$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: 0D43yBgKzRisquu75Q9vJqfEKZw5yOp6U5zhJ6mTUnI= Subject key identifier: 1C:09:B3:0D:4E:F6:13:0F:46:7D:7D:95:2F:FE:55:0D:56:0E:D8:4F Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 29D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 29D0 Signing time: Sun 08 Jun 2025 15:32:54 +0000 Manifest this update: Sun 08 Jun 2025 15:32:54 +0000 Manifest next update: Sun 15 Jun 2025 15:32:54 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: TEVfQexVFQ3SDpHVAOhrmaFEpoXyzYytMTGhmGYhb2k=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 15:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10713 (0x29d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Jun 8 15:32:54 2025 GMT Not After : Jun 15 15:32:54 2025 GMT Subject: CN=6845ad26-a96b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b3:bb:d1:9d:de:82:28:52:23:ce:bd:cc:63: 6f:7a:b2:aa:19:be:96:ac:da:09:42:5d:a7:9f:1c: 8d:f7:b1:05:9b:e5:0d:eb:c0:d5:66:66:a5:58:ff: 2b:c4:0e:35:d8:ef:a9:c3:a7:52:cf:03:5a:4d:1f: 9d:55:44:fa:f3:02:05:bd:60:27:ce:4a:df:ff:e2: 6f:b6:2d:0b:12:4c:93:78:ca:b1:d1:b3:e9:c7:51: 36:a0:92:91:e6:d6:df:b3:01:b5:7d:5c:e9:9e:52: 18:58:5e:f0:80:be:86:4c:5c:36:69:dd:ef:71:58: 1e:cf:dc:21:c5:c6:52:5e:52:56:68:19:ab:fe:66: ef:0d:c5:41:cc:e3:58:e7:4f:95:ef:43:e2:ca:f0: eb:2f:39:a6:3b:26:ba:1b:8b:e4:20:5b:a8:00:4b: ff:f0:f5:32:99:a0:cc:0f:73:9a:f1:a2:b1:e2:71: f1:4c:1c:51:29:ad:2a:94:4d:32:08:5b:6c:e7:5f: 4c:59:df:3e:5d:53:f8:cf:c1:d5:2a:8d:d7:af:90: c8:db:17:2c:07:3f:ba:32:2d:d3:88:d9:c3:68:0e: dd:1e:ba:30:16:fc:d6:07:b1:7d:ac:43:8b:22:df: 4d:0b:bc:b1:cf:1b:18:25:91:ea:06:2f:6c:92:0a: 11:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:09:B3:0D:4E:F6:13:0F:46:7D:7D:95:2F:FE:55:0D:56:0E:D8:4F X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:9f:bf:d7:99:1e:32:78:65:55:39:e9:48:e6:da:b3:f7:f8: f8:d2:e7:00:79:42:12:b8:9e:22:66:86:aa:db:90:1f:ec:40: 67:3d:8b:fc:39:11:55:84:87:c9:f8:83:9c:0a:c7:43:12:4d: 3a:d8:05:af:c0:74:fb:8e:32:82:90:0b:dc:85:0f:74:ed:cf: bd:7f:a4:a7:22:35:af:e5:a8:5c:fe:42:2d:f0:3d:1c:e0:23: 50:f2:72:7a:67:a3:d6:81:49:0d:ca:7c:8d:60:6c:ef:d8:cc: e2:19:a8:11:dc:87:6e:f7:94:a5:74:fb:41:39:59:2d:2a:a7: ff:ec:39:07:ae:ea:77:46:d5:4a:ee:56:8a:3d:a6:5b:bd:0a: 81:32:28:1e:dd:09:f1:a8:f4:41:fa:66:1c:ef:89:0a:03:6b: f4:b2:5c:c7:26:95:49:7a:c0:54:ba:f6:31:1a:d2:b8:4c:e1: 8a:be:be:cb:1c:d3:45:84:74:30:73:9c:61:7d:ed:67:3c:01: ea:a6:f9:da:75:fb:2c:01:06:5e:22:40:71:de:8b:e6:42:66: 33:8b:41:29:ee:8e:1f:ff:95:0b:9f:2c:27:66:d1:83:ec:85: 70:a1:03:15:f5:1c:8a:38:90:a6:b4:c8:1c:c9:83:79:c1:d7: de:01:1e:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUwNjA4MTUzMjU0WhcNMjUwNjE1MTUzMjU0WjAYMRYwFAYD VQQDEw02ODQ1YWQyNi1hOTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7O70Z3egihSI869zGNverKqGb6WrNoJQl2nnxyN97EFm+UN68DVZmalWP8r xA412O+pw6dSzwNaTR+dVUT68wIFvWAnzkrf/+Jvti0LEkyTeMqx0bPpx1E2oJKR 5tbfswG1fVzpnlIYWF7wgL6GTFw2ad3vcVgez9whxcZSXlJWaBmr/mbvDcVBzONY 50+V70PiyvDrLzmmOya6G4vkIFuoAEv/8PUymaDMD3Oa8aKx4nHxTBxRKa0qlE0y CFts519MWd8+XVP4z8HVKo3Xr5DI2xcsBz+6Mi3TiNnDaA7dHrowFvzWB7F9rEOL It9NC7yxzxsYJZHqBi9skgoRPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwJsw1O 9hMPRn19lS/+VQ1WDthPMB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAln7/XmR4yeGVVOelI5tqz9/j40ucAeUISuJ4iZoaq25Af7EBnPYv8 ORFVhIfJ+IOcCsdDEk062AWvwHT7jjKCkAvchQ907c+9f6SnIjWv5ahc/kIt8D0c 4CNQ8nJ6Z6PWgUkNynyNYGzv2MziGagR3Idu95SldPtBOVktKqf/7DkHrup3RtVK 7laKPaZbvQqBMige3QnxqPRB+mYc74kKA2v0slzHJpVJesBUuvYxGtK4TOGKvr7L HNNFhHQwc5xhfe1nPAHqpvnadfssAQZeIkBx3ovmQmYzi0Ep7o4f/5ULnywnZtGD 7IVwoQMV9RyKOJCmtMgcyYN5wdfeAR7E -----END CERTIFICATE-----Generated at Tue Jun 10 12:54:05 2025 by rpki-client