$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: xBQdt7rPhaXqsAe7BBkwNOukYs5ObYk+f0ghZK1Hjgw= Subject key identifier: D3:A8:4C:9C:90:EE:6C:2E:04:21:B4:3D:D9:3D:24:AF:13:81:7A:B8 Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 29DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 29D2 Signing time: Thu 12 Jun 2025 15:35:09 +0000 Manifest this update: Thu 12 Jun 2025 15:35:08 +0000 Manifest next update: Thu 19 Jun 2025 15:35:08 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: t5B4xhHuIdABsUYwBjvqBpt+RpCRvMBv37L3blwc7vA=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 15:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10715 (0x29db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Jun 12 15:35:08 2025 GMT Not After : Jun 19 15:35:08 2025 GMT Subject: CN=684af3ad-a264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7a:e6:ea:e2:52:0e:46:4b:0d:a3:ce:30:66: d7:4d:19:c6:02:5f:14:ec:93:e2:bf:5a:b7:a2:19: 80:5f:b1:32:31:e6:cb:e9:5a:fd:28:06:75:de:86: 51:d6:d5:77:36:a2:05:c5:8a:ac:0f:b2:29:48:0f: d6:59:79:a4:cd:40:35:95:bc:f9:5f:c0:28:85:e0: b1:1d:5a:08:50:4b:78:4c:fc:6d:f7:34:4e:12:0a: d0:9a:d8:f1:37:29:20:2a:0b:e7:00:03:bd:ff:93: d4:82:bc:84:12:20:d7:58:bb:2d:8d:7d:ee:c5:18: cd:4d:c4:54:28:83:5e:67:b4:f2:09:f6:53:52:08: b4:a9:bf:aa:96:7e:bd:a0:30:35:b0:13:c0:30:d7: be:53:53:83:da:b0:bd:b1:23:b7:8b:69:8a:50:1f: 26:fd:a2:86:1d:bd:c1:63:32:3e:ec:14:d9:6d:9f: fb:3d:8f:be:f1:b9:78:8d:3f:5f:af:bb:e9:93:0e: 5c:55:8a:fb:fe:2f:51:20:0f:d7:65:50:ad:57:fd: c7:ad:3b:26:19:fe:ff:3b:1e:c9:ae:90:a6:23:36: 63:dc:1a:8b:e2:bd:09:84:77:4e:f4:71:d3:b3:d4: 1a:c7:da:2c:6a:43:13:f2:75:87:55:ec:ee:78:74: 06:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A8:4C:9C:90:EE:6C:2E:04:21:B4:3D:D9:3D:24:AF:13:81:7A:B8 X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:72:1c:7d:e1:dd:26:b6:8f:89:89:e5:f6:c2:52:12:11:1c: 45:3e:ec:f5:d4:17:06:06:5e:e2:65:07:c6:b6:1a:8e:65:89: 4a:64:bc:3b:da:a3:74:e1:55:c0:41:c7:a6:c0:5d:f5:09:55: 1a:c5:de:e7:b7:fc:7d:74:82:fe:60:5d:f8:c8:65:1c:76:26: 9d:f9:7b:42:76:ad:45:25:d6:0a:33:7e:61:4b:b9:bd:49:72: e4:c2:d6:56:37:b2:ba:06:eb:bb:24:d9:6a:72:86:a2:6e:92: a4:7d:9e:12:93:6d:3a:1b:ac:7a:7b:c9:eb:d3:49:52:ed:c4: 0e:d0:3a:9e:e0:71:f3:95:32:d6:5d:f6:a8:76:a2:74:d5:81: 4c:57:29:72:d4:b9:b2:94:5b:37:1e:c1:96:9e:5d:4b:d6:d3: 5d:5d:7a:6d:b9:58:79:48:5c:03:c9:8f:fc:53:4c:86:f2:fe: 95:3b:13:3f:b4:75:b3:af:bf:88:89:da:ed:a7:09:81:ff:86: fc:ed:0d:27:13:b9:c0:cb:de:a7:32:bc:11:8d:bb:65:17:ef: ad:b2:f8:c5:5d:9e:cf:71:ce:a4:51:8d:7f:88:b4:28:12:09: 33:45:fc:9c:c9:a1:d0:73:7e:13:6b:2a:48:03:65:a4:c0:c2: e7:12:3e:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUwNjEyMTUzNTA4WhcNMjUwNjE5MTUzNTA4WjAYMRYwFAYD VQQDEw02ODRhZjNhZC1hMjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3rm6uJSDkZLDaPOMGbXTRnGAl8U7JPiv1q3ohmAX7EyMebL6Vr9KAZ13oZR 1tV3NqIFxYqsD7IpSA/WWXmkzUA1lbz5X8AoheCxHVoIUEt4TPxt9zROEgrQmtjx NykgKgvnAAO9/5PUgryEEiDXWLstjX3uxRjNTcRUKINeZ7TyCfZTUgi0qb+qln69 oDA1sBPAMNe+U1OD2rC9sSO3i2mKUB8m/aKGHb3BYzI+7BTZbZ/7PY++8bl4jT9f r7vpkw5cVYr7/i9RIA/XZVCtV/3HrTsmGf7/Ox7JrpCmIzZj3BqL4r0JhHdO9HHT s9Qax9osakMT8nWHVezueHQGtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOoTJyQ 7mwuBCG0Pdk9JK8TgXq4MB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkchx94d0mto+JieX2wlISERxFPuz11BcGBl7iZQfGthqOZYlKZLw7 2qN04VXAQcemwF31CVUaxd7nt/x9dIL+YF34yGUcdiad+XtCdq1FJdYKM35hS7m9 SXLkwtZWN7K6Buu7JNlqcoaibpKkfZ4Sk206G6x6e8nr00lS7cQO0Dqe4HHzlTLW XfaodqJ01YFMVyly1LmylFs3HsGWnl1L1tNdXXptuVh5SFwDyY/8U0yG8v6VOxM/ tHWzr7+IidrtpwmB/4b87Q0nE7nAy96nMrwRjbtlF++tsvjFXZ7Pcc6kUY1/iLQo EgkzRfycyaHQc34TaypIA2WkwMLnEj5e -----END CERTIFICATE-----Generated at Thu Jun 12 18:14:51 2025 by rpki-client