$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: aYkILAj4zo+RJVC3oSsae9Qn8rkgqH9hW6XPx/gUf5k= Subject key identifier: D2:BC:DB:35:1C:91:AD:9D:28:7C:B8:FB:55:0C:53:0A:9D:AE:12:10 Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 16EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 16C7 Signing time: Sun 20 Jul 2025 16:41:57 +0000 Manifest this update: Sun 20 Jul 2025 16:41:57 +0000 Manifest next update: Sun 27 Jul 2025 16:41:57 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: hrouQOJ98sgfeZvH/3PXk3j/JDuP+F0m36QWFJvi038=) 2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: i/Bdlwtsw60KlWyTtnZoHMYWyMWkX8rBZXwz4SUYdDY=) 3: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: x5fSlx3nNKz6ifMgnnFr+DL48Yd9QT9h8VtP+zrrY4c=) 4: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: 9PGVW+39KLlj0WI9eJ5OovuG1UvnRDi3eMzS7oZFC4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5866 (0x16ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Jul 20 16:41:57 2025 GMT Not After : Jul 27 16:41:57 2025 GMT Subject: CN=687d1c55-aa6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0e:b6:17:3d:cd:e5:aa:c8:3a:69:6e:80:4a: da:d3:9b:f7:22:42:33:07:dd:51:17:8e:cd:c0:be: 1b:74:7c:f2:ee:9b:4a:26:03:8f:7d:87:11:3c:a0: 0d:21:06:35:ab:89:29:70:d2:a0:65:af:af:12:99: 86:6b:e2:bf:52:6f:4b:7a:10:c3:a4:4c:3e:7d:ac: 4f:d4:97:eb:b7:35:5f:3a:2c:93:98:d4:0e:87:af: ba:22:e4:87:82:7c:b1:16:ed:13:27:0d:69:69:46: 1f:21:8b:1e:02:53:0b:2a:b8:f9:d9:44:ad:ab:b8: 0c:3a:5b:7c:45:e9:cc:e1:8c:f3:8f:b4:40:66:68: 79:31:1e:93:9b:b8:5c:4b:b5:2d:7a:07:76:51:f0: cb:c3:4f:c6:9d:1a:b6:07:90:5d:7c:db:91:c3:37: 0d:fa:33:ab:00:91:05:74:e2:12:2e:99:d6:bf:f5: ba:2d:c4:3d:97:0d:5b:33:54:92:a6:e0:64:eb:25: 45:2e:f8:ac:04:d4:69:9b:f7:40:15:24:d5:f9:8c: b1:fa:c1:0e:f3:28:c8:56:00:eb:93:9c:29:8d:25: 3d:cc:ba:46:28:14:1f:b6:09:9b:a7:e0:c8:16:53: 6f:af:81:dd:0f:20:76:72:87:bc:c2:bc:d3:fc:ca: 6a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BC:DB:35:1C:91:AD:9D:28:7C:B8:FB:55:0C:53:0A:9D:AE:12:10 X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:11:84:eb:69:d6:10:c3:62:72:21:98:91:7d:88:9b:26:61: ea:c3:35:ef:97:e8:c8:09:bd:2e:ff:78:63:d1:8b:6f:ac:19: 8d:aa:e0:ea:36:65:0d:4c:a1:d6:1b:3a:09:c5:1a:82:db:da: 60:ac:fb:e9:fe:49:7a:2d:f0:8b:05:ee:19:e2:44:e5:1e:63: ee:40:80:cf:e8:21:fe:c7:30:58:1b:6f:da:72:70:9a:40:b1: d3:e7:d1:0a:58:6c:71:11:25:7f:72:39:1b:71:bb:c0:8a:d0: 9c:69:ea:cd:77:63:24:24:16:93:51:cb:b5:0e:91:5c:4e:5f: ed:1b:7e:ef:7c:25:70:fd:f6:c4:a7:ff:4b:ed:9f:23:25:22: e3:9a:48:50:54:18:48:f6:2f:41:35:38:2f:f2:db:13:59:cf: 43:58:a0:08:54:4f:5e:b8:68:9e:32:25:4d:14:a9:94:81:3a: 8a:94:75:1d:3b:f3:93:56:61:a3:41:64:49:20:07:06:8d:4b: ef:98:0d:1e:fd:a0:47:1d:04:c2:76:d4:bb:1c:19:45:03:58: 40:c0:08:75:de:b3:c3:97:3c:d9:4f:64:06:82:e5:84:7c:93: 3e:9e:ec:97:b8:43:53:0d:e4:06:b0:3a:aa:84:b8:2b:c3:99: 78:66:87:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjUwNzIwMTY0MTU3WhcNMjUwNzI3MTY0MTU3WjAYMRYwFAYD VQQDEw02ODdkMWM1NS1hYTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwg62Fz3N5arIOmlugEra05v3IkIzB91RF47NwL4bdHzy7ptKJgOPfYcRPKAN IQY1q4kpcNKgZa+vEpmGa+K/Um9LehDDpEw+faxP1JfrtzVfOiyTmNQOh6+6IuSH gnyxFu0TJw1paUYfIYseAlMLKrj52UStq7gMOlt8RenM4Yzzj7RAZmh5MR6Tm7hc S7Utegd2UfDLw0/GnRq2B5BdfNuRwzcN+jOrAJEFdOISLpnWv/W6LcQ9lw1bM1SS puBk6yVFLvisBNRpm/dAFSTV+Yyx+sEO8yjIVgDrk5wpjSU9zLpGKBQftgmbp+DI FlNvr4HdDyB2coe8wrzT/MpqeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNK82zUc ka2dKHy4+1UMUwqdrhIQMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqEYTradYQw2JyIZiRfYibJmHqwzXvl+jICb0u/3hj0YtvrBmNquDq NmUNTKHWGzoJxRqC29pgrPvp/kl6LfCLBe4Z4kTlHmPuQIDP6CH+xzBYG2/acnCa QLHT59EKWGxxESV/cjkbcbvAitCcaerNd2MkJBaTUcu1DpFcTl/tG37vfCVw/fbE p/9L7Z8jJSLjmkhQVBhI9i9BNTgv8tsTWc9DWKAIVE9euGieMiVNFKmUgTqKlHUd O/OTVmGjQWRJIAcGjUvvmA0e/aBHHQTCdtS7HBlFA1hAwAh13rPDlzzZT2QGguWE fJM+nuyXuENTDeQGsDqqhLgrw5l4Zod2 -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:20 2025 by rpki-client