$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: xU3+VFw87xFh+pDQUIAKbB86kDEhBMyTqgdQmdJdips= Subject key identifier: 92:B4:2B:3B:3B:67:AE:BA:9A:09:7B:36:4F:51:E3:8D:48:61:F5:0F Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 16D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 16AE Signing time: Sat 31 May 2025 16:40:25 +0000 Manifest this update: Sat 31 May 2025 16:40:25 +0000 Manifest next update: Sat 07 Jun 2025 16:40:25 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: PHG50z4P4vl4uoblRtvJc7mEFf87n1V7L8RTfir2QjU=) 2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: i/Bdlwtsw60KlWyTtnZoHMYWyMWkX8rBZXwz4SUYdDY=) 3: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: x5fSlx3nNKz6ifMgnnFr+DL48Yd9QT9h8VtP+zrrY4c=) 4: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: 9PGVW+39KLlj0WI9eJ5OovuG1UvnRDi3eMzS7oZFC4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5841 (0x16d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: May 31 16:40:25 2025 GMT Not After : Jun 7 16:40:25 2025 GMT Subject: CN=683b30f9-6ba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b6:39:c4:01:97:ac:08:69:9b:76:32:23:0d: b0:5b:bf:2e:09:c9:6f:55:5e:91:d8:1f:24:59:19: 8e:53:31:e6:46:6f:4e:f1:57:52:2d:2b:99:fa:c4: 1f:93:cd:de:92:36:aa:e8:4e:43:0d:f5:cc:ab:0f: a3:ba:e8:c9:d2:f6:e3:c9:7e:8f:e0:21:96:6a:64: 34:f5:c4:65:de:75:21:e6:ef:db:bf:7d:4d:6a:d9: 4a:ce:c5:04:8b:ca:9c:f1:6f:d2:20:58:57:08:40: 4a:57:1c:23:2c:72:cb:2d:3f:ab:e0:6d:c2:01:39: 03:d2:b9:97:00:cd:43:9a:d7:3a:fe:d4:ec:65:bd: f3:a7:f0:27:ed:00:88:76:65:4f:82:bc:68:5c:cb: ae:ea:07:57:25:ee:d5:66:2e:b8:52:c3:54:04:b4: f0:2e:7f:2d:da:f7:f8:f1:61:3b:70:9d:38:c9:14: 02:19:7f:9b:fb:fa:fc:62:12:c3:5c:6e:6b:35:79: a3:3f:53:49:31:b6:7e:e4:20:d5:78:a0:48:b1:2a: b3:cb:5b:ff:aa:db:33:af:9d:29:09:49:5e:17:5c: 9e:85:de:f8:f6:14:82:93:98:b1:da:3b:dc:5f:d6: 93:6a:45:c6:b3:f7:63:01:57:8d:ff:0c:7e:6e:77: c6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B4:2B:3B:3B:67:AE:BA:9A:09:7B:36:4F:51:E3:8D:48:61:F5:0F X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:94:8f:4c:62:93:3e:24:0e:cc:d2:de:f9:54:65:dc:a1:2c: df:e9:53:2c:5e:d8:f6:c9:38:b1:83:38:37:b3:1e:7f:c9:29: 98:aa:34:d0:0a:d2:cd:23:03:c0:ff:87:17:31:d5:e7:05:80: c2:3e:4b:f3:4b:83:fb:01:58:41:45:45:e9:bf:0e:fe:7b:72: 83:02:e8:7a:d8:06:a0:4c:c9:f5:1e:db:1f:62:28:a4:d8:94: aa:04:75:e7:f8:88:40:c8:b0:c0:1f:b2:2f:0f:6d:61:7c:a3: 83:55:60:51:a1:fb:90:12:80:52:86:63:53:8d:66:8b:38:af: b8:df:eb:2f:9e:3b:fe:f9:40:d9:51:58:05:79:4a:78:1f:eb: 92:68:fb:a8:67:3e:d5:88:6d:49:57:2e:9b:2c:59:9b:8c:11: 5e:cf:8b:17:e8:44:ae:c6:27:2d:b3:9d:1c:57:02:55:51:0c: 2d:e4:13:50:1b:27:75:61:6f:22:e8:0a:16:b1:e3:54:a6:67: b1:85:6c:29:70:c4:d9:fe:f6:c5:7f:e1:66:bf:9b:4f:b2:1c: 00:56:fd:95:50:d6:5b:e7:f0:a5:7e:72:94:8c:79:f7:4a:18: ae:f7:99:f9:bc:bc:5e:88:5b:6b:e2:eb:1d:a9:04:3b:92:82: 8a:01:f0:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjUwNTMxMTY0MDI1WhcNMjUwNjA3MTY0MDI1WjAYMRYwFAYD VQQDEw02ODNiMzBmOS02YmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLY5xAGXrAhpm3YyIw2wW78uCclvVV6R2B8kWRmOUzHmRm9O8VdSLSuZ+sQf k83ekjaq6E5DDfXMqw+juujJ0vbjyX6P4CGWamQ09cRl3nUh5u/bv31NatlKzsUE i8qc8W/SIFhXCEBKVxwjLHLLLT+r4G3CATkD0rmXAM1Dmtc6/tTsZb3zp/An7QCI dmVPgrxoXMuu6gdXJe7VZi64UsNUBLTwLn8t2vf48WE7cJ04yRQCGX+b+/r8YhLD XG5rNXmjP1NJMbZ+5CDVeKBIsSqzy1v/qtszr50pCUleF1yehd749hSCk5ix2jvc X9aTakXGs/djAVeN/wx+bnfGSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJK0Kzs7 Z666mgl7Nk9R441IYfUPMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdlI9MYpM+JA7M0t75VGXcoSzf6VMsXtj2yTixgzg3sx5/ySmYqjTQ CtLNIwPA/4cXMdXnBYDCPkvzS4P7AVhBRUXpvw7+e3KDAuh62AagTMn1HtsfYiik 2JSqBHXn+IhAyLDAH7IvD21hfKODVWBRofuQEoBShmNTjWaLOK+43+svnjv++UDZ UVgFeUp4H+uSaPuoZz7ViG1JVy6bLFmbjBFez4sX6ESuxicts50cVwJVUQwt5BNQ Gyd1YW8i6AoWseNUpmexhWwpcMTZ/vbFf+Fmv5tPshwAVv2VUNZb5/ClfnKUjHn3 Shiu95n5vLxeiFtr4usdqQQ7koKKAfCD -----END CERTIFICATE-----Generated at Mon Jun 2 18:56:23 2025 by rpki-client