$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft File: jfabjPAtRHKg4tL07m5JMm09sMU.mft (raw, json) Hash identifier: yL4n8W/CuFy3zUXT/eAMTO90LBb1XbVczesLlfHdFC4= Subject key identifier: 2F:CD:F1:06:3C:10:C7:C6:02:18:A4:CD:CA:E4:26:C3:11:2C:80:C7 Authority key identifier: 8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 Certificate issuer: /CN=A9147BA3/serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Certificate serial: 34C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft Manifest number: 34B9 Signing time: Fri 22 Aug 2025 15:09:47 +0000 Manifest this update: Fri 22 Aug 2025 15:09:46 +0000 Manifest next update: Fri 29 Aug 2025 15:09:46 +0000 Files and hashes: 1: jfabjPAtRHKg4tL07m5JMm09sMU.crl (hash: NX6Ruyf2nruodFzZlCuuwGKnIU+qk1xIbQQUQM5hajY=) 2: 2B2C31BE3B8B11EB8D76362DC4F9AE02.roa (hash: END/X8NWEnYQqU51TlQvCrkCaUczqULOOoxx1HVtbaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13506 (0x34c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BA3, serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Validity Not Before: Aug 22 15:09:46 2025 GMT Not After : Aug 29 15:09:46 2025 GMT Subject: CN=68a8883b-14b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cf:64:f1:2c:93:9b:a8:95:64:c6:ac:6e:9d: ef:52:bc:9f:05:2b:ea:e5:1e:4a:a6:6f:61:84:af: 21:7e:2f:f2:7c:71:2c:ef:4b:cf:e6:e0:11:83:fe: 57:82:df:51:89:0d:a0:b1:43:fc:43:68:d8:06:9d: c0:e0:2f:eb:30:67:29:e1:b8:1f:62:6f:e7:a4:6c: e3:f8:a8:e0:60:c5:4b:d5:ea:2d:a7:c7:c9:08:d9: c4:03:29:1e:07:9e:83:2c:1c:a6:52:0b:3a:a4:d9: 11:e3:d3:d9:63:be:5c:07:d3:23:ff:13:3a:96:5b: 61:fb:ab:b9:22:37:50:a9:8d:fa:4d:73:eb:7d:5a: 47:a5:f0:2c:62:44:26:80:e4:ef:9b:ee:f9:73:1c: 40:10:e7:8c:b0:48:84:ca:f5:f6:80:eb:09:b4:4b: 67:20:e8:37:a1:46:2f:97:26:f7:fa:39:7d:6b:06: a6:59:7b:87:59:af:a4:c8:7a:60:31:25:8d:92:1b: 74:76:7e:bd:15:e9:0d:d8:d6:ff:81:6c:cf:e5:dc: cb:72:78:3a:e7:40:51:2c:a1:69:d1:f9:8c:4d:21: b8:c1:6b:3e:0d:50:f7:74:c8:86:70:55:2b:26:fb: 85:1b:37:52:4a:66:79:27:79:f9:7f:eb:07:71:c8: 67:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:CD:F1:06:3C:10:C7:C6:02:18:A4:CD:CA:E4:26:C3:11:2C:80:C7 X509v3 Authority Key Identifier: keyid:8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:79:03:7a:0a:f7:20:05:bc:74:e8:5c:8f:66:b3:2d:a9:4b: ed:d2:de:06:92:40:02:2c:bc:af:43:b5:03:de:ff:5d:eb:9e: d2:17:6e:e1:8b:86:db:79:19:71:76:21:8a:7e:b2:92:e9:d0: 18:4a:7b:c8:62:27:50:d2:b1:8e:b8:31:a9:5c:bd:af:40:21: 4f:d7:f7:d1:4b:b3:e1:ea:ea:9d:c3:71:6f:99:b9:e0:22:4c: 99:58:71:9f:9e:6d:b5:df:26:d6:8a:b9:ab:6a:53:67:60:40: b4:18:9e:41:b9:a8:d6:76:73:ac:97:c2:f3:0b:f8:84:90:b4: da:d1:dc:b8:05:97:39:02:58:cf:6e:10:14:b1:7b:e7:4d:e7: b1:f2:5d:64:af:ec:eb:18:71:1d:be:7d:ef:ad:04:73:39:80: 5d:43:00:e6:52:d7:a3:b6:ff:89:3a:99:9d:cb:e6:f9:0f:14: 38:67:68:8a:88:7c:3e:58:e1:4a:64:1f:e2:8b:3e:70:f5:29: 13:93:3f:7a:84:80:f6:8c:fb:87:df:94:8c:3d:e8:90:c3:8b: 70:8e:3e:c2:09:24:d4:63:00:1e:97:57:69:64:65:d7:e7:89: 08:6a:6f:2d:80:5a:45:89:cb:f8:cd:17:44:70:3b:e0:3f:6c: 55:3a:7b:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCQTMxMTAvBgNVBAUTKDhERjY5QjhDRjAyRDQ0NzJBMEUyRDJGNEVFNkU0OTMy NkQzREIwQzUwHhcNMjUwODIyMTUwOTQ2WhcNMjUwODI5MTUwOTQ2WjAYMRYwFAYD VQQDEw02OGE4ODgzYi0xNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM9k8SyTm6iVZMasbp3vUryfBSvq5R5Kpm9hhK8hfi/yfHEs70vP5uARg/5X gt9RiQ2gsUP8Q2jYBp3A4C/rMGcp4bgfYm/npGzj+KjgYMVL1eotp8fJCNnEAyke B56DLBymUgs6pNkR49PZY75cB9Mj/xM6llth+6u5IjdQqY36TXPrfVpHpfAsYkQm gOTvm+75cxxAEOeMsEiEyvX2gOsJtEtnIOg3oUYvlyb3+jl9awamWXuHWa+kyHpg MSWNkht0dn69FekN2Nb/gWzP5dzLcng650BRLKFp0fmMTSG4wWs+DVD3dMiGcFUr JvuFGzdSSmZ5J3n5f+sHcchnyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/N8QY8 EMfGAhikzcrkJsMRLIDHMB8GA1UdIwQYMBaAFI32m4zwLURyoOLS9O5uSTJtPbDF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0JBMy83N0VBN0EyNDFE QTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJIS2c0dEwwN201Sk1tMDlz TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pmYWJqUEF0UkhLZzR0TDA3bTVKTW0wOXNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0JBMy83N0VBN0EyNDFEQTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJI S2c0dEwwN201Sk1tMDlzTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1eQN6CvcgBbx06FyPZrMtqUvt0t4GkkACLLyvQ7UD3v9d657SF27h i4bbeRlxdiGKfrKS6dAYSnvIYidQ0rGOuDGpXL2vQCFP1/fRS7Ph6uqdw3Fvmbng IkyZWHGfnm213ybWirmralNnYEC0GJ5BuajWdnOsl8LzC/iEkLTa0dy4BZc5AljP bhAUsXvnTeex8l1kr+zrGHEdvn3vrQRzOYBdQwDmUtejtv+JOpmdy+b5DxQ4Z2iK iHw+WOFKZB/iiz5w9SkTkz96hID2jPuH35SMPeiQw4twjj7CCSTUYwAel1dpZGXX 54kIam8tgFpFicv4zRdEcDvgP2xVOnsn -----END CERTIFICATE-----Generated at Sat Aug 23 14:18:16 2025 by rpki-client