$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: LVgwBlT/ytDcVQz05JNKqE4YR2LMV/GPHVMS0QSwPK4= Subject key identifier: A7:6D:BC:30:E3:62:29:BB:4F:33:54:50:C0:FB:4F:B6:0B:B5:30:44 Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 29DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 29D1 Signing time: Tue 10 Jun 2025 15:36:56 +0000 Manifest this update: Tue 10 Jun 2025 15:36:55 +0000 Manifest next update: Tue 17 Jun 2025 15:36:55 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: IHDbP0fuzRlFySjfwjT7JUXTsiZiHQX5MUMNNrcGXF8=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 15:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10714 (0x29da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Jun 10 15:36:55 2025 GMT Not After : Jun 17 15:36:55 2025 GMT Subject: CN=68485117-da11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a3:10:02:dc:2e:94:ff:96:c2:e9:de:b6:42: 7f:26:a9:e2:b7:96:b4:87:18:33:a1:d0:0f:0d:97: 56:c6:50:a6:a0:47:3d:ea:69:5e:43:a1:5c:f0:d8: 92:4f:91:86:a8:dc:ce:5f:32:07:7e:f8:50:42:e4: 3c:ae:6a:36:cd:36:54:47:75:e7:46:03:41:21:3a: 71:48:0b:a2:9f:71:2a:31:bd:27:d4:3a:a7:13:af: 10:bb:e6:a6:11:73:9f:a2:73:5d:10:37:db:f3:bd: ec:af:82:68:45:9f:d9:c1:b1:10:25:3b:bd:12:a3: 8c:f4:06:d8:3c:4e:43:e3:0c:8a:62:88:f7:16:6f: da:88:e3:a1:35:60:a0:9f:ae:ac:6b:81:34:08:b8: ec:1c:88:6d:83:1d:5a:52:48:42:28:49:3d:82:54: 8c:29:c2:d8:c6:9a:36:6e:ea:d1:c7:c4:16:af:bd: c1:f1:1b:c0:f3:7f:63:f4:b5:e2:a9:48:12:2a:dc: 26:d0:e6:74:68:16:c6:0b:ff:f2:c5:ab:da:11:e6: 0a:e8:57:2e:c6:9a:0a:ac:da:4c:8f:4d:c8:ef:24: 8e:8d:6a:56:31:5e:6b:a7:1e:fc:58:02:da:f8:48: 6e:a1:8b:38:a9:e7:32:a5:82:22:ae:a3:6b:24:40: 1e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:6D:BC:30:E3:62:29:BB:4F:33:54:50:C0:FB:4F:B6:0B:B5:30:44 X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:04:e3:bb:a0:a2:3c:2f:6d:d7:1c:5a:20:9b:99:c1:b7:44: 4b:28:01:3d:8f:c1:e8:c8:64:09:52:8a:3f:2a:12:1c:fb:34: ba:82:36:8b:7b:3d:44:12:c3:d7:f2:17:69:6b:91:9b:eb:e7: f3:d2:85:63:27:f7:b0:25:e7:fb:8c:9f:2e:6f:6b:38:4f:64: db:86:13:8d:d2:41:c6:c2:9f:cb:e5:ef:e1:49:59:07:06:0a: a0:c7:52:9d:d0:f4:38:fd:01:9b:12:3f:b0:53:d2:ee:3e:3b: b0:c8:39:97:b9:37:5d:11:e7:7b:91:d1:68:54:5f:bd:f7:70: 88:71:32:5f:c3:4e:9b:77:24:c1:06:dd:3e:e5:9f:ff:84:79: 2a:d2:3c:1a:19:a4:6b:24:fb:a4:d2:13:25:4d:45:2f:87:69: 8e:8c:e3:88:dd:b8:63:1d:63:7c:d6:ed:22:a8:88:dc:04:26: 75:87:f2:dc:1f:b8:73:32:d9:23:98:e6:e6:12:86:74:0d:1e: 2c:34:a7:f0:02:fc:c3:38:16:e1:7d:95:12:8d:65:71:8e:f8: 05:9d:b5:5e:e3:f4:a0:02:4a:f1:bc:81:e4:29:92:49:2a:0c: e8:72:6f:e6:a1:73:4d:bd:de:02:2f:40:fa:32:11:a3:94:4a: 50:7f:2b:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUwNjEwMTUzNjU1WhcNMjUwNjE3MTUzNjU1WjAYMRYwFAYD VQQDEw02ODQ4NTExNy1kYTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7KMQAtwulP+WwunetkJ/Jqnit5a0hxgzodAPDZdWxlCmoEc96mleQ6Fc8NiS T5GGqNzOXzIHfvhQQuQ8rmo2zTZUR3XnRgNBITpxSAuin3EqMb0n1DqnE68Qu+am EXOfonNdEDfb873sr4JoRZ/ZwbEQJTu9EqOM9AbYPE5D4wyKYoj3Fm/aiOOhNWCg n66sa4E0CLjsHIhtgx1aUkhCKEk9glSMKcLYxpo2burRx8QWr73B8RvA839j9LXi qUgSKtwm0OZ0aBbGC//yxavaEeYK6FcuxpoKrNpMj03I7ySOjWpWMV5rpx78WALa +EhuoYs4qecypYIirqNrJEAeUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdtvDDj Yim7TzNUUMD7T7YLtTBEMB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYBOO7oKI8L23XHFogm5nBt0RLKAE9j8HoyGQJUoo/KhIc+zS6gjaL ez1EEsPX8hdpa5Gb6+fz0oVjJ/ewJef7jJ8ub2s4T2TbhhON0kHGwp/L5e/hSVkH Bgqgx1Kd0PQ4/QGbEj+wU9LuPjuwyDmXuTddEed7kdFoVF+993CIcTJfw06bdyTB Bt0+5Z//hHkq0jwaGaRrJPuk0hMlTUUvh2mOjOOI3bhjHWN81u0iqIjcBCZ1h/Lc H7hzMtkjmObmEoZ0DR4sNKfwAvzDOBbhfZUSjWVxjvgFnbVe4/SgAkrxvIHkKZJJ Kgzocm/moXNNvd4CL0D6MhGjlEpQfysq -----END CERTIFICATE-----Generated at Thu Jun 12 13:42:20 2025 by rpki-client