$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft File: JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft (raw, json) Hash identifier: uqmsw4xUat+bGTwL1/vocNphmbq/7sKoZqPT4/BBSTo= Subject key identifier: 66:E9:2E:B3:51:F3:26:F5:8D:24:53:CC:43:08:D6:48:BA:87:40:F7 Authority key identifier: 24:5F:F4:5C:28:65:2B:F7:15:65:85:A3:FD:9A:79:74:E5:37:5D:03 Certificate issuer: /CN=A91B8A86/serialNumber=245FF45C28652BF7156585A3FD9A7974E5375D03 Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft Manifest number: 0A Signing time: Thu 03 Jul 2025 08:24:18 +0000 Manifest this update: Thu 03 Jul 2025 08:24:17 +0000 Manifest next update: Thu 10 Jul 2025 08:24:17 +0000 Files and hashes: 1: JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl (hash: paHSebBKvI9cOBg77u6zxd7La14IBvk+idFJMU6mLUk=) 2: E879D5BC4B1911F08F30867AC4F9AE02.roa (hash: OZHK+au5UwVImKpl7QVZcEGwIUNhlUMC18l25bqrmZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8A86, serialNumber=245FF45C28652BF7156585A3FD9A7974E5375D03 Validity Not Before: Jul 3 08:24:17 2025 GMT Not After : Jul 10 08:24:17 2025 GMT Subject: CN=68663e31-ee30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a5:a9:02:88:f1:ec:c1:32:8c:74:dd:02:f1: 50:7b:ac:31:ed:6e:20:39:6d:e1:e2:9d:64:56:16: 9d:1e:a6:32:f5:43:55:56:f9:de:eb:a9:bd:b1:a4: b1:c4:ef:7a:f0:62:0f:84:e3:e3:e1:85:ac:9c:04: cd:53:e9:f1:06:90:fe:66:45:e6:27:da:fe:4c:4c: c4:b7:34:63:88:08:20:6a:1a:67:2b:9f:02:da:a7: e6:89:f0:fe:ba:dc:69:0e:30:f4:57:88:60:5f:0b: 7a:bf:ad:34:c7:e3:a1:a3:66:8c:fd:4e:9f:27:1d: f5:ca:09:45:c1:f3:ad:8d:0f:1c:4f:60:b4:86:72: 41:d1:c1:18:cc:92:b2:b3:9b:5f:78:d4:28:84:fb: f7:3f:86:63:0f:a1:83:62:7e:5c:d1:e1:cb:2d:ae: e0:e0:25:0a:d8:7f:25:c4:83:51:89:6d:43:21:c2: 90:05:36:8b:97:4f:7a:6b:ed:d0:66:1e:55:57:74: 6d:c8:5a:53:ef:c6:d6:12:91:2c:5d:d4:9c:57:6f: 71:e3:6b:83:b0:3a:3e:06:49:99:d1:d9:af:46:87: c4:14:4b:3f:14:2e:9f:91:91:df:09:f7:b5:b7:22: d4:7b:32:20:86:a0:53:7a:a7:1b:ea:f4:3c:d7:70: 99:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E9:2E:B3:51:F3:26:F5:8D:24:53:CC:43:08:D6:48:BA:87:40:F7 X509v3 Authority Key Identifier: keyid:24:5F:F4:5C:28:65:2B:F7:15:65:85:A3:FD:9A:79:74:E5:37:5D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f7:05:55:81:ed:6f:ed:18:42:a2:24:0b:27:b8:62:a2:2b: c7:98:c5:af:e5:94:eb:f8:88:3b:d4:2c:53:4c:f3:c4:d2:db: a6:19:b1:f0:f5:39:43:b7:93:2f:d9:50:f2:6b:65:ea:e7:ee: 8d:58:b6:77:62:12:81:50:03:d9:6e:a3:42:70:32:0f:85:b6: 7d:ec:75:fc:29:23:4f:0d:ff:3e:eb:ac:88:a2:b5:89:6b:f9: 8c:e6:c7:7e:e9:42:93:ce:20:48:6a:b2:8f:86:12:56:4b:16: 16:22:56:46:13:df:4e:65:b5:fa:a8:b5:64:7b:93:a0:ed:30: 99:5d:b1:1c:25:73:40:2c:98:d4:5f:11:75:a2:d5:d0:61:d5: 0d:4c:62:e9:15:37:ec:a7:df:ca:b8:20:96:63:45:18:d2:bc: 7e:77:d3:7a:57:5a:9d:6f:ba:66:99:89:ee:03:1d:18:67:2f: 5e:3a:f1:8f:1b:03:8c:6d:ba:34:d4:f4:70:de:c9:74:88:16: 01:fc:34:3d:8e:56:13:d5:fb:10:fc:53:85:4c:95:0d:a0:7e: 42:0a:73:1f:5a:11:31:c8:a8:f9:f9:ff:55:61:e6:bc:4f:60: c2:6e:02:28:8a:8e:7c:28:58:b2:62:03:21:e2:32:24:d5:4b: 8a:49:2d:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEE4NjExMC8GA1UEBRMoMjQ1RkY0NUMyODY1MkJGNzE1NjU4NUEzRkQ5QTc5NzRF NTM3NUQwMzAeFw0yNTA3MDMwODI0MTdaFw0yNTA3MTAwODI0MTdaMBgxFjAUBgNV BAMTDTY4NjYzZTMxLWVlMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCppakCiPHswTKMdN0C8VB7rDHtbiA5beHinWRWFp0epjL1Q1VW+d7rqb2xpLHE 73rwYg+E4+PhhaycBM1T6fEGkP5mReYn2v5MTMS3NGOICCBqGmcrnwLap+aJ8P66 3GkOMPRXiGBfC3q/rTTH46GjZoz9Tp8nHfXKCUXB862NDxxPYLSGckHRwRjMkrKz m1941CiE+/c/hmMPoYNiflzR4cstruDgJQrYfyXEg1GJbUMhwpAFNouXT3pr7dBm HlVXdG3IWlPvxtYSkSxd1JxXb3Hja4OwOj4GSZnR2a9Gh8QUSz8ULp+Rkd8J97W3 ItR7MiCGoFN6pxvq9DzXcJl/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZukus1Hz JvWNJFPMQwjWSLqHQPcwHwYDVR0jBBgwFoAUJF/0XChlK/cVZYWj/Zp5dOU3XQMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QTg2L0I2M0YzMUFFNEIx NTExRjBBQzNBQTI0OEM0RjlBRTAyL0pGXzBYQ2hsS19jVlpZV2pfWnA1ZE9VM1hR TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkZfMFhDaGxLX2NWWllXal9acDVkT1UzWFFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 QTg2L0I2M0YzMUFFNEIxNTExRjBBQzNBQTI0OEM0RjlBRTAyL0pGXzBYQ2hsS19j VlpZV2pfWnA1ZE9VM1hRTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHb3BVWB7W/tGEKiJAsnuGKiK8eYxa/llOv4iDvULFNM88TS26YZsfD1 OUO3ky/ZUPJrZern7o1YtndiEoFQA9luo0JwMg+Ftn3sdfwpI08N/z7rrIiitYlr +Yzmx37pQpPOIEhqso+GElZLFhYiVkYT305ltfqotWR7k6DtMJldsRwlc0AsmNRf EXWi1dBh1Q1MYukVN+yn38q4IJZjRRjSvH5303pXWp1vumaZie4DHRhnL1468Y8b A4xtujTU9HDeyXSIFgH8ND2OVhPV+xD8U4VMlQ2gfkIKcx9aETHIqPn5/1Vh5rxP YMJuAiiKjnwoWLJiAyHiMiTVS4pJLQc= -----END CERTIFICATE-----Generated at Fri Jul 4 02:54:27 2025 by rpki-client