$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft File: -jVgKfx3KltDJpwxataFxLtaZW0.mft (raw, json) Hash identifier: on6T+eMQlKq5TjQWC/0md9K8GHr4sv+gUF8Bw2b8I6k= Subject key identifier: A9:0D:77:20:BE:CF:7E:EE:D4:E8:89:22:86:6E:84:20:9F:4E:DC:3A Authority key identifier: FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D Certificate issuer: /CN=A9116B5E/serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Certificate serial: 0632 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft Manifest number: 0620 Signing time: Wed 02 Jul 2025 23:07:36 +0000 Manifest this update: Wed 02 Jul 2025 23:07:35 +0000 Manifest next update: Wed 09 Jul 2025 23:07:35 +0000 Files and hashes: 1: -jVgKfx3KltDJpwxataFxLtaZW0.crl (hash: cryKQBPF9Stsq2MBQ+Xom4DHBk2EWKSNvdGULzyR3ZM=) 2: 93E364468FC111EFA7695485C4F9AE02.roa (hash: l40SoBbVMbccw1MSf6F6VE2N6tSNsGG3U/26S05rROc=) 3: 26C5F4148FC111EF84928A68C4F9AE02.roa (hash: WwU6SoQDG+8gwXxtD5WuoKkjOwOvaEm4Y976SHnYcTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1586 (0x632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B5E, serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Validity Not Before: Jul 2 23:07:35 2025 GMT Not After : Jul 9 23:07:35 2025 GMT Subject: CN=6865bbb8-8a0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0e:fc:f2:e4:15:04:66:a7:26:55:7a:6f:64: 58:05:00:3c:d5:60:75:bc:ed:4b:0e:bb:16:1a:5b: ed:50:c0:96:f7:28:c3:a0:35:5a:73:6a:8b:73:06: 4a:71:44:c5:4a:af:47:d7:7a:27:a3:6d:b5:57:32: e8:cb:3e:80:cd:da:ac:ae:13:67:6f:a3:e6:86:b8: c3:d6:13:2c:a0:f8:a6:f4:f7:6a:70:21:5d:51:99: 5d:4f:40:d9:74:a6:0f:06:a8:ec:da:5a:6d:ad:e4: 0d:01:c6:f6:26:cd:e0:ca:b9:ab:35:fa:fd:20:2e: 62:97:df:ed:c5:40:6a:7d:3c:17:67:2d:48:79:24: ed:63:96:35:0b:7f:9e:aa:9d:4d:1a:e3:34:47:95: e0:51:0c:26:92:fd:c0:1c:fe:45:c3:00:3f:42:5c: 7d:f8:e3:01:70:90:bc:2f:10:e9:84:bc:98:b8:52: 95:50:f0:8f:47:9d:30:1c:ab:b5:37:72:66:ba:44: 5d:04:9f:b3:60:3d:31:96:88:4c:a2:06:e5:74:d4: 53:d0:b1:25:6e:ce:66:d9:b8:de:43:db:e1:92:5a: 96:6d:4d:33:61:3d:0f:f3:37:df:ed:f0:63:f0:2b: 4e:cb:0f:6a:2c:27:2f:7e:d8:a4:e9:28:37:85:1c: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0D:77:20:BE:CF:7E:EE:D4:E8:89:22:86:6E:84:20:9F:4E:DC:3A X509v3 Authority Key Identifier: keyid:FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:db:df:88:07:2e:06:35:fc:92:30:f4:19:35:da:72:e6:81: c4:5e:8d:7f:bf:d7:d3:47:75:40:3f:2c:68:4a:5a:e0:c5:ee: 7f:bd:bd:9c:51:69:5d:c0:cc:8f:9c:69:d5:a8:cd:b6:72:fa: 84:8c:d6:3b:cf:9a:fc:b7:c6:2d:70:f4:4b:0e:84:c7:c2:da: f4:a9:62:74:53:cd:f4:63:fd:e0:71:a9:2c:00:92:3d:79:99: f4:08:37:b7:0f:ed:be:98:8b:55:47:db:14:d3:bb:8d:05:15: 94:1b:51:6a:51:e3:bf:55:7e:35:97:dd:56:3c:92:45:d3:5c: c1:a7:9b:cb:e1:37:8b:41:e4:67:00:79:a9:59:1b:be:4a:38: 22:a3:91:84:7b:f9:39:e1:89:e2:ae:53:06:00:f7:94:67:34: 1f:3b:9f:f6:dd:ac:5c:47:0f:42:7a:f0:6d:23:19:ec:1b:07: 7b:5f:50:b6:70:91:35:30:cd:77:5c:7c:83:86:db:64:e6:43: 97:5d:8c:62:0c:74:aa:24:fd:16:2c:32:04:7b:01:16:ee:c6: e0:04:0e:d2:a6:c0:29:66:56:e3:36:be:26:e8:5a:01:ba:04: 2a:c6:05:57:83:db:56:70:03:04:f4:4f:48:c8:af:f1:a3:ef: 9a:b0:e2:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNUUxMTAvBgNVBAUTKEZBMzU2MDI5RkM3NzJBNUI0MzI2OUMzMTZBRDY4NUM0 QkI1QTY1NkQwHhcNMjUwNzAyMjMwNzM1WhcNMjUwNzA5MjMwNzM1WjAYMRYwFAYD VQQDEw02ODY1YmJiOC04YTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnA788uQVBGanJlV6b2RYBQA81WB1vO1LDrsWGlvtUMCW9yjDoDVac2qLcwZK cUTFSq9H13ono221VzLoyz6AzdqsrhNnb6PmhrjD1hMsoPim9PdqcCFdUZldT0DZ dKYPBqjs2lptreQNAcb2Js3gyrmrNfr9IC5il9/txUBqfTwXZy1IeSTtY5Y1C3+e qp1NGuM0R5XgUQwmkv3AHP5FwwA/Qlx9+OMBcJC8LxDphLyYuFKVUPCPR50wHKu1 N3JmukRdBJ+zYD0xlohMogbldNRT0LElbs5m2bjeQ9vhklqWbU0zYT0P8zff7fBj 8CtOyw9qLCcvftik6Sg3hRwcRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkNdyC+ z37u1OiJIoZuhCCfTtw6MB8GA1UdIwQYMBaAFPo1YCn8dypbQyacMWrWhcS7WmVt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI1RS9GNThDNTY5NEE2 RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0tsdERKcHd4YXRhRnhMdGFa VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1qVmdLZngzS2x0REpwd3hhdGFGeEx0YVpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkI1RS9GNThDNTY5NEE2RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0ts dERKcHd4YXRhRnhMdGFaVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW29+IBy4GNfySMPQZNdpy5oHEXo1/v9fTR3VAPyxoSlrgxe5/vb2c UWldwMyPnGnVqM22cvqEjNY7z5r8t8YtcPRLDoTHwtr0qWJ0U830Y/3gcaksAJI9 eZn0CDe3D+2+mItVR9sU07uNBRWUG1FqUeO/VX41l91WPJJF01zBp5vL4TeLQeRn AHmpWRu+Sjgio5GEe/k54YnirlMGAPeUZzQfO5/23axcRw9CevBtIxnsGwd7X1C2 cJE1MM13XHyDhttk5kOXXYxiDHSqJP0WLDIEewEW7sbgBA7SpsApZlbjNr4m6FoB ugQqxgVXg9tWcAME9E9IyK/xo++asOKH -----END CERTIFICATE-----Generated at Thu Jul 3 23:21:35 2025 by rpki-client