$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft File: jfabjPAtRHKg4tL07m5JMm09sMU.mft (raw, json) Hash identifier: ncTlkbp+sezGRz3Pelk4mlUYrJFo5IQ1mGH7uDgDdLo= Subject key identifier: 51:73:68:AD:F2:B9:EF:DC:39:64:E0:2F:B1:F9:66:93:E8:5C:50:0B Authority key identifier: 8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 Certificate issuer: /CN=A9147BA3/serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Certificate serial: 34A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft Manifest number: 349E Signing time: Mon 30 Jun 2025 15:10:48 +0000 Manifest this update: Mon 30 Jun 2025 15:10:47 +0000 Manifest next update: Mon 07 Jul 2025 15:10:47 +0000 Files and hashes: 1: jfabjPAtRHKg4tL07m5JMm09sMU.crl (hash: xcuNG6B8gVfcA043iYeRRxYpTig6wX7PKHKTGSlwGZ8=) 2: 2B2C31BE3B8B11EB8D76362DC4F9AE02.roa (hash: END/X8NWEnYQqU51TlQvCrkCaUczqULOOoxx1HVtbaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13479 (0x34a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BA3, serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Validity Not Before: Jun 30 15:10:47 2025 GMT Not After : Jul 7 15:10:47 2025 GMT Subject: CN=6862a8f7-94ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b6:9e:1f:2b:eb:6a:81:33:fd:13:09:7c:81: 20:11:21:75:92:57:ad:04:0c:1a:15:4d:8f:63:6e: d9:ed:12:5c:50:36:dc:d9:86:4a:e7:d1:1a:f2:81: a6:46:1c:86:5a:d9:53:d6:f8:aa:2b:85:f9:40:e0: 20:77:ee:a4:af:22:66:6d:e4:a3:9c:d7:f1:eb:cf: 36:7c:4e:d9:c8:fa:49:a6:d5:17:ba:68:1d:fc:c1: 0a:70:ab:b7:a5:e6:52:11:e4:7e:b6:41:e2:ad:38: e3:3a:0e:40:5c:eb:36:ef:fa:e9:60:82:5d:73:2a: 1b:fb:10:a3:8e:77:85:e0:bb:d0:f6:d8:07:81:95: a0:20:59:55:17:6b:d3:44:64:a1:26:aa:30:ad:90: 79:b0:4c:20:31:e3:d2:3f:87:44:06:48:d3:fb:1d: 1f:80:ea:d4:e5:9e:7f:67:e5:82:b2:72:cb:b2:bb: 4c:bb:63:d2:c9:68:dc:c1:8e:45:55:e3:18:7a:92: 08:62:83:6a:f1:97:b5:be:94:25:3e:84:5d:82:b3: a5:8d:d2:63:15:79:5e:96:fa:48:15:08:ff:1e:ee: aa:be:17:d4:67:4a:36:d6:46:0a:1a:72:54:67:b1: 67:3d:3f:dd:da:9e:de:10:74:7b:60:e3:04:ef:c2: c1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:73:68:AD:F2:B9:EF:DC:39:64:E0:2F:B1:F9:66:93:E8:5C:50:0B X509v3 Authority Key Identifier: keyid:8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:56:e4:ae:d8:88:2c:4d:3d:06:c7:2b:c1:3e:f3:e9:cc:6e: 5b:02:98:55:66:01:b2:d4:af:f6:99:37:08:54:b8:cf:a0:56: 75:54:f7:33:6e:e4:96:e4:ac:03:a5:03:0e:f6:77:87:61:25: a2:c3:f2:42:9c:a6:de:07:c7:bd:95:ce:37:6a:59:4e:62:6e: bf:0e:c9:c4:dc:a5:f7:36:19:f8:a9:4b:97:b6:2a:d2:38:14: 48:82:91:ac:b1:ca:fc:44:02:32:b0:b1:b4:77:07:6b:42:a7: d9:31:d0:46:ad:2e:14:55:02:bf:fe:a8:a6:c0:d6:75:96:b7: 33:85:20:ac:9c:ad:20:6b:3d:b6:88:ff:af:76:2f:2b:68:6d: 33:57:9a:ce:03:de:4b:90:92:93:c5:68:f1:a0:cb:41:c6:09: 02:53:34:8e:4c:b3:9c:28:9b:46:6b:b5:b4:be:c1:b9:46:12: ce:dd:c5:7b:87:f3:a6:cf:de:dc:b1:db:81:4c:ad:d8:94:00: 3c:e3:8b:71:1d:f4:02:e6:98:30:64:55:40:dc:47:a3:b2:d3: eb:9e:3d:d5:13:d6:b4:d4:51:18:da:f3:58:94:e1:56:a1:73: 78:7e:14:f7:ba:5a:e7:3b:85:32:bc:22:3f:ce:92:80:5c:7c: 98:71:10:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCQTMxMTAvBgNVBAUTKDhERjY5QjhDRjAyRDQ0NzJBMEUyRDJGNEVFNkU0OTMy NkQzREIwQzUwHhcNMjUwNjMwMTUxMDQ3WhcNMjUwNzA3MTUxMDQ3WjAYMRYwFAYD VQQDEw02ODYyYThmNy05NGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17aeHyvraoEz/RMJfIEgESF1kletBAwaFU2PY27Z7RJcUDbc2YZK59Ea8oGm RhyGWtlT1viqK4X5QOAgd+6kryJmbeSjnNfx6882fE7ZyPpJptUXumgd/MEKcKu3 peZSEeR+tkHirTjjOg5AXOs27/rpYIJdcyob+xCjjneF4LvQ9tgHgZWgIFlVF2vT RGShJqowrZB5sEwgMePSP4dEBkjT+x0fgOrU5Z5/Z+WCsnLLsrtMu2PSyWjcwY5F VeMYepIIYoNq8Ze1vpQlPoRdgrOljdJjFXlelvpIFQj/Hu6qvhfUZ0o21kYKGnJU Z7FnPT/d2p7eEHR7YOME78LBiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFzaK3y ue/cOWTgL7H5ZpPoXFALMB8GA1UdIwQYMBaAFI32m4zwLURyoOLS9O5uSTJtPbDF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0JBMy83N0VBN0EyNDFE QTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJIS2c0dEwwN201Sk1tMDlz TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pmYWJqUEF0UkhLZzR0TDA3bTVKTW0wOXNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0JBMy83N0VBN0EyNDFEQTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJI S2c0dEwwN201Sk1tMDlzTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnVuSu2IgsTT0GxyvBPvPpzG5bAphVZgGy1K/2mTcIVLjPoFZ1VPcz buSW5KwDpQMO9neHYSWiw/JCnKbeB8e9lc43allOYm6/DsnE3KX3Nhn4qUuXtirS OBRIgpGsscr8RAIysLG0dwdrQqfZMdBGrS4UVQK//qimwNZ1lrczhSCsnK0gaz22 iP+vdi8raG0zV5rOA95LkJKTxWjxoMtBxgkCUzSOTLOcKJtGa7W0vsG5RhLO3cV7 h/Omz97csduBTK3YlAA844txHfQC5pgwZFVA3EejstPrnj3VE9a01FEY2vNYlOFW oXN4fhT3ulrnO4UyvCI/zpKAXHyYcRDC -----END CERTIFICATE-----Generated at Tue Jul 1 07:29:03 2025 by rpki-client