$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: 0GP5ifiJ7n4hiYT3yv/qcYbqWaWTI0QQB11WDmF3XLI= Subject key identifier: 13:C5:58:55:17:5E:E0:B5:0F:50:3C:A4:41:A7:24:87:07:7E:2C:9D Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0D14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0D09 Signing time: Wed 02 Jul 2025 18:17:15 +0000 Manifest this update: Wed 02 Jul 2025 18:17:14 +0000 Manifest next update: Wed 09 Jul 2025 18:17:14 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: KWlhxxyvx8Xv0VOGMh1O8wslvgKcpj/oYQNfhDtEppU=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: mKEvuFivV/Rx5B93IYGv/jXl23LxYS0A2kDJi7kjILY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3348 (0xd14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Jul 2 18:17:14 2025 GMT Not After : Jul 9 18:17:14 2025 GMT Subject: CN=686577aa-d463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a9:e0:fb:05:d1:47:70:5d:9c:46:f7:21:16: 9c:ff:5d:44:8a:8a:64:79:a1:02:5b:44:5e:0e:0f: fe:18:7f:97:66:70:b1:fa:53:4f:e1:5b:76:fc:2f: 24:7d:60:a5:35:72:9b:49:f4:80:1e:45:9d:43:a6: a7:4d:16:77:55:92:88:6f:40:a6:f2:25:5c:04:85: 1f:21:cd:8f:d3:94:f1:65:5e:5b:ec:c2:b3:d1:e9: 86:dc:c1:36:a5:ad:43:82:03:5a:3b:ce:da:dd:81: 93:ab:46:15:12:3a:28:02:d2:7e:eb:a6:46:01:2d: 94:72:ae:1c:af:86:8a:0b:6a:13:57:84:61:bf:da: 81:f1:aa:8a:ba:1a:ee:82:38:eb:8b:13:8b:7d:67: 40:30:2f:f0:66:55:7b:83:59:cb:89:ee:2d:15:01: a0:62:62:bd:f4:51:4d:90:8a:b6:1d:54:71:e7:76: c5:c3:46:14:40:c6:f9:09:cf:b1:6c:b5:28:74:40: 62:6f:b3:65:2e:fb:01:3e:6d:0f:a1:39:36:63:60: 4b:4e:e9:e4:de:a3:3b:a0:35:ac:49:1a:ba:e9:d7: bf:c5:f5:55:d2:55:ca:91:7e:8e:d5:98:1b:20:87: c4:d7:c2:eb:e7:41:c4:d5:c6:f0:7a:fa:27:50:92: e1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:C5:58:55:17:5E:E0:B5:0F:50:3C:A4:41:A7:24:87:07:7E:2C:9D X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:4b:40:df:07:e5:c6:bc:95:c6:5d:77:5e:bc:a6:09:40:79: 98:1a:26:81:e0:6d:27:e8:90:04:e7:7c:e5:fa:17:fa:98:e6: ce:55:1c:3e:ac:88:7a:95:1a:35:03:3f:fe:fd:00:c8:2c:8a: b4:34:f1:db:ba:e2:ef:e5:96:57:53:a3:01:ff:b3:20:ec:91: 4b:c5:9f:7f:61:3b:e1:0b:27:c1:34:6c:98:c7:13:05:86:f3: 1b:6a:45:e6:24:64:d5:a5:2d:0f:d8:47:c9:30:c1:41:b0:e0: 3b:b5:02:c7:80:34:fa:77:9a:2b:28:a3:7d:88:f4:8f:2b:39: 73:df:a2:fd:ca:31:de:a5:00:a0:36:b6:0f:c2:ae:42:56:25: 5a:85:d4:3c:fc:1a:17:4c:0f:1e:5b:50:9b:42:22:ec:f7:7e: 75:5e:4d:1e:25:fa:a7:20:13:8a:64:87:05:07:3b:eb:83:88: 7f:da:e0:07:3f:14:26:14:35:49:20:e3:6f:87:13:77:80:fb: 44:75:e8:d2:e4:40:26:3b:7e:a8:57:eb:d2:96:39:08:01:91: d1:1e:a1:eb:2f:12:0f:33:82:6e:0d:6a:fe:a1:b3:0f:0c:77: 7a:c7:ee:a4:5c:26:d0:c5:c0:c6:5a:54:5c:7b:8c:5b:1a:6c: cc:38:a5:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUwNzAyMTgxNzE0WhcNMjUwNzA5MTgxNzE0WjAYMRYwFAYD VQQDEw02ODY1NzdhYS1kNDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ang+wXRR3BdnEb3IRac/11EiopkeaECW0ReDg/+GH+XZnCx+lNP4Vt2/C8k fWClNXKbSfSAHkWdQ6anTRZ3VZKIb0Cm8iVcBIUfIc2P05TxZV5b7MKz0emG3ME2 pa1DggNaO87a3YGTq0YVEjooAtJ+66ZGAS2Ucq4cr4aKC2oTV4Rhv9qB8aqKuhru gjjrixOLfWdAMC/wZlV7g1nLie4tFQGgYmK99FFNkIq2HVRx53bFw0YUQMb5Cc+x bLUodEBib7NlLvsBPm0PoTk2Y2BLTunk3qM7oDWsSRq66de/xfVV0lXKkX6O1Zgb IIfE18Lr50HE1cbwevonUJLhUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPFWFUX XuC1D1A8pEGnJIcHfiydMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsS0DfB+XGvJXGXXdevKYJQHmYGiaB4G0n6JAE53zl+hf6mObOVRw+ rIh6lRo1Az/+/QDILIq0NPHbuuLv5ZZXU6MB/7Mg7JFLxZ9/YTvhCyfBNGyYxxMF hvMbakXmJGTVpS0P2EfJMMFBsOA7tQLHgDT6d5orKKN9iPSPKzlz36L9yjHepQCg NrYPwq5CViVahdQ8/BoXTA8eW1CbQiLs9351Xk0eJfqnIBOKZIcFBzvrg4h/2uAH PxQmFDVJIONvhxN3gPtEdejS5EAmO36oV+vSljkIAZHRHqHrLxIPM4JuDWr+obMP DHd6x+6kXCbQxcDGWlRce4xbGmzMOKXB -----END CERTIFICATE-----Generated at Thu Jul 3 11:28:38 2025 by rpki-client