$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft File: JTgA7RbtD_M39wQNDj3xFBwWFhw.mft (raw, json) Hash identifier: LSI8k8VGOqzr0JqW2wLHOQ2yXY7Rq1A0nTC0IjoBZvw= Subject key identifier: FF:81:33:FD:49:7D:DD:6E:7E:CC:3F:8B:51:9C:F0:7A:3D:4D:46:3D Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft Manifest number: 01F0 Signing time: Sat 31 May 2025 02:22:25 +0000 Manifest this update: Sat 31 May 2025 02:22:24 +0000 Manifest next update: Sat 07 Jun 2025 02:22:24 +0000 Files and hashes: 1: JTgA7RbtD_M39wQNDj3xFBwWFhw.crl (hash: TlrcnNcPj2FGdlq0z2ZqPxEtIybZjCxMG0QTZMj/mjI=) 2: 2D215B32584111EDBE50107CC4F9AE02.roa (hash: up6WHjnsfS0bIxQesxTATm4WYD2tutF7YiezZwJi2Bc=) 3: ED685B8CDFA511EF8CC2890BC4F9AE02.roa (hash: NqrZmcVp/US1PncX6fEsquuB9U+PwjdNaQFtiMmKje0=) 4: D45117DEEBF311EEAECC405FC4F9AE02.roa (hash: L3m+NQNaRyXNu/ZiemkthKYLeI1gIGN4M/qfSkh3IEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C9, serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Validity Not Before: May 31 02:22:24 2025 GMT Not After : Jun 7 02:22:24 2025 GMT Subject: CN=683a67e1-0182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e7:ea:e9:d9:84:97:0a:e2:da:15:f6:04:d6: a8:c4:a7:9d:a7:20:5a:4c:5f:4a:04:78:c9:b0:82: a6:6e:23:68:7a:55:e3:5d:4d:d3:2a:ee:c5:ca:6f: 33:20:29:a6:68:e6:9f:82:f6:5e:45:63:e3:fc:25: 89:bf:49:2f:27:a1:25:6a:14:82:0b:5d:7a:4a:3a: 45:1a:51:d8:4c:39:b5:4d:bf:ca:a6:fb:24:2e:c3: f0:87:55:fe:3f:a4:6f:93:ba:fc:df:73:11:ed:ac: 22:af:12:e9:ee:5e:c9:e7:e5:d9:2f:00:13:fe:46: c8:99:05:1d:f2:43:15:f5:66:bd:d8:a7:7d:00:36: 24:0d:5d:d7:a4:7e:23:15:c9:bf:a4:66:63:39:c3: 4a:1b:be:bf:e4:51:63:08:b3:ee:ed:03:90:db:63: 8e:4e:83:dd:6c:af:3e:30:39:11:91:87:5a:86:be: 54:4c:fa:26:66:b7:dc:42:82:f8:5c:40:74:a4:5f: 79:37:c0:33:d2:57:0f:cd:84:5d:55:fd:4d:7a:9d: 00:7f:b2:96:c1:21:b4:34:dc:06:1c:47:49:f6:5e: b6:5e:49:d8:da:db:9f:1f:b6:2a:c6:cc:06:2b:de: 58:bd:e9:54:75:63:27:ea:07:5b:5c:c3:6a:53:b2: c5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:81:33:FD:49:7D:DD:6E:7E:CC:3F:8B:51:9C:F0:7A:3D:4D:46:3D X509v3 Authority Key Identifier: keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:59:e7:51:48:61:9a:44:a8:e7:4b:2b:d3:eb:d1:5e:64:89: 77:f2:48:52:47:11:66:ea:da:62:1f:d2:59:f4:dc:0c:64:24: 10:c0:49:aa:82:e4:57:e6:5c:c9:ce:24:f3:bf:48:ba:78:9a: 7d:37:07:c3:aa:52:b3:2a:fc:09:02:e0:21:ce:e9:ed:d2:fa: fa:d2:f9:a9:b0:c6:d8:4e:7c:ab:ed:13:47:fe:3b:14:64:99: 92:b3:3d:8b:99:a6:31:ab:47:62:4d:48:84:51:ca:1b:db:06: c6:45:e7:e5:fe:0d:b6:ff:2a:9d:19:07:f1:73:82:4a:af:c6: 56:0e:c7:a4:a4:ae:76:4c:ff:99:65:90:9d:00:5a:2f:a8:8d: 37:c9:ea:6b:97:55:8b:96:f3:bd:0e:f5:a7:bb:58:08:43:04: 3a:92:ff:e0:d8:f6:35:82:42:59:4d:71:77:61:e5:9c:36:f3: 7e:13:9e:29:14:86:08:49:ef:43:90:8d:73:b2:62:fc:a9:9e: 92:70:b8:c9:92:b1:7f:d0:01:54:73:e0:8c:17:fd:5d:9d:18: 49:1c:99:c8:47:09:fa:46:68:dd:a3:2c:aa:5a:e3:1b:8c:40: e8:03:14:2e:ea:e7:5f:dc:0c:70:d9:f3:5f:84:06:cb:b4:1f: 55:7c:3e:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzkxMTAvBgNVBAUTKDI1MzgwMEVEMTZFRDBGRjMzN0Y3MDQwRDBFM0RGMTE0 MUMxNjE2MUMwHhcNMjUwNTMxMDIyMjI0WhcNMjUwNjA3MDIyMjI0WjAYMRYwFAYD VQQDEw02ODNhNjdlMS0wMTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3efq6dmElwri2hX2BNaoxKedpyBaTF9KBHjJsIKmbiNoelXjXU3TKu7Fym8z ICmmaOafgvZeRWPj/CWJv0kvJ6ElahSCC116SjpFGlHYTDm1Tb/KpvskLsPwh1X+ P6Rvk7r833MR7awirxLp7l7J5+XZLwAT/kbImQUd8kMV9Wa92Kd9ADYkDV3XpH4j Fcm/pGZjOcNKG76/5FFjCLPu7QOQ22OOToPdbK8+MDkRkYdahr5UTPomZrfcQoL4 XEB0pF95N8Az0lcPzYRdVf1Nep0Af7KWwSG0NNwGHEdJ9l62XknY2tufH7YqxswG K95YvelUdWMn6gdbXMNqU7LF3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+BM/1J fd1ufsw/i1Gc8Ho9TUY9MB8GA1UdIwQYMBaAFCU4AO0W7Q/zN/cEDQ498RQcFhYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOS8yMTk3QjA5MjU4 M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERfTTM5d1FORGozeEZCd1dG aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pUZ0E3UmJ0RF9NMzl3UU5EajN4RkJ3V0Zody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjhDOS8yMTk3QjA5MjU4M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERf TTM5d1FORGozeEZCd1dGaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXWedRSGGaRKjnSyvT69FeZIl38khSRxFm6tpiH9JZ9NwMZCQQwEmq guRX5lzJziTzv0i6eJp9NwfDqlKzKvwJAuAhzunt0vr60vmpsMbYTnyr7RNH/jsU ZJmSsz2LmaYxq0diTUiEUcob2wbGRefl/g22/yqdGQfxc4JKr8ZWDsekpK52TP+Z ZZCdAFovqI03yeprl1WLlvO9DvWnu1gIQwQ6kv/g2PY1gkJZTXF3YeWcNvN+E54p FIYISe9DkI1zsmL8qZ6ScLjJkrF/0AFUc+CMF/1dnRhJHJnIRwn6RmjdoyyqWuMb jEDoAxQu6udf3Axw2fNfhAbLtB9VfD6n -----END CERTIFICATE-----Generated at Sat May 31 17:49:40 2025 by rpki-client