$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: fWYdYZxlvjYi99JuIJu1wbVeaDR1XGaWntrf1127W10= Subject key identifier: F8:C8:BB:A9:2C:52:B7:BF:C8:F2:06:07:B8:04:85:14:3C:85:9C:FF Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0CAF Signing time: Wed 02 Jul 2025 18:25:02 +0000 Manifest this update: Wed 02 Jul 2025 18:25:01 +0000 Manifest next update: Wed 09 Jul 2025 18:25:01 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: nFLJNYqAXDiAmLeY21ZV8rXuRNPS1QCqzR3I6DuGEHU=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:25:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Jul 2 18:25:01 2025 GMT Not After : Jul 9 18:25:01 2025 GMT Subject: CN=6865797d-0c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c2:94:85:01:6f:73:b7:48:19:db:62:71:94: e5:c2:e6:38:82:73:85:de:f2:d0:50:12:c3:46:dc: 04:32:1d:e8:a8:99:40:13:51:30:e4:f1:95:60:ec: 36:32:5d:6a:c0:c4:f5:23:3a:f1:5a:86:18:0f:eb: 02:e8:b5:c5:6e:f8:a9:ee:7d:7e:58:a9:8b:e5:00: 9b:d6:0e:32:e6:91:70:0c:54:05:e4:80:6b:bf:e7: 2a:94:46:07:5b:f6:09:ed:8e:7f:01:18:69:44:6b: 67:f7:cc:d1:3b:58:54:80:ca:75:0a:f8:ff:86:56: f9:5c:e4:6d:e2:ca:15:f6:32:12:bc:d6:c6:e9:ab: 5c:71:ac:f2:70:32:56:15:88:37:d3:e8:db:4d:90: 7d:e8:89:77:01:83:7c:fa:98:98:70:6d:63:f2:47: ae:5a:37:09:fb:01:7e:7c:21:da:c3:87:a5:f9:44: 89:1f:99:16:ef:05:74:86:55:e6:56:bf:09:3f:80: 76:c4:42:93:93:60:d6:9d:c7:50:6a:65:23:f9:d1: 3f:bf:e0:5e:a2:9c:2f:41:72:c9:24:02:b6:b1:b0: cd:9f:0b:b7:df:56:57:37:42:9e:44:e3:13:f7:10: 71:f7:d0:89:29:da:5c:b9:51:73:49:2c:c5:6c:8d: 8d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C8:BB:A9:2C:52:B7:BF:C8:F2:06:07:B8:04:85:14:3C:85:9C:FF X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:9d:41:b6:11:8c:89:4f:13:82:60:22:81:51:a9:4a:fd:43: c7:b4:5e:23:ec:bc:be:3d:9e:48:6b:1a:7f:75:37:6a:83:3e: da:a4:09:7d:31:ac:b4:eb:bd:bf:77:27:9f:35:d2:d6:d3:ff: 14:34:cc:73:1d:ef:29:b1:c9:6c:9d:e7:5a:0b:28:07:78:9d: 72:ab:9e:76:f1:74:98:2c:4a:dc:09:fd:83:40:3b:ac:eb:a7: e5:04:6b:7f:15:f5:9f:b4:06:19:61:d4:e9:81:a8:42:ef:b7: 33:60:a8:7a:6c:93:c9:fb:d1:22:e0:ac:a3:ce:22:04:83:db: fe:ca:8c:89:f7:4d:8f:4e:e5:ac:70:43:82:30:2d:0a:a9:02: 0d:ce:4e:41:3b:90:3a:93:43:c8:7f:18:ea:c1:7c:29:25:e1: 61:0e:d0:91:dc:97:58:74:6c:c8:18:78:3a:19:3a:5e:38:37: e7:63:3d:91:af:5d:3b:75:11:96:24:ca:07:9e:cc:d4:9e:81: 48:67:2b:23:73:b7:f6:28:dd:7b:1b:7d:43:e0:5f:39:0b:a7: a3:b4:cb:e0:d1:4e:64:91:36:c8:32:75:4b:53:26:db:c8:f0: e0:2b:4e:2b:2b:78:e7:87:6a:df:8f:de:7b:53:c4:bd:72:c1: f4:78:6a:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwNzAyMTgyNTAxWhcNMjUwNzA5MTgyNTAxWjAYMRYwFAYD VQQDEw02ODY1Nzk3ZC0wYzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6MKUhQFvc7dIGdticZTlwuY4gnOF3vLQUBLDRtwEMh3oqJlAE1Ew5PGVYOw2 Ml1qwMT1IzrxWoYYD+sC6LXFbvip7n1+WKmL5QCb1g4y5pFwDFQF5IBrv+cqlEYH W/YJ7Y5/ARhpRGtn98zRO1hUgMp1Cvj/hlb5XORt4soV9jISvNbG6atccazycDJW FYg30+jbTZB96Il3AYN8+piYcG1j8keuWjcJ+wF+fCHaw4el+USJH5kW7wV0hlXm Vr8JP4B2xEKTk2DWncdQamUj+dE/v+BeopwvQXLJJAK2sbDNnwu331ZXN0KeROMT 9xBx99CJKdpcuVFzSSzFbI2NLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjIu6ks Ure/yPIGB7gEhRQ8hZz/MB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUnUG2EYyJTxOCYCKBUalK/UPHtF4j7Ly+PZ5Iaxp/dTdqgz7apAl9 May0672/dyefNdLW0/8UNMxzHe8psclsnedaCygHeJ1yq5528XSYLErcCf2DQDus 66flBGt/FfWftAYZYdTpgahC77czYKh6bJPJ+9Ei4KyjziIEg9v+yoyJ902PTuWs cEOCMC0KqQINzk5BO5A6k0PIfxjqwXwpJeFhDtCR3JdYdGzIGHg6GTpeODfnYz2R r107dRGWJMoHnszUnoFIZysjc7f2KN17G31D4F85C6ejtMvg0U5kkTbIMnVLUybb yPDgK04rK3jnh2rfj957U8S9csH0eGog -----END CERTIFICATE-----Generated at Fri Jul 4 07:31:08 2025 by rpki-client