$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: NnYqmcFWdm9GjHUy0XVUumE8h4KnUOX5QDBi48xzNKA= Subject key identifier: F6:A1:25:26:05:59:85:C8:30:AE:CB:50:DA:2A:E1:8E:C5:7C:56:EA Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: 77 Signing time: Fri 22 Aug 2025 16:11:19 +0000 Manifest this update: Fri 22 Aug 2025 16:11:19 +0000 Manifest next update: Fri 29 Aug 2025 16:11:19 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: BzzyblnglwnkF1f+Wq2XIJ7XyCTZCp8vfAT9jRM9V3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Aug 22 16:11:19 2025 GMT Not After : Aug 29 16:11:19 2025 GMT Subject: CN=68a896a7-3781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0a:9c:61:d0:f6:2f:ca:1c:5b:f2:3e:73:63: 9b:57:a2:0b:f3:74:a6:1a:d8:ec:83:ba:5d:ee:63: 38:da:9b:1b:00:36:f1:cf:29:5d:64:f8:3f:35:79: 28:22:69:6d:20:93:6a:5d:68:f8:5c:b4:0e:66:c4: 17:1d:9e:f4:2d:6c:ad:78:c6:9e:d6:13:53:2b:b0: 58:77:b9:ef:e3:a9:db:9f:cc:b9:d0:99:4a:c8:53: 6c:23:cb:9d:57:30:62:ac:41:02:b8:2f:57:ca:5b: bf:83:eb:77:2a:71:c7:f8:fe:42:1e:65:90:ff:57: 94:7c:66:90:41:f1:ef:8d:3f:f8:8f:29:a4:9b:25: fb:5d:83:a3:b0:48:f5:68:01:67:70:f3:80:c8:2e: 3c:44:b9:8c:8e:02:fe:55:67:f2:5c:ca:b9:00:38: d4:62:4c:42:03:3c:5c:d7:b1:e6:f0:49:39:d1:95: b9:28:04:10:0d:2b:0e:c8:c3:5f:93:d9:32:63:b1: b6:32:ca:0e:5a:7d:63:e4:13:b8:d2:d9:17:c2:62: 25:76:3e:94:ae:92:58:d3:94:7f:a1:db:8a:bd:d4: 8d:65:f7:13:55:7f:9a:49:5e:a1:7b:b7:45:24:54: cb:87:c1:91:7a:bb:00:a9:ac:44:8a:02:13:70:14: bd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A1:25:26:05:59:85:C8:30:AE:CB:50:DA:2A:E1:8E:C5:7C:56:EA X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:98:55:86:99:52:44:64:e5:be:a5:f4:b5:35:6e:b7:97:8b: 05:3e:df:18:3c:0d:9c:bb:91:f9:d6:76:b3:b8:2a:12:ab:73: 4d:4d:28:72:d6:5c:6f:d9:9a:b2:c4:a6:87:08:70:1f:ae:40: 66:21:a9:18:41:fc:51:d1:47:e4:d5:2c:b8:0d:fc:46:de:e5: b7:dc:21:da:b1:ab:fb:de:b9:64:90:ef:b8:ef:52:91:49:93: ef:ed:46:98:fb:c4:ff:43:c2:79:b9:05:21:9a:5c:e0:85:f0: 97:f1:bc:ae:1a:74:e9:47:7c:1c:01:10:c8:32:0b:6f:9d:96: 21:99:eb:83:1f:c7:94:3b:a4:f4:a2:f1:3a:b6:64:75:b1:cf: 7e:d9:eb:5c:78:1e:0f:1b:4a:6b:96:0f:6c:6c:da:99:f0:7a: da:5f:2f:e0:6c:a1:74:54:18:7e:56:c7:a3:1b:3d:d7:4c:41: 11:14:2e:12:2b:b6:35:8f:aa:2a:3c:c6:ac:64:17:4a:4d:64: 10:5c:62:a9:db:82:7c:5d:f4:ea:f6:dd:ac:8f:e5:1c:8f:6d: c0:e1:1e:d0:8a:2a:14:88:51:23:c6:6b:01:4c:e9:14:36:89: 3a:8a:d5:6d:a2:3c:9c:da:33:5c:4b:11:6d:d3:41:15:88:c1: f1:3c:0a:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTA5ODExMC8GA1UEBRMoNDQ5NTE3M0JEMkMyOTM4REUzMDY3N0NGRERFNzNDRDMx QjhBMjY3NjAeFw0yNTA4MjIxNjExMTlaFw0yNTA4MjkxNjExMTlaMBgxFjAUBgNV BAMTDTY4YTg5NmE3LTM3ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2Cpxh0PYvyhxb8j5zY5tXogvzdKYa2OyDul3uYzjamxsANvHPKV1k+D81eSgi aW0gk2pdaPhctA5mxBcdnvQtbK14xp7WE1MrsFh3ue/jqdufzLnQmUrIU2wjy51X MGKsQQK4L1fKW7+D63cqccf4/kIeZZD/V5R8ZpBB8e+NP/iPKaSbJftdg6OwSPVo AWdw84DILjxEuYyOAv5VZ/JcyrkAONRiTEIDPFzXsebwSTnRlbkoBBANKw7Iw1+T 2TJjsbYyyg5afWPkE7jS2RfCYiV2PpSukljTlH+h24q91I1l9xNVf5pJXqF7t0Uk VMuHwZF6uwCprESKAhNwFL3LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9qElJgVZ hcgwrstQ2irhjsV8VuowHwYDVR0jBBgwFoAURJUXO9LCk43jBnfP3ec80xuKJnYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MDk4LzIyMEIxNzI4Q0JD MjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0pu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkpVWE85TENrNDNqQm5mUDNlYzgweHVLSm5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MDk4LzIyMEIxNzI4Q0JDMjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQz akJuZlAzZWM4MHh1S0puWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHOYVYaZUkRk5b6l9LU1breXiwU+3xg8DZy7kfnWdrO4KhKrc01NKHLW XG/ZmrLEpocIcB+uQGYhqRhB/FHRR+TVLLgN/Ebe5bfcIdqxq/veuWSQ77jvUpFJ k+/tRpj7xP9Dwnm5BSGaXOCF8JfxvK4adOlHfBwBEMgyC2+dliGZ64Mfx5Q7pPSi 8Tq2ZHWxz37Z61x4Hg8bSmuWD2xs2pnwetpfL+BsoXRUGH5Wx6MbPddMQREULhIr tjWPqio8xqxkF0pNZBBcYqnbgnxd9Or23ayP5RyPbcDhHtCKKhSIUSPGawFM6RQ2 iTqK1W2iPJzaM1xLEW3TQRWIwfE8ClU= -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:24 2025 by rpki-client