$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft File: JHItMcJRPk5_h-23Df6dyU-EaLo.mft (raw, json) Hash identifier: IrJ+DqlTipKKXfE+ROJleUwUywOjiZYurGGiLWqLG9Q= Subject key identifier: A6:33:BF:0B:35:6D:96:8F:FC:0B:BF:76:2E:8E:6C:48:E2:B1:A5:20 Authority key identifier: 24:72:2D:31:C2:51:3E:4E:7F:87:ED:B7:0D:FE:9D:C9:4F:84:68:BA Certificate issuer: /CN=A91186C2/serialNumber=24722D31C2513E4E7F87EDB70DFE9DC94F8468BA Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft Manifest number: 72 Signing time: Sat 23 Aug 2025 07:05:08 +0000 Manifest this update: Sat 23 Aug 2025 07:05:07 +0000 Manifest next update: Sat 30 Aug 2025 07:05:07 +0000 Files and hashes: 1: JHItMcJRPk5_h-23Df6dyU-EaLo.crl (hash: LX3ONpd6HS2Df7JTUWe/6jjwVjsEs/IGq/UHwLKYWEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.crl rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=24722D31C2513E4E7F87EDB70DFE9DC94F8468BA Validity Not Before: Aug 23 07:05:07 2025 GMT Not After : Aug 30 07:05:07 2025 GMT Subject: CN=68a96823-7cb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:12:95:63:f0:48:da:4a:29:66:e6:af:db:e7: 87:9c:59:4d:32:0a:71:c5:10:81:d5:7f:9a:25:03: 58:9a:51:df:8c:81:12:14:e8:2f:d2:f2:d4:c3:dd: 3c:1f:28:16:12:a1:2b:f5:4e:86:c6:01:a5:18:5f: 68:7a:ce:65:15:f4:e1:14:fc:57:35:ac:8f:59:97: f0:36:a2:1e:89:82:95:e3:0c:7a:b3:d1:92:a1:fe: f5:5d:e9:61:8b:7c:a8:81:ec:6f:fd:c1:2c:56:c9: f3:70:2d:67:9f:45:31:38:9c:d0:02:84:21:4e:3a: 70:36:0b:de:5b:ed:91:f7:de:95:1e:7d:a5:2e:81: de:54:b6:c9:5a:b7:d8:c0:78:11:4b:97:bb:5b:40: c1:95:6a:2b:be:2c:f6:ea:cf:df:2a:73:99:2f:f5: 39:7c:fe:7d:0a:25:71:56:46:a5:d6:b7:dd:31:a7: 50:5a:6a:81:96:5e:e7:83:d7:c1:8c:a0:32:3b:88: 3a:32:e9:df:43:0a:c8:ab:50:99:cb:2e:14:02:49: ff:8e:e5:ea:89:81:34:a6:35:02:d4:10:7c:1c:27: 9e:d0:bd:45:29:2c:e8:40:4f:1d:0d:42:31:85:93: 1d:59:6a:bd:ce:4b:9e:74:19:85:84:9d:82:56:74: db:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:33:BF:0B:35:6D:96:8F:FC:0B:BF:76:2E:8E:6C:48:E2:B1:A5:20 X509v3 Authority Key Identifier: keyid:24:72:2D:31:C2:51:3E:4E:7F:87:ED:B7:0D:FE:9D:C9:4F:84:68:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:5b:2c:86:80:f0:f4:eb:7c:41:22:63:8c:7f:14:67:25:97: f7:05:e7:4c:d2:de:af:63:29:c0:84:8d:ad:86:c4:fc:cc:d9: e1:d9:bf:db:c3:3c:30:f4:ee:60:d1:5d:62:f8:68:6a:d3:8f: e9:5e:cd:a4:b7:50:b8:c8:7c:03:e1:4d:07:5d:dc:d3:9e:9b: bd:05:20:37:9a:f6:49:87:c2:0e:62:c3:73:1f:cd:6a:97:8e: f1:19:e7:21:74:47:fd:17:0a:7e:8e:62:a1:b6:52:ca:43:7a: 73:ea:8e:11:cd:32:19:89:83:0a:e3:e0:b2:55:7b:4e:fd:60: 5f:1d:72:0c:55:14:00:71:57:21:85:ea:e5:33:96:1b:7a:68: 44:79:45:6b:0c:8d:63:b5:1f:5c:c3:2d:d3:63:53:a2:3b:be: 9f:39:f1:9c:45:d1:a8:65:3a:4c:38:df:b6:bc:5c:51:58:c3: 7d:ab:47:ca:c9:06:46:de:d2:ea:a2:98:8c:67:97:6b:c4:2e: 0d:10:3c:9e:fc:08:c9:1f:e5:a7:6e:13:e7:3f:48:53:1b:15: 36:16:99:e2:3a:0e:65:35:07:8b:ff:31:cf:8c:6f:d6:4c:05: 0d:fa:c0:36:50:ab:a1:ba:65:10:81:c6:fc:7b:51:60:5f:fa: e5:fe:c6:96 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODZDMjExMC8GA1UEBRMoMjQ3MjJEMzFDMjUxM0U0RTdGODdFREI3MERGRTlEQzk0 Rjg0NjhCQTAeFw0yNTA4MjMwNzA1MDdaFw0yNTA4MzAwNzA1MDdaMBgxFjAUBgNV BAMTDTY4YTk2ODIzLTdjYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxEpVj8EjaSilm5q/b54ecWU0yCnHFEIHVf5olA1iaUd+MgRIU6C/S8tTD3Twf KBYSoSv1TobGAaUYX2h6zmUV9OEU/Fc1rI9Zl/A2oh6JgpXjDHqz0ZKh/vVd6WGL fKiB7G/9wSxWyfNwLWefRTE4nNAChCFOOnA2C95b7ZH33pUefaUugd5Utslat9jA eBFLl7tbQMGVaiu+LPbqz98qc5kv9Tl8/n0KJXFWRqXWt90xp1BaaoGWXueD18GM oDI7iDoy6d9DCsirUJnLLhQCSf+O5eqJgTSmNQLUEHwcJ57QvUUpLOhATx0NQjGF kx1Zar3OS550GYWEnYJWdNtNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpjO/CzVt lo/8C792Lo5sSOKxpSAwHwYDVR0jBBgwFoAUJHItMcJRPk5/h+23Df6dyU+EaLow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NkMyLzI1NTVCRjA2RDE3 RjExRUZCMzg0NjkyOEM0RjlBRTAyL0pISXRNY0pSUGs1X2gtMjNEZjZkeVUtRWFM by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkhJdE1jSlJQazVfaC0yM0RmNmR5VS1FYUxvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NkMyLzI1NTVCRjA2RDE3RjExRUZCMzg0NjkyOEM0RjlBRTAyL0pISXRNY0pSUGs1 X2gtMjNEZjZkeVUtRWFMby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAABbLIaA8PTrfEEiY4x/FGcll/cF50zS3q9jKcCEja2GxPzM2eHZv9vD PDD07mDRXWL4aGrTj+lezaS3ULjIfAPhTQdd3NOem70FIDea9kmHwg5iw3MfzWqX jvEZ5yF0R/0XCn6OYqG2UspDenPqjhHNMhmJgwrj4LJVe079YF8dcgxVFABxVyGF 6uUzlht6aER5RWsMjWO1H1zDLdNjU6I7vp858ZxF0ahlOkw437a8XFFYw32rR8rJ Bkbe0uqimIxnl2vELg0QPJ78CMkf5aduE+c/SFMbFTYWmeI6DmU1B4v/Mc+Mb9ZM BQ36wDZQq6G6ZRCBxvx7UWBf+uX+xpY= -----END CERTIFICATE-----Generated at Sat Aug 23 21:03:24 2025 by rpki-client