$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: B9TBAqrDl8Ctno66tlBSmt98nyGo9s0PgYeIljgRl3g= Subject key identifier: 70:55:E8:04:05:1A:5F:09:59:4B:AC:8B:2F:2D:8D:BD:A0:F2:0D:FC Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 0691 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 068F Signing time: Fri 22 Aug 2025 22:25:33 +0000 Manifest this update: Fri 22 Aug 2025 22:25:32 +0000 Manifest next update: Fri 29 Aug 2025 22:25:32 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: 4rE3jQRlTy9aT93suKFasX87vksYBCMa9TTQdgNyVTM=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: ukg+6KCGHkrsTy11bBIK1xYhpVPUVwZenM7mxd/8rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:25:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: Aug 22 22:25:32 2025 GMT Not After : Aug 29 22:25:32 2025 GMT Subject: CN=68a8ee5d-fa3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ad:25:d7:4f:23:d0:df:0c:53:5a:1a:f4:0e: c9:27:dd:88:15:8f:d5:05:aa:51:a4:85:05:51:ac: e1:e1:a9:53:13:f5:4e:2b:c4:91:2e:97:a0:1a:bf: 47:07:93:ee:a7:a4:54:1a:34:e0:72:c3:29:df:61: 8f:61:1b:81:37:95:ff:be:27:51:e3:71:0d:c7:b5: 1b:a8:05:76:9b:3a:b8:4d:32:0e:1f:50:e3:a4:5a: ff:f1:8b:65:3e:78:b8:6e:84:d7:01:cd:67:db:e0: d5:36:df:4c:cd:74:7b:a9:d1:80:68:ac:8a:94:4e: 64:38:93:10:43:d0:c7:26:47:92:61:4e:fb:e5:d4: fc:7a:fe:b9:7b:aa:33:22:b4:05:0d:8e:30:94:bc: 2d:30:c0:80:39:43:b4:58:ba:7c:da:86:03:01:02: c2:f8:e7:64:ed:dc:92:c8:81:76:6a:da:08:b1:46: 01:40:21:cd:61:e1:7f:07:4d:9d:31:2b:a5:7e:bb: bb:eb:73:43:03:fd:21:4a:4b:17:a6:b6:10:e2:d3: a8:82:8d:e3:b7:b4:0b:27:14:c8:f6:ac:73:e6:0c: 0d:ae:3a:9a:84:ca:d5:c2:fd:ef:ee:75:15:ee:a8: fe:85:5a:3b:37:ce:0a:47:0c:cf:b8:7d:24:54:4a: 78:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:55:E8:04:05:1A:5F:09:59:4B:AC:8B:2F:2D:8D:BD:A0:F2:0D:FC X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:bf:e8:9e:d1:3b:78:50:e1:7e:11:de:c0:4e:7b:93:a3:7c: 03:82:0f:b5:36:b1:b2:35:50:b9:ea:5e:20:eb:75:9a:98:6c: 81:ba:08:a7:cf:d2:02:5c:c2:3d:70:92:18:29:80:69:ad:53: 20:4d:82:d6:af:8b:81:0b:82:dc:64:f3:1d:d2:8b:17:97:08: 3b:04:26:6f:34:4e:9c:2a:97:7a:65:ea:2a:db:5c:63:ea:1e: a9:5b:77:95:bd:df:6c:2d:e4:a0:3c:b2:c1:fa:5b:08:7e:63: 97:16:56:17:5e:21:55:c4:9e:43:b0:c5:51:9a:d3:e8:0d:9e: 0a:b1:3c:0a:d9:8a:a2:cf:64:0e:85:d7:29:bc:5b:73:94:0d: 52:b0:a6:c3:29:b5:ef:12:52:29:05:78:c8:9e:e3:54:5a:70: f4:3a:96:6c:fc:f8:b0:6f:3c:f5:fc:32:a4:eb:80:89:cf:35: ab:8d:20:0b:ae:83:fd:4a:78:35:98:d6:ea:a6:b8:83:9b:cc: 54:a6:4c:ed:3d:d5:79:83:0c:a9:02:89:7e:20:5e:f1:ee:32: 66:5f:0a:0e:e5:cf:bf:08:32:91:82:e9:c8:71:7d:63:f7:75: d6:1a:a1:82:ac:26:b8:e4:a1:10:4e:1a:08:c4:db:a0:8f:77: 6b:97:8b:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjUwODIyMjIyNTMyWhcNMjUwODI5MjIyNTMyWjAYMRYwFAYD VQQDEw02OGE4ZWU1ZC1mYTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa0l108j0N8MU1oa9A7JJ92IFY/VBapRpIUFUazh4alTE/VOK8SRLpegGr9H B5Pup6RUGjTgcsMp32GPYRuBN5X/vidR43ENx7UbqAV2mzq4TTIOH1DjpFr/8Ytl Pni4boTXAc1n2+DVNt9MzXR7qdGAaKyKlE5kOJMQQ9DHJkeSYU775dT8ev65e6oz IrQFDY4wlLwtMMCAOUO0WLp82oYDAQLC+Odk7dySyIF2atoIsUYBQCHNYeF/B02d MSulfru763NDA/0hSksXprYQ4tOogo3jt7QLJxTI9qxz5gwNrjqahMrVwv3v7nUV 7qj+hVo7N84KRwzPuH0kVEp4wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBV6AQF Gl8JWUusiy8tjb2g8g38MB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCv+ie0Tt4UOF+Ed7ATnuTo3wDgg+1NrGyNVC56l4g63WamGyBugin z9ICXMI9cJIYKYBprVMgTYLWr4uBC4LcZPMd0osXlwg7BCZvNE6cKpd6Zeoq21xj 6h6pW3eVvd9sLeSgPLLB+lsIfmOXFlYXXiFVxJ5DsMVRmtPoDZ4KsTwK2Yqiz2QO hdcpvFtzlA1SsKbDKbXvElIpBXjInuNUWnD0OpZs/Piwbzz1/DKk64CJzzWrjSAL roP9Sng1mNbqpriDm8xUpkztPdV5gwypAol+IF7x7jJmXwoO5c+/CDKRgunIcX1j 93XWGqGCrCa45KEQThoIxNugj3drl4vo -----END CERTIFICATE-----Generated at Sun Aug 24 05:15:45 2025 by rpki-client