$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft File: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft (raw, json) Hash identifier: YSFKjJoEVEvUzshb6U+WbM25UF6UE2gVEcRu5Ukkf7Y= Subject key identifier: C2:E0:91:D5:AE:84:9A:BC:1D:9D:01:0B:A8:16:E7:C7:F5:8A:C6:47 Authority key identifier: D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 Certificate issuer: /CN=A9123E38/serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Certificate serial: 0AC5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft Manifest number: 0AC3 Signing time: Fri 04 Jul 2025 16:57:01 +0000 Manifest this update: Fri 04 Jul 2025 16:57:00 +0000 Manifest next update: Fri 11 Jul 2025 16:57:00 +0000 Files and hashes: 1: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl (hash: QuGIoy+k3lvw7JazKP4yFZSb5u+ssN0+tARyUsNQ8qg=) 2: DC25591636C011F0A9DAF53EC4F9AE02.roa (hash: X6qLGESMHlCjgInNJuuQgeTL462kIXu1+dGUahA9Gs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2757 (0xac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Validity Not Before: Jul 4 16:57:00 2025 GMT Not After : Jul 11 16:57:00 2025 GMT Subject: CN=686807dd-2df9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:34:13:ba:62:cf:ce:ab:a8:d0:04:10:2c:f4: c7:c7:9f:a0:c9:cd:f0:eb:7b:8c:5f:43:79:9e:b3: ff:b1:6a:a7:ad:83:6f:9e:47:24:95:c4:72:b9:d9: 41:51:fc:a7:89:33:8f:5b:27:87:25:63:ff:00:86: 0a:60:89:6d:47:40:92:93:1f:fc:8c:69:3b:4b:7c: cd:f4:de:96:f5:31:51:e6:34:21:63:16:d5:52:f2: 69:3d:fd:cf:a8:11:58:f7:40:13:44:fb:df:1e:bb: cb:47:25:11:a2:a5:d1:c2:56:fb:cd:9b:67:ec:b6: 7f:2d:78:b4:60:43:5e:d3:a9:8b:dc:cf:a2:43:62: a0:fb:c0:77:61:fd:45:bb:c8:f7:d3:c2:91:78:05: f4:dc:cb:49:d4:1b:71:64:d0:c4:6f:b7:ca:69:f3: c3:09:ec:48:3c:c6:c0:18:3d:eb:53:f1:1b:1b:90: 56:8f:ef:cc:54:96:c3:2d:cf:19:be:4e:8e:9b:b1: 85:f4:c4:79:d1:c0:0e:2c:86:7a:f4:92:e2:13:a6: bf:bd:bc:d1:68:9a:d6:ae:14:4d:d8:fb:f9:d6:8f: d4:17:d8:ed:81:10:61:c2:41:3f:37:25:b6:de:79: 39:cd:25:30:7a:3b:7d:c8:69:7b:6f:95:f8:85:5c: c2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E0:91:D5:AE:84:9A:BC:1D:9D:01:0B:A8:16:E7:C7:F5:8A:C6:47 X509v3 Authority Key Identifier: keyid:D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:74:47:2b:2d:7e:c2:19:85:af:23:06:0d:fc:06:a0:97:50: d0:eb:1b:3f:d5:b7:d8:d7:5a:c5:b6:ee:f4:8b:0d:26:10:b9: 5e:d4:81:98:91:7d:31:f6:c3:a9:e6:99:66:c4:27:f8:23:bb: 48:a6:74:a3:d2:fe:c3:15:54:19:99:c8:9c:41:cd:64:b1:fb: 88:88:cd:be:3d:df:67:e8:8d:ff:b3:59:d1:b5:10:74:35:99: 4f:bd:af:cb:88:61:59:bf:d4:3c:1f:de:0c:d0:51:86:69:d0: 06:a0:ef:0d:aa:e7:ba:a4:58:cf:b8:7c:26:33:9d:93:20:cd: a4:7f:f4:34:7a:0d:c5:f0:c9:6c:ae:b2:64:a4:be:f8:87:27: fd:69:a9:0f:81:e5:e7:57:2f:66:4d:6e:56:b7:da:51:78:67: c0:7b:90:c7:6b:46:94:ec:9c:50:bc:3f:6a:03:4c:9d:11:e2: a5:4a:b9:d2:24:ec:cb:39:ed:89:81:e4:39:77:26:e0:54:4a: 78:3d:26:ca:42:00:90:ea:ba:fa:bb:e6:22:60:55:8d:c9:8c: 36:06:3d:4a:c8:f1:33:89:b5:9d:5a:57:f0:c2:cc:cb:38:c6: d5:ea:1b:f2:64:c2:4c:1e:79:43:37:22:93:00:1d:9a:3c:12: a9:6b:50:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQwOTREMjQ3MTQzNTJFMEVCQ0QzRjg4Mjc1MjMyODI3 QkM2QUM4OTAwHhcNMjUwNzA0MTY1NzAwWhcNMjUwNzExMTY1NzAwWjAYMRYwFAYD VQQDEw02ODY4MDdkZC0yZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzQTumLPzquo0AQQLPTHx5+gyc3w63uMX0N5nrP/sWqnrYNvnkcklcRyudlB UfyniTOPWyeHJWP/AIYKYIltR0CSkx/8jGk7S3zN9N6W9TFR5jQhYxbVUvJpPf3P qBFY90ATRPvfHrvLRyURoqXRwlb7zZtn7LZ/LXi0YENe06mL3M+iQ2Kg+8B3Yf1F u8j308KReAX03MtJ1BtxZNDEb7fKafPDCexIPMbAGD3rU/EbG5BWj+/MVJbDLc8Z vk6Om7GF9MR50cAOLIZ69JLiE6a/vbzRaJrWrhRN2Pv51o/UF9jtgRBhwkE/NyW2 3nk5zSUwejt9yGl7b5X4hVzCpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMLgkdWu hJq8HZ0BC6gW58f1isZHMB8GA1UdIwQYMBaAFNCU0kcUNS4OvNP4gnUjKCe8asiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC82QjkxRURBMDUz NkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxnNjgwX2lDZFNNb0o3eHF5 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBKVFNSeFExTGc2ODBfaUNkU01vSjd4cXlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC82QjkxRURBMDUzNkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxn NjgwX2lDZFNNb0o3eHF5SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTdEcrLX7CGYWvIwYN/Aagl1DQ6xs/1bfY11rFtu70iw0mELle1IGY kX0x9sOp5plmxCf4I7tIpnSj0v7DFVQZmcicQc1ksfuIiM2+Pd9n6I3/s1nRtRB0 NZlPva/LiGFZv9Q8H94M0FGGadAGoO8Nque6pFjPuHwmM52TIM2kf/Q0eg3F8Mls rrJkpL74hyf9aakPgeXnVy9mTW5Wt9pReGfAe5DHa0aU7JxQvD9qA0ydEeKlSrnS JOzLOe2JgeQ5dybgVEp4PSbKQgCQ6rr6u+YiYFWNyYw2Bj1KyPEzibWdWlfwwszL OMbV6hvyZMJMHnlDNyKTAB2aPBKpa1Ct -----END CERTIFICATE-----Generated at Sat Jul 5 05:22:28 2025 by rpki-client