$ rpki-client -vvf rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft File: JhOQ197eXRxAsfPigPOKCNqv3N4.mft (raw, json) Hash identifier: 2qm+JQlvLskJszvgYjZTHPF0ZMxaVktFvfNwQcTqzQ8= Subject key identifier: FE:0F:AE:75:41:EC:9A:2C:53:6D:B4:47:65:02:87:E5:94:F2:57:08 Authority key identifier: 26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE Certificate issuer: /CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft Manifest number: 01D8 Signing time: Sat 23 Aug 2025 02:51:43 +0000 Manifest this update: Sat 23 Aug 2025 02:51:43 +0000 Manifest next update: Sat 30 Aug 2025 02:51:43 +0000 Files and hashes: 1: JhOQ197eXRxAsfPigPOKCNqv3N4.crl (hash: GQzqcU7iBjnGiC3Odh55WT9yROQ8qcDB7X8+3C/3WoQ=) 2: 738195EEB11811ED997EA457C4F9AE02.roa (hash: Dw2hET0XKkDZSavlAvohxfv8vlQxG1CLusRdITgzUP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E367, serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Validity Not Before: Aug 23 02:51:43 2025 GMT Not After : Aug 30 02:51:43 2025 GMT Subject: CN=68a92cbf-a3a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c0:a7:d7:59:ef:39:e4:9c:ad:e5:93:a5:c1: fd:cb:e5:c1:9a:fb:de:d9:f8:24:07:ea:be:b6:2d: 28:ee:19:ef:1f:22:d8:8f:52:fb:d0:30:61:d8:57: 25:55:6f:23:cb:90:60:a7:a8:d7:43:a5:05:d1:ec: af:21:f8:41:f7:86:71:84:ee:3c:aa:d0:b7:ed:c9: ad:1d:36:ce:5c:c3:32:3e:43:1c:93:50:92:09:fa: 5a:80:bc:16:5f:a2:86:f2:8f:9d:47:07:45:76:c6: be:88:74:7b:5b:7c:82:9a:e6:06:de:68:97:e7:d0: 22:21:8a:a5:19:d1:68:66:39:01:7d:46:1f:79:59: e9:a5:92:8f:b0:2c:0d:d5:64:94:ef:98:47:76:c1: 12:d2:bb:c0:6b:0a:28:cf:99:58:ca:3b:7d:d6:62: ea:a7:a7:eb:a8:23:1c:07:eb:0c:48:d6:3d:27:f3: 51:1a:15:f4:f8:8d:a6:8b:0f:55:0a:54:6d:f6:74: b1:ae:d2:52:8a:f8:85:f4:c3:71:90:bf:20:5b:b6: 44:4b:55:62:3b:8a:58:58:73:78:d1:e2:ca:03:db: eb:51:52:e7:a1:10:e4:28:1f:02:0c:c0:dc:e2:7e: cf:94:7a:d8:c3:23:a8:21:35:cc:7c:fd:ed:98:c7: 06:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:0F:AE:75:41:EC:9A:2C:53:6D:B4:47:65:02:87:E5:94:F2:57:08 X509v3 Authority Key Identifier: keyid:26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:da:c6:35:02:89:cc:83:96:e2:3c:17:b0:cb:5e:f7:d8:11: fa:0a:9b:77:8c:06:ac:76:76:cb:14:25:bf:86:0a:16:0f:10: 97:bd:67:31:b1:de:5b:b2:c4:3c:e4:43:7f:f7:b4:d9:35:50: 0b:63:63:e7:bf:13:8e:e6:ed:c6:f1:ea:d2:eb:08:fa:3a:1a: b0:4a:2e:b8:e0:23:05:fd:0d:73:13:a2:df:cf:29:04:b6:7a: db:fb:fb:6a:b9:83:d7:49:6a:6b:82:02:02:c5:48:e7:14:33: 98:40:f3:43:54:08:ad:98:95:da:a3:c3:bd:27:d6:df:8f:6a: 69:00:86:b5:90:e9:85:e5:4e:fb:66:3a:e2:1e:d5:31:f2:58: 95:fa:5d:d5:67:cb:5d:d4:40:c2:cc:10:e8:0e:ec:cc:e5:fd: d4:a7:a3:ea:b4:b1:6b:b0:ae:39:0d:d2:f5:9c:c1:91:58:aa: 66:e0:9a:96:c1:26:ab:3b:41:8c:69:c8:93:b9:49:5e:fa:77: fe:b0:1a:cc:10:a9:ff:fe:37:77:45:c1:d4:ac:2e:5b:b8:ee: a4:80:8c:a3:51:a7:31:a8:b7:58:18:ec:cd:3e:95:77:87:b8: 78:11:91:94:29:66:8a:4a:4e:14:66:c6:e8:72:88:b7:43:af: 20:84:10:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzNjcxMTAvBgNVBAUTKDI2MTM5MEQ3REVERTVEMUM0MEIxRjNFMjgwRjM4QTA4 REFBRkRDREUwHhcNMjUwODIzMDI1MTQzWhcNMjUwODMwMDI1MTQzWjAYMRYwFAYD VQQDEw02OGE5MmNiZi1hM2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MCn11nvOeScreWTpcH9y+XBmvve2fgkB+q+ti0o7hnvHyLYj1L70DBh2Fcl VW8jy5Bgp6jXQ6UF0eyvIfhB94ZxhO48qtC37cmtHTbOXMMyPkMck1CSCfpagLwW X6KG8o+dRwdFdsa+iHR7W3yCmuYG3miX59AiIYqlGdFoZjkBfUYfeVnppZKPsCwN 1WSU75hHdsES0rvAawooz5lYyjt91mLqp6frqCMcB+sMSNY9J/NRGhX0+I2miw9V ClRt9nSxrtJSiviF9MNxkL8gW7ZES1ViO4pYWHN40eLKA9vrUVLnoRDkKB8CDMDc 4n7PlHrYwyOoITXMfP3tmMcGgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4PrnVB 7JosU220R2UCh+WU8lcIMB8GA1UdIwQYMBaAFCYTkNfe3l0cQLHz4oDzigjar9ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTM2Ny82QkNFQ0UwQUFE RjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhSeEFzZlBpZ1BPS0NOcXYz TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0poT1ExOTdlWFJ4QXNmUGlnUE9LQ05xdjNONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTM2Ny82QkNFQ0UwQUFERjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhS eEFzZlBpZ1BPS0NOcXYzTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX2sY1AonMg5biPBewy1732BH6Cpt3jAasdnbLFCW/hgoWDxCXvWcx sd5bssQ85EN/97TZNVALY2PnvxOO5u3G8erS6wj6OhqwSi644CMF/Q1zE6LfzykE tnrb+/tquYPXSWprggICxUjnFDOYQPNDVAitmJXao8O9J9bfj2ppAIa1kOmF5U77 ZjriHtUx8liV+l3VZ8td1EDCzBDoDuzM5f3Up6PqtLFrsK45DdL1nMGRWKpm4JqW wSarO0GMaciTuUle+nf+sBrMEKn//jd3RcHUrC5buO6kgIyjUacxqLdYGOzNPpV3 h7h4EZGUKWaKSk4UZsbocoi3Q68ghBCR -----END CERTIFICATE-----Generated at Sat Aug 23 19:33:48 2025 by rpki-client