$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft File: JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json) Hash identifier: bj8mPU1ZY/n+V8JaIzsGQDBuCjGWitE7GJSVVfvPpI4= Subject key identifier: 6A:3F:B6:6F:C1:E0:1A:74:DC:E5:CC:28:8F:A8:D5:4B:19:54:45:A1 Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 Certificate issuer: /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Certificate serial: 16EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft Manifest number: 16E1 Signing time: Tue 10 Jun 2025 16:38:55 +0000 Manifest this update: Tue 10 Jun 2025 16:38:55 +0000 Manifest next update: Tue 17 Jun 2025 16:38:55 +0000 Files and hashes: 1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: UpjbDT6kghdq+OK1Bzmums9Y57zg2s4OlDydCmAKAXw=) 2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: 995PegsL3ZUwg9uvRMBU899Zay98EopTGO6qSEJefks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 15:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5867 (0x16eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Validity Not Before: Jun 10 16:38:55 2025 GMT Not After : Jun 17 16:38:55 2025 GMT Subject: CN=68485f9f-8931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:48:28:ba:1e:09:40:4b:90:bf:e7:f1:48:16: 31:a1:f6:23:d4:3d:93:1b:4c:5d:d1:44:b5:72:e1: f1:a8:0c:8d:fd:79:26:1d:d9:be:5e:34:27:f4:c4: 16:3b:d7:7f:be:9f:5d:fd:46:ba:63:38:0c:55:1b: f1:6d:cc:5f:e6:bd:6b:39:fb:e4:23:33:ad:2d:e8: 3d:8f:45:64:d4:54:21:bc:fc:39:2e:f2:45:75:72: f9:d9:22:a2:39:41:7b:95:df:bc:2a:34:90:2b:f9: 09:ce:90:93:42:02:02:e2:78:09:d0:f6:15:4e:39: 09:cb:a9:01:d0:22:f6:d7:12:9b:e6:1f:56:70:69: fd:94:5c:c0:d4:57:f8:32:08:8a:90:31:4c:01:83: 5a:f7:e7:d9:d0:3d:30:2e:78:ec:84:76:be:39:8e: 64:40:ba:d9:8b:6c:c7:71:a2:b2:4f:6f:62:af:f9: 13:8a:33:1f:08:73:d2:ea:b0:f0:4d:cb:7d:0c:50: e7:21:5d:49:2a:c7:e3:38:6e:df:97:b4:47:f7:dc: 72:d4:c5:72:eb:93:5c:da:31:5d:cb:bb:f0:23:39: 53:31:6f:e7:bd:50:ef:76:f8:5a:75:c0:b9:07:e6: c6:db:bd:b1:05:ac:ea:4d:df:22:2b:40:66:1e:e4: 06:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3F:B6:6F:C1:E0:1A:74:DC:E5:CC:28:8F:A8:D5:4B:19:54:45:A1 X509v3 Authority Key Identifier: keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:68:51:3a:a9:e7:6e:4f:9d:cc:09:59:7e:ed:8d:47:e3:c4: 71:e8:fe:58:bc:50:1c:ea:95:24:d8:cf:39:d2:27:8c:93:a7: 50:0b:28:fb:66:62:0b:81:e2:ef:93:53:2b:d0:3c:30:cb:0e: e6:5d:71:9e:30:d5:32:ec:82:c0:fe:b7:98:bd:80:a3:32:3c: 1f:2e:14:58:ec:3e:80:5c:c1:02:88:7e:d4:d5:80:60:ba:32: 37:37:c5:49:0c:73:48:bc:0f:d4:50:a8:71:32:d0:5a:90:42: 8e:e2:ba:3b:d9:bf:c5:a5:62:1d:b8:0c:16:b8:1f:8c:d5:b0: b0:63:5a:30:d7:a0:db:3c:0f:18:34:84:18:d2:4b:93:45:75: 4d:e1:ac:91:d7:1a:42:b4:2a:26:78:d3:93:97:56:89:a3:eb: 5e:17:24:d3:e1:4d:99:b8:d4:b5:b2:ce:6d:5a:61:f3:7e:24: c4:5a:ba:59:03:c7:b4:2a:d2:7d:a1:f2:cc:f8:2b:b4:8c:ba: a3:5e:e3:e5:b6:10:f9:e2:29:3d:ce:ab:93:5a:50:d3:29:79: 94:41:9a:14:09:32:d0:87:3a:b4:d1:1c:ca:68:e4:0d:d5:39: d2:9e:81:0a:af:b8:2a:04:27:47:8c:74:a6:cc:7d:bd:53:f1: 54:b3:c2:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwMDgxMTAvBgNVBAUTKDI0OEY1NTg4RUE4RkM3REQwQTNCNERBMUUxNTU4MDMx QzBEOTI3RTQwHhcNMjUwNjEwMTYzODU1WhcNMjUwNjE3MTYzODU1WjAYMRYwFAYD VQQDEw02ODQ4NWY5Zi04OTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEgouh4JQEuQv+fxSBYxofYj1D2TG0xd0US1cuHxqAyN/XkmHdm+XjQn9MQW O9d/vp9d/Ua6YzgMVRvxbcxf5r1rOfvkIzOtLeg9j0Vk1FQhvPw5LvJFdXL52SKi OUF7ld+8KjSQK/kJzpCTQgIC4ngJ0PYVTjkJy6kB0CL21xKb5h9WcGn9lFzA1Ff4 MgiKkDFMAYNa9+fZ0D0wLnjshHa+OY5kQLrZi2zHcaKyT29ir/kTijMfCHPS6rDw Tct9DFDnIV1JKsfjOG7fl7RH99xy1MVy65Nc2jFdy7vwIzlTMW/nvVDvdvhadcC5 B+bG272xBazqTd8iK0BmHuQGbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGo/tm/B 4Bp03OXMKI+o1UsZVEWhMB8GA1UdIwQYMBaAFCSPVYjqj8fdCjtNoeFVgDHA2Sfk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTAwOC9ERDg4QzNBRUYx RDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5MEtPMDJoNFZXQU1jRFpK LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJOVZpT3FQeDkwS08wMmg0VldBTWNEWkotUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTAwOC9ERDg4QzNBRUYxRDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5 MEtPMDJoNFZXQU1jRFpKLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyaFE6qeduT53MCVl+7Y1H48Rx6P5YvFAc6pUk2M850ieMk6dQCyj7 ZmILgeLvk1Mr0Dwwyw7mXXGeMNUy7ILA/reYvYCjMjwfLhRY7D6AXMECiH7U1YBg ujI3N8VJDHNIvA/UUKhxMtBakEKO4ro72b/FpWIduAwWuB+M1bCwY1ow16DbPA8Y NIQY0kuTRXVN4ayR1xpCtComeNOTl1aJo+teFyTT4U2ZuNS1ss5tWmHzfiTEWrpZ A8e0KtJ9ofLM+Cu0jLqjXuPlthD54ik9zquTWlDTKXmUQZoUCTLQhzq00RzKaOQN 1TnSnoEKr7gqBCdHjHSmzH29U/FUs8Ks -----END CERTIFICATE-----Generated at Tue Jun 10 18:20:47 2025 by rpki-client