$ rpki-client -vvf rpki.apnic.net/member_repository/A9155FAB/FA863772F5AC11EFAE40E71BC4F9AE02/Jvi9A8Wit6pxdUWeoEeohnYjnuA.mft File: Jvi9A8Wit6pxdUWeoEeohnYjnuA.mft (raw, json) Hash identifier: VgAJH31U/4pTGKWR+IsXZzSM1PLGpsP+m2cHrzB6fcg= Subject key identifier: 8B:D5:95:7A:2F:AC:C7:9B:FA:7E:74:3B:EC:F2:75:F9:F8:82:29:4E Authority key identifier: 26:F8:BD:03:C5:A2:B7:AA:71:75:45:9E:A0:47:A8:86:76:23:9E:E0 Certificate issuer: /CN=A9155FAB/serialNumber=26F8BD03C5A2B7AA7175459EA047A88676239EE0 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jvi9A8Wit6pxdUWeoEeohnYjnuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155FAB/FA863772F5AC11EFAE40E71BC4F9AE02/Jvi9A8Wit6pxdUWeoEeohnYjnuA.mft Manifest number: 40 Signing time: Tue 01 Jul 2025 08:14:16 +0000 Manifest this update: Tue 01 Jul 2025 08:14:15 +0000 Manifest next update: Tue 08 Jul 2025 08:14:15 +0000 Files and hashes: 1: Jvi9A8Wit6pxdUWeoEeohnYjnuA.crl (hash: SzhSC9FnsGJKakRF1pmsA+Jp5TrcRUfnbLhCZabGcjc=) 2: 4E66D766F5AD11EFA64C671CC4F9AE02.roa (hash: ddGHr0kpolkDLC4jRmYbLqkLIgOm/5JeTXQQ5En7IJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155FAB/FA863772F5AC11EFAE40E71BC4F9AE02/Jvi9A8Wit6pxdUWeoEeohnYjnuA.crl rsync://rpki.apnic.net/member_repository/A9155FAB/FA863772F5AC11EFAE40E71BC4F9AE02/Jvi9A8Wit6pxdUWeoEeohnYjnuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jvi9A8Wit6pxdUWeoEeohnYjnuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155FAB, serialNumber=26F8BD03C5A2B7AA7175459EA047A88676239EE0 Validity Not Before: Jul 1 08:14:15 2025 GMT Not After : Jul 8 08:14:15 2025 GMT Subject: CN=686398d7-517a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:67:65:ad:f3:bb:9b:cf:8c:79:af:c0:e5:2b: 45:ca:d0:83:a6:43:9e:cd:0f:ce:5c:9b:d8:f0:5d: 13:23:8b:09:a5:47:85:4b:45:17:34:cf:8b:35:76: ff:65:79:c1:62:6e:7b:d6:eb:57:92:5c:64:c7:15: 7f:2f:94:5c:c9:b8:f1:ef:2d:9e:5d:df:57:4a:b9: a6:57:53:57:09:ab:d9:cd:90:57:84:ff:d8:16:44: 04:47:f9:66:f1:01:84:25:a2:43:73:83:87:7f:b6: 75:fb:0a:8d:62:42:c2:42:30:57:0b:37:0f:80:66: b0:ef:b0:68:70:0d:af:21:2c:24:9e:5b:99:38:bb: 19:e1:3f:ab:0a:39:98:40:45:c1:17:09:7a:e0:64: d3:a8:3d:ab:9e:d6:11:01:76:ea:80:08:28:d0:c9: 4c:22:ff:0b:b5:30:fc:76:a7:ba:b4:84:46:d4:96: 6d:c0:58:3d:b6:bb:4d:89:c6:77:5a:01:6d:3c:49: 2c:8e:e0:f8:54:3e:14:42:2b:b0:7a:98:4c:5a:5a: 5c:57:58:fc:d0:0d:d1:1c:46:bc:44:6b:fd:13:4d: b6:50:fd:c8:6a:0d:60:3e:81:8e:40:9a:87:75:15: b1:42:1c:e9:d4:19:bb:77:00:06:25:0c:10:bf:e2: fd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D5:95:7A:2F:AC:C7:9B:FA:7E:74:3B:EC:F2:75:F9:F8:82:29:4E X509v3 Authority Key Identifier: keyid:26:F8:BD:03:C5:A2:B7:AA:71:75:45:9E:A0:47:A8:86:76:23:9E:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155FAB/FA863772F5AC11EFAE40E71BC4F9AE02/Jvi9A8Wit6pxdUWeoEeohnYjnuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jvi9A8Wit6pxdUWeoEeohnYjnuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155FAB/FA863772F5AC11EFAE40E71BC4F9AE02/Jvi9A8Wit6pxdUWeoEeohnYjnuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:6f:ba:c2:a7:86:77:02:13:ca:73:b9:de:9d:c0:7b:b1:cb: b9:63:1b:c2:5a:69:4b:cd:03:c1:83:21:59:7d:22:b6:2f:ab: 9f:42:75:07:32:64:d6:3b:e0:1d:b5:02:7e:d1:71:dc:25:36: 60:cd:bb:b2:81:e0:65:a0:ca:94:92:ab:87:5d:b3:c6:4b:d9: ad:d5:2c:dc:92:05:a3:eb:da:2a:38:cb:c0:3e:f8:3a:5b:a9: d7:d3:cd:a5:63:62:e2:8e:4e:53:b3:37:62:5f:bd:45:dc:be: 26:14:cf:72:7a:4b:a1:1a:65:bb:f5:6f:5f:8c:ed:13:df:df: 01:dc:36:d2:8f:0f:1a:85:33:3f:0c:82:66:d3:2c:8e:7d:24: a1:0d:99:6c:07:41:2e:71:0c:37:ff:4f:45:7b:5e:cc:82:4a: 62:cb:3e:26:ee:3d:47:e0:e0:98:9a:78:c7:8e:1b:6d:1e:d1: e1:91:9a:e8:6e:f4:a7:24:0d:b4:69:92:fe:06:3f:9f:9a:b5: 45:3d:03:6c:08:d0:5d:f6:d6:1c:96:cb:2d:95:4a:45:de:28: 47:07:18:9c:5e:af:c5:e8:84:b0:d6:fe:75:0f:12:86:61:b7: 19:a8:78:7d:8b:af:14:01:50:06:36:36:01:09:30:58:57:e3: 92:1b:6a:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUZBQjExMC8GA1UEBRMoMjZGOEJEMDNDNUEyQjdBQTcxNzU0NTlFQTA0N0E4ODY3 NjIzOUVFMDAeFw0yNTA3MDEwODE0MTVaFw0yNTA3MDgwODE0MTVaMBgxFjAUBgNV BAMTDTY4NjM5OGQ3LTUxN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfZ2Wt87ubz4x5r8DlK0XK0IOmQ57ND85cm9jwXRMjiwmlR4VLRRc0z4s1dv9l ecFibnvW61eSXGTHFX8vlFzJuPHvLZ5d31dKuaZXU1cJq9nNkFeE/9gWRARH+Wbx AYQlokNzg4d/tnX7Co1iQsJCMFcLNw+AZrDvsGhwDa8hLCSeW5k4uxnhP6sKOZhA RcEXCXrgZNOoPaue1hEBduqACCjQyUwi/wu1MPx2p7q0hEbUlm3AWD22u02Jxnda AW08SSyO4PhUPhRCK7B6mExaWlxXWPzQDdEcRrxEa/0TTbZQ/chqDWA+gY5Amod1 FbFCHOnUGbt3AAYlDBC/4v2ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi9WVei+s x5v6fnQ77PJ1+fiCKU4wHwYDVR0jBBgwFoAUJvi9A8Wit6pxdUWeoEeohnYjnuAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RkFCL0ZBODYzNzcyRjVB QzExRUZBRTQwRTcxQkM0RjlBRTAyL0p2aTlBOFdpdDZweGRVV2VvRWVvaG5Zam51 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSnZpOUE4V2l0NnB4ZFVXZW9FZW9obllqbnVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RkFCL0ZBODYzNzcyRjVBQzExRUZBRTQwRTcxQkM0RjlBRTAyL0p2aTlBOFdpdDZw eGRVV2VvRWVvaG5Zam51QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIJvusKnhncCE8pzud6dwHuxy7ljG8JaaUvNA8GDIVl9IrYvq59CdQcy ZNY74B21An7RcdwlNmDNu7KB4GWgypSSq4dds8ZL2a3VLNySBaPr2io4y8A++Dpb qdfTzaVjYuKOTlOzN2JfvUXcviYUz3J6S6EaZbv1b1+M7RPf3wHcNtKPDxqFMz8M gmbTLI59JKENmWwHQS5xDDf/T0V7XsyCSmLLPibuPUfg4JiaeMeOG20e0eGRmuhu 9KckDbRpkv4GP5+atUU9A2wI0F321hyWyy2VSkXeKEcHGJxer8XohLDW/nUPEoZh txmoeH2LrxQBUAY2NgEJMFhX45Ibas0= -----END CERTIFICATE-----Generated at Tue Jul 1 13:11:54 2025 by rpki-client