$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: Tg4ycn8w0QtXiD75d8L3p4E11EcdUgDn7MP0v+MZ/Js= Subject key identifier: 50:DE:E6:87:7A:70:74:6F:41:6A:C0:7B:E4:36:91:60:0A:DC:5D:05 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0CC2 Signing time: Fri 08 Aug 2025 18:23:50 +0000 Manifest this update: Fri 08 Aug 2025 18:23:49 +0000 Manifest next update: Fri 15 Aug 2025 18:23:49 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: h5aykVLHdlpJ2YUnaDT3U52vSXa3W9q/HeybXP6IFgk=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3289 (0xcd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Aug 8 18:23:49 2025 GMT Not After : Aug 15 18:23:49 2025 GMT Subject: CN=689640b5-5bbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c5:7d:46:be:a9:6e:8e:af:9d:19:d9:b0:52: 46:44:cf:b0:a1:ee:6b:40:9d:62:d4:60:b2:75:18: 0d:29:b0:d3:a4:84:88:ad:c4:6d:7e:5d:07:42:8b: d2:40:4b:d5:53:cf:ec:f9:d3:bd:6e:f7:80:aa:f9: fb:ba:5c:2c:fa:27:be:01:59:ac:f5:4c:2e:cd:4d: 84:38:ee:2d:df:f9:75:5c:9a:8d:8b:ae:e6:c4:f1: f3:4d:61:d0:37:9c:36:99:a4:9c:f7:a8:9b:e4:87: e7:c7:0e:25:3c:5d:2a:bb:f3:44:33:a0:27:88:f5: 33:32:61:1e:c4:52:41:9c:84:11:14:4c:02:c2:42: 99:c9:47:15:77:c4:1c:de:12:92:ad:1a:3d:0c:bb: e8:99:5d:79:c5:86:cb:62:26:97:50:87:a7:95:51: 25:1d:31:4c:36:a7:b2:12:7e:7d:90:73:7f:6b:09: 30:0a:16:13:6e:c4:ef:cc:92:bc:ba:73:67:fc:b1: 06:49:ac:70:ca:ac:d9:1d:d0:43:cd:91:52:53:63: e5:47:3a:5f:88:60:93:97:56:24:d7:13:86:2f:b4: a5:93:7a:48:0b:23:1d:43:46:ba:cb:60:2b:b6:fd: 25:42:9d:56:86:15:3f:e0:b0:9a:56:59:a0:18:8b: fe:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:DE:E6:87:7A:70:74:6F:41:6A:C0:7B:E4:36:91:60:0A:DC:5D:05 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:eb:61:75:19:77:c7:26:6e:ea:fa:c9:3a:57:86:0f:f4:6e: 4d:14:c6:7b:e6:d0:1a:44:00:da:6e:50:4b:14:55:3f:40:c4: 76:14:29:1f:62:97:2f:9c:a0:c1:5d:68:0b:7e:db:36:5d:ce: a1:98:38:37:ec:e7:e4:f8:a5:23:03:0e:f2:ec:74:88:24:a8: 14:d5:07:e4:32:e3:ca:9a:d3:d5:f6:31:ef:2b:9b:39:a3:6f: ef:65:91:20:c5:e2:34:2b:55:ba:e2:7e:a4:cb:ff:f5:9a:8b: 50:ff:f5:f3:a8:d4:e2:b8:cc:4f:e6:f0:42:74:97:cd:04:6c: 7c:fb:f3:e3:aa:c6:5c:4e:5b:0b:c8:20:ab:a9:22:b6:02:2c: 86:00:b0:08:a8:98:d3:d0:32:b7:91:96:e8:68:6a:e9:58:2d: bf:19:46:7b:f1:66:39:f0:78:77:d5:d3:29:6d:d5:c9:62:cc: 36:09:12:46:31:08:e4:65:5f:e7:4b:78:7c:17:8a:88:c7:e7: c1:f9:64:dc:7e:91:68:7e:f8:fd:25:ae:e2:4d:fc:99:e2:3a: 2d:08:c1:04:de:f2:ab:a1:ed:c2:72:07:79:59:3c:40:5d:4f: c9:0f:93:b9:ff:5d:95:a0:18:e3:5c:1a:cf:07:b7:42:63:47: c9:62:a0:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwODA4MTgyMzQ5WhcNMjUwODE1MTgyMzQ5WjAYMRYwFAYD VQQDEw02ODk2NDBiNS01YmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cV9Rr6pbo6vnRnZsFJGRM+woe5rQJ1i1GCydRgNKbDTpISIrcRtfl0HQovS QEvVU8/s+dO9bveAqvn7ulws+ie+AVms9UwuzU2EOO4t3/l1XJqNi67mxPHzTWHQ N5w2maSc96ib5Ifnxw4lPF0qu/NEM6AniPUzMmEexFJBnIQRFEwCwkKZyUcVd8Qc 3hKSrRo9DLvomV15xYbLYiaXUIenlVElHTFMNqeyEn59kHN/awkwChYTbsTvzJK8 unNn/LEGSaxwyqzZHdBDzZFSU2PlRzpfiGCTl1Yk1xOGL7Slk3pICyMdQ0a6y2Ar tv0lQp1WhhU/4LCaVlmgGIv+5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDe5od6 cHRvQWrAe+Q2kWAK3F0FMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs62F1GXfHJm7q+sk6V4YP9G5NFMZ75tAaRADablBLFFU/QMR2FCkf YpcvnKDBXWgLfts2Xc6hmDg37Ofk+KUjAw7y7HSIJKgU1QfkMuPKmtPV9jHvK5s5 o2/vZZEgxeI0K1W64n6ky//1motQ//XzqNTiuMxP5vBCdJfNBGx8+/PjqsZcTlsL yCCrqSK2AiyGALAIqJjT0DK3kZboaGrpWC2/GUZ78WY58Hh31dMpbdXJYsw2CRJG MQjkZV/nS3h8F4qIx+fB+WTcfpFofvj9Ja7iTfyZ4jotCMEE3vKroe3Ccgd5WTxA XU/JD5O5/12VoBjjXBrPB7dCY0fJYqCe -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:09 2025 by rpki-client