$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: XNlae6LxCAJe0IYYrG4Vld6li7HF8YcInmVZ5By9YMM= Subject key identifier: F0:8A:EA:08:7F:BF:B6:D4:44:B8:D9:BF:4A:07:17:7E:FE:4B:27:2F Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0CA6 Signing time: Sat 14 Jun 2025 18:06:01 +0000 Manifest this update: Sat 14 Jun 2025 18:06:01 +0000 Manifest next update: Sat 21 Jun 2025 18:06:01 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: ITWZHYHBbBGGzCrihSvbJSqA6CXG10UHNEqO9eChs2k=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3261 (0xcbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Jun 14 18:06:01 2025 GMT Not After : Jun 21 18:06:01 2025 GMT Subject: CN=684dba09-b551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c0:8c:43:97:21:31:49:71:b6:88:a4:12:32: d3:1a:13:ea:60:13:fe:1e:06:09:95:95:9b:52:42: c0:36:01:2b:c2:80:e6:8e:fe:d6:07:62:00:88:38: 69:22:bb:15:1d:90:68:24:ce:3f:63:ab:1d:65:02: 8e:5f:e6:0f:d2:f9:22:8d:cf:3e:74:41:9b:d5:1e: 20:5d:ee:fc:59:b1:b7:b3:34:56:eb:67:cd:c1:36: eb:12:4f:46:b2:a1:22:75:2b:c0:3a:cf:d4:52:66: d2:88:7a:3a:51:91:b7:51:9f:05:46:ec:82:fe:0a: 4c:d3:0c:e6:94:a0:84:bf:93:e6:85:31:33:7f:b7: 5a:67:71:00:fb:3d:46:eb:68:f5:6f:0c:ee:b6:c1: b7:76:42:73:61:0a:93:af:83:0b:29:e6:82:50:4c: 70:c3:08:9d:25:07:56:13:01:e0:77:96:5a:4b:11: 62:1e:a9:77:1b:12:a8:bb:ac:e5:30:69:d9:38:17: 84:23:f3:c2:31:13:e9:28:43:2f:0a:96:70:7e:46: 16:5f:41:ce:dc:6f:e3:e2:8b:80:71:11:fa:3a:f4: d5:76:81:3d:ab:7e:b0:ac:a2:bc:1e:a1:ef:71:4f: 5a:f5:7d:ee:94:79:dd:0b:d2:27:35:72:34:ae:ee: 4c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:8A:EA:08:7F:BF:B6:D4:44:B8:D9:BF:4A:07:17:7E:FE:4B:27:2F X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:59:0b:4d:d7:f5:1d:f0:c3:dc:d9:d6:6f:46:49:84:d3:01: 75:ac:6a:c3:9e:93:c4:c1:aa:11:45:00:b4:56:71:fb:94:8c: 85:e1:17:d2:ca:7e:46:3c:b3:06:3f:ea:3a:fc:a4:4b:38:03: d9:91:38:04:39:83:e4:93:77:73:c2:49:32:42:a5:85:57:bb: 73:89:f0:57:76:1a:da:e3:d8:51:9c:cb:69:0f:99:20:ac:be: 7d:e8:34:d3:bd:2e:17:e8:28:78:ea:be:62:86:6b:7a:4a:b3: 7c:fc:8f:0d:55:73:b0:84:62:be:75:04:5e:2c:ac:45:39:51: 14:a7:dc:bc:c4:41:0a:f3:6e:74:8a:82:4b:20:56:99:d3:1d: 17:cd:3f:da:7b:7d:d7:31:75:f0:57:43:12:dc:82:2a:f3:f0: 9b:31:45:c5:53:e8:17:4a:c9:be:0d:3b:64:e5:85:9b:85:f2: 64:7d:aa:25:8a:a0:bd:2a:c5:6d:5c:41:2e:b9:5d:60:fa:26: f2:7e:7f:6e:2b:05:08:57:ca:a0:55:56:99:d8:49:a5:b6:57: 32:be:f4:1d:9e:16:d1:42:73:3b:1f:ac:89:37:11:b2:e1:a2: aa:c9:60:1d:9a:8d:84:9b:48:33:cf:e5:b3:ed:5e:73:40:5d: 10:cf:82:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwNjE0MTgwNjAxWhcNMjUwNjIxMTgwNjAxWjAYMRYwFAYD VQQDEw02ODRkYmEwOS1iNTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5sCMQ5chMUlxtoikEjLTGhPqYBP+HgYJlZWbUkLANgErwoDmjv7WB2IAiDhp IrsVHZBoJM4/Y6sdZQKOX+YP0vkijc8+dEGb1R4gXe78WbG3szRW62fNwTbrEk9G sqEidSvAOs/UUmbSiHo6UZG3UZ8FRuyC/gpM0wzmlKCEv5PmhTEzf7daZ3EA+z1G 62j1bwzutsG3dkJzYQqTr4MLKeaCUExwwwidJQdWEwHgd5ZaSxFiHql3GxKou6zl MGnZOBeEI/PCMRPpKEMvCpZwfkYWX0HO3G/j4ouAcRH6OvTVdoE9q36wrKK8HqHv cU9a9X3ulHndC9InNXI0ru5MzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCK6gh/ v7bURLjZv0oHF37+SycvMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+WQtN1/Ud8MPc2dZvRkmE0wF1rGrDnpPEwaoRRQC0VnH7lIyF4RfS yn5GPLMGP+o6/KRLOAPZkTgEOYPkk3dzwkkyQqWFV7tzifBXdhra49hRnMtpD5kg rL596DTTvS4X6Ch46r5ihmt6SrN8/I8NVXOwhGK+dQReLKxFOVEUp9y8xEEK8250 ioJLIFaZ0x0XzT/ae33XMXXwV0MS3IIq8/CbMUXFU+gXSsm+DTtk5YWbhfJkfaol iqC9KsVtXEEuuV1g+ibyfn9uKwUIV8qgVVaZ2EmltlcyvvQdnhbRQnM7H6yJNxGy 4aKqyWAdmo2Em0gzz+Wz7V5zQF0Qz4I+ -----END CERTIFICATE-----Generated at Sun Jun 15 09:40:16 2025 by rpki-client