0a:c2:de:b2:75:85:c7:b0:4c:ff:6b:ba: e6:5d:40:65:be:08:71:bd:97:57:33:78:60:b9:8b:b4:a5:06: 13:c9:72:d8:f0:1f:99:5c:bf:78:d9:be:6d:1e:3e:ac:8a:ca: c2:d2:26:d4:eb:0e:24:d3:18:3c:59:e5:7e:38:f2:88:69:32: 29:ea:72:dd:d5:e0:92:86:11:44:e9:25:5d:2f:aa:e9:0f:2c: 1e:59:2c:ef:ed:d3:4c:7b:47:4d:20:44:c3:89:f9:33:d4:b6: f6:8c:b8:31:f9:f1:c6:81:12:25:40:fd:47:7b:12:56:50:77: d8:ba:46:6c:c3:c6:87:d7:8c:a8:b2:b8:46:bd:fe:e0:92:e6: 9f:c9:df:c1:b7:6a:d9:8f:58:c8:72:24:86:6b:fb:d0:73:90: 8f:b5:ec:73:ad:a5:01:22:89:5b:50:57:30:60:10:ca:49:81: 04:85:ae:fd:ac:64:ed:f2:0f:38:62:99:3c:30:39:e6:ca:9e: 16:e5:73:9c:77:11:df:26:2d:97:bb:c8:83:f8:9f:32:a4:94: b6:52:79:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTk2RTExMC8GA1UEBRMoMjQyOUEzRUU1MDg4RjNENDUzNzJBOEUzQjM2ODM0Qzc1 RUFFNkQyOTAeFw0yNTA1MzEwNzA5NTdaFw0yNTA2MDcwNzA5NTdaMBgxFjAUBgNV BAMTDTY4M2FhYjQ2LWNkMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2/KbRbgnwsln8SG8pEMELLdL5w66NnEhCy93EPCsFhJi4V1d+b9GgZK3C5e0Z Q+HrS1fb/iSVN/fyDuQuW4NRYmF4iIHtGJ84SkOz9RP1beFCIwhhsaozWX8iw81m EuYBkYvfwXDYkR9hizSYSjfBcHj5JRSCwEQzEM8taWpoMgP8b9iZUz709R9zIq+L 4kuythnbHrl5z9yG2AjeRuCHJ3sgYi9m6Xir5KmHrgCSnpWOHJZRqZxO8CI4+cKp EOIQ4LgEPNeBZwgY8709TAz/9R8J8sqan7tgBmeycvg0mhudyhBkcGF6ypjdC83f Ku0XVFCvLen9X75fjp5dINBBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmp3Roaed HeEXhaTLVea9ijZisw0wHwYDVR0jBBgwFoAUJCmj7lCI89RTcqjjs2g0x16ubSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTZFLzIzRDJGMTZFRUMy MTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkNtajdsQ0k4OVJUY3FqanMyZzB4MTZ1YlNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF OTZFLzIzRDJGMTZFRUMyMTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlS VGNxampzMmcweDE2dWJTay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACWa8qdC89Q7AdTn970OXZAZayOmxpxgJP4BusCzUMNQqYLOxdGy6fqQ VgrC3rJ1hcewTP9ruuZdQGW+CHG9l1czeGC5i7SlBhPJctjwH5lcv3jZvm0ePqyK ysLSJtTrDiTTGDxZ5X448ohpMinqct3V4JKGEUTpJV0vqukPLB5ZLO/t00x7R00g RMOJ+TPUtvaMuDH58caBEiVA/Ud7ElZQd9i6RmzDxofXjKiyuEa9/uCS5p/J38G3 atmPWMhyJIZr+9BzkI+17HOtpQEiiVtQVzBgEMpJgQSFrv2sZO3yDzhimTwwOebK nhblc5x3Ed8mLZe7yIP4nzKklLZSeTo= -----END CERTIFICATE-----Generated at Sat May 31 16:40:38 2025 by rpki-client