$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft File: JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json) Hash identifier: fly4Xo9jmCMxU57dowl42cB1VeRbNei2j5kd17oiOh0= Subject key identifier: 9B:E6:B5:7E:0A:5F:F4:55:7E:97:56:9E:23:8E:7F:EA:F2:A4:FA:3A Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 Certificate issuer: /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Certificate serial: 16EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft Manifest number: 16E0 Signing time: Sun 08 Jun 2025 16:34:15 +0000 Manifest this update: Sun 08 Jun 2025 16:34:14 +0000 Manifest next update: Sun 15 Jun 2025 16:34:14 +0000 Files and hashes: 1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: VJc2HIQuFIR6Vhm9kiqm+plOac0tB/9vuBtaa6oRn64=) 2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: 995PegsL3ZUwg9uvRMBU899Zay98EopTGO6qSEJefks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 16:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5866 (0x16ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Validity Not Before: Jun 8 16:34:14 2025 GMT Not After : Jun 15 16:34:14 2025 GMT Subject: CN=6845bb86-05e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7a:25:9a:9c:2c:b1:ee:64:a2:ed:4e:7c:0a: 07:ab:ff:61:23:f7:be:29:96:5b:06:b3:8c:d7:17: 57:d4:2f:55:76:f7:0c:6a:c6:f6:4d:a9:88:93:0c: ce:b6:92:f5:8e:a4:2f:e4:47:81:4c:02:69:e0:52: 7d:32:6c:9a:3e:17:f3:9c:be:5b:6a:ac:63:57:ba: 56:7c:f2:23:6a:72:c2:26:93:8e:a9:c5:57:ac:e9: 7f:9e:9a:f7:52:3f:16:46:c4:21:6f:8d:a6:95:99: ef:06:04:cb:19:30:b3:32:c3:d4:97:05:26:8b:2a: e3:88:67:49:64:56:dc:8d:99:ab:3b:27:6b:27:0f: e7:59:8f:24:f3:54:4e:f7:e2:63:b9:64:57:ec:68: f9:6b:c6:ce:cd:1c:d1:1a:4f:04:1e:91:54:73:e0: 12:b9:47:07:95:8b:ea:e3:f2:68:29:60:89:f6:e3: ee:79:f4:b9:7d:a3:bf:c8:2c:42:be:21:7c:a9:8c: 03:eb:9e:da:4a:e1:a4:c7:a5:54:ea:a1:dc:df:89: 75:96:cd:d5:6c:be:c1:e7:fe:0f:a4:f4:8c:e4:c8: 41:5c:e8:35:3e:67:77:38:24:f2:14:d3:fb:67:98: 48:9d:67:b0:24:1e:74:3c:69:c0:b5:76:59:c2:02: 53:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E6:B5:7E:0A:5F:F4:55:7E:97:56:9E:23:8E:7F:EA:F2:A4:FA:3A X509v3 Authority Key Identifier: keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:48:59:39:94:ac:85:01:70:2a:de:d7:f5:44:76:da:f6:fb: 57:f0:9c:1e:da:8c:d5:2f:f0:8c:bf:54:0d:dc:31:b3:cc:3e: 03:d9:65:37:7c:e0:8e:01:33:5a:c7:db:7d:4b:ff:8c:ad:3d: 88:52:72:ae:55:f9:cf:cb:2d:b4:2c:34:b3:9e:d6:7f:b5:1d: d3:fe:0c:f3:9f:16:1f:46:8f:7d:33:b9:d5:d6:c7:31:26:52: a2:5c:e0:51:bc:82:c7:79:98:7a:7d:41:51:ca:1d:79:69:19: 27:74:bb:73:7c:36:13:d0:5d:43:d4:48:72:50:98:32:7b:ee: de:21:c6:98:aa:d1:0e:50:65:ad:c9:65:cd:cb:e6:f1:c4:32: 47:3f:0f:7f:8f:ba:e0:a8:5d:df:8d:b9:59:f2:31:be:55:26: fe:55:77:c0:a5:a1:38:30:8f:0f:c7:6a:f9:e0:9c:f2:e0:fc: 3c:26:6e:40:96:3e:f3:81:21:69:74:f3:7a:1b:4c:00:3c:c7: 4d:29:59:b1:5c:bd:ea:f6:b1:4b:04:55:2c:ec:30:18:d6:5d: b1:bc:ae:00:99:e7:d4:34:e7:1a:a9:9e:29:e8:77:2c:63:a1: 7b:52:89:91:b9:3a:e6:27:07:39:06:6a:a8:4e:85:da:5f:82: 0a:d1:7e:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwMDgxMTAvBgNVBAUTKDI0OEY1NTg4RUE4RkM3REQwQTNCNERBMUUxNTU4MDMx QzBEOTI3RTQwHhcNMjUwNjA4MTYzNDE0WhcNMjUwNjE1MTYzNDE0WjAYMRYwFAYD VQQDEw02ODQ1YmI4Ni0wNWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nolmpwsse5kou1OfAoHq/9hI/e+KZZbBrOM1xdX1C9VdvcMasb2TamIkwzO tpL1jqQv5EeBTAJp4FJ9MmyaPhfznL5baqxjV7pWfPIjanLCJpOOqcVXrOl/npr3 Uj8WRsQhb42mlZnvBgTLGTCzMsPUlwUmiyrjiGdJZFbcjZmrOydrJw/nWY8k81RO 9+JjuWRX7Gj5a8bOzRzRGk8EHpFUc+ASuUcHlYvq4/JoKWCJ9uPuefS5faO/yCxC viF8qYwD657aSuGkx6VU6qHc34l1ls3VbL7B5/4PpPSM5MhBXOg1Pmd3OCTyFNP7 Z5hInWewJB50PGnAtXZZwgJT5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvmtX4K X/RVfpdWniOOf+rypPo6MB8GA1UdIwQYMBaAFCSPVYjqj8fdCjtNoeFVgDHA2Sfk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTAwOC9ERDg4QzNBRUYx RDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5MEtPMDJoNFZXQU1jRFpK LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJOVZpT3FQeDkwS08wMmg0VldBTWNEWkotUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTAwOC9ERDg4QzNBRUYxRDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5 MEtPMDJoNFZXQU1jRFpKLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+SFk5lKyFAXAq3tf1RHba9vtX8Jwe2ozVL/CMv1QN3DGzzD4D2WU3 fOCOATNax9t9S/+MrT2IUnKuVfnPyy20LDSzntZ/tR3T/gzznxYfRo99M7nV1scx JlKiXOBRvILHeZh6fUFRyh15aRkndLtzfDYT0F1D1EhyUJgye+7eIcaYqtEOUGWt yWXNy+bxxDJHPw9/j7rgqF3fjblZ8jG+VSb+VXfApaE4MI8Px2r54Jzy4Pw8Jm5A lj7zgSFpdPN6G0wAPMdNKVmxXL3q9rFLBFUs7DAY1l2xvK4AmefUNOcaqZ4p6Hcs Y6F7UomRuTrmJwc5BmqoToXaX4IK0X5S -----END CERTIFICATE-----Generated at Mon Jun 9 19:38:52 2025 by rpki-client