$ rpki-client -vvf rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft File: j4RQ6hjtZj3XYxNayPnBormb2W0.mft (raw, json) Hash identifier: J9tnwB+xN5L2PNlgK13eFTpITFI61ByFymUsvyMccIU= Subject key identifier: B3:CE:40:52:58:BB:3B:57:25:0B:40:79:8C:8A:EC:9A:16:82:66:87 Authority key identifier: 8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D Certificate issuer: /CN=A913D9CB/serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Certificate serial: 0864 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft Manifest number: 085E Signing time: Wed 02 Jul 2025 20:57:18 +0000 Manifest this update: Wed 02 Jul 2025 20:57:17 +0000 Manifest next update: Wed 09 Jul 2025 20:57:17 +0000 Files and hashes: 1: j4RQ6hjtZj3XYxNayPnBormb2W0.crl (hash: PenzbLYi3rtD5jbQ4CvNaMtI7MJndRxabBjo8Ll3TMc=) 2: D6CE2DE4CA3C11EAB3604C46C4F9AE02.roa (hash: Pre6mj3qji68nWX5VPNZNIBmXlVK+D7mKmGk/F/UT7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D9CB, serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Validity Not Before: Jul 2 20:57:17 2025 GMT Not After : Jul 9 20:57:17 2025 GMT Subject: CN=68659d2e-02b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:38:ee:a5:52:5e:f5:5d:a9:52:fb:59:90:3e: 5e:de:3c:d0:e6:5a:a5:45:92:c6:cc:fb:b6:8b:b8: dd:a1:2d:4f:95:48:dd:a8:43:5a:40:02:3a:90:9a: 7d:eb:e5:7d:07:0d:7f:17:36:fc:72:5b:c0:7c:e6: 61:af:c3:e8:e7:84:20:5b:31:b5:02:6a:f2:10:28: 68:39:b8:ad:0d:ac:a5:12:93:82:43:da:d6:b9:81: 0a:04:69:a4:3d:2f:94:ca:ea:a9:78:de:d2:33:4e: c3:dd:99:c1:e5:e0:e6:19:af:52:3f:a5:b5:98:4a: 6a:4b:c3:f4:bb:ad:ba:7d:84:f5:95:70:5c:ce:1f: 9d:b0:61:78:f4:da:72:c0:a0:14:6f:56:fe:2d:b1: 36:56:4d:37:74:22:fb:86:5a:2c:06:1b:f7:18:bc: 3a:c9:fa:5e:b9:2f:8a:ad:88:52:c8:e7:1d:52:2c: 86:ba:60:e5:e3:07:95:6f:66:89:dd:e9:7d:13:b8: ed:5e:66:72:23:ec:a1:03:2d:df:c2:0f:e2:59:1f: 05:cc:c4:ef:e8:4e:41:d2:3c:fc:e9:d5:6b:fe:06: 45:e1:86:ae:f9:34:ac:89:cf:72:75:30:39:e9:56: 78:10:ee:f3:04:75:25:3d:52:f8:d5:97:06:e7:81: 0a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CE:40:52:58:BB:3B:57:25:0B:40:79:8C:8A:EC:9A:16:82:66:87 X509v3 Authority Key Identifier: keyid:8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:5e:48:03:4e:40:ab:0f:3f:f8:b9:80:fb:5d:81:aa:3f:c4: 23:bd:73:ec:4c:9f:12:6a:e0:7a:5a:5e:46:c9:83:d1:e6:92: 46:82:12:21:f0:54:4b:70:5c:eb:0f:ad:5c:4f:3e:2d:ea:dc: 26:76:1c:ab:01:60:7f:06:c2:ad:ff:57:36:25:17:c8:a6:01: ec:90:ed:9e:bb:b4:97:37:52:d2:5d:85:96:0a:68:ec:2f:5a: 8e:d9:ae:49:2d:0b:40:51:fb:82:07:25:8f:80:27:c3:f6:52: 9e:0f:41:a6:f4:18:42:ea:76:a7:cc:2f:8e:69:64:9a:d8:07: 07:3d:3a:d3:83:70:de:d0:29:16:f5:c8:43:cd:4e:8a:0a:40: 3b:62:40:48:69:8a:78:d7:ab:d5:2d:56:4e:d4:37:2e:27:84: 08:67:36:1d:c5:f4:2e:b5:4a:04:b8:35:3a:ea:ed:7e:10:3f: e3:ca:5d:b3:3d:66:f6:e5:80:d3:3e:c4:24:2a:3c:dd:be:d9: 17:c3:c5:ba:28:b7:61:a7:63:f8:99:3e:38:9b:7e:1d:6c:c8: 37:86:41:e5:bc:fa:b5:fe:d9:ed:bb:7f:c2:a6:66:f5:1b:dc: e6:ed:5e:58:85:f4:8a:9d:4b:61:44:05:c5:05:3e:24:b4:68: d3:1e:68:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q5Q0IxMTAvBgNVBAUTKDhGODQ1MEVBMThFRDY2M0RENzYzMTM1QUM4RjlDMUEy Qjk5QkQ5NkQwHhcNMjUwNzAyMjA1NzE3WhcNMjUwNzA5MjA1NzE3WjAYMRYwFAYD VQQDEw02ODY1OWQyZS0wMmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jjupVJe9V2pUvtZkD5e3jzQ5lqlRZLGzPu2i7jdoS1PlUjdqENaQAI6kJp9 6+V9Bw1/Fzb8clvAfOZhr8Po54QgWzG1AmryEChoObitDaylEpOCQ9rWuYEKBGmk PS+UyuqpeN7SM07D3ZnB5eDmGa9SP6W1mEpqS8P0u626fYT1lXBczh+dsGF49Npy wKAUb1b+LbE2Vk03dCL7hlosBhv3GLw6yfpeuS+KrYhSyOcdUiyGumDl4weVb2aJ 3el9E7jtXmZyI+yhAy3fwg/iWR8FzMTv6E5B0jz86dVr/gZF4Yau+TSsic9ydTA5 6VZ4EO7zBHUlPVL41ZcG54EKqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPOQFJY uztXJQtAeYyK7JoWgmaHMB8GA1UdIwQYMBaAFI+EUOoY7WY912MTWsj5waK5m9lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDlDQi8zRkQyRDlDNENB MkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpqM1hZeE5heVBuQm9ybWIy VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o0UlE2aGp0WmozWFl4TmF5UG5Cb3JtYjJXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDlDQi8zRkQyRDlDNENBMkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpq M1hZeE5heVBuQm9ybWIyVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCXkgDTkCrDz/4uYD7XYGqP8QjvXPsTJ8SauB6Wl5GyYPR5pJGghIh 8FRLcFzrD61cTz4t6twmdhyrAWB/BsKt/1c2JRfIpgHskO2eu7SXN1LSXYWWCmjs L1qO2a5JLQtAUfuCByWPgCfD9lKeD0Gm9BhC6nanzC+OaWSa2AcHPTrTg3De0CkW 9chDzU6KCkA7YkBIaYp416vVLVZO1DcuJ4QIZzYdxfQutUoEuDU66u1+ED/jyl2z PWb25YDTPsQkKjzdvtkXw8W6KLdhp2P4mT44m34dbMg3hkHlvPq1/tntu3/Cpmb1 G9zm7V5YhfSKnUthRAXFBT4ktGjTHmgd -----END CERTIFICATE-----Generated at Thu Jul 3 08:07:52 2025 by rpki-client