$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft File: jZIwmM1n9tG_JM--LD3KC2Zau4w.mft (raw, json) Hash identifier: KptbHQewiHgzgGfEsa9TXE56/tG5cs9EzbeQboz4x4Q= Subject key identifier: CC:6D:3F:AC:3E:B9:EE:B5:2B:43:FA:01:04:E6:6E:1E:42:0F:9A:2E Authority key identifier: 8D:92:30:98:CD:67:F6:D1:BF:24:CF:BE:2C:3D:CA:0B:66:5A:BB:8C Certificate issuer: /CN=A9148B17/serialNumber=8D923098CD67F6D1BF24CFBE2C3DCA0B665ABB8C Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft Manifest number: 0144 Signing time: Sun 15 Jun 2025 03:36:49 +0000 Manifest this update: Sun 15 Jun 2025 03:36:49 +0000 Manifest next update: Sun 22 Jun 2025 03:36:48 +0000 Files and hashes: 1: jZIwmM1n9tG_JM--LD3KC2Zau4w.crl (hash: WsbGk0Yt3XH6k4oual6Q28M17WhktDD6GsF5lEhRS4Y=) 2: 4495F306772E11EEB7DE544FC4F9AE02.roa (hash: ccDaM+xIQE3p2Y5zhdqiVD5sdxLAr7SXV+gu36JLnEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.crl rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B17, serialNumber=8D923098CD67F6D1BF24CFBE2C3DCA0B665ABB8C Validity Not Before: Jun 15 03:36:49 2025 GMT Not After : Jun 22 03:36:48 2025 GMT Subject: CN=684e3fd1-3252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c7:ee:17:b2:86:83:cf:4f:82:f1:6f:8a:63: 04:11:f5:26:82:f9:e3:03:d8:84:6e:98:98:b0:bb: d0:25:9b:07:ed:35:42:f3:86:18:34:7e:c5:97:5f: ef:bf:82:5e:a5:2b:1a:bf:3e:db:40:a4:d3:8c:17: c6:94:bb:fc:04:b7:d4:ce:35:5d:62:88:ed:e8:4b: 89:fe:ad:87:7d:13:a9:0b:63:76:06:ff:d1:ad:81: 9b:92:ff:ee:4c:a0:26:0e:13:80:b0:ca:84:92:18: 41:3c:5e:d5:b9:93:30:22:d0:40:14:84:f4:68:3c: ee:39:71:d7:8a:9a:da:09:75:08:3e:af:75:52:16: 45:53:fe:5b:66:3a:8e:f9:8c:7d:b0:95:81:06:4e: 29:ff:ce:94:e7:6d:50:dc:e4:82:c9:bb:b7:cd:61: a0:42:02:48:21:94:ca:f2:62:f8:9e:97:5d:a8:c9: 28:d0:22:9e:f8:a9:c3:70:b5:5f:ca:7b:58:8d:5a: 4c:12:cd:b7:5e:18:42:73:24:fc:73:34:84:d3:30: 1e:e9:82:11:8d:4a:53:5f:27:79:14:6c:a6:08:69: ee:43:87:fb:86:45:e6:30:c8:2b:02:a6:3f:c1:47: 1d:0a:22:56:a3:34:8b:cf:90:84:96:10:a5:69:a2: 33:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:6D:3F:AC:3E:B9:EE:B5:2B:43:FA:01:04:E6:6E:1E:42:0F:9A:2E X509v3 Authority Key Identifier: keyid:8D:92:30:98:CD:67:F6:D1:BF:24:CF:BE:2C:3D:CA:0B:66:5A:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:56:9a:e4:66:a4:c9:5f:b9:b5:29:eb:51:5d:22:46:d7:01: 93:d1:38:74:bb:3a:6f:4a:db:b8:af:7f:76:e9:12:6b:a4:fb: b8:32:28:28:bf:c4:5b:4a:c6:56:d5:e2:b1:d9:6a:1c:e6:89: b7:af:f0:85:5b:54:84:ba:f9:d4:d3:0d:0e:b7:41:4e:f1:b6: 8a:ff:77:af:e2:08:81:f6:67:31:7b:74:99:2f:c1:1c:c5:3c: 53:1f:73:0d:ee:3b:82:ad:84:f5:5e:5e:5a:40:57:95:a3:28: eb:08:36:03:ac:72:ba:1f:60:ef:ff:fe:0b:39:30:a6:5f:47: e1:c8:66:07:b0:55:7a:9a:3c:35:c5:4e:4a:f0:db:eb:98:13: 63:47:19:af:ec:6a:6e:28:fe:f1:dd:2e:31:af:c8:1b:c4:dd: dc:47:8c:5d:c7:89:1d:09:94:e6:48:fb:7a:63:0c:a9:10:ab: 75:64:8c:0b:72:a8:fa:65:c2:d0:14:0f:f4:ff:eb:1b:b6:7c: 03:7d:41:52:65:10:4d:a1:ee:c5:fa:f9:c9:75:13:ad:d9:f0: ed:c4:6a:01:24:4b:91:b7:6d:04:ac:c6:95:6e:48:03:87:86: aa:18:ea:a6:52:72:6c:9c:d0:cb:8f:a0:a9:b0:b5:2f:ce:db: 0b:5e:88:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCMTcxMTAvBgNVBAUTKDhEOTIzMDk4Q0Q2N0Y2RDFCRjI0Q0ZCRTJDM0RDQTBC NjY1QUJCOEMwHhcNMjUwNjE1MDMzNjQ5WhcNMjUwNjIyMDMzNjQ4WjAYMRYwFAYD VQQDEw02ODRlM2ZkMS0zMjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMfuF7KGg89PgvFvimMEEfUmgvnjA9iEbpiYsLvQJZsH7TVC84YYNH7Fl1/v v4JepSsavz7bQKTTjBfGlLv8BLfUzjVdYojt6EuJ/q2HfROpC2N2Bv/RrYGbkv/u TKAmDhOAsMqEkhhBPF7VuZMwItBAFIT0aDzuOXHXipraCXUIPq91UhZFU/5bZjqO +Yx9sJWBBk4p/86U521Q3OSCybu3zWGgQgJIIZTK8mL4npddqMko0CKe+KnDcLVf yntYjVpMEs23XhhCcyT8czSE0zAe6YIRjUpTXyd5FGymCGnuQ4f7hkXmMMgrAqY/ wUcdCiJWozSLz5CElhClaaIz3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxtP6w+ ue61K0P6AQTmbh5CD5ouMB8GA1UdIwQYMBaAFI2SMJjNZ/bRvyTPviw9ygtmWruM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEIxNy9FQTRCMTY1RTY4 RUQxMUVFQjRCNUQzNjJDNEY5QUUwMi9qWkl3bU0xbjl0R19KTS0tTEQzS0MyWmF1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2paSXdtTTFuOXRHX0pNLS1MRDNLQzJaYXU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEIxNy9FQTRCMTY1RTY4RUQxMUVFQjRCNUQzNjJDNEY5QUUwMi9qWkl3bU0xbjl0 R19KTS0tTEQzS0MyWmF1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKVprkZqTJX7m1KetRXSJG1wGT0Th0uzpvStu4r3926RJrpPu4Migo v8RbSsZW1eKx2Woc5om3r/CFW1SEuvnU0w0Ot0FO8baK/3ev4giB9mcxe3SZL8Ec xTxTH3MN7juCrYT1Xl5aQFeVoyjrCDYDrHK6H2Dv//4LOTCmX0fhyGYHsFV6mjw1 xU5K8NvrmBNjRxmv7GpuKP7x3S4xr8gbxN3cR4xdx4kdCZTmSPt6YwypEKt1ZIwL cqj6ZcLQFA/0/+sbtnwDfUFSZRBNoe7F+vnJdROt2fDtxGoBJEuRt20ErMaVbkgD h4aqGOqmUnJsnNDLj6CpsLUvztsLXoh3 -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:37 2025 by rpki-client