$ rpki-client -vvf rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft File: jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft (raw, json) Hash identifier: PEE/BCpAdRG1fhUa7lTD6+BEmqtg5uh6ATakrl9S+FQ= Subject key identifier: AB:59:4F:31:DB:74:83:3E:36:78:75:6B:E2:E5:E2:73:65:B7:3D:BB Authority key identifier: 8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 Certificate issuer: /CN=A91190A9/serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Certificate serial: 0B3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft Manifest number: 0B34 Signing time: Fri 22 Aug 2025 19:20:32 +0000 Manifest this update: Fri 22 Aug 2025 19:20:32 +0000 Manifest next update: Fri 29 Aug 2025 19:20:32 +0000 Files and hashes: 1: jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl (hash: k3eMnlDCCj7Rp89Qp38Bo3Bcv7F7Vqo5/furZWMez+I=) 2: 344C54A441B811EAA856BE49C4F9AE02.roa (hash: WrNvje3c+z7lsqTQqXn/sqPriUfd4/uYt7v0A72LhYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2874 (0xb3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190A9, serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Validity Not Before: Aug 22 19:20:32 2025 GMT Not After : Aug 29 19:20:32 2025 GMT Subject: CN=68a8c300-2d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:88:85:82:3a:51:89:b7:80:cd:c4:e2:8c:79: 24:dc:b3:85:41:d4:ec:69:1c:32:c9:74:44:9b:21: 12:c8:d8:47:18:38:d7:33:9e:4b:34:a0:79:f6:f0: c1:ff:38:20:48:12:e1:70:92:fe:6b:0a:7c:05:5a: b8:29:48:12:0a:6f:fc:93:28:e5:9e:29:49:c0:42: 57:5a:ce:85:2c:6f:d0:95:28:b2:a8:83:4a:eb:4c: 25:1e:37:cd:16:69:34:bf:f9:f9:51:41:ed:9b:c2: 77:ab:21:44:34:f8:64:03:3d:bf:d0:cf:f6:14:fe: 15:be:65:c0:39:18:a5:9f:56:80:8d:60:0e:53:aa: e6:d1:32:2f:81:cd:02:38:37:b0:31:ed:80:20:e1: d4:9a:65:ef:98:ee:a9:a8:fb:60:5c:bc:32:52:8d: ce:67:c0:97:f4:c3:96:89:30:08:e9:49:92:7c:0c: ff:39:37:5b:dd:e0:b2:d8:25:90:2f:51:61:e5:7b: 16:63:cb:a4:49:ff:cf:bc:b2:9c:6b:fe:a4:fb:f5: 2d:02:00:10:8c:c1:67:f3:57:38:33:43:27:14:e6: 49:1d:98:e2:03:70:74:d6:42:46:d2:b4:50:9a:a1: b3:55:7e:cb:03:52:82:97:19:35:c6:30:54:9a:0c: 7b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:59:4F:31:DB:74:83:3E:36:78:75:6B:E2:E5:E2:73:65:B7:3D:BB X509v3 Authority Key Identifier: keyid:8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:51:26:c9:2d:9d:6b:8a:a5:15:65:f9:be:52:dc:29:45:f7: 7c:8d:0e:7e:77:f1:fa:71:99:23:ba:a0:db:c6:72:f7:e2:63: 10:47:77:ff:05:f6:29:67:85:35:1b:72:45:d9:35:17:00:97: af:c6:b7:61:78:33:14:e1:9a:8a:4f:47:41:33:ee:49:bd:fc: c0:b7:cc:db:56:02:e8:e8:1a:db:8a:3a:ad:8e:69:19:cd:87: 2a:56:c0:f9:08:dc:73:20:b2:42:dc:1f:a3:8a:ee:74:e1:56: e1:0c:0a:2b:2a:d8:d7:ee:d5:46:bd:d3:63:31:9f:d9:a2:87: 79:c0:2f:b5:2c:15:a8:35:79:75:72:b4:00:10:a4:72:26:c2: b3:59:9a:ba:14:e5:12:94:79:3d:f9:0a:2c:89:c0:be:8f:39: 92:66:fd:cd:f4:3b:1b:50:dc:f8:78:2f:a4:29:38:6f:bf:c2: 9d:e8:05:21:16:e0:d8:28:1e:fd:f1:88:f5:dc:c1:6d:6b:2f: 38:9f:fd:7f:3b:c3:46:3d:7a:33:6f:1c:ee:f3:68:69:3e:9a: 78:bf:f4:4e:4a:93:d0:19:65:46:34:06:73:b5:66:f1:f3:af: 98:02:d1:be:89:c2:15:42:93:3a:a1:33:af:23:ff:70:e5:6e: a8:da:37:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQTkxMTAvBgNVBAUTKDhENDczQkNDNTdDM0YyQUU0RTg3NDhFREVGRDNEMjgx N0MyMDY1NjYwHhcNMjUwODIyMTkyMDMyWhcNMjUwODI5MTkyMDMyWjAYMRYwFAYD VQQDEw02OGE4YzMwMC0yZDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoiFgjpRibeAzcTijHkk3LOFQdTsaRwyyXREmyESyNhHGDjXM55LNKB59vDB /zggSBLhcJL+awp8BVq4KUgSCm/8kyjlnilJwEJXWs6FLG/QlSiyqINK60wlHjfN Fmk0v/n5UUHtm8J3qyFENPhkAz2/0M/2FP4VvmXAORiln1aAjWAOU6rm0TIvgc0C ODewMe2AIOHUmmXvmO6pqPtgXLwyUo3OZ8CX9MOWiTAI6UmSfAz/OTdb3eCy2CWQ L1Fh5XsWY8ukSf/PvLKca/6k+/UtAgAQjMFn81c4M0MnFOZJHZjiA3B01kJG0rRQ mqGzVX7LA1KClxk1xjBUmgx7nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtZTzHb dIM+Nnh1a+Ll4nNltz27MB8GA1UdIwQYMBaAFI1HO8xXw/KuTodI7e/T0oF8IGVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBBOS9BOTc0MDQ5QTQx QjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhxNU9oMGp0NzlQU2dYd2da V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVYzd6RmZEOHE1T2gwanQ3OVBTZ1h3Z1pXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBBOS9BOTc0MDQ5QTQxQjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhx NU9oMGp0NzlQU2dYd2daV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmUSbJLZ1riqUVZfm+UtwpRfd8jQ5+d/H6cZkjuqDbxnL34mMQR3f/ BfYpZ4U1G3JF2TUXAJevxrdheDMU4ZqKT0dBM+5JvfzAt8zbVgLo6BrbijqtjmkZ zYcqVsD5CNxzILJC3B+jiu504VbhDAorKtjX7tVGvdNjMZ/Zood5wC+1LBWoNXl1 crQAEKRyJsKzWZq6FOUSlHk9+QosicC+jzmSZv3N9DsbUNz4eC+kKThvv8Kd6AUh FuDYKB798Yj13MFtay84n/1/O8NGPXozbxzu82hpPpp4v/ROSpPQGWVGNAZztWbx 86+YAtG+icIVQpM6oTOvI/9w5W6o2jd6 -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:05 2025 by rpki-client