$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft File: JSwA6X56eGlZOIzyBKTH5kVYDGg.mft (raw, json) Hash identifier: F/2pLX/dmUo7HG9wZPsRLG4EZTfpRS4LFeTRFlpCww4= Subject key identifier: 11:DC:20:CC:D8:51:96:31:21:DA:ED:E8:69:F6:5E:5D:2F:E2:87:8F Authority key identifier: 25:2C:00:E9:7E:7A:78:69:59:38:8C:F2:04:A4:C7:E6:45:58:0C:68 Certificate issuer: /CN=A919DA26/serialNumber=252C00E97E7A786959388CF204A4C7E645580C68 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft Manifest number: 76 Signing time: Thu 03 Jul 2025 02:56:32 +0000 Manifest this update: Thu 03 Jul 2025 02:56:31 +0000 Manifest next update: Thu 10 Jul 2025 02:56:31 +0000 Files and hashes: 1: JSwA6X56eGlZOIzyBKTH5kVYDGg.crl (hash: rsaYGllitd1x1AbI2Ww+t6kt44hiUFrBgAL+7UJ6wyA=) 2: F17996F2B21C11EFBDB2BA25C4F9AE02.roa (hash: Ha8TSc6ylXlULsjvosE3YzdnyL+kFFYkOUZjNUZAybA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.crl rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA26, serialNumber=252C00E97E7A786959388CF204A4C7E645580C68 Validity Not Before: Jul 3 02:56:31 2025 GMT Not After : Jul 10 02:56:31 2025 GMT Subject: CN=6865f160-d18c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:70:00:0b:d4:39:44:72:07:e6:6d:36:79:5e: ee:09:41:76:5b:2a:ef:74:2a:aa:2a:9b:e2:28:12: b3:b3:9b:cb:11:45:1d:3b:ca:cf:f0:45:72:0c:bc: 9f:80:d0:6d:66:85:0b:77:46:a5:12:d0:c7:85:cd: 4f:64:02:db:1a:b4:a6:cd:3a:9b:c0:ee:af:3e:3d: a4:62:c1:b3:fb:9f:4a:fb:13:a1:56:0e:96:7c:38: 3a:c8:e0:57:27:b9:80:3c:6f:fc:3c:ec:9e:89:d4: 91:4c:7f:e2:0c:c4:e9:dd:4f:9c:a5:ab:43:1f:aa: dc:3e:5b:78:b1:62:47:f2:37:ff:c4:84:3e:c8:6a: 6e:78:82:01:57:3f:4d:84:f2:a6:e5:f0:73:33:e1: ea:c9:ba:ef:30:5c:fa:30:17:21:5e:ec:b1:b8:cb: 68:15:a2:e0:f6:55:99:25:b7:3d:db:36:d7:38:6f: 70:7e:23:68:e5:2f:46:b6:36:10:dd:4c:45:f6:1c: 63:a0:72:86:53:5a:49:ed:8e:c1:ae:86:a8:bf:c2: 8a:45:61:86:15:14:9d:1e:6d:73:ca:64:bd:7a:e0: 23:67:2e:31:54:15:4e:4d:09:6f:75:53:44:c0:14: ad:b7:d3:da:ee:00:05:7c:47:e2:7a:93:12:ab:7a: c9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DC:20:CC:D8:51:96:31:21:DA:ED:E8:69:F6:5E:5D:2F:E2:87:8F X509v3 Authority Key Identifier: keyid:25:2C:00:E9:7E:7A:78:69:59:38:8C:F2:04:A4:C7:E6:45:58:0C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:d7:c8:cf:17:1f:10:64:a7:0a:66:f9:70:24:a4:c7:57:85: 5d:be:5e:0a:90:c2:a4:6f:d5:f4:79:6c:e2:25:8d:78:86:b3: f6:9e:a2:0c:44:a9:14:02:f6:04:f2:1c:56:1e:b3:65:a0:8d: f5:25:b6:27:c0:a4:01:be:19:91:03:67:0b:7e:85:e0:08:1d: ef:7a:a8:e1:3c:ce:73:25:f8:a1:25:03:6f:cf:58:a6:56:a1: 81:fc:33:83:ab:6e:67:b3:82:d7:9b:ea:e7:fa:51:f7:20:22: 47:aa:79:aa:d4:92:1b:14:d3:6b:a8:3c:31:ba:6b:6a:b2:1f: 2a:cc:97:61:7c:cd:45:83:67:10:ec:7a:95:95:06:57:7e:57: 70:8e:ce:52:ee:cc:05:c5:34:a6:fc:c3:92:e6:b5:1b:41:9f: 58:56:72:37:e4:c3:ea:48:2f:7d:e1:9a:98:9d:cc:e7:c1:03: bf:36:b9:58:19:4c:b1:e0:18:bf:2c:b3:bc:35:21:36:c6:b2: 12:3a:e9:b5:d7:7e:d6:37:12:e8:d6:9b:82:84:69:ae:5e:73: 73:c3:e4:a3:17:ca:f5:e7:c2:b8:72:67:82:78:74:a7:de:66: 43:b7:98:35:9c:4d:d0:82:12:a3:17:49:29:ee:80:9b:16:a8: 21:3f:53:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 REEyNjExMC8GA1UEBRMoMjUyQzAwRTk3RTdBNzg2OTU5Mzg4Q0YyMDRBNEM3RTY0 NTU4MEM2ODAeFw0yNTA3MDMwMjU2MzFaFw0yNTA3MTAwMjU2MzFaMBgxFjAUBgNV BAMTDTY4NjVmMTYwLWQxOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhcAAL1DlEcgfmbTZ5Xu4JQXZbKu90Kqoqm+IoErOzm8sRRR07ys/wRXIMvJ+A 0G1mhQt3RqUS0MeFzU9kAtsatKbNOpvA7q8+PaRiwbP7n0r7E6FWDpZ8ODrI4Fcn uYA8b/w87J6J1JFMf+IMxOndT5ylq0Mfqtw+W3ixYkfyN//EhD7Iam54ggFXP02E 8qbl8HMz4erJuu8wXPowFyFe7LG4y2gVouD2VZkltz3bNtc4b3B+I2jlL0a2NhDd TEX2HGOgcoZTWkntjsGuhqi/wopFYYYVFJ0ebXPKZL164CNnLjFUFU5NCW91U0TA FK2309ruAAV8R+J6kxKresnpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEdwgzNhR ljEh2u3oafZeXS/ih48wHwYDVR0jBBgwFoAUJSwA6X56eGlZOIzyBKTH5kVYDGgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEQTI2L0Y1MTA1RTRDQTJG NzExRUZBMjM2OEY3N0M0RjlBRTAyL0pTd0E2WDU2ZUdsWk9JenlCS1RINWtWWURH Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSlN3QTZYNTZlR2xaT0l6eUJLVEg1a1ZZREdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE QTI2L0Y1MTA1RTRDQTJGNzExRUZBMjM2OEY3N0M0RjlBRTAyL0pTd0E2WDU2ZUds Wk9JenlCS1RINWtWWURHZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGbXyM8XHxBkpwpm+XAkpMdXhV2+XgqQwqRv1fR5bOIljXiGs/aeogxE qRQC9gTyHFYes2WgjfUltifApAG+GZEDZwt+heAIHe96qOE8znMl+KElA2/PWKZW oYH8M4Orbmezgteb6uf6UfcgIkeqearUkhsU02uoPDG6a2qyHyrMl2F8zUWDZxDs epWVBld+V3COzlLuzAXFNKb8w5LmtRtBn1hWcjfkw+pIL33hmpidzOfBA782uVgZ TLHgGL8ss7w1ITbGshI66bXXftY3EujWm4KEaa5ec3PD5KMXyvXnwrhyZ4J4dKfe ZkO3mDWcTdCCEqMXSSnugJsWqCE/U50= -----END CERTIFICATE-----Generated at Fri Jul 4 17:56:32 2025 by rpki-client