$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: q98TCpkKZruxoZl4Tob0/A6gXK/Hv/PTapKfZtHZfI8= Subject key identifier: 48:16:7C:B0:37:62:BC:AF:13:52:04:B3:A3:89:96:59:54:DB:1B:38 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D14 Signing time: Thu 12 Jun 2025 17:55:50 +0000 Manifest this update: Thu 12 Jun 2025 17:55:50 +0000 Manifest next update: Thu 19 Jun 2025 17:55:50 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: qwCsrltPZKMENVm69JW+5HL/UA0DirTvJHhKlXaRpsg=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3362 (0xd22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Jun 12 17:55:50 2025 GMT Not After : Jun 19 17:55:50 2025 GMT Subject: CN=684b14a6-381b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fc:d9:65:48:be:8b:b3:d9:6a:89:e4:43:30: 1e:1a:9d:19:9a:44:95:6d:d3:b7:5b:18:e5:6a:a8: 53:af:6f:94:dc:c5:e1:76:54:3c:a9:62:b0:81:36: 18:60:6b:d7:58:50:fd:3e:4d:7b:33:78:ec:6d:09: 35:21:b5:6d:0d:e8:85:10:14:e7:eb:32:50:02:be: 70:b7:09:b8:a0:0a:c4:01:99:3c:16:0c:c8:9a:b5: 7e:4a:ef:8c:49:49:e9:be:e3:90:48:f8:6c:45:8c: b6:c1:6a:da:15:c4:ad:a0:49:c2:ac:df:c3:cb:3b: 1b:6c:39:3e:6f:6c:53:52:ab:02:3b:d9:18:12:5b: 20:b8:e0:70:9e:f6:0c:7f:aa:2d:d3:57:11:fd:8c: 34:af:4d:61:5b:57:73:25:c1:76:5f:da:16:ec:4d: bd:be:d5:0d:6c:5f:85:f7:4b:fb:61:14:cc:eb:40: 9d:aa:10:0a:b5:fa:3a:3c:02:95:76:8a:23:91:65: 76:6d:4f:67:db:c7:bc:af:72:62:7e:da:0c:f3:f5: e2:37:62:b9:36:4c:e3:19:a0:8d:6c:fa:1e:26:6c: ec:2f:7b:54:97:8b:61:02:34:ca:24:5b:04:80:fd: af:47:41:ee:0c:31:65:a8:e1:41:ac:4f:b3:f4:cd: 8b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:16:7C:B0:37:62:BC:AF:13:52:04:B3:A3:89:96:59:54:DB:1B:38 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:c5:84:20:4e:54:d3:f8:7b:fe:f1:3a:f9:40:df:af:6b:2f: c0:c2:c2:86:41:1a:57:d6:52:92:f0:64:28:5a:8d:e5:6c:c3: 29:64:8c:40:b7:45:5a:fd:dc:72:ea:fb:1c:6a:d7:10:0e:06: a5:8c:fa:18:29:e5:b3:69:eb:d5:80:e7:0c:66:99:7b:9a:8f: 04:19:0c:5d:92:d0:01:6a:6d:1e:bc:ca:f4:ba:92:0a:1c:42: c5:f7:ec:34:e8:e3:c2:a0:fe:6b:8b:75:3c:ce:e8:5a:01:52: fe:08:07:f2:a1:c8:f1:40:49:a1:af:37:05:9c:cb:07:08:a6: c4:c6:dc:66:5c:4c:8b:a7:ec:30:71:e9:bf:ff:88:5e:2b:11: 24:34:c5:67:b2:d0:6a:47:01:8d:b1:b7:0f:7a:25:d3:c3:ea: c6:d8:25:d6:b3:9a:75:97:05:3b:6f:1e:2f:04:70:b5:12:b3: 90:48:6e:6a:24:43:97:1c:32:32:cd:74:a3:5c:38:bb:0b:cf: 47:13:81:6f:a3:f7:77:7e:78:d9:50:83:6f:2f:7c:49:33:ff: ba:41:32:02:02:be:7c:a2:79:57:40:5a:2e:9d:ad:d3:87:b9: 6a:63:98:78:51:fd:06:46:82:e9:cd:ee:96:30:32:08:8b:d6: 29:e9:63:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUwNjEyMTc1NTUwWhcNMjUwNjE5MTc1NTUwWjAYMRYwFAYD VQQDEw02ODRiMTRhNi0zODFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/zZZUi+i7PZaonkQzAeGp0ZmkSVbdO3WxjlaqhTr2+U3MXhdlQ8qWKwgTYY YGvXWFD9Pk17M3jsbQk1IbVtDeiFEBTn6zJQAr5wtwm4oArEAZk8FgzImrV+Su+M SUnpvuOQSPhsRYy2wWraFcStoEnCrN/DyzsbbDk+b2xTUqsCO9kYElsguOBwnvYM f6ot01cR/Yw0r01hW1dzJcF2X9oW7E29vtUNbF+F90v7YRTM60CdqhAKtfo6PAKV doojkWV2bU9n28e8r3JiftoM8/XiN2K5NkzjGaCNbPoeJmzsL3tUl4thAjTKJFsE gP2vR0HuDDFlqOFBrE+z9M2LPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgWfLA3 YryvE1IEs6OJlllU2xs4MB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6xYQgTlTT+Hv+8Tr5QN+vay/AwsKGQRpX1lKS8GQoWo3lbMMpZIxA t0Va/dxy6vscatcQDgaljPoYKeWzaevVgOcMZpl7mo8EGQxdktABam0evMr0upIK HELF9+w06OPCoP5ri3U8zuhaAVL+CAfyocjxQEmhrzcFnMsHCKbExtxmXEyLp+ww cem//4heKxEkNMVnstBqRwGNsbcPeiXTw+rG2CXWs5p1lwU7bx4vBHC1ErOQSG5q JEOXHDIyzXSjXDi7C89HE4Fvo/d3fnjZUINvL3xJM/+6QTICAr58onlXQFouna3T h7lqY5h4Uf0GRoLpze6WMDIIi9Yp6WN6 -----END CERTIFICATE-----Generated at Fri Jun 13 20:50:59 2025 by rpki-client