$ rpki-client -vvf rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft File: jzFgL06-RV4JnABJu3sAZlWLnYk.mft (raw, json) Hash identifier: 1z/WYskxIIJTQ9aYLo4bfmMSGg+EkCqZ2IMLJZIm+iA= Subject key identifier: 84:1C:CA:4F:94:19:2A:36:19:9B:45:2C:81:4A:F2:90:FF:87:EC:68 Authority key identifier: 8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89 Certificate issuer: /CN=A9196E6C/serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89 Certificate serial: 34AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft Manifest number: 3498 Signing time: Wed 04 Jun 2025 14:38:39 +0000 Manifest this update: Wed 04 Jun 2025 14:38:39 +0000 Manifest next update: Wed 11 Jun 2025 14:38:39 +0000 Files and hashes: 1: jzFgL06-RV4JnABJu3sAZlWLnYk.crl (hash: JX/fN09FOzleVx1wSOLZgtg21sH8elaDZEOUxDBM/E4=) 2: 12C0FA5EA8E811EB8801993BC4F9AE02.roa (hash: /mCgDe/QXkVZ19zwT18pUH2ZsyIWQwp0AHCO+5H4d8I=) 3: DC50B57AE84511EB87AD6B49C4F9AE02.roa (hash: TtYahgOBiAHkLlSezm8CxA8MdQa1tev+wopDkcGdXJg=) 4: DD5C8412E84511EB87AD6B49C4F9AE02.roa (hash: w01HF0PHmMW2vTDKfsoG7zjIAasNEiHabBJ66OnCaSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 14:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196E6C, serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89 Validity Not Before: Jun 4 14:38:39 2025 GMT Not After : Jun 11 14:38:39 2025 GMT Subject: CN=68405a6f-87cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c1:f6:10:ea:54:58:d0:88:c0:ab:ed:41:b9: 02:2c:e5:1a:36:4d:69:24:47:e2:74:36:90:da:58: 5c:fd:fa:b9:0b:bd:5e:ae:03:69:25:64:c4:2f:9e: 99:aa:f2:25:b3:d1:60:45:08:a7:a9:bb:61:db:ba: dc:d0:ef:93:2b:f5:4e:24:33:6b:ae:fb:21:56:6f: aa:8f:6f:46:d6:11:1f:5b:f3:5a:21:ae:16:f9:52: 1c:af:39:d5:44:20:46:92:eb:f1:04:b4:ea:49:a2: da:c4:8e:b2:07:57:16:fc:06:16:cb:94:e1:90:cb: 08:c4:f0:4d:59:ff:35:5e:74:15:cf:e2:50:5c:fa: 76:43:39:39:c9:18:bc:10:78:55:4f:45:b6:95:64: b1:24:f6:6f:72:91:9f:c1:ce:f5:ad:3d:d9:e4:95: 1c:84:6d:75:50:25:59:c5:96:9c:f9:8f:18:a1:37: d7:45:d5:98:bc:b9:18:35:d6:06:6e:99:af:fe:bc: 12:dc:1f:0b:69:3d:dc:ae:fa:3c:0a:c1:06:5c:2a: 1c:b5:0a:76:22:d7:50:3b:e9:4a:7d:ad:dd:c8:05: ea:1b:6e:16:c9:72:3b:a2:65:1f:e2:dd:d3:a8:28: 6c:c6:fc:24:9e:fa:bd:25:9e:1b:fa:b9:2e:1c:8d: fe:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1C:CA:4F:94:19:2A:36:19:9B:45:2C:81:4A:F2:90:FF:87:EC:68 X509v3 Authority Key Identifier: keyid:8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:d9:12:13:e2:1d:ab:c7:23:b4:ac:b4:6a:4a:b6:f0:69:4f: a7:e5:7e:97:c3:2c:57:2d:48:d6:39:29:d0:a7:42:55:e5:e1: cc:17:6d:d8:c5:67:ca:db:49:f0:f2:89:e5:51:59:13:16:48: a0:6c:4d:ee:2b:be:66:99:a2:01:ae:eb:42:97:c5:77:26:2d: 21:0e:44:0e:e2:cf:d8:60:9f:52:72:8f:19:be:0f:9e:60:65: f3:7a:d4:26:a9:53:f4:b1:cc:60:0d:f7:90:d1:ec:db:98:23: f3:f7:74:da:bc:eb:cd:6b:b9:48:6a:8b:83:e3:00:b6:f4:f5: f2:43:bd:bf:fc:39:c1:3f:0b:df:1b:87:ad:0e:7e:dc:09:f4: 5c:ed:4e:b8:00:b9:a0:c1:ad:ac:b3:b0:ea:7c:ab:35:9b:be: b7:cb:9a:4e:3c:3d:1d:bf:08:2f:aa:ee:7f:09:2d:ab:1d:8d: af:17:6e:63:ed:b4:6a:93:bd:bf:08:24:de:07:29:5f:a5:8d: 32:23:73:21:0a:84:42:f7:27:61:da:0c:2f:25:d0:6e:e5:cb: e7:a3:4c:35:72:cb:3e:e8:a1:a0:1c:18:1a:3f:4e:0c:84:c4: 09:c1:34:91:76:29:7e:25:c8:72:28:35:78:cd:42:5c:d7:38: dd:b3:de:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZFNkMxMTAvBgNVBAUTKDhGMzE2MDJGNEVCRTQ1NUUwOTlDMDA0OUJCN0IwMDY2 NTU4QjlEODkwHhcNMjUwNjA0MTQzODM5WhcNMjUwNjExMTQzODM5WjAYMRYwFAYD VQQDEw02ODQwNWE2Zi04N2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cH2EOpUWNCIwKvtQbkCLOUaNk1pJEfidDaQ2lhc/fq5C71ergNpJWTEL56Z qvIls9FgRQinqbth27rc0O+TK/VOJDNrrvshVm+qj29G1hEfW/NaIa4W+VIcrznV RCBGkuvxBLTqSaLaxI6yB1cW/AYWy5ThkMsIxPBNWf81XnQVz+JQXPp2Qzk5yRi8 EHhVT0W2lWSxJPZvcpGfwc71rT3Z5JUchG11UCVZxZac+Y8YoTfXRdWYvLkYNdYG bpmv/rwS3B8LaT3crvo8CsEGXCoctQp2ItdQO+lKfa3dyAXqG24WyXI7omUf4t3T qChsxvwknvq9JZ4b+rkuHI3+ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQcyk+U GSo2GZtFLIFK8pD/h+xoMB8GA1UdIwQYMBaAFI8xYC9OvkVeCZwASbt7AGZVi52J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkU2Qy80MjZFM0RCQTFE OEQxMUUyOTNDNERBRUEwOEIwMkNEMi9qekZnTDA2LVJWNEpuQUJKdTNzQVpsV0xu WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p6RmdMMDYtUlY0Sm5BQkp1M3NBWmxXTG5Zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkU2Qy80MjZFM0RCQTFEOEQxMUUyOTNDNERBRUEwOEIwMkNEMi9qekZnTDA2LVJW NEpuQUJKdTNzQVpsV0xuWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO2RIT4h2rxyO0rLRqSrbwaU+n5X6XwyxXLUjWOSnQp0JV5eHMF23Y xWfK20nw8onlUVkTFkigbE3uK75mmaIBrutCl8V3Ji0hDkQO4s/YYJ9Sco8Zvg+e YGXzetQmqVP0scxgDfeQ0ezbmCPz93TavOvNa7lIaouD4wC29PXyQ72//DnBPwvf G4etDn7cCfRc7U64ALmgwa2ss7DqfKs1m763y5pOPD0dvwgvqu5/CS2rHY2vF25j 7bRqk72/CCTeBylfpY0yI3MhCoRC9ydh2gwvJdBu5cvno0w1css+6KGgHBgaP04M hMQJwTSRdil+JchyKDV4zUJc1zjds97a -----END CERTIFICATE-----Generated at Fri Jun 6 17:20:34 2025 by rpki-client