$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft File: JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft (raw, json) Hash identifier: Ozk7uQq11M7Uu8cU4OG5qxJASPB+XMRfUT/mul3Blpo= Subject key identifier: E7:5D:7B:B3:1C:5B:CF:C7:31:B9:3E:C5:22:6D:18:1F:3C:74:40:BA Authority key identifier: 24:5F:F4:5C:28:65:2B:F7:15:65:85:A3:FD:9A:79:74:E5:37:5D:03 Certificate issuer: /CN=A91B8A86/serialNumber=245FF45C28652BF7156585A3FD9A7974E5375D03 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft Manifest number: 24 Signing time: Sat 23 Aug 2025 08:02:56 +0000 Manifest this update: Sat 23 Aug 2025 08:02:56 +0000 Manifest next update: Sat 30 Aug 2025 08:02:56 +0000 Files and hashes: 1: JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl (hash: DSrdktLJ+3LTb7om7Yb0HZhidOCxjzaA1Xa/IwiPmJQ=) 2: E879D5BC4B1911F08F30867AC4F9AE02.roa (hash: OZHK+au5UwVImKpl7QVZcEGwIUNhlUMC18l25bqrmZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8A86, serialNumber=245FF45C28652BF7156585A3FD9A7974E5375D03 Validity Not Before: Aug 23 08:02:56 2025 GMT Not After : Aug 30 08:02:56 2025 GMT Subject: CN=68a975b0-0846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:9f:11:d2:a1:eb:3f:19:f6:cb:e4:07:42:c8: 36:7b:d4:67:ff:be:94:d4:12:0a:05:11:42:bb:fb: 7b:f1:43:7c:61:1e:55:bf:9c:45:dc:98:83:34:3b: 5b:2b:6f:b8:62:71:81:ce:13:eb:52:3f:0a:b7:4e: 5b:ca:e1:7a:9c:a9:a4:6f:c7:f7:dc:09:74:14:ff: 81:06:58:75:50:51:63:37:9b:97:08:09:31:c0:13: 09:99:e5:05:e6:9b:50:d8:3c:63:b2:da:21:29:04: aa:73:5f:b3:62:77:4c:6e:c3:39:68:b4:c8:25:08: 3d:ac:ae:a8:11:6c:fb:7d:6d:47:fa:9a:ba:b5:60: ce:70:58:f7:ac:ca:ac:d9:20:2a:6f:f5:69:c0:bd: ce:9e:4d:13:11:6b:dc:99:83:90:59:fa:67:12:88: 06:08:8a:2a:fd:1e:dd:a1:6b:da:8b:aa:de:04:80: ab:c2:88:2d:1e:a5:77:cc:e6:ae:48:ee:9b:e5:e0: 72:5c:5f:c4:4b:9d:69:6a:e8:84:fa:5c:36:10:d2: 00:09:37:c3:39:1c:7c:99:74:d3:6e:08:e3:57:1d: ed:dd:be:be:d0:84:49:23:72:12:ac:9a:2a:10:13: eb:f5:07:12:a1:60:cd:7b:a8:e4:d1:97:1c:0c:39: 01:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:5D:7B:B3:1C:5B:CF:C7:31:B9:3E:C5:22:6D:18:1F:3C:74:40:BA X509v3 Authority Key Identifier: keyid:24:5F:F4:5C:28:65:2B:F7:15:65:85:A3:FD:9A:79:74:E5:37:5D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:7a:e3:c8:e4:98:25:3d:3b:eb:10:fb:36:e4:9d:86:fe:28: db:82:cc:cc:8f:0c:85:d5:88:a9:f3:6a:9b:b2:ce:c5:b3:67: 36:aa:6c:d9:09:c0:94:c1:b1:9d:e3:76:1f:ae:7e:db:fd:b3: b6:0b:3f:54:00:38:b0:89:46:4b:11:f7:cf:7a:0b:bd:16:51: 45:da:43:6a:1f:5f:e0:f4:65:78:ad:07:d7:28:50:59:fe:2f: 61:fd:f8:ea:8e:e5:1d:62:06:4f:86:58:6a:3f:c0:a8:0b:e1: 7b:69:b7:cf:91:ad:cc:00:84:4d:2f:3e:ba:c0:43:0f:a4:aa: d6:62:4c:bc:f8:de:c9:b1:0f:16:93:05:d9:06:70:38:44:93: 1b:70:5f:3c:55:82:64:12:a5:65:82:11:a1:df:ae:10:ad:4b: a0:7f:9d:57:97:74:31:91:3f:d0:9b:7d:93:75:81:51:b6:49: 1d:f8:03:4b:2a:d0:f7:7c:cc:b3:9f:d7:2f:0f:48:5e:1d:cb: 8b:04:3e:8d:3a:76:88:11:78:b0:e9:05:8c:55:61:45:d8:9a: c3:a9:ca:fb:ba:19:f4:47:a3:21:52:18:23:cb:7f:11:00:61: 27:f6:bb:6b:80:14:49:98:ce:61:9f:3f:e9:29:0f:41:b2:d4: 09:d4:39:43 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEE4NjExMC8GA1UEBRMoMjQ1RkY0NUMyODY1MkJGNzE1NjU4NUEzRkQ5QTc5NzRF NTM3NUQwMzAeFw0yNTA4MjMwODAyNTZaFw0yNTA4MzAwODAyNTZaMBgxFjAUBgNV BAMTDTY4YTk3NWIwLTA4NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDonxHSoes/GfbL5AdCyDZ71Gf/vpTUEgoFEUK7+3vxQ3xhHlW/nEXcmIM0O1sr b7hicYHOE+tSPwq3TlvK4XqcqaRvx/fcCXQU/4EGWHVQUWM3m5cICTHAEwmZ5QXm m1DYPGOy2iEpBKpzX7Nid0xuwzlotMglCD2srqgRbPt9bUf6mrq1YM5wWPesyqzZ ICpv9WnAvc6eTRMRa9yZg5BZ+mcSiAYIiir9Ht2ha9qLqt4EgKvCiC0epXfM5q5I 7pvl4HJcX8RLnWlq6IT6XDYQ0gAJN8M5HHyZdNNuCONXHe3dvr7QhEkjchKsmioQ E+v1BxKhYM17qOTRlxwMOQFfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5117sxxb z8cxuT7FIm0YHzx0QLowHwYDVR0jBBgwFoAUJF/0XChlK/cVZYWj/Zp5dOU3XQMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QTg2L0I2M0YzMUFFNEIx NTExRjBBQzNBQTI0OEM0RjlBRTAyL0pGXzBYQ2hsS19jVlpZV2pfWnA1ZE9VM1hR TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkZfMFhDaGxLX2NWWllXal9acDVkT1UzWFFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 QTg2L0I2M0YzMUFFNEIxNTExRjBBQzNBQTI0OEM0RjlBRTAyL0pGXzBYQ2hsS19j VlpZV2pfWnA1ZE9VM1hRTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALt648jkmCU9O+sQ+zbknYb+KNuCzMyPDIXViKnzapuyzsWzZzaqbNkJ wJTBsZ3jdh+uftv9s7YLP1QAOLCJRksR9896C70WUUXaQ2ofX+D0ZXitB9coUFn+ L2H9+OqO5R1iBk+GWGo/wKgL4Xtpt8+RrcwAhE0vPrrAQw+kqtZiTLz43smxDxaT BdkGcDhEkxtwXzxVgmQSpWWCEaHfrhCtS6B/nVeXdDGRP9CbfZN1gVG2SR34A0sq 0Pd8zLOf1y8PSF4dy4sEPo06dogReLDpBYxVYUXYmsOpyvu6GfRHoyFSGCPLfxEA YSf2u2uAFEmYzmGfP+kpD0Gy1AnUOUM= -----END CERTIFICATE-----Generated at Sat Aug 23 19:05:01 2025 by rpki-client