$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft File: jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft (raw, json) Hash identifier: uVvqsy1/VzqGczYuJocu5PfEMnrvOlXUw0txECBQoTc= Subject key identifier: CD:AB:64:59:A0:BF:98:0F:D5:3D:D5:F4:8B:2D:DD:D7:57:6C:ED:E4 Authority key identifier: 8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 Certificate issuer: /CN=A9149A6C/serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Certificate serial: 06F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft Manifest number: 06EB Signing time: Mon 30 Jun 2025 22:15:37 +0000 Manifest this update: Mon 30 Jun 2025 22:15:36 +0000 Manifest next update: Mon 07 Jul 2025 22:15:36 +0000 Files and hashes: 1: jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl (hash: dM/TlHDLepI3eGUM2TLJnX17knRH3n0JwR7Yp+tG5VI=) 2: 22D8137A51A711EBAAAB6410C4F9AE02.roa (hash: W1YtTgfcUQgVCMN18bivEJ+sBWqdB/GL1VhO0Gs0eBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1776 (0x6f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A6C, serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Validity Not Before: Jun 30 22:15:36 2025 GMT Not After : Jul 7 22:15:36 2025 GMT Subject: CN=68630c88-4d51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:61:4b:66:b3:aa:d0:1a:83:5f:21:01:68:63: 95:b9:67:fe:a9:0e:3e:b3:d3:14:09:71:41:05:d3: 26:a5:d6:98:72:2b:53:ca:d5:8a:71:3a:ce:d3:30: 16:e9:cc:51:9d:04:d6:08:f8:1e:3d:7e:50:91:00: 48:35:c7:44:5a:77:48:a7:49:87:7b:f9:91:f5:4a: f4:71:85:86:67:0c:57:0a:83:bb:da:0c:3a:ae:ac: 2c:c8:47:0c:35:a2:45:61:9b:5d:85:f8:d3:70:6e: 23:4e:2c:e9:f9:bb:6c:86:d9:d6:89:99:58:64:f0: a0:09:60:0a:ae:3c:e1:9f:90:39:d5:eb:9d:fd:c6: 47:3c:cf:d0:6b:bc:d7:24:5a:49:0c:7b:f1:38:e6: 8d:1f:0a:0e:6f:fc:0a:d3:84:30:c6:8e:a1:f5:9f: f3:78:1c:15:bb:01:c3:cf:6e:b8:cb:97:fd:3f:69: b5:36:e2:77:93:76:c4:12:49:97:ff:e8:6b:80:81: 1c:96:86:d6:8d:88:07:14:95:62:73:05:5f:23:aa: 0e:d1:81:b8:19:b8:a5:9b:40:81:73:23:18:d1:da: 27:18:03:d7:cb:57:d3:8c:b9:12:a4:bd:56:bf:1c: 9b:66:12:94:7c:87:6d:11:92:79:28:1b:62:0b:03: 0b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AB:64:59:A0:BF:98:0F:D5:3D:D5:F4:8B:2D:DD:D7:57:6C:ED:E4 X509v3 Authority Key Identifier: keyid:8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f2:ae:ac:a1:56:7d:db:c1:e9:f2:65:79:af:7a:d0:84:85: 43:d9:7a:06:4e:9a:7e:56:d0:fd:46:c5:e4:55:7b:51:43:56: b8:cd:84:78:33:eb:fc:27:f2:1d:3e:07:dc:4f:50:fa:c4:be: 5c:df:e9:ab:ae:4d:c3:32:2b:a8:58:6c:d8:aa:19:5a:be:9f: d9:19:be:d5:ff:aa:4a:2d:10:fc:7a:3d:d7:f6:b6:19:58:41: 80:4f:92:3c:4a:49:9a:44:0a:db:82:5c:10:c6:b5:ee:0c:7f: 02:0b:c9:b9:65:50:ce:d2:b6:47:49:5a:a4:5f:88:37:dd:f6: 37:b4:cb:19:e6:d4:46:db:40:fc:5e:3b:1a:74:8e:a6:29:60: 81:48:27:0d:40:19:8f:69:7f:70:1a:46:0f:b8:06:65:c6:e1: bc:89:0c:7f:3b:99:5d:eb:65:ee:56:f8:9c:35:84:d5:55:32: d8:c1:0a:10:23:a7:c0:5e:dd:22:f6:9f:28:8f:87:b8:cb:4d: 64:16:07:e5:94:1f:be:40:8c:62:a9:1d:2d:58:77:d3:b7:05: 31:a9:84:61:a6:d0:84:1c:72:5a:3d:14:d6:01:81:6b:49:6f: 16:b8:0d:61:ac:8b:9a:1e:f4:aa:8f:40:95:aa:66:2d:d2:e1: 74:4e:80:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBNkMxMTAvBgNVBAUTKDhEMTZGRDBFMjVGQjg5NkUyNkZBNzM0QUJDOTg0Q0U0 QjQ2OThERDMwHhcNMjUwNjMwMjIxNTM2WhcNMjUwNzA3MjIxNTM2WjAYMRYwFAYD VQQDEw02ODYzMGM4OC00ZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmFLZrOq0BqDXyEBaGOVuWf+qQ4+s9MUCXFBBdMmpdaYcitTytWKcTrO0zAW 6cxRnQTWCPgePX5QkQBINcdEWndIp0mHe/mR9Ur0cYWGZwxXCoO72gw6rqwsyEcM NaJFYZtdhfjTcG4jTizp+btshtnWiZlYZPCgCWAKrjzhn5A51eud/cZHPM/Qa7zX JFpJDHvxOOaNHwoOb/wK04Qwxo6h9Z/zeBwVuwHDz264y5f9P2m1NuJ3k3bEEkmX /+hrgIEclobWjYgHFJVicwVfI6oO0YG4Gbilm0CBcyMY0donGAPXy1fTjLkSpL1W vxybZhKUfIdtEZJ5KBtiCwMLrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2rZFmg v5gP1T3V9Ist3ddXbO3kMB8GA1UdIwQYMBaAFI0W/Q4l+4luJvpzSryYTOS0aY3T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUE2Qy8zQjg0OTNCNDUx QTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lXNG0tbk5LdkpoTTVMUnBq ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pSYjlEaVg3aVc0bS1uTkt2SmhNNUxScGpkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUE2Qy8zQjg0OTNCNDUxQTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lX NG0tbk5LdkpoTTVMUnBqZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo8q6soVZ928Hp8mV5r3rQhIVD2XoGTpp+VtD9RsXkVXtRQ1a4zYR4 M+v8J/IdPgfcT1D6xL5c3+mrrk3DMiuoWGzYqhlavp/ZGb7V/6pKLRD8ej3X9rYZ WEGAT5I8SkmaRArbglwQxrXuDH8CC8m5ZVDO0rZHSVqkX4g33fY3tMsZ5tRG20D8 XjsadI6mKWCBSCcNQBmPaX9wGkYPuAZlxuG8iQx/O5ld62XuVvicNYTVVTLYwQoQ I6fAXt0i9p8oj4e4y01kFgfllB++QIxiqR0tWHfTtwUxqYRhptCEHHJaPRTWAYFr SW8WuA1hrIuaHvSqj0CVqmYt0uF0ToCk -----END CERTIFICATE-----Generated at Wed Jul 2 16:34:28 2025 by rpki-client