$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: +/lMvybZ4B1H2+lPz5TpRzEDbMNzU7l6hyNz6JEQs94= Subject key identifier: 5B:22:4B:9B:0D:C2:21:D6:5C:2A:87:BA:84:4D:A7:E6:DA:69:6D:6A Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 29DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 29D3 Signing time: Sat 14 Jun 2025 15:34:29 +0000 Manifest this update: Sat 14 Jun 2025 15:34:28 +0000 Manifest next update: Sat 21 Jun 2025 15:34:28 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: LWQ0UyMYhhhBlqxEN4aEjdR4ghUAqRj6xk4j0f1bRHc=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:34:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10716 (0x29dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Jun 14 15:34:28 2025 GMT Not After : Jun 21 15:34:28 2025 GMT Subject: CN=684d9685-3c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:42:85:e7:6c:42:39:25:ad:17:2d:75:48:97: 75:09:52:c5:74:53:c0:65:39:5a:a8:a9:26:1f:88: e8:31:10:35:3c:60:2c:ef:bd:64:74:f3:59:12:c4: 95:3c:ec:82:ee:a2:95:fa:6f:4a:52:66:b9:29:df: 6f:19:e8:c6:04:5c:c6:12:4f:3b:46:66:6b:ad:78: 85:1f:15:43:7a:03:94:4f:3d:e4:14:2e:df:b5:38: 68:4e:09:b8:6c:97:39:05:bb:95:5f:7e:f2:9a:b8: 14:b8:7e:20:2a:76:21:ea:44:55:05:7f:71:c5:48: 16:a9:20:0b:78:c2:50:13:4f:f6:04:35:96:fc:fa: 1b:fc:27:0c:43:09:3c:a0:c4:24:ca:88:64:a0:b0: 26:07:66:25:ec:d9:15:55:f0:fe:3f:53:36:12:c5: e1:a7:2b:15:5c:3f:20:04:bc:a8:c5:43:f4:f9:4d: 92:9b:40:78:b3:f5:e6:86:cd:ae:39:4f:ac:51:df: 72:a6:89:7d:1e:24:07:a5:c4:3f:f6:38:c1:2f:3a: 82:bf:cf:b8:0f:19:12:69:78:71:8d:06:da:68:24: d2:01:07:85:11:77:6b:c0:b8:be:f8:0d:33:c2:00: 97:b6:c3:51:13:2f:14:a8:b7:56:0d:94:b0:c5:0b: f9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:22:4B:9B:0D:C2:21:D6:5C:2A:87:BA:84:4D:A7:E6:DA:69:6D:6A X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:d5:df:c0:59:51:35:c9:c8:61:08:b0:dc:2b:6f:46:16:d6: aa:86:f8:fb:ea:0f:6d:2a:eb:16:6e:e2:93:8e:43:15:2b:00: 5a:9c:0d:f1:b1:5e:1c:8c:99:8a:58:30:6a:e0:f8:97:2d:5c: b1:7f:57:36:e5:8e:cc:54:de:6d:5c:f0:8c:dd:55:72:2a:33: d9:bb:3f:42:81:c9:ac:bc:29:f8:fa:a1:0e:57:d7:6f:a4:ce: 05:75:ff:4e:5f:c0:02:5b:ba:94:bc:ba:ce:e8:0f:27:34:7e: a1:f5:3e:80:4d:fe:26:d0:2d:b7:55:ee:55:81:b9:a1:bc:cf: bb:21:11:e6:ff:29:1a:e1:84:d2:36:ab:b1:85:51:92:ab:5b: 00:b3:2e:c6:5a:4d:fa:78:f4:b2:76:25:c4:03:49:66:d9:6f: 37:84:7b:a3:fb:49:11:4b:5d:c3:56:2b:d8:e8:ef:2e:94:07: 10:15:19:b3:8f:0d:2e:e6:53:fe:8e:ef:f5:0d:e3:8f:90:3a: bb:c2:a1:2a:15:42:cc:8b:55:f1:1d:9e:dc:cd:3f:43:c1:07: ca:eb:62:b3:d4:95:25:8c:e7:00:88:69:54:cd:ce:12:f2:b1: 3f:6c:5f:1c:d8:f2:49:68:a4:fa:da:0f:a0:66:f3:38:d8:85: aa:d1:80:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUwNjE0MTUzNDI4WhcNMjUwNjIxMTUzNDI4WjAYMRYwFAYD VQQDEw02ODRkOTY4NS0zYzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkKF52xCOSWtFy11SJd1CVLFdFPAZTlaqKkmH4joMRA1PGAs771kdPNZEsSV POyC7qKV+m9KUma5Kd9vGejGBFzGEk87RmZrrXiFHxVDegOUTz3kFC7ftThoTgm4 bJc5BbuVX37ymrgUuH4gKnYh6kRVBX9xxUgWqSALeMJQE0/2BDWW/Pob/CcMQwk8 oMQkyohkoLAmB2Yl7NkVVfD+P1M2EsXhpysVXD8gBLyoxUP0+U2Sm0B4s/Xmhs2u OU+sUd9ypol9HiQHpcQ/9jjBLzqCv8+4DxkSaXhxjQbaaCTSAQeFEXdrwLi++A0z wgCXtsNREy8UqLdWDZSwxQv5XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsiS5sN wiHWXCqHuoRNp+baaW1qMB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM1d/AWVE1ychhCLDcK29GFtaqhvj76g9tKusWbuKTjkMVKwBanA3x sV4cjJmKWDBq4PiXLVyxf1c25Y7MVN5tXPCM3VVyKjPZuz9CgcmsvCn4+qEOV9dv pM4Fdf9OX8ACW7qUvLrO6A8nNH6h9T6ATf4m0C23Ve5VgbmhvM+7IRHm/yka4YTS NquxhVGSq1sAsy7GWk36ePSydiXEA0lm2W83hHuj+0kRS13DVivY6O8ulAcQFRmz jw0u5lP+ju/1DeOPkDq7wqEqFULMi1XxHZ7czT9DwQfK62Kz1JUljOcAiGlUzc4S 8rE/bF8c2PJJaKT62g+gZvM42IWq0YBu -----END CERTIFICATE-----Generated at Sat Jun 14 21:21:28 2025 by rpki-client