$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: k4Z470eP1l3kcLnp5aKwzIJ7fh7SO26/UeVUklvoioE= Subject key identifier: DB:ED:C8:2B:B8:84:98:72:B2:B0:5A:69:57:CE:2D:BF:E0:8F:5E:15 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 50 Signing time: Sat 23 Aug 2025 07:35:23 +0000 Manifest this update: Sat 23 Aug 2025 07:35:23 +0000 Manifest next update: Sat 30 Aug 2025 07:35:23 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: qOXlp0ASBW8yS5v3h/Wo169x91aaGxW9C9TA0bOjhYc=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Aug 23 07:35:23 2025 GMT Not After : Aug 30 07:35:23 2025 GMT Subject: CN=68a96f3b-18bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ff:42:d9:aa:cd:78:5a:58:b1:85:a5:f4:31: 49:59:9c:56:90:aa:cc:c2:f5:b5:f5:51:37:d7:50: 52:dc:31:b5:0d:45:5c:0f:b2:c7:51:c9:1b:d4:7e: 90:20:b0:c3:61:ab:c0:15:f0:f9:0e:75:36:c2:2e: 9f:1d:1a:d6:9c:3c:43:e9:d5:9e:2e:ba:26:ab:86: fa:85:d6:a0:e7:60:28:7d:a3:56:90:53:ef:9f:6f: 4c:31:55:58:c1:41:5e:ab:7d:59:73:3a:47:2c:e0: dd:94:c7:d6:64:7d:cf:ae:7e:8e:93:e8:4d:43:8f: bf:fe:28:0e:12:f2:0f:0a:7c:1b:3a:66:26:79:e2: e3:c2:64:a6:b0:7b:71:49:e5:85:9b:e9:cb:bf:31: b0:18:64:6e:0a:74:79:1d:e7:35:e4:55:47:34:97: c6:cb:28:d5:9f:48:0b:cf:cc:d0:dc:09:35:d6:b2: d9:e8:37:b8:0c:7b:c9:d7:f2:a9:e8:4b:ee:b6:f7: 07:17:5c:1d:b4:e4:87:dd:f1:08:b4:a3:97:f6:fc: a2:83:17:10:e3:4d:79:a0:74:b3:2c:6c:bc:9f:dc: 2d:e3:e2:5b:70:b9:b1:86:c7:ef:29:7f:b9:61:e5: ff:30:a1:d8:1e:f5:3c:e9:c6:9b:fd:cc:b0:9c:78: d4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:ED:C8:2B:B8:84:98:72:B2:B0:5A:69:57:CE:2D:BF:E0:8F:5E:15 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:7e:06:4e:05:37:5a:ce:89:41:ed:77:5e:06:3b:94:39:50: 63:7e:b1:64:bb:9d:58:d8:7a:42:66:29:80:c4:f3:ee:52:bf: 46:cf:8a:b7:81:08:51:a6:95:81:51:65:af:df:02:3e:8a:ec: 08:38:04:ec:fc:3f:31:23:be:3b:f4:d7:48:bf:21:ec:15:6a: 60:67:bd:86:25:cc:13:b5:f8:6a:93:27:28:1e:cb:37:d1:ac: 4f:a3:26:d8:ff:2c:00:17:c9:28:df:22:89:19:79:ae:53:21: 78:1b:4e:03:06:df:22:ef:9d:b3:e6:45:17:f2:4d:6a:e7:83: 90:81:bc:90:46:f6:0a:3b:42:95:fc:34:61:5b:d9:7b:f0:a4: 60:57:c1:a6:81:be:6b:e4:41:1e:8b:f5:2b:c3:bf:23:64:9b: ac:dd:01:30:45:f2:b9:8d:da:da:52:c5:8e:34:52:c9:70:0e: 0c:f2:84:6c:c2:32:fa:fa:f9:df:6d:e7:a7:b8:59:19:e8:58: a7:71:46:2f:79:bc:d7:81:86:03:6d:b9:3a:74:77:97:73:96: c5:87:7f:62:b1:9f:fa:0b:e0:1d:1b:07:3d:9c:54:b8:43:5f: 8e:f0:04:38:bf:eb:c2:e4:1a:84:91:cd:8e:d1:88:08:8d:58: cf:e1:c6:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTA4MjMwNzM1MjNaFw0yNTA4MzAwNzM1MjNaMBgxFjAUBgNV BAMTDTY4YTk2ZjNiLTE4YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDm/0LZqs14WlixhaX0MUlZnFaQqszC9bX1UTfXUFLcMbUNRVwPssdRyRvUfpAg sMNhq8AV8PkOdTbCLp8dGtacPEPp1Z4uuiarhvqF1qDnYCh9o1aQU++fb0wxVVjB QV6rfVlzOkcs4N2Ux9Zkfc+ufo6T6E1Dj7/+KA4S8g8KfBs6ZiZ54uPCZKawe3FJ 5YWb6cu/MbAYZG4KdHkd5zXkVUc0l8bLKNWfSAvPzNDcCTXWstnoN7gMe8nX8qno S+629wcXXB205Ifd8Qi0o5f2/KKDFxDjTXmgdLMsbLyf3C3j4ltwubGGx+8pf7lh 5f8wodge9Tzpxpv9zLCceNQHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2+3IK7iE mHKysFppV84tv+CPXhUwHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdM SHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACR+Bk4FN1rOiUHtd14GO5Q5UGN+sWS7nVjYekJmKYDE8+5Sv0bPireB CFGmlYFRZa/fAj6K7Ag4BOz8PzEjvjv010i/IewVamBnvYYlzBO1+GqTJygeyzfR rE+jJtj/LAAXySjfIokZea5TIXgbTgMG3yLvnbPmRRfyTWrng5CBvJBG9go7QpX8 NGFb2XvwpGBXwaaBvmvkQR6L9SvDvyNkm6zdATBF8rmN2tpSxY40UslwDgzyhGzC Mvr6+d9t56e4WRnoWKdxRi95vNeBhgNtuTp0d5dzlsWHf2Kxn/oL4B0bBz2cVLhD X47wBDi/68LkGoSRzY7RiAiNWM/hxjM= -----END CERTIFICATE-----Generated at Sat Aug 23 14:34:56 2025 by rpki-client