$ rpki-client -vvf rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft File: jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft (raw, json) Hash identifier: FnTKgb9GRjxTBvFS+jJ5v4Zo6p2Ms621+gIsmeabqPE= Subject key identifier: F0:89:23:09:10:CD:94:7E:C0:AB:3E:94:CC:FC:29:E2:5C:F2:B2:82 Authority key identifier: 8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 Certificate issuer: /CN=A91190A9/serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Certificate serial: 0B20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft Manifest number: 0B1A Signing time: Wed 02 Jul 2025 19:28:40 +0000 Manifest this update: Wed 02 Jul 2025 19:28:39 +0000 Manifest next update: Wed 09 Jul 2025 19:28:39 +0000 Files and hashes: 1: jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl (hash: qolnbRI1om/PJGy9uZhqqELHtvyRF9GmuHjFXzIT1ec=) 2: 344C54A441B811EAA856BE49C4F9AE02.roa (hash: WrNvje3c+z7lsqTQqXn/sqPriUfd4/uYt7v0A72LhYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2848 (0xb20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190A9, serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Validity Not Before: Jul 2 19:28:39 2025 GMT Not After : Jul 9 19:28:39 2025 GMT Subject: CN=68658868-638f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1e:19:44:b3:b4:e2:89:8b:87:6f:a1:2a:08: 80:d9:50:d9:49:1c:e7:91:c6:14:65:3a:81:c9:00: ae:e8:ae:63:f4:5e:1d:df:47:04:3c:57:f2:6b:d3: e0:08:d5:b1:86:3e:26:07:d3:95:23:26:d9:8b:14: 08:92:15:17:1a:3b:a5:dc:cb:8e:22:fd:b0:b4:99: 4b:ca:77:d5:d8:b4:89:a8:1a:42:fd:db:70:c8:8c: d5:4e:db:40:cf:84:91:3f:40:20:c7:5d:11:e2:87: 57:87:66:61:1c:e3:71:60:d8:f8:51:4c:45:ba:a4: 09:d6:11:66:ee:e6:95:3f:fe:fd:f5:10:bb:f6:3c: 2f:d8:8e:7e:4c:5c:31:c7:f5:0d:3b:85:46:74:4e: a2:c5:03:c9:ca:8e:90:36:be:ce:e2:68:e5:31:6d: 1c:46:11:da:60:0f:b8:e8:58:04:16:e9:22:ca:a5: 22:94:21:df:33:47:13:9d:3f:0a:bd:8b:7b:ff:49: d1:99:57:8b:2f:f7:9d:3c:08:49:ee:dd:2d:52:8c: 4f:9a:32:2a:29:8b:81:8f:2a:9b:ac:fc:6a:c8:28: eb:16:db:7b:e4:bd:5b:0e:e1:f3:7e:6a:7e:7e:97: 1f:81:23:89:8a:81:8e:3f:56:36:33:e6:69:24:5a: f7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:89:23:09:10:CD:94:7E:C0:AB:3E:94:CC:FC:29:E2:5C:F2:B2:82 X509v3 Authority Key Identifier: keyid:8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:31:3a:bc:66:18:57:cb:36:4c:d2:9f:d5:d3:35:14:26:92: ef:50:40:4b:b9:11:02:9a:40:01:e4:23:13:e4:eb:57:68:0b: 6c:2e:e3:54:e8:b0:05:23:bb:e7:3f:45:5a:45:e7:62:2b:e6: cc:b2:17:c9:b1:63:5b:20:3b:48:11:80:08:18:19:d4:d6:21: 7a:d4:29:66:94:ef:c1:b8:06:f9:2b:6f:cf:e9:f8:cb:7e:7e: 2d:08:3b:0c:2c:6e:eb:10:0a:7c:d4:b4:24:da:58:9e:0c:4f: df:31:ac:a5:72:d9:96:05:a7:a2:c2:a2:d3:e7:ef:40:17:65: 0e:58:48:9c:64:f2:92:3d:10:92:a2:96:87:7c:1a:ac:c5:0c: ed:95:23:ec:f6:72:32:69:d9:40:7f:24:1f:19:a5:3c:2b:0d: ce:74:a2:98:3f:52:ae:41:3d:9b:d2:03:fd:61:b5:01:bd:f6: 7b:ca:5c:ad:75:a3:bd:3c:cd:63:0c:97:79:e8:b4:41:ba:e9: c7:73:9a:0a:47:f3:7e:76:f5:f1:0d:26:7c:91:af:a5:86:f2: 1d:f4:17:ae:0b:40:f5:a3:e1:b6:57:5b:3a:9f:da:38:3e:ee: 78:1e:67:af:b7:7c:bc:bd:32:78:2a:d7:34:e4:8d:a7:e0:01: 16:5c:43:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQTkxMTAvBgNVBAUTKDhENDczQkNDNTdDM0YyQUU0RTg3NDhFREVGRDNEMjgx N0MyMDY1NjYwHhcNMjUwNzAyMTkyODM5WhcNMjUwNzA5MTkyODM5WjAYMRYwFAYD VQQDEw02ODY1ODg2OC02MzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApR4ZRLO04omLh2+hKgiA2VDZSRznkcYUZTqByQCu6K5j9F4d30cEPFfya9Pg CNWxhj4mB9OVIybZixQIkhUXGjul3MuOIv2wtJlLynfV2LSJqBpC/dtwyIzVTttA z4SRP0Agx10R4odXh2ZhHONxYNj4UUxFuqQJ1hFm7uaVP/799RC79jwv2I5+TFwx x/UNO4VGdE6ixQPJyo6QNr7O4mjlMW0cRhHaYA+46FgEFukiyqUilCHfM0cTnT8K vYt7/0nRmVeLL/edPAhJ7t0tUoxPmjIqKYuBjyqbrPxqyCjrFtt75L1bDuHzfmp+ fpcfgSOJioGOP1Y2M+ZpJFr3YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCJIwkQ zZR+wKs+lMz8KeJc8rKCMB8GA1UdIwQYMBaAFI1HO8xXw/KuTodI7e/T0oF8IGVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBBOS9BOTc0MDQ5QTQx QjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhxNU9oMGp0NzlQU2dYd2da V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVYzd6RmZEOHE1T2gwanQ3OVBTZ1h3Z1pXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBBOS9BOTc0MDQ5QTQxQjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhx NU9oMGp0NzlQU2dYd2daV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeMTq8ZhhXyzZM0p/V0zUUJpLvUEBLuRECmkAB5CMT5OtXaAtsLuNU 6LAFI7vnP0VaRediK+bMshfJsWNbIDtIEYAIGBnU1iF61ClmlO/BuAb5K2/P6fjL fn4tCDsMLG7rEAp81LQk2lieDE/fMaylctmWBaeiwqLT5+9AF2UOWEicZPKSPRCS opaHfBqsxQztlSPs9nIyadlAfyQfGaU8Kw3OdKKYP1KuQT2b0gP9YbUBvfZ7ylyt daO9PM1jDJd56LRBuunHc5oKR/N+dvXxDSZ8ka+lhvId9BeuC0D1o+G2V1s6n9o4 Pu54Hmevt3y8vTJ4Ktc05I2n4AEWXEPA -----END CERTIFICATE-----Generated at Thu Jul 3 09:11:49 2025 by rpki-client