$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft File: JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft (raw, json) Hash identifier: ujrxtCsQr7uFNVSCaRZLYRk1ECFKXiwBAx1akni+mEg= Subject key identifier: AB:CB:53:27:84:CD:DF:E2:A7:84:EA:B7:31:B3:4D:58:90:CE:63:90 Authority key identifier: 24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA Certificate issuer: /CN=A91AC73E/serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Certificate serial: 04EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft Manifest number: 04E3 Signing time: Fri 22 Aug 2025 23:57:04 +0000 Manifest this update: Fri 22 Aug 2025 23:57:03 +0000 Manifest next update: Fri 29 Aug 2025 23:57:03 +0000 Files and hashes: 1: JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl (hash: /PA8/GSDxdhitWtc5ZQAZw34UaiLiSzDhcY0///efyE=) 2: 020CA7B24E4C11EC8045E71EC4F9AE02.roa (hash: tyZWDAn9bcgruEQUmKMpj2KMCjpkdyP72IeeYTIEOW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC73E, serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Validity Not Before: Aug 22 23:57:03 2025 GMT Not After : Aug 29 23:57:03 2025 GMT Subject: CN=68a903cf-d6bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:69:92:bb:2e:22:45:18:92:57:f2:24:6b:c8: aa:9b:69:c1:bb:12:c5:4b:6e:42:ae:53:d2:82:d7: 37:5d:a6:6c:4e:f3:80:5e:26:11:11:a1:05:13:72: c0:89:0d:e4:3f:62:1e:51:1b:2b:5f:c4:a7:ad:a0: 8b:89:aa:59:f3:9e:55:b1:30:3b:da:e4:80:55:47: d7:2e:0a:c2:e1:09:3e:45:40:6f:69:ff:72:38:26: cb:59:72:61:8c:6a:52:fd:0e:8a:a1:0e:8f:01:00: 03:ae:a4:1e:48:37:9b:ae:4b:40:dd:4f:fb:92:39: 18:93:6e:d4:15:ed:3d:3d:5e:cb:8e:d5:9b:36:1d: 92:86:3d:47:b9:ea:43:83:a8:04:31:13:11:5e:87: 2b:f3:a5:9d:0c:bd:a6:71:09:eb:cf:87:5e:26:95: 4b:92:84:f8:be:b1:37:07:be:ae:4d:4b:ea:90:f2: 96:a3:e9:dd:b5:dd:cc:7c:53:83:c1:18:69:e8:59: ae:94:06:90:4e:77:4c:3d:64:55:fe:f7:d3:21:90: 9e:64:0d:f1:85:43:a7:76:b2:44:95:5f:a1:81:c6: d5:9f:ac:cb:bb:49:54:4c:a9:7e:a0:d9:52:c2:e9: b1:70:b5:2c:0e:07:17:1a:dd:52:6b:06:13:47:0d: 53:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CB:53:27:84:CD:DF:E2:A7:84:EA:B7:31:B3:4D:58:90:CE:63:90 X509v3 Authority Key Identifier: keyid:24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:a7:cb:6b:86:e3:67:a0:8a:1d:ce:07:45:27:db:e3:e9:e7: 1b:ae:04:3d:cb:0b:11:09:03:f3:af:a2:87:e6:c0:9e:93:ec: 2a:3e:1c:06:33:2a:43:8b:94:3a:84:d6:52:2a:e7:22:ed:18: 45:29:9c:c0:69:7d:61:9e:06:27:70:34:f1:09:3c:5e:8f:8a: a1:a7:20:50:7d:6a:86:79:ce:74:93:c7:0b:79:cc:4f:fa:98: bd:55:51:cc:3a:4d:b1:77:de:78:bd:47:0e:5c:1f:ae:0b:e4: ce:12:75:ec:be:66:81:ad:d5:3c:bd:e0:2b:6a:61:43:e3:a2: 89:97:25:d3:98:56:d1:2a:45:1c:a6:05:0b:c5:b5:bd:1d:2b: 19:0f:52:dd:d7:85:ff:3d:78:a4:76:f2:75:c5:0e:fe:e6:a0: b0:58:81:9b:6d:af:af:f2:da:77:b9:e5:91:c7:ae:bd:9d:1a: 32:f8:33:8d:1c:e0:a5:7e:5a:9a:20:b9:e4:1b:4f:91:f4:a2: d5:a0:dc:6e:c6:fc:18:e4:41:70:15:63:69:f4:dd:73:29:f1: c5:42:cc:30:83:44:19:64:85:46:b8:5d:47:d7:ad:e8:4e:a4: c8:0f:00:e7:ac:4d:c0:b5:1d:ad:54:eb:2f:7d:9f:7e:25:09: f9:fc:4f:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3M0UxMTAvBgNVBAUTKDI0M0YyRDQ0NzI3RjFEMUI4MDc5RjQwMTRGNjlGNEEw NzREMUYxRUEwHhcNMjUwODIyMjM1NzAzWhcNMjUwODI5MjM1NzAzWjAYMRYwFAYD VQQDEw02OGE5MDNjZi1kNmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02mSuy4iRRiSV/Ika8iqm2nBuxLFS25CrlPSgtc3XaZsTvOAXiYREaEFE3LA iQ3kP2IeURsrX8SnraCLiapZ855VsTA72uSAVUfXLgrC4Qk+RUBvaf9yOCbLWXJh jGpS/Q6KoQ6PAQADrqQeSDebrktA3U/7kjkYk27UFe09PV7LjtWbNh2Shj1HuepD g6gEMRMRXocr86WdDL2mcQnrz4deJpVLkoT4vrE3B76uTUvqkPKWo+ndtd3MfFOD wRhp6FmulAaQTndMPWRV/vfTIZCeZA3xhUOndrJElV+hgcbVn6zLu0lUTKl+oNlS wumxcLUsDgcXGt1SawYTRw1TrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvLUyeE zd/ip4TqtzGzTViQzmOQMB8GA1UdIwQYMBaAFCQ/LURyfx0bgHn0AU9p9KB00fHq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzczRS80NDU1NDU2MjJD OTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hSdUFlZlFCVDJuMG9IVFI4 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEOHRSSEpfSFJ1QWVmUUJUMm4wb0hUUjhlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzczRS80NDU1NDU2MjJDOTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hS dUFlZlFCVDJuMG9IVFI4ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/p8trhuNnoIodzgdFJ9vj6ecbrgQ9ywsRCQPzr6KH5sCek+wqPhwG MypDi5Q6hNZSKuci7RhFKZzAaX1hngYncDTxCTxej4qhpyBQfWqGec50k8cLecxP +pi9VVHMOk2xd954vUcOXB+uC+TOEnXsvmaBrdU8veAramFD46KJlyXTmFbRKkUc pgULxbW9HSsZD1Ld14X/PXikdvJ1xQ7+5qCwWIGbba+v8tp3ueWRx669nRoy+DON HOClflqaILnkG0+R9KLVoNxuxvwY5EFwFWNp9N1zKfHFQswwg0QZZIVGuF1H163o TqTIDwDnrE3AtR2tVOsvfZ9+JQn5/E+q -----END CERTIFICATE-----Generated at Sun Aug 24 00:35:49 2025 by rpki-client