$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft File: JPDB2OP0opb9zesjWmxIO2styXo.mft (raw, json) Hash identifier: 3HIrQdpRTGEuN+0lEHlRG/8EhsVANCmyIEcT4cvZcqo= Subject key identifier: 74:6A:1C:63:30:4C:F5:31:21:47:D3:52:20:1B:F9:9B:A8:6B:8C:DE Authority key identifier: 24:F0:C1:D8:E3:F4:A2:96:FD:CD:EB:23:5A:6C:48:3B:6B:2D:C9:7A Certificate issuer: /CN=A911BC62/serialNumber=24F0C1D8E3F4A296FDCDEB235A6C483B6B2DC97A Certificate serial: 27F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft Manifest number: 27DB Signing time: Sat 14 Jun 2025 15:36:19 +0000 Manifest this update: Sat 14 Jun 2025 15:36:19 +0000 Manifest next update: Sat 21 Jun 2025 15:36:19 +0000 Files and hashes: 1: JPDB2OP0opb9zesjWmxIO2styXo.crl (hash: RPk0UC8FN4DzqyeMIh1c4v2iLnBXAQUCc5LZMF4VIpw=) 2: 8BD42F1CDEB111EA971A1721C4F9AE02.roa (hash: zYzRPHKgSeX768eROJRNf9tX7Mow08v94Ny1/BRKK1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.crl rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10232 (0x27f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62, serialNumber=24F0C1D8E3F4A296FDCDEB235A6C483B6B2DC97A Validity Not Before: Jun 14 15:36:19 2025 GMT Not After : Jun 21 15:36:19 2025 GMT Subject: CN=684d96f3-82b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f2:6d:27:f8:50:60:79:f3:e0:ce:06:54:b7: 93:8e:dd:c2:78:a4:63:e6:f6:0f:1d:5b:0c:f2:40: a7:5c:18:e4:cc:9b:72:d0:13:cf:dd:c1:72:2b:23: 22:32:43:8e:51:11:39:34:94:ec:c0:cf:13:d2:33: c9:84:b0:5a:d0:c0:8b:80:70:ae:90:ed:72:64:14: ec:ac:13:c1:7b:73:77:f2:7a:a2:68:9c:d3:c9:49: 36:75:7a:9c:96:63:26:9d:13:34:35:39:bb:5b:9e: 4c:c6:0b:f4:78:8a:a3:4a:5d:07:f4:ca:26:be:a4: 17:30:88:5f:02:4c:0e:88:23:09:1d:79:b4:63:08: 5c:93:38:4f:88:93:bd:77:76:79:19:52:e2:d5:03: ed:7e:ea:a8:ba:50:33:a7:c7:c1:b5:8c:44:64:69: 65:a5:24:7a:8a:88:fe:18:46:5a:ec:2b:56:c4:4f: 4e:96:1b:66:30:59:89:07:18:6b:ce:a4:ac:ca:24: a7:e4:ba:19:0d:fb:44:fb:ed:68:75:12:46:09:d9: 23:b0:90:3c:da:13:74:43:c4:a6:ac:39:b5:61:2f: 3f:4a:e9:3a:7c:dc:20:36:aa:d9:86:d9:dc:9f:95: 6b:84:4e:e6:1e:5c:bc:91:65:34:41:6b:5d:ba:98: 5a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:6A:1C:63:30:4C:F5:31:21:47:D3:52:20:1B:F9:9B:A8:6B:8C:DE X509v3 Authority Key Identifier: keyid:24:F0:C1:D8:E3:F4:A2:96:FD:CD:EB:23:5A:6C:48:3B:6B:2D:C9:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:51:bc:e7:02:49:fe:64:ae:56:54:ca:e7:a3:92:b4:3b:c2: 53:d0:13:5e:e0:b0:da:92:3c:9a:f5:7a:20:28:86:27:84:a4: fb:ca:06:6c:c3:d5:7f:38:d2:bc:65:e5:bc:3d:1f:ee:f3:ee: a5:b2:6b:bd:bf:92:e4:d6:e1:db:16:62:4b:da:db:07:2e:8d: b7:37:b5:0b:6b:c6:84:c6:fe:73:98:7f:b9:e2:e7:20:28:a2: 4e:2f:dd:c0:62:00:ce:4c:21:8c:0b:e5:ef:4a:65:2c:d7:34: d4:a1:e4:8d:3c:2a:d7:c9:3d:b4:75:7c:0e:2b:30:b6:01:cd: 5a:80:80:7f:47:81:50:a3:49:4e:7d:45:59:37:81:1b:50:1c: e0:e7:c2:84:9c:9c:b9:50:07:51:3d:16:44:a5:c7:27:89:4d: f5:c7:95:b9:f8:31:f8:58:17:cf:3c:ce:b3:8d:32:08:de:c0: 12:56:2d:86:a8:08:50:18:fb:bd:f8:85:5f:77:da:16:e2:3f: 32:97:ee:30:a8:94:ac:0f:42:f8:96:a3:ee:ba:fe:14:2b:28: 78:d6:02:25:49:d0:8e:67:ea:2f:da:28:5a:78:89:43:2d:1c: 0c:75:10:3a:a4:3f:59:42:7e:99:14:33:5d:d3:c6:5f:ff:61: 8c:07:9a:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDI0RjBDMUQ4RTNGNEEyOTZGRENERUIyMzVBNkM0ODNC NkIyREM5N0EwHhcNMjUwNjE0MTUzNjE5WhcNMjUwNjIxMTUzNjE5WjAYMRYwFAYD VQQDEw02ODRkOTZmMy04MmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/JtJ/hQYHnz4M4GVLeTjt3CeKRj5vYPHVsM8kCnXBjkzJty0BPP3cFyKyMi MkOOURE5NJTswM8T0jPJhLBa0MCLgHCukO1yZBTsrBPBe3N38nqiaJzTyUk2dXqc lmMmnRM0NTm7W55Mxgv0eIqjSl0H9MomvqQXMIhfAkwOiCMJHXm0YwhckzhPiJO9 d3Z5GVLi1QPtfuqoulAzp8fBtYxEZGllpSR6ioj+GEZa7CtWxE9OlhtmMFmJBxhr zqSsyiSn5LoZDftE++1odRJGCdkjsJA82hN0Q8SmrDm1YS8/Suk6fNwgNqrZhtnc n5VrhE7mHly8kWU0QWtduphaOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRqHGMw TPUxIUfTUiAb+Zuoa4zeMB8GA1UdIwQYMBaAFCTwwdjj9KKW/c3rI1psSDtrLcl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi8zMjg4QzMxMkEy RTYxMUU0QTA4MUM0NkRDNEY5QUUwMi9KUERCMk9QMG9wYjl6ZXNqV214SU8yc3R5 WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pQREIyT1Awb3BiOXplc2pXbXhJTzJzdHlYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkM2Mi8zMjg4QzMxMkEyRTYxMUU0QTA4MUM0NkRDNEY5QUUwMi9KUERCMk9QMG9w Yjl6ZXNqV214SU8yc3R5WG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDUbznAkn+ZK5WVMrno5K0O8JT0BNe4LDakjya9XogKIYnhKT7ygZs w9V/ONK8ZeW8PR/u8+6lsmu9v5Lk1uHbFmJL2tsHLo23N7ULa8aExv5zmH+54ucg KKJOL93AYgDOTCGMC+XvSmUs1zTUoeSNPCrXyT20dXwOKzC2Ac1agIB/R4FQo0lO fUVZN4EbUBzg58KEnJy5UAdRPRZEpccniU31x5W5+DH4WBfPPM6zjTII3sASVi2G qAhQGPu9+IVfd9oW4j8yl+4wqJSsD0L4lqPuuv4UKyh41gIlSdCOZ+ov2ihaeIlD LRwMdRA6pD9ZQn6ZFDNd08Zf/2GMB5rU -----END CERTIFICATE-----Generated at Sun Jun 15 19:20:13 2025 by rpki-client