$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: kRjdg+nSGedtkh5JOHhITFil74AZ+Q+SKhSjJVvS0Bk= Subject key identifier: 26:8A:A5:61:BE:71:C8:1C:35:C4:5E:68:0E:E9:82:7B:05:92:CF:1D Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0D0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0D00 Signing time: Sat 14 Jun 2025 17:58:22 +0000 Manifest this update: Sat 14 Jun 2025 17:58:22 +0000 Manifest next update: Sat 21 Jun 2025 17:58:22 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: 7vmPFmajNc12jzbVbIYHoabVF0OBIlGUyYfbt1dFURs=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: mKEvuFivV/Rx5B93IYGv/jXl23LxYS0A2kDJi7kjILY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Jun 14 17:58:22 2025 GMT Not After : Jun 21 17:58:22 2025 GMT Subject: CN=684db83e-22e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c5:9f:07:31:f9:3d:d9:4c:ae:ed:1b:35:5d: 6b:0e:32:3e:26:5a:92:66:72:a0:bb:68:f6:74:36: dc:6e:34:c1:3b:75:8b:e5:37:f0:dc:b4:3f:b4:0e: 14:ce:b6:46:99:6e:65:09:30:be:bc:55:b5:8a:a2: fd:2c:37:26:a2:d2:dd:84:ae:67:dd:89:fe:cf:9c: b8:4a:5a:3b:67:88:74:07:ae:10:03:a8:c1:26:3f: 4d:f1:2b:9b:72:8a:49:c2:3f:5b:4a:e8:5c:d3:d2: 38:03:3f:05:2c:53:7c:9c:98:9c:50:3e:eb:06:35: d4:05:85:44:2a:d7:34:0d:75:c6:36:e5:42:31:40: cc:26:44:d1:5c:b7:13:74:4c:35:51:90:54:f2:76: 25:9f:a1:6d:40:d9:f1:09:1c:1b:d0:59:69:c2:55: ea:ec:44:18:c7:4c:f8:37:d2:be:3d:67:47:93:8c: 51:d6:a6:7f:ee:31:88:de:97:93:89:41:f0:68:e8: 8c:6e:ff:75:d2:d9:56:9e:a8:6f:c0:ce:ca:f3:52: d5:58:ca:bc:b3:fa:16:de:e4:62:47:46:1c:c8:2c: 61:c6:dd:2c:70:73:4e:dd:6a:67:f7:2a:2b:1a:d2: 0b:3b:8c:76:3f:4c:93:26:5f:af:c8:7c:ff:ac:7e: a4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8A:A5:61:BE:71:C8:1C:35:C4:5E:68:0E:E9:82:7B:05:92:CF:1D X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:ae:4e:ce:f6:3b:68:c3:11:f1:a8:cd:56:40:2b:c5:f4:79: bd:71:c2:c1:2b:86:db:53:06:e8:cf:4a:bc:04:1f:58:3e:af: 4e:0a:de:67:db:64:eb:3c:b9:87:ec:43:d3:24:2b:48:fa:7d: 7d:0c:ad:81:54:26:5b:23:1c:5d:7a:78:66:e0:8a:e0:e4:5e: da:1e:3f:1d:d3:fe:c4:8e:49:75:6f:86:a9:0a:b3:6f:91:83: af:14:99:5e:17:98:c3:32:e5:d3:15:ce:36:cb:a2:5c:20:77: 0f:d5:08:c7:db:00:bf:cd:ba:f7:3f:80:dd:47:b2:6e:65:ce: 54:5c:13:4a:f2:42:03:5f:c4:45:2e:0d:ce:97:b1:0e:97:8c: 4c:31:00:33:30:3b:d4:1a:4e:97:e6:cd:a8:e0:c2:b3:af:1a: 9b:e6:bf:d8:4b:82:a5:88:b6:5e:e4:74:43:e5:68:e1:ed:33: c0:b6:f3:9d:34:9e:78:79:d9:b1:41:d7:d0:70:aa:ec:d7:4d: 0d:fe:c1:1f:86:91:fd:83:c1:74:69:e1:4c:c4:ba:bd:56:71: 29:2d:e1:27:e7:44:1d:76:e3:2e:3d:8e:38:2e:64:e7:19:9c: dd:c0:9e:ac:f9:4d:3f:90:a7:89:82:2e:86:c0:72:62:81:39: 4e:2e:e5:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUwNjE0MTc1ODIyWhcNMjUwNjIxMTc1ODIyWjAYMRYwFAYD VQQDEw02ODRkYjgzZS0yMmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8WfBzH5PdlMru0bNV1rDjI+JlqSZnKgu2j2dDbcbjTBO3WL5Tfw3LQ/tA4U zrZGmW5lCTC+vFW1iqL9LDcmotLdhK5n3Yn+z5y4Slo7Z4h0B64QA6jBJj9N8Sub copJwj9bSuhc09I4Az8FLFN8nJicUD7rBjXUBYVEKtc0DXXGNuVCMUDMJkTRXLcT dEw1UZBU8nYln6FtQNnxCRwb0FlpwlXq7EQYx0z4N9K+PWdHk4xR1qZ/7jGI3peT iUHwaOiMbv910tlWnqhvwM7K81LVWMq8s/oW3uRiR0YcyCxhxt0scHNO3Wpn9yor GtILO4x2P0yTJl+vyHz/rH6kawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaKpWG+ ccgcNcReaA7pgnsFks8dMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOrk7O9jtowxHxqM1WQCvF9Hm9ccLBK4bbUwboz0q8BB9YPq9OCt5n 22TrPLmH7EPTJCtI+n19DK2BVCZbIxxdenhm4Irg5F7aHj8d0/7Ejkl1b4apCrNv kYOvFJleF5jDMuXTFc42y6JcIHcP1QjH2wC/zbr3P4DdR7JuZc5UXBNK8kIDX8RF Lg3Ol7EOl4xMMQAzMDvUGk6X5s2o4MKzrxqb5r/YS4KliLZe5HRD5Wjh7TPAtvOd NJ54edmxQdfQcKrs100N/sEfhpH9g8F0aeFMxLq9VnEpLeEn50QdduMuPY44LmTn GZzdwJ6s+U0/kKeJgi6GwHJigTlOLuUe -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:02 2025 by rpki-client