$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft File: jhahBq30E6__xY8QEZJ09wDPpZM.mft (raw, json) Hash identifier: /AG17LlMtjJ4n3lAfHD1Dw2AyY+r0GubPCBcuZBiGSg= Subject key identifier: C3:4B:40:15:32:34:6C:03:AE:74:F4:FB:A2:20:EA:FC:70:5A:23:6F Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 Certificate issuer: /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft Manifest number: 0270 Signing time: Tue 01 Jul 2025 02:26:57 +0000 Manifest this update: Tue 01 Jul 2025 02:26:57 +0000 Manifest next update: Tue 08 Jul 2025 02:26:57 +0000 Files and hashes: 1: jhahBq30E6__xY8QEZJ09wDPpZM.crl (hash: zGSZnPZjO6ECCEO4EsTKbieIH9Wy6M2PP4nEc4pWe+M=) 2: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (hash: dftYADdFFUc1O011GFzDE5h9w7SMkc25c1t2QDLUX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF8E, serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Validity Not Before: Jul 1 02:26:57 2025 GMT Not After : Jul 8 02:26:57 2025 GMT Subject: CN=68634771-fc0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ef:5f:80:5e:c8:77:67:f8:c5:df:bb:95:af: 7e:d5:69:16:d3:7b:cd:e6:f4:bd:51:88:2e:b7:4b: 94:ca:08:2a:54:00:61:17:14:f1:49:b5:22:25:ae: 3c:bf:e8:5c:51:0d:f5:b0:37:d4:41:8e:60:f4:0e: a3:d3:fd:cf:bd:39:d7:f3:e5:5e:66:5e:26:48:f7: c9:78:23:8b:f1:e1:83:87:b9:2e:f9:c5:fd:34:9a: a0:fb:9c:fc:b0:be:ec:13:44:41:f6:60:a0:fd:70: 91:85:04:57:74:cc:82:9f:e2:07:3e:6b:07:1c:23: 37:4e:78:6d:fb:49:97:09:59:57:cf:0c:58:85:c4: 1a:02:bb:dd:9d:5c:9c:5e:a4:2a:67:da:8e:f6:95: 7b:1f:4e:3e:b8:43:db:f6:b3:9c:0d:e4:fd:21:4e: 40:7e:46:95:92:1a:74:fd:9e:bd:25:b9:30:de:a1: 08:d9:1b:92:d9:0e:6c:69:63:da:ab:8c:12:6b:05: f6:d2:3b:54:8c:0c:04:db:42:73:12:ce:bb:b6:05: f6:e4:9a:29:05:58:8c:e0:1e:ed:d3:de:f9:9c:ae: a8:6a:b0:3b:24:bb:77:c0:a2:2c:87:ca:ac:8c:51: 47:e3:61:12:f1:2b:5e:cf:06:15:48:b7:13:0c:b7: 89:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:4B:40:15:32:34:6C:03:AE:74:F4:FB:A2:20:EA:FC:70:5A:23:6F X509v3 Authority Key Identifier: keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:77:60:51:d7:3c:5b:e2:f9:09:b7:6b:81:01:3b:6f:38:fb: 39:a0:e9:34:db:e5:8e:68:13:4e:a7:28:28:25:55:60:1d:41: c9:b6:59:40:0d:83:4d:d9:4e:fe:83:f1:78:22:61:06:01:d8: dc:c1:f0:15:a5:99:f0:4c:84:b5:18:b8:8f:16:56:9d:b9:33: 16:ee:b7:d6:95:6f:38:a3:9b:c7:56:6d:95:ec:fb:b7:c0:0f: 18:3b:be:95:71:90:6b:61:6e:c7:52:a4:36:83:0d:b9:b7:16: e5:a7:d6:f6:d1:48:38:fc:c0:e3:a5:19:e5:73:37:dc:5c:57: b8:10:de:7b:53:b1:95:3d:ae:6f:ec:e3:43:aa:d9:25:24:7c: f5:8b:ee:b1:97:96:79:f4:e4:a4:d6:07:2e:6d:b8:c7:a9:67: a5:3f:3a:75:f5:d0:bc:e5:e1:e3:d7:04:7e:28:3b:e6:2a:c8: 65:80:ec:20:fe:76:f2:d6:cf:50:6e:13:4e:a6:6e:15:59:e5: 5b:7d:77:bc:3b:a9:6f:91:20:5f:b0:a7:22:1b:d6:d4:6f:1e: 15:ec:22:92:7c:d4:57:34:30:e2:d8:b1:d3:eb:68:25:f4:d4: c9:6a:14:81:55:cc:26:b8:5b:2b:1b:f8:b3:43:25:c3:90:9f: c5:c6:18:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGOEUxMTAvBgNVBAUTKDhFMTZBMTA2QURGNDEzQUZGRkM1OEYxMDExOTI3NEY3 MDBDRkE1OTMwHhcNMjUwNzAxMDIyNjU3WhcNMjUwNzA4MDIyNjU3WjAYMRYwFAYD VQQDEw02ODYzNDc3MS1mYzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze9fgF7Id2f4xd+7la9+1WkW03vN5vS9UYgut0uUyggqVABhFxTxSbUiJa48 v+hcUQ31sDfUQY5g9A6j0/3PvTnX8+VeZl4mSPfJeCOL8eGDh7ku+cX9NJqg+5z8 sL7sE0RB9mCg/XCRhQRXdMyCn+IHPmsHHCM3Tnht+0mXCVlXzwxYhcQaArvdnVyc XqQqZ9qO9pV7H04+uEPb9rOcDeT9IU5AfkaVkhp0/Z69Jbkw3qEI2RuS2Q5saWPa q4wSawX20jtUjAwE20JzEs67tgX25JopBViM4B7t0975nK6oarA7JLt3wKIsh8qs jFFH42ES8StezwYVSLcTDLeJKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNLQBUy NGwDrnT0+6Ig6vxwWiNvMB8GA1UdIwQYMBaAFI4WoQat9BOv/8WPEBGSdPcAz6WT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUY4RS8yQUIyNDkxODE3 MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2X194WThRRVpKMDl3RFBw Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poYWhCcTMwRTZfX3hZOFFFWkowOXdEUHBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUY4RS8yQUIyNDkxODE3MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2 X194WThRRVpKMDl3RFBwWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVd2BR1zxb4vkJt2uBATtvOPs5oOk02+WOaBNOpygoJVVgHUHJtllA DYNN2U7+g/F4ImEGAdjcwfAVpZnwTIS1GLiPFladuTMW7rfWlW84o5vHVm2V7Pu3 wA8YO76VcZBrYW7HUqQ2gw25txblp9b20Ug4/MDjpRnlczfcXFe4EN57U7GVPa5v 7ONDqtklJHz1i+6xl5Z59OSk1gcubbjHqWelPzp19dC85eHj1wR+KDvmKshlgOwg /nby1s9QbhNOpm4VWeVbfXe8O6lvkSBfsKciG9bUbx4V7CKSfNRXNDDi2LHT62gl 9NTJahSBVcwmuFsrG/izQyXDkJ/Fxhji -----END CERTIFICATE-----Generated at Thu Jul 3 01:17:17 2025 by rpki-client