$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: 2Y8v+neWvtR/V3OPMiM7anlYGIiM4hz216C6HHs7NX0= Subject key identifier: B0:BA:88:02:12:D8:CB:F6:74:42:7E:DD:E4:07:E0:09:CB:C1:90:26 Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 2A00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 29F7 Signing time: Sun 24 Aug 2025 15:33:34 +0000 Manifest this update: Sun 24 Aug 2025 15:33:34 +0000 Manifest next update: Sun 31 Aug 2025 15:33:34 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: WrxvgjhgwM/fZAz6CCvn7KEMj47rDc6iyj9FyUnKnIQ=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10752 (0x2a00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Aug 24 15:33:34 2025 GMT Not After : Aug 31 15:33:34 2025 GMT Subject: CN=68ab30ce-c34c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d3:1c:52:85:b6:2d:d9:5d:b6:9a:eb:c5:b6: a8:88:aa:c4:27:5d:a3:f6:3d:2c:7a:3f:a2:cb:96: 78:55:d9:30:9d:1a:dd:fa:b9:c1:76:86:ec:14:dd: dd:4f:59:4e:13:19:e1:50:78:04:cd:e4:ac:48:8e: 86:f4:fb:69:55:63:37:9b:40:bc:70:fc:33:a1:e4: 8e:7c:aa:18:0e:58:d5:19:26:20:d7:ac:d7:af:94: dd:fa:c1:fb:4a:08:c0:52:47:6c:e2:e3:5e:0a:ad: 37:81:e6:d4:3c:21:7b:28:24:e0:b5:ab:ae:3b:77: bb:1f:b1:5b:d2:6f:a3:ed:79:80:56:de:09:c5:11: 7b:b8:37:52:fe:a2:f1:6b:47:e4:0d:9a:6b:59:3c: b4:8a:4e:41:29:2e:bb:9c:0d:7e:bb:2e:a2:fa:f1: 8f:4d:96:8e:e5:3f:df:33:e8:32:e5:e1:7e:68:80: 63:64:de:06:79:df:68:01:f9:d5:42:a2:04:bf:44: 14:ab:8b:97:fc:e5:ee:c0:85:e4:0a:b2:bb:9e:18: b4:5f:b2:8c:de:72:4a:7b:5c:d7:1f:56:29:87:da: dd:23:8c:20:b6:66:c1:cc:0a:15:84:ad:c4:8b:3b: e3:a0:b5:a7:9f:cd:0d:0e:a8:ca:af:3c:01:dd:68: da:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BA:88:02:12:D8:CB:F6:74:42:7E:DD:E4:07:E0:09:CB:C1:90:26 X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:43:70:d6:37:6a:92:10:e7:73:e5:93:8c:09:bd:9e:d1:af: 3d:7d:07:73:b9:ac:7b:ab:dc:82:28:d9:a2:62:3e:3b:fc:c9: 30:2b:e1:e9:0d:91:be:dc:2f:ee:dd:d1:21:d3:07:de:09:83: 02:f7:91:db:81:73:0f:a7:8b:80:08:ad:45:9f:ca:8d:3c:64: b3:f8:c3:5d:c5:27:52:11:21:76:2e:ff:2d:c5:5d:3c:cb:d4: 59:d7:0f:d3:99:05:f2:28:8a:d3:e1:db:93:b5:1e:27:b8:22: 42:1c:63:2b:e0:ea:44:11:99:fc:5d:19:e1:82:ab:b3:cb:15: e6:24:9e:a3:97:f5:6a:b8:78:8d:6a:90:11:fe:62:14:91:d7: 12:cc:ee:9b:91:7d:4c:21:c9:28:db:ba:e5:9c:5d:00:7c:cf: 6b:fc:80:ac:87:e4:be:39:eb:fd:7d:3b:e9:b3:0b:72:e6:27: f2:77:6c:ba:49:10:9c:ca:b2:38:6a:ec:0e:36:4b:c8:c0:5c: a9:f2:d8:46:bb:b4:f5:c8:51:5d:a5:7f:ce:1a:74:68:28:3c: 50:30:03:56:8d:2b:05:82:c7:ad:73:5a:ef:3c:f8:d9:19:51: c2:e9:c3:4b:d3:6e:4d:da:ec:58:72:bc:5d:53:17:58:5d:34: 77:83:e8:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUwODI0MTUzMzM0WhcNMjUwODMxMTUzMzM0WjAYMRYwFAYD VQQDEw02OGFiMzBjZS1jMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NMcUoW2LdldtprrxbaoiKrEJ12j9j0sej+iy5Z4VdkwnRrd+rnBdobsFN3d T1lOExnhUHgEzeSsSI6G9PtpVWM3m0C8cPwzoeSOfKoYDljVGSYg16zXr5Td+sH7 SgjAUkds4uNeCq03gebUPCF7KCTgtauuO3e7H7Fb0m+j7XmAVt4JxRF7uDdS/qLx a0fkDZprWTy0ik5BKS67nA1+uy6i+vGPTZaO5T/fM+gy5eF+aIBjZN4Ged9oAfnV QqIEv0QUq4uX/OXuwIXkCrK7nhi0X7KM3nJKe1zXH1Yph9rdI4wgtmbBzAoVhK3E izvjoLWnn80NDqjKrzwB3WjaVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLC6iAIS 2Mv2dEJ+3eQH4AnLwZAmMB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMQ3DWN2qSEOdz5ZOMCb2e0a89fQdzuax7q9yCKNmiYj47/MkwK+Hp DZG+3C/u3dEh0wfeCYMC95HbgXMPp4uACK1Fn8qNPGSz+MNdxSdSESF2Lv8txV08 y9RZ1w/TmQXyKIrT4duTtR4nuCJCHGMr4OpEEZn8XRnhgquzyxXmJJ6jl/VquHiN apAR/mIUkdcSzO6bkX1MIcko27rlnF0AfM9r/ICsh+S+Oev9fTvpswty5ifyd2y6 SRCcyrI4auwONkvIwFyp8thGu7T1yFFdpX/OGnRoKDxQMANWjSsFgsetc1rvPPjZ GVHC6cNL025N2uxYcrxdUxdYXTR3g+iP -----END CERTIFICATE-----Generated at Sun Aug 24 22:04:56 2025 by rpki-client