$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft File: jiZ6MV35Dplf9M1LLPj8TDMksts.mft (raw, json) Hash identifier: U4crWQSIqWuanyqB5uROzYEsp3vUgUN3mfxmPVb37ME= Subject key identifier: 2E:B8:59:A9:BB:1A:50:A9:2D:8A:3A:2B:8C:D3:9A:6B:76:FB:18:0E Authority key identifier: 8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB Certificate issuer: /CN=A91B35DF/serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft Manifest number: 70 Signing time: Sat 23 Aug 2025 07:09:43 +0000 Manifest this update: Sat 23 Aug 2025 07:09:43 +0000 Manifest next update: Sat 30 Aug 2025 07:09:43 +0000 Files and hashes: 1: jiZ6MV35Dplf9M1LLPj8TDMksts.crl (hash: abY2ukP3lNQNSNzqwgAVeLRnoipxC+dJ62ZgPWpwhNg=) 2: EF714C70D89F11EFA1D2E672C4F9AE02.roa (hash: TZSTn/V1Hb26UcW7zXgR6yK/030+S0LlzJiALzOU8GU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35DF, serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Validity Not Before: Aug 23 07:09:43 2025 GMT Not After : Aug 30 07:09:43 2025 GMT Subject: CN=68a96937-b9a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a6:a3:5c:18:3d:89:b8:b9:45:69:97:d8:0e: e5:f5:b0:d4:78:fa:e0:ff:d8:3b:11:ed:32:f4:14: 80:45:ef:2e:98:ff:fc:ff:61:6f:07:96:6d:3b:bd: ca:49:d9:64:c8:ed:4a:f4:c1:78:80:30:05:43:d9: 37:e6:8f:d9:d4:71:9a:98:89:88:7a:a2:63:da:ea: 31:e4:38:30:77:e2:a1:aa:28:89:44:a9:cd:6f:33: d7:d9:c8:cb:c9:bd:75:fc:71:56:dd:99:b6:fc:b0: 99:96:3c:99:d6:5c:75:48:6a:ad:89:37:5c:a2:47: 5d:27:04:15:b7:fa:8f:7f:08:1c:b1:eb:73:4c:a3: 60:76:0d:3a:b5:dc:8e:fe:d9:b0:03:00:49:22:01: 81:fb:a6:15:70:40:58:1c:86:eb:cf:f0:3c:a8:dc: 48:d8:4d:27:a5:7d:7e:9a:82:2c:02:a3:b2:df:2e: 65:d4:3a:92:af:06:9d:e7:a2:3a:3e:af:db:11:19: f6:7a:e0:07:9e:d5:8f:2b:6a:a8:84:2a:03:58:ac: 7c:2f:08:ad:02:b3:92:df:2d:f9:e4:f4:bf:ad:93: d6:d2:d3:df:d5:e2:7d:70:1b:7b:73:13:c6:e4:c5: f3:da:c9:4e:a1:d9:9e:b6:5a:8c:99:d7:40:91:b4: 64:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B8:59:A9:BB:1A:50:A9:2D:8A:3A:2B:8C:D3:9A:6B:76:FB:18:0E X509v3 Authority Key Identifier: keyid:8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:c2:43:73:35:c3:12:81:85:f5:4f:86:f4:ad:5e:fc:4f:38: bb:e2:73:aa:e5:e0:34:da:fa:94:1a:8f:71:a3:8b:99:8a:ed: 81:61:ad:53:24:8e:fa:87:b2:e6:17:48:64:ca:eb:e5:ac:5b: c3:fd:07:d0:d2:fa:81:4b:6a:3b:b0:a0:5e:ec:9a:5b:f3:56: 80:6c:40:6a:af:0b:a6:09:07:4a:d1:2f:18:89:b9:7a:a5:2e: a2:ad:df:da:ce:19:3a:e1:5f:4f:5f:cf:99:73:c0:92:fa:be: 09:fa:c2:b3:76:cd:12:7e:0c:0a:8a:e0:cc:30:0e:c5:ee:c4: 30:94:e9:f1:2c:fe:bb:c8:c3:fd:fd:48:a8:d9:77:36:90:42: 5e:03:b8:88:ac:0e:58:ed:b1:48:01:ae:ac:5d:23:41:98:a7: 10:42:07:45:93:8d:db:de:02:ec:19:33:61:d8:c5:e7:e9:b5: 3c:ac:ce:94:57:12:ec:bc:e0:e6:0f:dc:0b:10:2a:94:d1:ab: 86:91:bd:0d:ca:a8:cc:9c:b2:ca:cf:24:48:e3:31:96:e1:f0: 64:af:cc:b6:60:1d:27:21:12:bd:12:cf:1b:c9:9a:70:62:4f: 22:e2:65:d1:3d:59:16:43:b4:b0:f6:f5:7e:dc:9e:2f:e0:0c: f5:0d:e1:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzVERjExMC8GA1UEBRMoOEUyNjdBMzE1REY5MEU5OTVGRjRDRDRCMkNGOEZDNEMz MzI0QjJEQjAeFw0yNTA4MjMwNzA5NDNaFw0yNTA4MzAwNzA5NDNaMBgxFjAUBgNV BAMTDTY4YTk2OTM3LWI5YTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqpqNcGD2JuLlFaZfYDuX1sNR4+uD/2DsR7TL0FIBF7y6Y//z/YW8Hlm07vcpJ 2WTI7Ur0wXiAMAVD2Tfmj9nUcZqYiYh6omPa6jHkODB34qGqKIlEqc1vM9fZyMvJ vXX8cVbdmbb8sJmWPJnWXHVIaq2JN1yiR10nBBW3+o9/CByx63NMo2B2DTq13I7+ 2bADAEkiAYH7phVwQFgchuvP8Dyo3EjYTSelfX6agiwCo7LfLmXUOpKvBp3nojo+ r9sRGfZ64Aee1Y8raqiEKgNYrHwvCK0Cs5LfLfnk9L+tk9bS09/V4n1wG3tzE8bk xfPayU6h2Z62WoyZ10CRtGR/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULrhZqbsa UKktijorjNOaa3b7GA4wHwYDVR0jBBgwFoAUjiZ6MV35Dplf9M1LLPj8TDMkstsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzNURGLzFFQTAxOTlDRDg5 RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBsZjlNMUxMUGo4VERNa3N0 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamlaNk1WMzVEcGxmOU0xTExQajhURE1rc3RzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz NURGLzFFQTAxOTlDRDg5RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBs ZjlNMUxMUGo4VERNa3N0cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKTCQ3M1wxKBhfVPhvStXvxPOLvic6rl4DTa+pQaj3Gji5mK7YFhrVMk jvqHsuYXSGTK6+WsW8P9B9DS+oFLajuwoF7smlvzVoBsQGqvC6YJB0rRLxiJuXql LqKt39rOGTrhX09fz5lzwJL6vgn6wrN2zRJ+DAqK4MwwDsXuxDCU6fEs/rvIw/39 SKjZdzaQQl4DuIisDljtsUgBrqxdI0GYpxBCB0WTjdveAuwZM2HYxefptTyszpRX Euy84OYP3AsQKpTRq4aRvQ3KqMycssrPJEjjMZbh8GSvzLZgHSchEr0SzxvJmnBi TyLiZdE9WRZDtLD29X7cni/gDPUN4fs= -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:06 2025 by rpki-client