$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: XFOkDjY55esakErb0MNWLNC9nVffDhmUx9IesSwSK2U= Subject key identifier: 1B:0B:19:BB:64:E7:D4:8D:5F:E9:43:38:A0:3F:C0:E4:87:52:1D:D4 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0CC9 Signing time: Fri 22 Aug 2025 18:17:12 +0000 Manifest this update: Fri 22 Aug 2025 18:17:12 +0000 Manifest next update: Fri 29 Aug 2025 18:17:12 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: KwYHaP0RKSkfYqAVCj1E1mFe/66/bc94w8djLTFAqDo=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3296 (0xce0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Aug 22 18:17:12 2025 GMT Not After : Aug 29 18:17:12 2025 GMT Subject: CN=68a8b428-0285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6a:09:da:cf:ec:4a:09:50:bf:12:b7:84:2e: d2:21:dc:36:21:38:e2:d8:74:88:c2:7a:69:bf:a0: 6c:60:86:44:d1:08:f5:3e:bd:aa:7e:52:c0:1c:a7: 18:20:8d:cd:db:30:d0:6e:05:7f:c7:f5:78:f5:98: c4:55:48:6c:27:3f:c9:00:81:42:80:35:88:54:2b: c4:2d:5d:3f:a4:b9:55:55:c2:df:d1:65:f0:53:98: 14:10:9e:fb:90:f2:99:df:5d:e4:72:09:d3:7f:6d: af:03:c8:d9:a6:70:29:4c:e0:b3:64:59:41:35:06: d1:ce:cc:f8:bc:3d:1e:46:cb:da:92:43:a5:2a:cb: 27:f9:ca:40:af:0c:b8:f3:8d:fa:54:22:54:e5:60: b5:be:cd:c5:4e:01:d2:ae:b9:d3:7a:68:4d:a3:ad: 47:bf:37:23:00:52:f5:62:f4:c8:0a:84:2a:90:ae: 09:d3:0d:d0:b4:67:61:7d:8e:eb:2c:96:4d:29:b5: 28:6d:45:61:8f:86:b1:de:49:99:60:95:58:e3:4d: 22:c9:d4:64:a6:ca:eb:bb:c0:4c:52:bd:26:0b:3f: e8:58:9a:ad:d0:88:74:e9:af:40:55:b8:bf:eb:29: 55:ab:33:f7:94:92:16:41:51:3f:72:54:e3:5e:6f: aa:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0B:19:BB:64:E7:D4:8D:5F:E9:43:38:A0:3F:C0:E4:87:52:1D:D4 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:fb:4d:82:dc:30:f0:15:47:e2:2b:e0:3e:d1:b2:d3:21:61: be:05:5e:45:3f:08:ae:3b:a8:a2:a0:e8:26:fd:af:75:ad:eb: 9c:b8:39:d7:e8:b6:df:57:0f:ea:39:38:90:86:92:ab:7c:5f: be:dc:83:b0:db:b4:f6:99:39:68:45:05:ea:1c:99:30:a1:c0: 40:e6:d0:25:cf:dc:e1:ac:95:2b:0d:0e:67:86:ab:e2:b6:70: 33:47:52:86:60:29:87:7f:c0:00:c2:d6:98:f5:4b:b3:83:2f: e7:06:f4:bc:e0:fb:c4:aa:59:e0:26:f3:3a:12:94:3d:51:24: cb:08:15:a3:6e:59:36:ea:cf:69:ca:49:82:c8:17:a7:a4:9e: ef:1d:12:c0:f6:d3:a2:8c:ce:46:79:31:b4:ce:50:b0:16:fd: 0c:66:5a:19:7a:01:d3:c2:5f:59:80:d4:8e:01:98:b0:c8:24: 73:71:a1:1e:23:58:4d:0e:66:c5:3e:3a:5c:b1:68:ee:9c:dc: 2a:7b:09:d0:0a:9e:17:0b:73:8c:05:31:db:d2:23:08:fd:c7: 45:1f:04:ad:f5:ec:6b:12:f1:fe:b4:18:24:44:c0:00:e5:fb: aa:0b:6b:ab:69:a8:1f:93:ba:a2:f2:19:e5:cc:4c:bb:08:93: 15:31:65:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwODIyMTgxNzEyWhcNMjUwODI5MTgxNzEyWjAYMRYwFAYD VQQDEw02OGE4YjQyOC0wMjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGoJ2s/sSglQvxK3hC7SIdw2ITji2HSIwnppv6BsYIZE0Qj1Pr2qflLAHKcY II3N2zDQbgV/x/V49ZjEVUhsJz/JAIFCgDWIVCvELV0/pLlVVcLf0WXwU5gUEJ77 kPKZ313kcgnTf22vA8jZpnApTOCzZFlBNQbRzsz4vD0eRsvakkOlKssn+cpArwy4 8436VCJU5WC1vs3FTgHSrrnTemhNo61HvzcjAFL1YvTICoQqkK4J0w3QtGdhfY7r LJZNKbUobUVhj4ax3kmZYJVY400iydRkpsrru8BMUr0mCz/oWJqt0Ih06a9AVbi/ 6ylVqzP3lJIWQVE/clTjXm+qhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsLGbtk 59SNX+lDOKA/wOSHUh3UMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj+02C3DDwFUfiK+A+0bLTIWG+BV5FPwiuO6iioOgm/a91reucuDnX 6LbfVw/qOTiQhpKrfF++3IOw27T2mTloRQXqHJkwocBA5tAlz9zhrJUrDQ5nhqvi tnAzR1KGYCmHf8AAwtaY9Uuzgy/nBvS84PvEqlngJvM6EpQ9USTLCBWjblk26s9p ykmCyBenpJ7vHRLA9tOijM5GeTG0zlCwFv0MZloZegHTwl9ZgNSOAZiwyCRzcaEe I1hNDmbFPjpcsWjunNwqewnQCp4XC3OMBTHb0iMI/cdFHwSt9exrEvH+tBgkRMAA 5fuqC2uraagfk7qi8hnlzEy7CJMVMWWp -----END CERTIFICATE-----Generated at Sun Aug 24 06:34:50 2025 by rpki-client