$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: t32CF2iZQPukZFK53L7OK8k0YEJIePKhBmnkLp+hTxM= Subject key identifier: D1:9A:A7:88:43:29:24:63:B0:BB:E9:14:55:F4:B2:A9:E0:C0:E2:32 Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 29DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 29D4 Signing time: Mon 16 Jun 2025 15:41:15 +0000 Manifest this update: Mon 16 Jun 2025 15:41:15 +0000 Manifest next update: Mon 23 Jun 2025 15:41:15 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: yLhcR4aTXe6zZsEKAoxZ77QHTU4cBEzKupsINMe9o+8=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: v8ikpVeIaeLPw7BPTH8hEvqeozL1b7cNZXyGxnhNLLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10717 (0x29dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39, serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: Jun 16 15:41:15 2025 GMT Not After : Jun 23 15:41:15 2025 GMT Subject: CN=68503b1b-cd70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9f:a7:ba:9d:a0:f9:18:43:b4:fb:f6:39:a8: fe:85:36:64:47:55:2a:7e:b9:14:16:04:38:4f:be: 75:e0:2c:17:1d:28:fb:4d:41:8b:f9:f3:2f:9e:55: 37:72:c6:9f:d2:26:69:98:43:93:c7:25:f4:f7:76: 07:d3:44:33:23:29:3d:a1:f5:5c:dd:48:0e:dc:92: ec:a2:07:85:af:f5:3f:ea:db:e9:52:46:ba:ae:96: b4:14:26:f9:5c:ec:e8:ad:27:bb:3e:c8:14:69:08: 6f:c5:3b:ed:52:24:41:41:60:79:cb:f8:bc:e6:d7: 3a:d7:b1:08:90:3b:48:92:91:3e:ac:7b:39:d9:f3: fa:bd:ec:fd:79:95:91:1d:80:24:c2:ee:7a:4f:27: 04:9c:8b:cd:5b:48:76:6c:b0:a8:bc:7c:62:26:dd: f0:16:d2:28:eb:c9:04:9b:8b:eb:2b:e7:3f:89:a1: ef:c0:ab:bb:72:ea:d5:a8:04:7a:74:1f:07:a0:69: bd:86:17:93:14:7e:ba:a0:c8:bd:46:2b:8f:bf:ba: 7d:3e:81:96:bf:f0:18:21:bc:60:fd:26:cc:ce:43: 84:44:2a:a2:b1:29:7f:33:f2:ff:d1:6a:2d:ce:ac: ea:6a:73:13:02:2a:3a:21:17:e6:5b:c3:ff:fb:6c: c5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9A:A7:88:43:29:24:63:B0:BB:E9:14:55:F4:B2:A9:E0:C0:E2:32 X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:7c:95:18:78:37:10:7e:12:8c:64:de:e9:ec:53:4f:2e:0f: 2a:29:93:70:0d:18:9d:ef:76:b2:4e:b1:cb:bf:5e:fd:27:d8: c9:41:c0:c9:fb:1a:75:e4:ee:15:3c:c3:e0:19:50:32:79:52: 4c:99:23:20:02:ee:c8:b4:13:0c:01:3a:7d:1e:29:a2:d2:c3: b8:59:cf:b0:8c:dc:f4:09:bd:3b:04:a6:5b:53:07:16:b3:34: 00:53:b0:6b:87:57:ec:b8:e4:a0:80:eb:6c:73:3a:bd:c9:7e: ee:92:df:f7:ca:df:29:fe:8e:4a:6b:92:f2:77:ef:85:ae:bd: 0a:63:21:3d:1a:d8:67:db:69:3b:9f:55:8a:dd:2d:77:15:35: 76:ed:cd:31:57:3e:7a:b1:e4:3d:68:f6:61:3a:ca:5e:d7:fc: ed:60:37:f8:09:c9:a7:0f:ae:6d:38:31:6f:f8:43:2c:e8:d4: b9:04:65:e8:05:ce:5e:05:29:3f:8e:85:3e:53:16:c3:79:b0: a1:19:2a:d4:c9:9e:e7:2a:00:f4:7a:6f:51:01:9c:3f:30:5a: 70:b0:e3:55:dd:96:ef:d0:86:da:57:dc:d1:2a:54:68:24:1a: e7:84:51:91:bb:2a:04:ce:39:33:bd:d7:a3:2d:6c:f0:c3:1b: cc:ca:6b:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjUwNjE2MTU0MTE1WhcNMjUwNjIzMTU0MTE1WjAYMRYwFAYD VQQDEw02ODUwM2IxYi1jZDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJ+nup2g+RhDtPv2Oaj+hTZkR1UqfrkUFgQ4T7514CwXHSj7TUGL+fMvnlU3 csaf0iZpmEOTxyX093YH00QzIyk9ofVc3UgO3JLsogeFr/U/6tvpUka6rpa0FCb5 XOzorSe7PsgUaQhvxTvtUiRBQWB5y/i85tc617EIkDtIkpE+rHs52fP6vez9eZWR HYAkwu56TycEnIvNW0h2bLCovHxiJt3wFtIo68kEm4vrK+c/iaHvwKu7curVqAR6 dB8HoGm9hheTFH66oMi9RiuPv7p9PoGWv/AYIbxg/SbMzkOERCqisSl/M/L/0Wot zqzqanMTAio6IRfmW8P/+2zFBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGap4hD KSRjsLvpFFX0sqngwOIyMB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEfJUYeDcQfhKMZN7p7FNPLg8qKZNwDRid73ayTrHLv179J9jJQcDJ +xp15O4VPMPgGVAyeVJMmSMgAu7ItBMMATp9Himi0sO4Wc+wjNz0Cb07BKZbUwcW szQAU7Brh1fsuOSggOtsczq9yX7ukt/3yt8p/o5Ka5Lyd++Frr0KYyE9Gthn22k7 n1WK3S13FTV27c0xVz56seQ9aPZhOspe1/ztYDf4CcmnD65tODFv+EMs6NS5BGXo Bc5eBSk/joU+UxbDebChGSrUyZ7nKgD0em9RAZw/MFpwsONV3Zbv0IbaV9zRKlRo JBrnhFGRuyoEzjkzvdejLWzwwxvMymua -----END CERTIFICATE-----Generated at Wed Jun 18 16:36:34 2025 by rpki-client