$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: soY1E5B/1bjH/QbPQrQj+uTGQecx1Tp/a7JHTeiKaeA= Subject key identifier: DB:E1:A8:40:FE:9C:D5:89:8D:E9:F3:CF:9B:47:2C:61:C1:20:93:83 Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 1701 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 16DE Signing time: Tue 02 Sep 2025 16:49:44 +0000 Manifest this update: Tue 02 Sep 2025 16:49:43 +0000 Manifest next update: Tue 09 Sep 2025 16:49:43 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: BsUHOKiFAxPvAp1Y8jyNjNfcPpYA/S1veTsUKMZaCGM=) 2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: i/Bdlwtsw60KlWyTtnZoHMYWyMWkX8rBZXwz4SUYdDY=) 3: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: x5fSlx3nNKz6ifMgnnFr+DL48Yd9QT9h8VtP+zrrY4c=) 4: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: 9PGVW+39KLlj0WI9eJ5OovuG1UvnRDi3eMzS7oZFC4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 16:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5889 (0x1701) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Sep 2 16:49:43 2025 GMT Not After : Sep 9 16:49:43 2025 GMT Subject: CN=68b72028-ae97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2a:d5:73:2c:be:c0:db:c2:24:0f:dd:ee:0d: e5:11:0f:92:67:a3:93:68:3e:40:74:6d:e0:24:92: 82:95:e5:4e:d4:9f:e1:71:f0:a9:1e:86:73:8a:7e: f6:09:14:ea:6c:99:3f:87:19:4d:c0:a1:a9:fa:f3: a8:78:1a:b1:b5:90:c1:d1:36:44:cc:d2:37:f7:fe: ce:db:28:f6:13:a2:50:c7:2f:79:1d:a9:de:fe:fd: f8:02:45:45:93:77:bc:34:7c:9d:42:f6:b3:cf:21: 17:92:01:e5:57:8b:45:a1:3a:8d:a7:e3:9a:61:bc: 4e:5a:83:7e:23:3f:ac:40:16:32:e0:4e:7b:e1:15: a5:f6:94:3f:fa:1d:06:1c:94:47:64:4f:92:50:32: ab:29:e6:92:98:76:37:f5:a4:c4:c6:fd:b2:16:23: 4e:18:ae:66:ed:c1:d9:ca:8b:2f:2f:d6:b3:8a:79: ab:52:f0:24:8a:9e:35:81:0d:a0:22:93:ff:a3:88: 61:fa:ba:97:7c:f6:99:a0:f5:c0:ad:29:70:34:6b: cb:14:60:05:d9:fb:f6:cc:17:24:cf:44:e6:0d:ce: 53:d4:9c:33:eb:23:67:db:00:d1:d1:8c:a8:f6:c9: 74:e0:a7:b2:0a:e4:ba:15:a1:73:53:39:f0:24:3d: b7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E1:A8:40:FE:9C:D5:89:8D:E9:F3:CF:9B:47:2C:61:C1:20:93:83 X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:3d:44:54:ab:27:d8:32:a5:1c:fd:99:3d:d4:70:68:01:09: eb:2e:1d:64:6b:94:34:28:c1:25:61:d5:02:be:92:70:db:4d: 3c:70:49:11:df:a9:b5:3a:35:d2:4b:b5:6a:f5:6d:68:9e:d9: 7d:13:1f:64:30:47:16:ae:cb:91:73:a0:e1:2d:44:11:82:37: af:9b:39:36:a2:93:91:37:42:a5:a2:b3:fe:76:d4:3e:6e:81: 1c:cd:5e:0d:7e:87:45:f8:a4:86:5c:1a:b9:38:8b:90:47:df: ef:db:c6:ed:d9:97:c5:b6:69:98:97:57:51:cb:e8:ec:d2:3d: ac:25:2c:87:5f:66:38:24:bf:74:c2:76:b5:38:04:a9:1f:8d: ed:6e:48:70:59:71:e3:d5:a9:63:d3:34:3b:70:60:e9:c0:8d: 17:c7:a3:46:f6:15:2b:c4:2b:37:61:77:72:22:da:d7:5b:fa: f7:8c:da:c2:b5:a2:83:db:a5:23:23:54:cc:6b:e1:b6:d3:50: 87:88:76:e6:82:5e:e5:6b:bd:ed:5f:0b:fd:b6:93:22:61:78: 5f:e2:08:b9:ed:f9:89:bb:31:e6:fa:84:28:e1:ae:aa:31:41: 1e:0d:5c:57:26:88:4b:bb:9c:7f:a7:62:9e:ed:fc:c8:98:73: cc:b5:5b:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjUwOTAyMTY0OTQzWhcNMjUwOTA5MTY0OTQzWjAYMRYwFAYD VQQDEw02OGI3MjAyOC1hZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxirVcyy+wNvCJA/d7g3lEQ+SZ6OTaD5AdG3gJJKCleVO1J/hcfCpHoZzin72 CRTqbJk/hxlNwKGp+vOoeBqxtZDB0TZEzNI39/7O2yj2E6JQxy95Hane/v34AkVF k3e8NHydQvazzyEXkgHlV4tFoTqNp+OaYbxOWoN+Iz+sQBYy4E574RWl9pQ/+h0G HJRHZE+SUDKrKeaSmHY39aTExv2yFiNOGK5m7cHZyosvL9azinmrUvAkip41gQ2g IpP/o4hh+rqXfPaZoPXArSlwNGvLFGAF2fv2zBckz0TmDc5T1Jwz6yNn2wDR0Yyo 9sl04KeyCuS6FaFzUznwJD23cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvhqED+ nNWJjenzz5tHLGHBIJODMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMPURUqyfYMqUc/Zk91HBoAQnrLh1ka5Q0KMElYdUCvpJw2008cEkR 36m1OjXSS7Vq9W1ontl9Ex9kMEcWrsuRc6DhLUQRgjevmzk2opORN0KlorP+dtQ+ boEczV4NfodF+KSGXBq5OIuQR9/v28bt2ZfFtmmYl1dRy+js0j2sJSyHX2Y4JL90 wna1OASpH43tbkhwWXHj1alj0zQ7cGDpwI0Xx6NG9hUrxCs3YXdyItrXW/r3jNrC taKD26UjI1TMa+G201CHiHbmgl7la73tXwv9tpMiYXhf4gi57fmJuzHm+oQo4a6q MUEeDVxXJohLu5x/p2Ke7fzImHPMtVuZ -----END CERTIFICATE-----Generated at Thu Sep 4 14:04:39 2025 by rpki-client