$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: XZpKGyHMOafIqjYeh4E9b5DXagpXynoFpsuDtkGfuFA= Subject key identifier: 60:8B:75:36:C8:D2:44:54:17:F0:A0:CD:6F:E4:FA:05:BE:F9:B1:62 Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0D31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0D25 Signing time: Fri 22 Aug 2025 18:09:36 +0000 Manifest this update: Fri 22 Aug 2025 18:09:36 +0000 Manifest next update: Fri 29 Aug 2025 18:09:36 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: 3iOiekfpj9zB86+FEj3izRN5m2SqVNTUvbHmo2fIQkI=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: hbFGbb4fXsbz6F3BPhzZvLmW3bUeWq5CqpJ6o7pIq8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:09:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3377 (0xd31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Aug 22 18:09:36 2025 GMT Not After : Aug 29 18:09:36 2025 GMT Subject: CN=68a8b260-6c7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e5:a4:d4:f8:0e:08:38:49:6b:e8:76:ee:32: f4:41:d6:3b:68:15:e0:9f:a8:31:ad:da:44:7c:8d: 40:56:81:d8:a2:8f:09:26:07:e1:7d:46:ab:11:e5: 49:80:ed:ff:cc:d5:52:1f:8b:e6:f8:ab:e2:f5:f2: f4:20:a9:e8:0e:3f:44:0e:9e:7b:87:cc:f5:69:1e: c6:18:fd:f2:33:49:e2:ee:58:8a:73:01:a2:92:52: 5d:98:66:dd:25:32:a1:19:4f:ce:55:23:12:56:c8: 1a:06:58:9d:69:fa:47:14:8e:ea:66:68:c4:d1:bc: 06:00:28:f8:f4:10:3d:e3:c0:72:e5:33:bb:57:ab: 91:41:25:cf:01:25:ae:21:bc:9e:06:84:38:35:ce: 73:4d:48:84:e2:ba:df:f9:a7:4f:bd:c0:9b:d3:33: 1b:23:05:ac:49:8a:55:82:89:77:b1:86:cb:12:65: 20:25:c5:db:7c:6e:cf:fc:5d:d6:4c:23:ed:a2:b0: 58:5a:04:c0:97:75:15:ab:9d:50:5f:ad:35:85:f9: de:fa:11:c2:0b:a5:d1:0b:ea:c1:9b:78:e6:73:34: eb:a2:a5:1a:ba:74:c9:b2:cf:1c:dc:6a:92:a9:7b: f7:8e:d7:fb:cf:16:71:9e:28:57:6c:86:14:36:f9: ac:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8B:75:36:C8:D2:44:54:17:F0:A0:CD:6F:E4:FA:05:BE:F9:B1:62 X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:68:d1:5e:29:a0:3b:af:69:c7:a4:24:62:d6:b2:4f:06:92: 53:04:f1:15:cc:0e:35:e5:39:28:e2:3b:32:8b:04:5a:08:d6: c3:2c:68:7f:0f:f4:61:46:ea:6f:b5:6e:2f:16:8a:67:12:e1: cf:c5:01:c4:88:93:ef:a8:45:29:90:aa:17:d2:fe:e8:0b:c4: 55:10:38:a0:63:bd:d3:48:1a:bd:af:e6:f9:5d:f9:99:91:fe: 7a:be:71:c2:3a:a7:c0:06:03:51:90:10:93:d2:5a:27:22:a8: b4:ed:a1:52:7c:1c:c3:b0:05:a7:6c:10:66:64:06:41:ef:a5: eb:dc:c2:2b:f8:66:b6:b8:e3:10:0e:f1:f8:5e:0e:86:38:6d: d0:76:21:83:c6:95:30:13:28:fc:07:9d:0a:cc:ba:26:0d:6b: ee:77:29:35:4a:31:8f:f6:89:76:a3:2a:c2:8b:fa:a1:2e:93: f4:77:1b:85:1d:0a:d3:8b:1c:4a:0e:b0:54:bf:e3:f8:30:aa: 21:38:7b:eb:b1:37:98:c9:23:58:ea:fb:cc:e1:9d:be:44:55: 5c:30:89:4c:dc:08:20:e9:5b:13:56:70:ce:ba:17:ab:f1:c8: ba:60:b1:8f:7d:2e:25:86:8d:87:84:cb:55:b3:e4:2d:02:1b: ff:64:20:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUwODIyMTgwOTM2WhcNMjUwODI5MTgwOTM2WjAYMRYwFAYD VQQDEw02OGE4YjI2MC02YzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OWk1PgOCDhJa+h27jL0QdY7aBXgn6gxrdpEfI1AVoHYoo8JJgfhfUarEeVJ gO3/zNVSH4vm+Kvi9fL0IKnoDj9EDp57h8z1aR7GGP3yM0ni7liKcwGiklJdmGbd JTKhGU/OVSMSVsgaBlidafpHFI7qZmjE0bwGACj49BA948By5TO7V6uRQSXPASWu IbyeBoQ4Nc5zTUiE4rrf+adPvcCb0zMbIwWsSYpVgol3sYbLEmUgJcXbfG7P/F3W TCPtorBYWgTAl3UVq51QX601hfne+hHCC6XRC+rBm3jmczTroqUaunTJss8c3GqS qXv3jtf7zxZxnihXbIYUNvmsLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCLdTbI 0kRUF/CgzW/k+gW++bFiMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChaNFeKaA7r2nHpCRi1rJPBpJTBPEVzA415Tko4jsyiwRaCNbDLGh/ D/RhRupvtW4vFopnEuHPxQHEiJPvqEUpkKoX0v7oC8RVEDigY73TSBq9r+b5XfmZ kf56vnHCOqfABgNRkBCT0lonIqi07aFSfBzDsAWnbBBmZAZB76Xr3MIr+Ga2uOMQ DvH4Xg6GOG3QdiGDxpUwEyj8B50KzLomDWvudyk1SjGP9ol2oyrCi/qhLpP0dxuF HQrTixxKDrBUv+P4MKohOHvrsTeYySNY6vvM4Z2+RFVcMIlM3Agg6VsTVnDOuher 8ci6YLGPfS4lho2HhMtVs+QtAhv/ZCDf -----END CERTIFICATE-----Generated at Sat Aug 23 20:34:52 2025 by rpki-client