$ rpki-client -vvf rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft File: jZoijMUvgA7lpDIwezQyxj2KnYc.mft (raw, json) Hash identifier: 4wldZEBdd/Rr6zQvTYZdLQBm+trksk56L4J68/Twlsw= Subject key identifier: F4:65:B8:C7:4E:28:70:F7:73:3B:BA:9F:3C:66:E0:0C:99:C4:F5:D5 Authority key identifier: 8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 Certificate issuer: /CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Certificate serial: 1BE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft Manifest number: 1BDA Signing time: Fri 04 Jul 2025 16:28:19 +0000 Manifest this update: Fri 04 Jul 2025 16:28:19 +0000 Manifest next update: Fri 11 Jul 2025 16:28:19 +0000 Files and hashes: 1: jZoijMUvgA7lpDIwezQyxj2KnYc.crl (hash: CcnT0EOGgy9V6neuCZgSFe6xESCeYXK8RqpR/04+hyg=) 2: 1D88BC36F8C711E6B6C42C6CC4F9AE02.roa (hash: adZvd/ecrn/69jFBmaF8532OMU/h1NSuA6iJnPKo2nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7140 (0x1be4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FDBF, serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Validity Not Before: Jul 4 16:28:19 2025 GMT Not After : Jul 11 16:28:19 2025 GMT Subject: CN=68680123-130b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5d:b1:de:cf:36:89:d5:0d:72:d5:58:20:60: 9c:80:f3:9b:4f:56:f2:f1:57:48:6d:99:45:86:9f: 3e:28:79:2b:ba:e0:80:0e:aa:b7:5b:26:4c:0c:85: be:f9:08:6f:ab:bb:ee:3b:c2:97:12:11:c7:4e:be: 7b:da:dc:7e:5c:c9:95:98:14:48:75:25:8e:7c:04: b3:cb:eb:5d:20:c1:81:ea:70:97:28:6c:42:37:11: 3d:38:95:1f:b1:48:c7:0e:cf:ef:75:19:cb:0f:4e: b4:2f:c3:d4:3e:a9:a4:73:89:17:4b:40:b2:b6:89: 1a:6c:bc:d7:8f:a2:a9:05:9c:87:8a:6c:54:f4:23: b5:cd:37:89:a4:21:fc:bf:a0:ec:57:27:14:7c:c7: 0b:c0:bf:22:69:5c:5c:44:d7:10:b8:fe:b9:a0:c0: b2:44:9e:9a:07:79:c5:76:3b:22:cf:59:c3:15:67: 53:87:a9:31:3e:b2:33:f5:c3:3c:0f:73:6d:df:b8: 44:cc:ab:e3:c5:9a:3a:2e:37:9c:40:66:d8:77:61: ad:7f:f0:44:f7:a0:b3:fb:1f:70:b0:c8:75:52:30: dd:ff:ee:f6:c0:82:d2:48:d3:7d:f9:25:60:9e:8a: c6:95:0a:63:65:37:e5:63:85:57:e8:9b:61:2d:38: e2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:65:B8:C7:4E:28:70:F7:73:3B:BA:9F:3C:66:E0:0C:99:C4:F5:D5 X509v3 Authority Key Identifier: keyid:8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:8e:f9:78:78:6d:5a:eb:4e:ab:46:47:51:c5:17:8f:f9:3c: ad:7a:e3:de:17:a4:64:e3:07:1b:0b:84:54:98:f0:32:4e:76: 28:49:50:f6:8d:b6:3a:28:55:20:1b:3f:01:0a:5d:7a:9a:fd: 04:0a:62:d3:71:c9:45:03:25:c5:e7:14:0f:0d:a3:af:ac:9f: ff:a6:70:d0:73:87:f6:cd:fd:de:3b:d9:96:a5:96:cf:97:62: 69:82:61:cb:7f:0e:74:a7:5a:1a:b5:31:7d:0d:7e:82:81:81: 2e:1d:a2:49:b7:ec:cb:ab:59:fd:49:9b:4e:cf:55:b3:4b:0b: a5:25:1d:09:b1:08:f9:fd:94:89:de:3f:20:68:d3:02:c9:de: 92:72:9d:c6:37:42:5a:a1:5f:f9:d5:bd:ae:4a:6c:87:e5:66: 54:da:1d:11:a2:57:51:b8:0a:80:03:73:e9:ca:ac:3d:e9:d7: af:bd:45:10:e0:bd:02:e7:66:bc:95:0f:df:8a:f4:9a:67:fb: e2:26:9d:04:2b:33:a3:0b:66:5a:5b:aa:55:b2:a0:2f:0f:9e: c8:4f:7c:9c:53:99:cf:fc:27:1b:d0:ff:14:76:d2:2f:c2:75: f1:ed:3d:3c:87:f7:ba:76:e9:b7:e7:6f:51:95:1d:28:44:f1: 82:73:49:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEQkYxMTAvBgNVBAUTKDhEOUEyMjhDQzUyRjgwMEVFNUE0MzIzMDdCMzQzMkM2 M0Q4QTlEODcwHhcNMjUwNzA0MTYyODE5WhcNMjUwNzExMTYyODE5WjAYMRYwFAYD VQQDEw02ODY4MDEyMy0xMzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAul2x3s82idUNctVYIGCcgPObT1by8VdIbZlFhp8+KHkruuCADqq3WyZMDIW+ +Qhvq7vuO8KXEhHHTr572tx+XMmVmBRIdSWOfASzy+tdIMGB6nCXKGxCNxE9OJUf sUjHDs/vdRnLD060L8PUPqmkc4kXS0CytokabLzXj6KpBZyHimxU9CO1zTeJpCH8 v6DsVycUfMcLwL8iaVxcRNcQuP65oMCyRJ6aB3nFdjsiz1nDFWdTh6kxPrIz9cM8 D3Nt37hEzKvjxZo6LjecQGbYd2Gtf/BE96Cz+x9wsMh1UjDd/+72wILSSNN9+SVg norGlQpjZTflY4VX6JthLTjiRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRluMdO KHD3czu6nzxm4AyZxPXVMB8GA1UdIwQYMBaAFI2aIozFL4AO5aQyMHs0MsY9ip2H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkRCRi85OUEzMEFGOEY4 QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdBN2xwREl3ZXpReXhqMktu WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pab2lqTVV2Z0E3bHBESXdlelF5eGoyS25ZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkRCRi85OUEzMEFGOEY4QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdB N2xwREl3ZXpReXhqMktuWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjjvl4eG1a606rRkdRxReP+TyteuPeF6Rk4wcbC4RUmPAyTnYoSVD2 jbY6KFUgGz8BCl16mv0ECmLTcclFAyXF5xQPDaOvrJ//pnDQc4f2zf3eO9mWpZbP l2JpgmHLfw50p1oatTF9DX6CgYEuHaJJt+zLq1n9SZtOz1WzSwulJR0JsQj5/ZSJ 3j8gaNMCyd6Scp3GN0JaoV/51b2uSmyH5WZU2h0RoldRuAqAA3Ppyqw96devvUUQ 4L0C52a8lQ/fivSaZ/viJp0EKzOjC2ZaW6pVsqAvD57IT3ycU5nP/Ccb0P8UdtIv wnXx7T08h/e6dum3529RlR0oRPGCc0lu -----END CERTIFICATE-----Generated at Sun Jul 6 00:01:10 2025 by rpki-client