$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: RdGlNhsV5PcNoinJfMgaRDfabXoqnJN2t0+BUsljpkE= Subject key identifier: 73:51:5D:59:5D:96:48:A1:6F:7B:5B:99:24:7C:6F:78:CB:F4:B5:E5 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0CB7 Signing time: Fri 18 Jul 2025 18:21:30 +0000 Manifest this update: Fri 18 Jul 2025 18:21:30 +0000 Manifest next update: Fri 25 Jul 2025 18:21:30 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: 2k64YtRsQ1aA9Op0859w7YRg/I2PSMWQH59SjxGb+Go=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3278 (0xcce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Jul 18 18:21:30 2025 GMT Not After : Jul 25 18:21:30 2025 GMT Subject: CN=687a90aa-bf31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d0:6e:44:f3:33:b3:12:04:e9:66:4e:c9:c2: 00:8d:ba:f1:09:75:11:32:25:cf:37:39:98:c7:f5: 05:23:70:a5:f8:b0:d2:f2:da:0e:6f:4b:4b:bc:63: 0c:8f:c4:14:ed:c4:59:ac:e4:8b:10:6f:a3:06:65: 65:c3:aa:89:c2:46:54:ea:10:18:ef:60:fc:f1:48: ee:3e:d1:2b:4d:d1:30:d6:51:09:d6:74:00:f1:32: 9d:62:de:88:9e:b4:62:d7:f4:08:1a:85:52:d6:e7: 92:0b:48:a8:1c:f7:4d:e1:9f:a5:e5:a2:a4:93:82: dc:37:68:85:87:ce:02:15:e8:01:25:0f:57:b1:a0: 05:b9:fc:9b:12:7d:de:ec:1d:5b:b5:01:d8:4f:95: 1d:e3:f8:fc:ad:85:f7:b3:62:8c:01:a8:f6:bd:1d: 40:c3:c4:11:4a:09:99:aa:a3:72:0d:f3:d5:9e:7c: 63:55:39:20:75:e6:3c:61:9d:e3:78:08:47:90:0e: e1:ca:57:75:23:64:bf:f4:1b:db:b9:1a:03:78:93: e4:d5:69:58:2e:f4:a0:4c:89:ea:2e:ca:d0:dc:ac: 88:be:e8:63:80:85:75:83:0c:7a:50:b2:89:30:e8: 8f:29:8c:44:06:72:9c:87:b5:d5:75:5b:28:e3:54: e2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:51:5D:59:5D:96:48:A1:6F:7B:5B:99:24:7C:6F:78:CB:F4:B5:E5 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d4:75:cf:72:c2:bf:23:59:cc:22:f4:80:65:aa:64:ee:f4: 17:52:19:0a:fa:28:22:aa:2f:7e:e9:f4:6b:b3:a4:e4:7e:08: 52:f4:b9:eb:b4:4f:8c:b8:cc:f3:58:48:5c:bc:e1:29:25:73: a6:ec:d4:69:5a:5d:fd:91:60:ae:47:31:e3:75:cd:9c:3d:96: d7:2b:52:0f:3f:6b:42:7b:be:1a:03:75:4b:68:ca:99:1d:db: 94:d1:5f:4f:cd:39:e6:8f:88:49:c3:88:55:f8:04:03:29:43: 15:37:81:8d:20:4a:eb:be:3a:44:fe:d6:89:7c:2f:75:78:61: ef:c0:0a:38:91:22:40:01:dd:bb:bb:22:c5:21:89:5d:4f:52: fb:54:2c:10:34:7c:be:96:f0:a1:e5:09:be:29:72:d5:e5:8f: f5:d2:33:ad:7d:e6:0a:c3:c9:b1:4c:36:32:58:8e:99:a7:88: ae:95:4c:e2:7e:6b:e1:4a:e6:ed:6b:66:43:8e:5b:f6:b7:24: 2f:da:61:18:eb:cb:7d:13:fa:8b:c0:c4:2d:47:75:65:67:22: 9a:0e:5a:4a:a0:7a:77:da:db:86:89:eb:e4:1a:e9:98:60:9c: 81:91:d0:70:1b:ea:0c:17:5b:eb:9e:48:ba:68:23:23:51:33: 2d:e7:fb:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwNzE4MTgyMTMwWhcNMjUwNzI1MTgyMTMwWjAYMRYwFAYD VQQDEw02ODdhOTBhYS1iZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztBuRPMzsxIE6WZOycIAjbrxCXURMiXPNzmYx/UFI3Cl+LDS8toOb0tLvGMM j8QU7cRZrOSLEG+jBmVlw6qJwkZU6hAY72D88UjuPtErTdEw1lEJ1nQA8TKdYt6I nrRi1/QIGoVS1ueSC0ioHPdN4Z+l5aKkk4LcN2iFh84CFegBJQ9XsaAFufybEn3e 7B1btQHYT5Ud4/j8rYX3s2KMAaj2vR1Aw8QRSgmZqqNyDfPVnnxjVTkgdeY8YZ3j eAhHkA7hyld1I2S/9BvbuRoDeJPk1WlYLvSgTInqLsrQ3KyIvuhjgIV1gwx6ULKJ MOiPKYxEBnKch7XVdVso41TijwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNRXVld lkihb3tbmSR8b3jL9LXlMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH1HXPcsK/I1nMIvSAZapk7vQXUhkK+igiqi9+6fRrs6TkfghS9Lnr tE+MuMzzWEhcvOEpJXOm7NRpWl39kWCuRzHjdc2cPZbXK1IPP2tCe74aA3VLaMqZ HduU0V9PzTnmj4hJw4hV+AQDKUMVN4GNIErrvjpE/taJfC91eGHvwAo4kSJAAd27 uyLFIYldT1L7VCwQNHy+lvCh5Qm+KXLV5Y/10jOtfeYKw8mxTDYyWI6Zp4iulUzi fmvhSubta2ZDjlv2tyQv2mEY68t9E/qLwMQtR3VlZyKaDlpKoHp32tuGievkGumY YJyBkdBwG+oMF1vrnki6aCMjUTMt5/se -----END CERTIFICATE-----Generated at Sun Jul 20 06:38:10 2025 by rpki-client