$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: Ijt2Oi3W92M9V24bQ1LMEdRxpUNhogK8uWrS8yqtors= Subject key identifier: BA:5A:FE:D7:CD:CA:99:CA:14:DA:C1:17:E7:19:69:85:C3:BC:EE:0D Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0E1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0E0F Signing time: Sat 14 Jun 2025 17:43:52 +0000 Manifest this update: Sat 14 Jun 2025 17:43:52 +0000 Manifest next update: Sat 21 Jun 2025 17:43:52 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: xNruvm6mMXjTHSzI/1OysPzwTmpQbRKBz4D9Nxb7144=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3610 (0xe1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Jun 14 17:43:52 2025 GMT Not After : Jun 21 17:43:52 2025 GMT Subject: CN=684db4d8-897d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:31:d4:c2:bd:53:4f:f6:33:a1:34:51:53:65: 3c:36:40:e9:38:10:f2:e9:37:c0:ec:28:b0:ee:a5: 8f:64:96:e1:61:32:1d:67:05:44:f1:b9:61:0e:ed: 13:30:ed:48:cd:11:5e:2e:f6:ac:9c:45:e2:76:df: 2c:d2:79:33:05:80:cf:d9:eb:61:03:87:0e:de:3c: 81:ee:85:b6:e5:26:de:66:3d:dd:e5:5b:11:52:5e: fd:9a:1f:99:50:12:c6:40:25:81:ba:6c:69:b9:3a: 14:60:3b:d6:c2:61:eb:8e:b0:42:16:14:34:b5:26: 48:4f:5a:aa:5c:bd:93:aa:78:fe:60:56:f8:cd:0f: 7e:8a:3f:e7:86:b5:cf:8e:5b:ad:0f:5a:91:fc:4c: 93:cc:47:20:fe:e3:f6:dd:b2:c0:ad:d6:d8:b4:29: 03:91:45:4a:08:59:5d:24:a6:67:26:b8:4d:28:c5: 8a:0b:a6:bd:0a:e9:05:ad:b3:7e:16:63:13:68:e8: e1:15:be:a8:25:69:02:d7:10:5f:e5:80:55:de:9f: c8:cf:98:a9:6c:da:99:e9:80:a9:cc:84:ae:01:ff: 65:1e:60:4c:8a:91:1e:b2:f7:a6:1e:ce:d9:66:32: 1b:0d:cb:ab:ba:b6:cb:11:49:78:ad:1d:9a:ef:5d: df:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:5A:FE:D7:CD:CA:99:CA:14:DA:C1:17:E7:19:69:85:C3:BC:EE:0D X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:34:fe:19:1f:d6:72:b0:44:9c:76:1f:ac:59:72:d3:ec:fa: 52:54:8c:a6:d4:0c:23:7e:1c:fa:f6:44:4a:05:36:cf:ca:8c: eb:3c:0a:55:90:19:89:e6:cd:da:07:a2:f7:5a:43:2a:7f:b1: 9d:68:a7:2b:15:00:04:a6:eb:21:f9:f6:ad:73:77:89:36:dc: 3c:ae:31:d3:d0:da:47:0a:2a:61:bf:b4:26:9b:45:cd:35:ef: 8f:5a:49:32:1d:63:f5:64:d5:2a:0c:35:1c:d8:e7:34:d2:eb: 1d:c0:1e:06:db:85:51:9f:1b:8e:fc:f4:12:df:96:5f:82:c9: 18:22:83:3c:09:64:70:d0:68:53:70:21:b9:04:77:65:de:f7: 76:b0:ae:8d:7c:f0:64:d2:0e:b6:c5:43:45:fe:b6:6d:84:7d: 09:df:56:71:66:c2:8d:22:05:6c:f9:57:bd:4d:a1:97:68:3e: 26:44:5b:32:4e:75:21:7b:43:a2:9e:66:79:d1:ab:15:45:ad: 06:e0:27:58:fd:3a:dd:38:b9:45:75:dd:9d:2c:10:75:5e:84: d3:82:3d:d3:26:70:47:dc:4b:0f:f2:1c:65:c5:e2:39:21:64: 97:23:89:08:27:e5:d0:b0:79:1a:cb:00:87:57:0c:d6:4f:61: 43:b1:e9:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUwNjE0MTc0MzUyWhcNMjUwNjIxMTc0MzUyWjAYMRYwFAYD VQQDEw02ODRkYjRkOC04OTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDHUwr1TT/YzoTRRU2U8NkDpOBDy6TfA7Ciw7qWPZJbhYTIdZwVE8blhDu0T MO1IzRFeLvasnEXidt8s0nkzBYDP2ethA4cO3jyB7oW25SbeZj3d5VsRUl79mh+Z UBLGQCWBumxpuToUYDvWwmHrjrBCFhQ0tSZIT1qqXL2Tqnj+YFb4zQ9+ij/nhrXP jlutD1qR/EyTzEcg/uP23bLArdbYtCkDkUVKCFldJKZnJrhNKMWKC6a9CukFrbN+ FmMTaOjhFb6oJWkC1xBf5YBV3p/Iz5ipbNqZ6YCpzISuAf9lHmBMipEesvemHs7Z ZjIbDcururbLEUl4rR2a713fnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpa/tfN ypnKFNrBF+cZaYXDvO4NMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkNP4ZH9ZysEScdh+sWXLT7PpSVIym1Awjfhz69kRKBTbPyozrPApV kBmJ5s3aB6L3WkMqf7GdaKcrFQAEpush+fatc3eJNtw8rjHT0NpHCiphv7Qmm0XN Ne+PWkkyHWP1ZNUqDDUc2Oc00usdwB4G24VRnxuO/PQS35ZfgskYIoM8CWRw0GhT cCG5BHdl3vd2sK6NfPBk0g62xUNF/rZthH0J31ZxZsKNIgVs+Ve9TaGXaD4mRFsy TnUhe0OinmZ50asVRa0G4CdY/TrdOLlFdd2dLBB1XoTTgj3TJnBH3EsP8hxlxeI5 IWSXI4kIJ+XQsHkaywCHVwzWT2FDsenY -----END CERTIFICATE-----Generated at Sat Jun 14 19:20:59 2025 by rpki-client