$ rpki-client -vvf rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft File: j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft (raw, json) Hash identifier: YFWuQjiPJvgh5Za9VFw+BMF4kkcmUX24/q9WPv46a4A= Subject key identifier: BE:D2:DF:92:14:BE:05:DA:00:FF:9E:47:8B:A4:6F:69:A9:1F:30:F9 Authority key identifier: 8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 Certificate issuer: /CN=A91644A4/serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Certificate serial: 02B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft Manifest number: 02AA Signing time: Tue 01 Jul 2025 02:10:42 +0000 Manifest this update: Tue 01 Jul 2025 02:10:41 +0000 Manifest next update: Tue 08 Jul 2025 02:10:41 +0000 Files and hashes: 1: j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl (hash: HrOu6ibDK9IjQK8ui1vYApJHuXzQDV+cTGfJDTJBSNk=) 2: 3B501252140811EDBF3D2F27C4F9AE02.roa (hash: UP0rzzGm1RNNAwSNVW6RQ9A/3hrn3jElJIPxPVvX0ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91644A4, serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Validity Not Before: Jul 1 02:10:41 2025 GMT Not After : Jul 8 02:10:41 2025 GMT Subject: CN=686343a2-3564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:e2:20:23:7e:95:38:5a:48:ad:0b:31:f0: 16:97:d1:57:1a:52:c9:cb:5c:37:f6:49:60:ee:7c: c6:40:3f:7f:6d:32:74:44:55:a2:33:c1:3c:5e:6a: dc:7c:02:88:a1:27:46:9c:4c:73:7d:2a:f7:6f:c5: 9b:79:bf:5b:97:02:0b:dd:c0:8b:69:44:4a:29:f8: 6a:6c:c3:41:6f:c8:e4:a4:23:96:fc:f0:f7:d7:b5: 8f:7a:1f:e9:de:b1:94:55:ef:c9:da:74:a7:2d:55: f9:de:74:1b:b2:51:66:cb:26:b3:23:28:d8:d9:ed: 7e:5f:b0:3e:f7:e0:4b:d3:65:b7:98:2e:d2:f4:c1: 6d:27:d2:cb:b6:62:8c:53:ab:03:ae:2e:bc:d1:8a: a9:59:92:e1:75:31:a3:88:96:43:f0:74:1c:fe:c0: 9f:07:bc:28:e9:72:f3:4b:78:92:1c:27:05:c8:a5: 8f:7e:cf:4e:c1:4b:0c:3e:0a:68:c9:e0:a0:ca:a6: fa:7e:f3:30:a2:e0:cd:fb:5c:3a:1c:3c:60:35:78: bc:c7:64:1b:e1:1c:ab:77:8f:af:59:02:42:2e:06: b7:6c:45:22:8b:e5:05:41:10:96:79:d7:a8:37:cf: f9:6b:41:03:a3:fd:88:80:04:ec:07:83:4b:49:12: 50:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D2:DF:92:14:BE:05:DA:00:FF:9E:47:8B:A4:6F:69:A9:1F:30:F9 X509v3 Authority Key Identifier: keyid:8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:56:82:a2:6c:29:43:f8:ca:c3:6e:1d:66:1a:83:f5:64:c0: b2:5f:cf:0f:2f:2c:a0:58:49:e9:dd:f9:7a:4d:ee:3f:96:e8: 4c:12:aa:9b:22:11:7c:db:45:ec:bf:8e:20:d0:d3:16:cf:1b: 00:7a:3e:77:60:de:1f:15:79:39:fb:4a:a6:b0:0c:fb:6c:50: bd:48:51:7e:16:ce:ce:a5:e3:e3:f2:b4:c2:d3:b4:42:c8:b0: 82:b9:38:0e:e2:44:87:b6:11:4d:2a:68:42:fc:5b:90:e3:23: 40:53:05:2d:06:49:3e:c4:71:16:0a:40:79:3e:b4:66:df:b8: 79:48:93:58:0b:fe:f9:99:06:82:60:93:88:8c:03:11:51:63: 07:73:bb:03:c4:3e:69:4f:87:f1:b4:6b:28:5f:6a:5e:ac:fe: b1:af:4d:d6:6a:d0:cb:35:47:f3:e5:a1:fd:5a:9f:6d:14:71: b6:93:b3:2d:01:dd:bd:aa:cf:af:44:ad:7d:82:c1:bc:ce:06: 50:4f:e5:a1:8f:2e:9f:cb:56:46:f6:2d:d6:f3:af:b7:16:89: 97:b6:25:3d:25:39:5b:7f:b8:35:72:b9:2b:ac:60:26:c8:58: 91:82:da:b4:d8:99:b2:1d:16:59:56:19:d3:15:94:b6:43:7c: 0c:e4:f3:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ0QTQxMTAvBgNVBAUTKDhGQzY2MUExOTMzMkFFODY0QkM4NzkwMDc0NERBMzM3 RjlBNzAwQTkwHhcNMjUwNzAxMDIxMDQxWhcNMjUwNzA4MDIxMDQxWjAYMRYwFAYD VQQDEw02ODYzNDNhMi0zNTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVniICN+lThaSK0LMfAWl9FXGlLJy1w39klg7nzGQD9/bTJ0RFWiM8E8Xmrc fAKIoSdGnExzfSr3b8Wbeb9blwIL3cCLaURKKfhqbMNBb8jkpCOW/PD317WPeh/p 3rGUVe/J2nSnLVX53nQbslFmyyazIyjY2e1+X7A+9+BL02W3mC7S9MFtJ9LLtmKM U6sDri680YqpWZLhdTGjiJZD8HQc/sCfB7wo6XLzS3iSHCcFyKWPfs9OwUsMPgpo yeCgyqb6fvMwouDN+1w6HDxgNXi8x2Qb4Ryrd4+vWQJCLga3bEUii+UFQRCWedeo N8/5a0EDo/2IgATsB4NLSRJQGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7S35IU vgXaAP+eR4ukb2mpHzD5MB8GA1UdIwQYMBaAFI/GYaGTMq6GS8h5AHRNozf5pwCp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDRBNC8yRDIzQTRDQzAy MDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJvWkx5SGtBZEUyak5fbW5B S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4WmhvWk15cm9aTHlIa0FkRTJqTl9tbkFLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDRBNC8yRDIzQTRDQzAyMDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJv Wkx5SGtBZEUyak5fbW5BS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuVoKibClD+MrDbh1mGoP1ZMCyX88PLyygWEnp3fl6Te4/luhMEqqb IhF820Xsv44g0NMWzxsAej53YN4fFXk5+0qmsAz7bFC9SFF+Fs7OpePj8rTC07RC yLCCuTgO4kSHthFNKmhC/FuQ4yNAUwUtBkk+xHEWCkB5PrRm37h5SJNYC/75mQaC YJOIjAMRUWMHc7sDxD5pT4fxtGsoX2perP6xr03WatDLNUfz5aH9Wp9tFHG2k7Mt Ad29qs+vRK19gsG8zgZQT+Whjy6fy1ZG9i3W86+3FomXtiU9JTlbf7g1crkrrGAm yFiRgtq02JmyHRZZVhnTFZS2Q3wM5PMQ -----END CERTIFICATE-----Generated at Wed Jul 2 06:52:31 2025 by rpki-client