$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: sFUJH0wV5hyymnDngXLLjb7t9G6f5mywQMoSngtcNWM= Subject key identifier: 63:41:51:D9:82:0F:6E:02:74:88:B2:9F:BA:58:5C:49:68:F1:40:40 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0CD2 Signing time: Mon 08 Sep 2025 18:11:44 +0000 Manifest this update: Mon 08 Sep 2025 18:11:43 +0000 Manifest next update: Mon 15 Sep 2025 18:11:43 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: /9OIeV0JlJqYyl5dEarZXGXErp6AbZrGQu7nrC/o3KA=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3305 (0xce9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Sep 8 18:11:43 2025 GMT Not After : Sep 15 18:11:43 2025 GMT Subject: CN=68bf1c5f-e96c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:d3:37:87:c5:d7:7c:81:26:0e:18:d0:16: 5a:b5:80:be:32:84:21:6e:16:c9:e5:38:88:29:bf: d6:7d:52:40:3d:d2:c8:c0:94:fc:cf:f5:6e:ca:3d: 49:94:d8:b7:fd:c3:d3:ca:9c:a6:ae:e1:fd:06:40: 73:e7:47:07:a3:81:47:07:fc:c4:af:fc:cd:51:43: c7:ba:6d:69:82:64:16:c8:d4:21:89:e9:d3:46:76: ca:bc:27:6b:96:d4:20:13:d9:65:84:a3:a3:15:79: 9c:09:4d:e8:8b:f0:35:aa:ac:80:1f:5e:25:f8:82: b6:a5:31:ce:7c:23:63:65:28:78:f5:76:2d:25:fb: 49:79:5f:5f:72:cf:ea:c2:42:02:3b:92:5b:3e:35: 6c:17:54:6f:25:6f:c0:45:58:1a:fe:fd:b0:ec:35: 7f:d3:b1:6a:59:29:2b:d0:2d:a9:13:ae:46:79:32: 75:8a:5c:fd:05:0d:28:34:e7:f2:66:fe:70:0e:db: a9:3a:c6:cf:78:29:65:6d:ec:36:93:7f:c1:82:09: 5f:a7:80:bc:7f:54:6d:cd:b3:65:f2:24:12:7c:cc: 56:42:77:97:dc:ec:bd:46:bc:c0:47:59:6f:5f:d3: df:49:be:32:19:db:1c:c8:a2:2f:18:56:7e:19:14: 8e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:41:51:D9:82:0F:6E:02:74:88:B2:9F:BA:58:5C:49:68:F1:40:40 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:df:7e:dc:61:8f:50:ca:6e:be:a4:e2:3f:30:21:54:8b:3c: 28:68:55:df:a3:04:3d:81:9c:6b:bf:35:52:d4:67:1e:e7:37: 5e:ec:81:ec:ff:37:ad:ad:83:0b:b2:83:8c:4c:43:1c:93:23: 8a:ff:25:be:06:f2:2c:d8:c3:c4:b2:c6:2a:f9:3a:ca:e5:6e: b5:ca:39:1e:2f:a8:37:c7:8f:ba:9d:20:07:a2:ce:1e:25:f8: ec:08:5c:c0:07:94:0d:ea:15:7a:21:7d:49:e4:02:4e:07:c1: 1d:7d:c4:b8:09:3f:4d:d1:0d:44:56:df:61:f6:45:fa:06:63: 86:82:f0:aa:2c:15:54:57:d2:c4:88:7f:47:de:95:bb:3a:b8: 09:01:db:24:9e:20:c1:53:2b:f3:58:f7:0e:c5:e0:99:b8:11: 3e:ff:eb:67:21:02:b7:39:16:88:a0:30:6d:37:35:ce:6a:3d: c8:fe:97:81:b4:0a:d6:55:59:6b:e4:88:e9:12:77:f7:a5:f3: 14:b5:b6:08:43:a0:ec:15:10:dd:7f:1b:10:69:48:a6:41:eb: 0d:ad:b4:b8:e1:ad:53:18:cc:30:0f:d6:d7:a1:01:5c:1b:f1: a0:a2:85:b9:9e:e6:81:77:1e:ad:65:59:3d:9f:4b:78:10:cf: ca:27:44:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwOTA4MTgxMTQzWhcNMjUwOTE1MTgxMTQzWjAYMRYwFAYD VQQDEw02OGJmMWM1Zi1lOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurzTN4fF13yBJg4Y0BZatYC+MoQhbhbJ5TiIKb/WfVJAPdLIwJT8z/Vuyj1J lNi3/cPTypymruH9BkBz50cHo4FHB/zEr/zNUUPHum1pgmQWyNQhienTRnbKvCdr ltQgE9llhKOjFXmcCU3oi/A1qqyAH14l+IK2pTHOfCNjZSh49XYtJftJeV9fcs/q wkICO5JbPjVsF1RvJW/ARVga/v2w7DV/07FqWSkr0C2pE65GeTJ1ilz9BQ0oNOfy Zv5wDtupOsbPeCllbew2k3/Bgglfp4C8f1RtzbNl8iQSfMxWQneX3Oy9RrzAR1lv X9PfSb4yGdscyKIvGFZ+GRSOXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNBUdmC D24CdIiyn7pYXElo8UBAMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv337cYY9Qym6+pOI/MCFUizwoaFXfowQ9gZxrvzVS1Gce5zde7IHs /zetrYMLsoOMTEMckyOK/yW+BvIs2MPEssYq+TrK5W61yjkeL6g3x4+6nSAHos4e JfjsCFzAB5QN6hV6IX1J5AJOB8EdfcS4CT9N0Q1EVt9h9kX6BmOGgvCqLBVUV9LE iH9H3pW7OrgJAdskniDBUyvzWPcOxeCZuBE+/+tnIQK3ORaIoDBtNzXOaj3I/peB tArWVVlr5IjpEnf3pfMUtbYIQ6DsFRDdfxsQaUimQesNrbS44a1TGMwwD9bXoQFc G/GgooW5nuaBdx6tZVk9n0t4EM/KJ0Qr -----END CERTIFICATE-----Generated at Tue Sep 9 18:27:37 2025 by rpki-client