$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft File: jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft (raw, json) Hash identifier: rn034jg8b1m1UYLHDDXbKPzm4DOvb0QWnKRvMx2hiho= Subject key identifier: 42:B3:2D:B7:45:32:2F:9D:B3:6C:53:6C:9E:DE:F1:A0:85:53:BB:77 Authority key identifier: 8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 Certificate issuer: /CN=A9149A6C/serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft Manifest number: 0706 Signing time: Fri 22 Aug 2025 22:01:30 +0000 Manifest this update: Fri 22 Aug 2025 22:01:29 +0000 Manifest next update: Fri 29 Aug 2025 22:01:29 +0000 Files and hashes: 1: jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl (hash: NLbCpCLZRFmb7+RpQDvc/U9uAwgbJJ+HU1/EONvnZg8=) 2: 22D8137A51A711EBAAAB6410C4F9AE02.roa (hash: W1YtTgfcUQgVCMN18bivEJ+sBWqdB/GL1VhO0Gs0eBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A6C, serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Validity Not Before: Aug 22 22:01:29 2025 GMT Not After : Aug 29 22:01:29 2025 GMT Subject: CN=68a8e8b9-8af4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:12:26:81:f2:fc:25:29:de:bd:25:b6:1d: 72:5b:8a:28:7b:9f:10:9a:6c:b2:d9:d5:bf:b0:43: bd:5e:84:b1:dd:27:5d:13:99:56:4a:40:5c:01:be: a3:d8:f8:71:82:d2:4e:ab:a4:50:d9:a7:ba:74:43: 7b:aa:f7:be:9a:ff:50:c7:3a:59:27:3b:99:d4:cb: 40:a4:50:4d:52:7c:fa:bb:8f:79:5c:19:d2:5e:3d: 64:bf:22:c3:5c:68:f3:71:87:5c:07:7f:5f:b6:3a: 95:f3:a7:43:1d:26:0f:a2:e3:3e:ba:ca:b5:70:f3: b5:c2:ba:ac:bf:5c:90:34:f0:b7:9a:17:af:dc:e4: f3:ee:5e:cb:19:e6:47:38:fe:0f:0a:0d:e7:32:e1: ab:0a:d9:68:8b:5e:32:20:89:fa:c2:ae:42:70:fc: 9a:e5:5b:ab:c4:1a:af:96:17:27:50:9a:81:a0:a2: 32:a1:7a:99:bf:25:58:c5:13:5d:21:0c:04:c0:6e: ad:47:89:0c:5f:cc:9f:5b:bb:0c:89:7d:95:de:3c: 7f:b1:4a:ec:cf:7b:fd:03:e7:32:dd:61:de:79:33: c1:96:33:4d:75:e4:b8:8f:f6:59:f9:25:a2:94:7b: 4b:3e:e5:28:ac:df:32:e7:dc:ec:3d:df:7f:81:a5: 5b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B3:2D:B7:45:32:2F:9D:B3:6C:53:6C:9E:DE:F1:A0:85:53:BB:77 X509v3 Authority Key Identifier: keyid:8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:fe:52:50:e6:0a:3d:94:74:ea:1a:c0:c5:5d:43:22:58:56: 1c:98:69:f0:c0:70:30:b5:fd:92:42:9a:aa:89:9a:8d:c7:90: c7:d3:31:08:d4:b8:e6:79:84:71:14:81:26:15:ca:bb:76:84: 9c:b2:02:dd:33:d0:6d:f6:5e:47:ee:69:4b:cc:40:9e:4c:00: 13:6e:00:ba:8c:48:c4:41:46:3c:01:6c:5a:88:dd:fd:9e:09: 51:18:a8:d5:2b:f7:2f:ca:35:d0:17:45:44:6a:b6:04:06:e3: 39:66:96:0e:02:3c:e1:b7:0e:f4:82:fd:ff:2c:47:69:63:6d: ca:4b:51:66:65:7e:82:89:cd:aa:03:3f:5b:2d:6a:bf:2f:1e: 7d:74:de:5c:ea:57:df:dd:5f:8a:d3:ac:3e:c4:8d:45:f8:4e: 27:98:61:36:1c:fd:49:0b:97:5f:0b:b2:9f:ad:33:3a:c1:d3: 98:d9:bd:64:10:92:05:e6:80:f7:96:e7:38:15:ca:d6:e8:14: d7:78:ca:ef:da:f3:46:3a:7a:ff:05:94:c2:b4:e0:dd:00:39: a3:c0:7d:ad:ab:98:38:61:b1:7e:fe:f3:53:d6:3f:c2:4f:cd: 9d:1d:a6:24:da:92:0c:99:66:5b:0d:5f:62:85:68:3b:33:59: 37:4c:99:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBNkMxMTAvBgNVBAUTKDhEMTZGRDBFMjVGQjg5NkUyNkZBNzM0QUJDOTg0Q0U0 QjQ2OThERDMwHhcNMjUwODIyMjIwMTI5WhcNMjUwODI5MjIwMTI5WjAYMRYwFAYD VQQDEw02OGE4ZThiOS04YWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqQSJoHy/CUp3r0lth1yW4ooe58Qmmyy2dW/sEO9XoSx3SddE5lWSkBcAb6j 2PhxgtJOq6RQ2ae6dEN7qve+mv9QxzpZJzuZ1MtApFBNUnz6u495XBnSXj1kvyLD XGjzcYdcB39ftjqV86dDHSYPouM+usq1cPO1wrqsv1yQNPC3mhev3OTz7l7LGeZH OP4PCg3nMuGrCtloi14yIIn6wq5CcPya5VurxBqvlhcnUJqBoKIyoXqZvyVYxRNd IQwEwG6tR4kMX8yfW7sMiX2V3jx/sUrsz3v9A+cy3WHeeTPBljNNdeS4j/ZZ+SWi lHtLPuUorN8y59zsPd9/gaVbPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKzLbdF Mi+ds2xTbJ7e8aCFU7t3MB8GA1UdIwQYMBaAFI0W/Q4l+4luJvpzSryYTOS0aY3T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUE2Qy8zQjg0OTNCNDUx QTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lXNG0tbk5LdkpoTTVMUnBq ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pSYjlEaVg3aVc0bS1uTkt2SmhNNUxScGpkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUE2Qy8zQjg0OTNCNDUxQTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lX NG0tbk5LdkpoTTVMUnBqZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt/lJQ5go9lHTqGsDFXUMiWFYcmGnwwHAwtf2SQpqqiZqNx5DH0zEI 1LjmeYRxFIEmFcq7doScsgLdM9Bt9l5H7mlLzECeTAATbgC6jEjEQUY8AWxaiN39 nglRGKjVK/cvyjXQF0VEarYEBuM5ZpYOAjzhtw70gv3/LEdpY23KS1FmZX6Cic2q Az9bLWq/Lx59dN5c6lff3V+K06w+xI1F+E4nmGE2HP1JC5dfC7KfrTM6wdOY2b1k EJIF5oD3luc4FcrW6BTXeMrv2vNGOnr/BZTCtODdADmjwH2tq5g4YbF+/vNT1j/C T82dHaYk2pIMmWZbDV9ihWg7M1k3TJnZ -----END CERTIFICATE-----Generated at Sat Aug 23 17:15:06 2025 by rpki-client