$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft File: JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft (raw, json) Hash identifier: cl72hg+fmj/mVZOhDZ25vfuCWtVIzyOt17oRfmR3Yuk= Subject key identifier: D3:63:E4:B5:71:BD:9F:3E:AD:12:9C:36:5F:BF:D4:BB:44:D1:A9:FD Authority key identifier: 24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA Certificate issuer: /CN=A91AC73E/serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Certificate serial: 04CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft Manifest number: 04C8 Signing time: Tue 01 Jul 2025 00:20:10 +0000 Manifest this update: Tue 01 Jul 2025 00:20:09 +0000 Manifest next update: Tue 08 Jul 2025 00:20:09 +0000 Files and hashes: 1: JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl (hash: kQgykhmONqgxmVE2WTWk6+qlK3j39mGlG94g1FN40gM=) 2: 020CA7B24E4C11EC8045E71EC4F9AE02.roa (hash: tyZWDAn9bcgruEQUmKMpj2KMCjpkdyP72IeeYTIEOW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC73E, serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Validity Not Before: Jul 1 00:20:09 2025 GMT Not After : Jul 8 00:20:09 2025 GMT Subject: CN=686329ba-4543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1a:e4:9c:58:4f:3b:a9:34:2d:f6:ff:90:fd: af:da:32:89:f5:70:c8:29:d4:ad:aa:19:8c:df:df: df:47:23:78:1f:dd:cb:8e:09:f8:f9:b6:e5:f5:0b: c8:1d:2d:d7:d9:67:21:8f:7d:a7:36:a0:f0:d3:e2: 5f:2a:92:e3:2c:c2:15:4d:cb:7c:fd:53:13:09:c8: 75:8b:84:96:18:1e:4f:ed:27:40:d9:82:78:9d:6e: 61:5d:44:4e:8c:6f:73:87:32:98:c2:ec:da:e5:f8: 3b:30:fc:45:1d:06:47:22:6a:71:88:e5:1d:6c:3e: 82:43:5a:74:76:cd:10:54:d2:3f:d3:cb:a3:a6:95: 17:84:64:0d:97:04:a3:b9:b4:25:d5:b4:34:09:8f: 41:24:95:17:0a:c5:6d:5b:da:fd:87:60:d8:2b:5e: de:47:3e:b1:df:cc:78:3e:7c:45:02:d8:2b:54:d6: d5:1c:61:fd:20:9b:bb:43:48:96:13:bc:65:bf:13: 6e:37:82:94:5d:00:be:8d:1a:01:ab:62:cf:d3:0b: c1:0d:76:32:ab:3d:92:40:f5:ec:88:cf:5a:75:cf: 88:c6:3c:57:af:48:0c:80:ec:cc:8e:37:a4:bf:3a: b3:d9:64:11:f8:43:75:00:7c:24:2f:95:4c:72:dd: 20:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:63:E4:B5:71:BD:9F:3E:AD:12:9C:36:5F:BF:D4:BB:44:D1:A9:FD X509v3 Authority Key Identifier: keyid:24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:1d:4f:a6:aa:ef:d2:84:d2:99:23:5f:6c:cb:eb:16:66:9b: ae:c8:da:70:78:0a:4a:40:f4:06:2f:23:5a:e3:77:ae:d7:62: 35:99:91:bd:63:83:c3:8b:f1:88:a6:1c:6b:2b:36:09:01:31: ff:4f:86:ba:52:63:46:94:55:88:a3:d8:c5:f8:93:dc:78:df: a2:cd:bb:a8:67:62:92:ab:99:7a:a0:5e:0f:eb:f0:a1:c8:c6: 95:14:63:42:74:f6:9b:8f:ee:04:87:fb:c8:f9:e9:d4:08:61: 81:73:c9:11:9f:f5:4e:8e:02:47:5d:3e:d8:f9:e9:90:fc:73: d6:ae:73:3e:08:89:b9:5c:e0:97:a6:90:ba:7c:44:65:14:11: 4d:31:5c:77:0a:6a:5c:29:0f:40:45:05:8b:57:74:cb:2f:4f: 32:0b:6f:11:56:8b:a4:d6:be:53:94:b5:08:30:fc:26:f0:21: 2a:df:46:c6:4e:70:8d:a3:96:24:8c:76:62:38:3e:04:71:64: 23:d4:a3:e7:dd:f7:c9:bd:41:c9:b1:38:76:49:78:4f:93:01: 4a:d4:6f:63:fe:02:99:b1:94:25:81:cb:81:70:0f:c0:8d:2e: 3e:04:66:2f:ff:f4:88:1e:6d:62:1f:2b:3b:7b:d2:c6:4f:17: ef:cd:db:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3M0UxMTAvBgNVBAUTKDI0M0YyRDQ0NzI3RjFEMUI4MDc5RjQwMTRGNjlGNEEw NzREMUYxRUEwHhcNMjUwNzAxMDAyMDA5WhcNMjUwNzA4MDAyMDA5WjAYMRYwFAYD VQQDEw02ODYzMjliYS00NTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRrknFhPO6k0Lfb/kP2v2jKJ9XDIKdStqhmM39/fRyN4H93Ljgn4+bbl9QvI HS3X2Wchj32nNqDw0+JfKpLjLMIVTct8/VMTCch1i4SWGB5P7SdA2YJ4nW5hXURO jG9zhzKYwuza5fg7MPxFHQZHImpxiOUdbD6CQ1p0ds0QVNI/08ujppUXhGQNlwSj ubQl1bQ0CY9BJJUXCsVtW9r9h2DYK17eRz6x38x4PnxFAtgrVNbVHGH9IJu7Q0iW E7xlvxNuN4KUXQC+jRoBq2LP0wvBDXYyqz2SQPXsiM9adc+IxjxXr0gMgOzMjjek vzqz2WQR+EN1AHwkL5VMct0gdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNj5LVx vZ8+rRKcNl+/1LtE0an9MB8GA1UdIwQYMBaAFCQ/LURyfx0bgHn0AU9p9KB00fHq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzczRS80NDU1NDU2MjJD OTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hSdUFlZlFCVDJuMG9IVFI4 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEOHRSSEpfSFJ1QWVmUUJUMm4wb0hUUjhlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzczRS80NDU1NDU2MjJDOTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hS dUFlZlFCVDJuMG9IVFI4ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmHU+mqu/ShNKZI19sy+sWZpuuyNpweApKQPQGLyNa43eu12I1mZG9 Y4PDi/GIphxrKzYJATH/T4a6UmNGlFWIo9jF+JPceN+izbuoZ2KSq5l6oF4P6/Ch yMaVFGNCdPabj+4Eh/vI+enUCGGBc8kRn/VOjgJHXT7Y+emQ/HPWrnM+CIm5XOCX ppC6fERlFBFNMVx3CmpcKQ9ARQWLV3TLL08yC28RVouk1r5TlLUIMPwm8CEq30bG TnCNo5YkjHZiOD4EcWQj1KPn3ffJvUHJsTh2SXhPkwFK1G9j/gKZsZQlgcuBcA/A jS4+BGYv//SIHm1iHys7e9LGTxfvzdt7 -----END CERTIFICATE-----Generated at Wed Jul 2 19:19:29 2025 by rpki-client