$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: +wRVowunDrcHz2xjdZ2zSHmQwhV9gUxg7nbPYjOobmA= Subject key identifier: 95:C0:28:9F:25:DB:23:D6:DC:3F:43:4C:81:13:85:3C:C3:25:6F:0D Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D1D Signing time: Mon 30 Jun 2025 18:15:37 +0000 Manifest this update: Mon 30 Jun 2025 18:15:37 +0000 Manifest next update: Mon 07 Jul 2025 18:15:37 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: 4gMMlEBITTPWr1TeAdZEL7GvKer4ydLsXrI1+D4TdkQ=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3371 (0xd2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Jun 30 18:15:37 2025 GMT Not After : Jul 7 18:15:37 2025 GMT Subject: CN=6862d449-13ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:57:a2:18:a0:4d:0e:47:5a:25:2a:a5:e7:37: 99:ff:48:e0:b1:b7:34:95:f6:08:da:57:92:d8:4b: 70:12:c9:84:5f:6b:de:50:82:49:88:d0:c4:7a:00: 51:43:d2:ee:8d:49:7d:85:57:b7:e3:6c:46:ee:4d: c7:5d:67:fb:e7:56:bc:72:d9:35:87:a2:dc:bd:d8: 46:99:dd:52:82:0d:b4:1f:e4:9a:4d:b6:b6:d1:48: b3:0a:6a:43:9e:8f:55:2a:47:b9:f8:16:e4:53:39: aa:7b:10:6a:21:76:ba:c6:7a:75:0b:66:c3:ca:28: 9e:e6:36:37:0a:3d:0f:9b:2c:14:ce:df:59:a7:a4: 61:28:a7:c2:d4:85:75:96:3c:d1:b0:04:88:5c:95: c3:cd:49:eb:03:57:f0:83:06:dc:63:77:f5:b4:35: 3f:d4:ba:9d:1e:d9:15:70:25:67:6d:ee:2a:dc:35: 57:cf:d2:5a:d9:1f:32:77:d3:bb:4b:90:9c:71:f9: 91:04:3d:d0:92:a4:66:2b:59:38:a9:07:56:79:d1: cc:c9:9f:4c:0b:b9:4e:67:cc:5f:a8:c2:62:9d:ec: f8:8c:a6:93:3f:8a:a4:a7:c3:51:be:fd:9c:41:f5: 12:9d:c2:d2:33:34:39:d3:21:6d:83:02:c0:ec:78: 65:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C0:28:9F:25:DB:23:D6:DC:3F:43:4C:81:13:85:3C:C3:25:6F:0D X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:31:36:e9:bf:97:8f:f3:64:0f:8a:5b:26:ce:26:72:0b:1f: f8:67:2b:31:30:78:92:ca:56:51:9f:48:82:58:8c:7e:fa:5e: 81:06:39:42:40:5e:10:1a:96:86:2f:bb:88:9e:fb:83:e5:ab: 7e:35:9d:77:51:41:0b:b2:e6:33:c4:d6:c7:1e:9b:14:b6:df: b8:9d:4a:6b:0b:07:f0:9f:41:15:d4:71:42:be:35:97:07:55: 18:50:47:47:96:ad:c1:b1:5d:00:54:45:6d:6f:66:be:19:7c: 11:e2:3b:13:ea:b2:0e:de:13:38:7e:ec:98:44:71:18:1b:c2: b3:e7:31:01:98:97:50:d1:ea:85:5e:34:bb:03:1e:55:3f:ad: f2:e1:8e:8b:bc:2a:a3:94:cd:cb:e9:7e:60:45:17:2c:c1:b2: f7:ad:db:6f:8c:dc:47:48:e6:33:66:17:41:db:00:9f:2f:f4: ae:75:bb:9a:f3:19:86:d5:9d:c5:c6:35:43:91:e2:ba:85:a8: 7b:5b:5f:12:ae:78:62:b5:48:0c:b9:8e:78:ee:6c:20:3a:d4: f6:38:ce:05:9f:8b:09:a7:1f:9b:ab:c6:42:b9:87:95:1f:e0: 24:3f:5f:0b:19:bc:a1:33:72:d7:af:0d:dd:54:e7:87:ef:94: 72:6e:93:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUwNjMwMTgxNTM3WhcNMjUwNzA3MTgxNTM3WjAYMRYwFAYD VQQDEw02ODYyZDQ0OS0xM2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVeiGKBNDkdaJSql5zeZ/0jgsbc0lfYI2leS2EtwEsmEX2veUIJJiNDEegBR Q9LujUl9hVe342xG7k3HXWf751a8ctk1h6LcvdhGmd1Sgg20H+SaTba20UizCmpD no9VKke5+BbkUzmqexBqIXa6xnp1C2bDyiie5jY3Cj0PmywUzt9Zp6RhKKfC1IV1 ljzRsASIXJXDzUnrA1fwgwbcY3f1tDU/1LqdHtkVcCVnbe4q3DVXz9Ja2R8yd9O7 S5CccfmRBD3QkqRmK1k4qQdWedHMyZ9MC7lOZ8xfqMJinez4jKaTP4qkp8NRvv2c QfUSncLSMzQ50yFtgwLA7HhlnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXAKJ8l 2yPW3D9DTIEThTzDJW8NMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuMTbpv5eP82QPilsmziZyCx/4ZysxMHiSylZRn0iCWIx++l6BBjlC QF4QGpaGL7uInvuD5at+NZ13UUELsuYzxNbHHpsUtt+4nUprCwfwn0EV1HFCvjWX B1UYUEdHlq3BsV0AVEVtb2a+GXwR4jsT6rIO3hM4fuyYRHEYG8Kz5zEBmJdQ0eqF XjS7Ax5VP63y4Y6LvCqjlM3L6X5gRRcswbL3rdtvjNxHSOYzZhdB2wCfL/Sudbua 8xmG1Z3FxjVDkeK6hah7W18SrnhitUgMuY547mwgOtT2OM4Fn4sJpx+bq8ZCuYeV H+AkP18LGbyhM3LXrw3dVOeH75RybpMG -----END CERTIFICATE-----Generated at Wed Jul 2 16:26:38 2025 by rpki-client