$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: z/ieDl2ha1+4o+vv8/Eg18J28kxT/2ei+M13MMpp5aU= Subject key identifier: 4F:B6:EC:21:7F:BD:94:94:9D:C9:3E:32:64:CD:39:4A:1F:D5:8C:DA Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 061B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 0615 Signing time: Fri 22 Aug 2025 23:00:12 +0000 Manifest this update: Fri 22 Aug 2025 23:00:11 +0000 Manifest next update: Fri 29 Aug 2025 23:00:11 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: ySqphADyEd63DnY+Lxq3BlBJm4nTi7ijhsMtdEGc4hQ=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1563 (0x61b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Aug 22 23:00:11 2025 GMT Not After : Aug 29 23:00:11 2025 GMT Subject: CN=68a8f67c-c2aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:27:69:53:ef:a8:8e:7d:46:88:51:be:a0:fe: ef:ed:2d:fa:ec:25:54:2f:01:8d:47:90:bd:e5:2a: bc:34:f3:f1:e8:43:23:a3:6c:9f:b2:3a:3d:db:88: ca:f3:cd:bb:c8:18:45:22:33:ca:b6:ac:14:15:09: 50:5f:8c:20:fc:ae:06:bb:a0:fe:da:bf:aa:68:f9: da:96:d0:51:f7:57:dc:a3:cc:d0:50:27:e0:7e:ff: 08:ee:21:ae:0a:db:1d:96:a1:f7:b7:3f:66:b6:63: 06:70:5f:f0:d6:64:7c:2a:fe:13:bc:49:c2:3b:7d: 28:e3:b5:64:67:2f:c4:26:9b:f8:37:0c:4c:4a:be: af:c8:ba:5d:bc:b8:69:ef:ad:fa:a0:a4:f7:f2:ed: c0:6b:1d:b9:de:38:87:26:fe:40:3e:0b:74:c6:32: 97:e3:89:1c:53:3d:10:81:3b:d4:3a:77:14:4d:07: da:72:2f:7e:97:b3:d2:23:c7:b7:f8:4e:b4:7b:2a: 1d:3f:37:35:d1:b3:0f:f7:0f:db:02:17:12:30:87: 91:36:50:96:f5:f4:5d:52:b7:33:0f:99:b5:33:fe: ad:60:6a:7f:1d:6d:ff:11:7d:59:02:c9:ff:db:d6: 5b:da:91:2b:f0:7f:c9:66:6c:f9:05:c1:00:45:7a: 32:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B6:EC:21:7F:BD:94:94:9D:C9:3E:32:64:CD:39:4A:1F:D5:8C:DA X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:0c:71:12:d9:a0:86:7a:40:d9:be:e0:94:1c:76:1e:9b:9a: 06:ce:e5:da:72:e8:26:97:1e:02:67:04:5d:41:02:32:7a:b5: f1:b0:65:8b:4b:8f:35:6e:6d:2d:74:c1:ce:99:cb:2f:e9:64: e1:35:d9:b6:57:82:80:7f:31:f6:4f:1f:db:8f:65:e6:a7:15: 11:fc:1e:e2:45:6e:f1:2e:68:13:3b:ec:27:cb:d0:a4:9c:4b: b5:1c:35:c1:14:49:9f:6c:70:75:9a:17:03:99:b6:86:18:01: 6f:ea:96:4a:c5:3d:1f:94:a9:c5:8f:6a:15:bc:9a:62:3b:6e: 2e:eb:41:e1:5b:13:e1:7a:73:03:ad:73:47:8a:1b:86:f8:69: 28:19:e6:42:c1:c6:f4:d5:11:be:5f:f3:7d:46:0e:b8:67:bd: aa:c9:58:56:c1:e6:cc:d0:87:b4:bf:bc:c4:c6:8b:a8:5d:04: 98:29:2b:1c:7e:47:1e:b0:01:b5:54:1b:cd:88:34:14:04:45: c0:a5:de:f4:a4:73:98:2b:7a:f6:d7:e2:14:bc:8c:3f:b9:0c: ab:de:aa:d4:b8:eb:e3:9c:bd:2a:34:08:45:d8:f2:4f:0c:98: 94:f6:b4:84:df:3f:4e:ac:cd:c5:92:a6:53:58:08:52:c0:1f: 5a:50:cf:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUwODIyMjMwMDExWhcNMjUwODI5MjMwMDExWjAYMRYwFAYD VQQDEw02OGE4ZjY3Yy1jMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSdpU++ojn1GiFG+oP7v7S367CVULwGNR5C95Sq8NPPx6EMjo2yfsjo924jK 8827yBhFIjPKtqwUFQlQX4wg/K4Gu6D+2r+qaPnaltBR91fco8zQUCfgfv8I7iGu CtsdlqH3tz9mtmMGcF/w1mR8Kv4TvEnCO30o47VkZy/EJpv4NwxMSr6vyLpdvLhp 7636oKT38u3Aax253jiHJv5APgt0xjKX44kcUz0QgTvUOncUTQfaci9+l7PSI8e3 +E60eyodPzc10bMP9w/bAhcSMIeRNlCW9fRdUrczD5m1M/6tYGp/HW3/EX1ZAsn/ 29Zb2pEr8H/JZmz5BcEARXoynwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+27CF/ vZSUnck+MmTNOUof1YzaMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiDHES2aCGekDZvuCUHHYem5oGzuXacugmlx4CZwRdQQIyerXxsGWL S481bm0tdMHOmcsv6WThNdm2V4KAfzH2Tx/bj2XmpxUR/B7iRW7xLmgTO+wny9Ck nEu1HDXBFEmfbHB1mhcDmbaGGAFv6pZKxT0flKnFj2oVvJpiO24u60HhWxPhenMD rXNHihuG+GkoGeZCwcb01RG+X/N9Rg64Z72qyVhWwebM0Ie0v7zExouoXQSYKSsc fkcesAG1VBvNiDQUBEXApd70pHOYK3r21+IUvIw/uQyr3qrUuOvjnL0qNAhF2PJP DJiU9rSE3z9OrM3FkqZTWAhSwB9aUM8z -----END CERTIFICATE-----Generated at Sat Aug 23 17:12:23 2025 by rpki-client