$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: ke/0tD7HJbiLFcDbDqUFrMSTuGZ+Fqj1P7LOfmMBhwc= Subject key identifier: 2C:B5:62:04:7C:C5:98:BB:C3:25:11:37:7D:9B:C0:56:EB:69:55:F8 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D12 Signing time: Sun 08 Jun 2025 17:54:44 +0000 Manifest this update: Sun 08 Jun 2025 17:54:44 +0000 Manifest next update: Sun 15 Jun 2025 17:54:44 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: eLWNh0gH8oVCe8TuK/3+5GB6I0GuihkiP3CogcHVKA8=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 17:54:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Jun 8 17:54:44 2025 GMT Not After : Jun 15 17:54:44 2025 GMT Subject: CN=6845ce64-3deb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6c:74:90:ef:4c:93:36:76:1c:8d:58:23:61: 11:1c:89:50:ed:40:d3:a4:ce:e0:c6:4b:af:a8:17: ff:d4:48:d8:e0:86:60:6f:6d:64:1d:ce:c1:de:48: 63:a2:bc:47:b7:05:57:5f:a7:5f:7c:3f:83:7b:9c: a3:c8:01:8b:e9:18:1a:3e:73:32:5f:b1:a7:ed:4b: 29:cc:4c:72:cc:1f:1b:eb:3e:be:39:74:58:68:02: 7d:2b:2b:f7:fe:71:24:9b:fb:93:2e:eb:50:2b:db: 4f:c8:a8:95:26:00:bd:ba:dc:d4:6c:ab:29:93:27: 25:66:9f:f2:57:2f:e7:fa:85:d5:7c:23:c4:a8:09: c4:ed:ff:80:a3:84:5e:3f:be:df:2c:85:9d:2c:39: 2c:17:6f:a1:54:d0:f3:c3:05:52:8a:23:09:8e:6a: f3:60:46:d4:74:ab:98:34:94:86:c4:d6:01:91:64: 3d:d0:2b:01:35:eb:97:f9:06:ac:c5:53:81:6c:a3: c6:9d:8f:da:d3:38:87:a4:f5:2b:9d:bd:7b:3b:d4: ab:96:cd:f8:40:61:f2:96:cf:74:29:43:b0:84:e1: 89:91:25:4a:73:77:ab:53:6b:e7:0a:91:91:4c:0f: ec:9b:20:9a:cd:8c:54:75:49:69:e7:c6:1f:aa:24: 74:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B5:62:04:7C:C5:98:BB:C3:25:11:37:7D:9B:C0:56:EB:69:55:F8 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:46:6f:a7:ae:0b:7d:eb:0d:35:2f:b4:a6:b9:5e:5a:0f:33: 83:49:f2:80:72:a0:c1:c7:30:b2:d1:13:a5:53:37:d9:91:f3: 07:ff:cb:be:97:76:29:3e:cf:ae:c9:e4:a9:c8:d8:d9:1b:c4: c8:0f:14:76:9a:3f:52:fe:2b:89:08:fe:29:67:95:b0:9d:2d: 73:1e:6a:a8:7c:90:ad:81:31:87:74:cc:0d:97:34:98:15:40: c8:b4:ec:60:bb:f2:e8:a5:46:92:ac:77:2e:78:88:17:c3:f4: e3:e3:27:f3:8e:3b:86:42:84:f5:d6:52:b4:c6:bf:28:76:f3: 45:c5:3e:85:b4:fd:da:51:7a:d5:02:e8:c0:03:6a:50:82:81: f8:09:4c:36:fd:11:d6:42:8f:bd:66:55:ab:8b:94:e3:9f:5a: 06:f4:3a:31:cc:10:86:fd:22:fa:0a:8d:a8:f5:7d:b0:bc:1f: 46:4d:39:e6:84:93:85:cf:ad:74:8c:54:31:71:45:d1:23:9e: dc:2e:bc:f1:66:37:1d:c9:c7:dd:46:d9:0f:03:38:d6:d3:f4: 73:10:15:b0:5c:85:80:80:50:bc:2f:9d:a6:70:48:76:93:37: 10:c1:59:66:74:c0:c7:aa:ac:c8:45:53:5c:8d:28:40:a0:5a: b8:f7:5e:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUwNjA4MTc1NDQ0WhcNMjUwNjE1MTc1NDQ0WjAYMRYwFAYD VQQDEw02ODQ1Y2U2NC0zZGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2x0kO9MkzZ2HI1YI2ERHIlQ7UDTpM7gxkuvqBf/1EjY4IZgb21kHc7B3khj orxHtwVXX6dffD+De5yjyAGL6RgaPnMyX7Gn7UspzExyzB8b6z6+OXRYaAJ9Kyv3 /nEkm/uTLutQK9tPyKiVJgC9utzUbKspkyclZp/yVy/n+oXVfCPEqAnE7f+Ao4Re P77fLIWdLDksF2+hVNDzwwVSiiMJjmrzYEbUdKuYNJSGxNYBkWQ90CsBNeuX+Qas xVOBbKPGnY/a0ziHpPUrnb17O9Srls34QGHyls90KUOwhOGJkSVKc3erU2vnCpGR TA/smyCazYxUdUlp58YfqiR03wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCy1YgR8 xZi7wyURN32bwFbraVX4MB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABRm+nrgt96w01L7SmuV5aDzODSfKAcqDBxzCy0ROlUzfZkfMH/8u+ l3YpPs+uyeSpyNjZG8TIDxR2mj9S/iuJCP4pZ5WwnS1zHmqofJCtgTGHdMwNlzSY FUDItOxgu/LopUaSrHcueIgXw/Tj4yfzjjuGQoT11lK0xr8odvNFxT6FtP3aUXrV AujAA2pQgoH4CUw2/RHWQo+9ZlWri5Tjn1oG9DoxzBCG/SL6Co2o9X2wvB9GTTnm hJOFz610jFQxcUXRI57cLrzxZjcdycfdRtkPAzjW0/RzEBWwXIWAgFC8L52mcEh2 kzcQwVlmdMDHqqzIRVNcjShAoFq4915p -----END CERTIFICATE-----Generated at Mon Jun 9 16:32:20 2025 by rpki-client