$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: 9KOjW4cOx0N1yy9oVXO2pclXejleiOt5dS4WXSYxoH8= Subject key identifier: 6A:8F:04:88:3D:09:47:FF:38:E9:65:8E:A1:84:D7:05:F9:C5:72:85 Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 16C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 16A5 Signing time: Wed 14 May 2025 16:46:09 +0000 Manifest this update: Wed 14 May 2025 16:46:09 +0000 Manifest next update: Wed 21 May 2025 16:46:09 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: Co4V7mFS8VToK1OiueBZefc2dym5Wj4JlrJhyO2RfJA=) 2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: i/Bdlwtsw60KlWyTtnZoHMYWyMWkX8rBZXwz4SUYdDY=) 3: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: x5fSlx3nNKz6ifMgnnFr+DL48Yd9QT9h8VtP+zrrY4c=) 4: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: 9PGVW+39KLlj0WI9eJ5OovuG1UvnRDi3eMzS7oZFC4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5832 (0x16c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: May 14 16:46:09 2025 GMT Not After : May 21 16:46:09 2025 GMT Subject: CN=6824c8d1-bdd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a9:40:3a:35:9c:c2:ed:de:c4:72:73:75:c5: b0:72:c4:1c:25:6f:8e:97:5a:b0:5f:bd:82:2d:60: 23:58:53:74:76:3d:7d:15:d1:22:e5:c0:8c:57:d3: 40:e7:8f:3a:70:52:a9:a7:34:22:8e:5b:7b:03:75: 18:49:d9:8f:2c:1b:98:62:e2:2a:58:2e:ab:11:d8: 47:d2:10:2c:31:85:3f:9d:51:2d:62:64:38:57:54: ab:a0:45:f6:b3:36:2b:31:1f:2a:1a:3b:c2:18:ba: 6c:f9:8f:9c:cc:92:56:c8:0e:7a:59:35:23:4f:91: e6:c2:ef:74:3a:83:07:fe:87:47:cb:38:71:9c:05: 62:47:fa:52:76:19:fa:11:bd:e3:4f:d8:eb:50:00: 95:bb:bc:47:c0:f3:43:cd:e2:85:70:7f:5f:0e:5f: c7:1f:61:9d:5d:ae:26:a6:fd:1a:fd:95:86:fd:e7: ed:4d:bd:04:ee:30:91:36:34:6a:34:54:53:08:9a: da:54:24:bf:13:b8:a6:19:39:9f:96:4f:7f:28:12: 08:71:6d:a8:f2:05:4a:37:c0:34:a2:bd:68:25:bd: 52:c3:4f:c3:d9:97:e7:74:59:4b:03:37:8c:4e:2b: 15:69:aa:4b:85:f7:17:e0:f4:52:1a:42:02:22:dd: 74:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:8F:04:88:3D:09:47:FF:38:E9:65:8E:A1:84:D7:05:F9:C5:72:85 X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:8c:91:cb:17:6f:85:a2:20:b0:ca:25:e4:71:6e:4b:89:97: e9:84:59:b8:64:83:74:15:e5:16:22:5d:e4:b5:4d:a6:db:00: 7e:c8:36:b2:c9:9b:99:8f:60:78:1c:06:dc:ab:f4:39:a2:f5: 0b:66:43:43:53:14:0e:c0:dc:70:10:b2:90:ee:17:c1:43:da: 00:38:d1:76:8e:dc:36:c1:5b:96:04:f3:b1:7b:47:56:08:b6: 40:e0:f3:53:16:f5:76:14:1b:64:ed:b3:88:8b:0e:d7:c4:6d: 80:dd:97:4e:77:a1:94:d4:28:af:c6:1a:2e:15:75:1c:eb:ec: cd:a9:ee:04:65:88:99:36:97:cf:a7:97:8a:7e:29:66:eb:41: 6b:d5:8d:bf:2b:ec:c7:36:2b:f4:0d:7a:74:d5:fa:e2:78:f4: 64:52:59:c1:dd:11:da:4c:83:45:07:2e:dd:1a:6d:7e:65:a7: 53:47:05:6d:e5:32:fc:0b:89:e5:27:9f:62:72:cf:a7:51:71: bf:d5:76:0f:0a:35:74:8b:eb:42:81:39:e1:c7:c2:d5:fd:f3: 2a:c9:99:0e:cb:af:98:a0:f5:71:45:22:5f:fe:d4:e5:be:10: 9a:f6:d9:5d:e6:d8:be:d2:19:f1:06:fa:a1:0b:13:f4:77:cc: 04:f4:52:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjUwNTE0MTY0NjA5WhcNMjUwNTIxMTY0NjA5WjAYMRYwFAYD VQQDEw02ODI0YzhkMS1iZGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyalAOjWcwu3exHJzdcWwcsQcJW+Ol1qwX72CLWAjWFN0dj19FdEi5cCMV9NA 5486cFKppzQijlt7A3UYSdmPLBuYYuIqWC6rEdhH0hAsMYU/nVEtYmQ4V1SroEX2 szYrMR8qGjvCGLps+Y+czJJWyA56WTUjT5Hmwu90OoMH/odHyzhxnAViR/pSdhn6 Eb3jT9jrUACVu7xHwPNDzeKFcH9fDl/HH2GdXa4mpv0a/ZWG/eftTb0E7jCRNjRq NFRTCJraVCS/E7imGTmflk9/KBIIcW2o8gVKN8A0or1oJb1Sw0/D2ZfndFlLAzeM TisVaapLhfcX4PRSGkICIt10wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqPBIg9 CUf/OOlljqGE1wX5xXKFMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUjJHLF2+FoiCwyiXkcW5LiZfphFm4ZIN0FeUWIl3ktU2m2wB+yDay yZuZj2B4HAbcq/Q5ovULZkNDUxQOwNxwELKQ7hfBQ9oAONF2jtw2wVuWBPOxe0dW CLZA4PNTFvV2FBtk7bOIiw7XxG2A3ZdOd6GU1CivxhouFXUc6+zNqe4EZYiZNpfP p5eKfilm60Fr1Y2/K+zHNiv0DXp01friePRkUlnB3RHaTINFBy7dGm1+ZadTRwVt 5TL8C4nlJ59ics+nUXG/1XYPCjV0i+tCgTnhx8LV/fMqyZkOy6+YoPVxRSJf/tTl vhCa9tld5ti+0hnxBvqhCxP0d8wE9FJk -----END CERTIFICATE-----Generated at Thu May 15 12:10:22 2025 by rpki-client