$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft File: CJx_ANge3WTbq20DcSKyoh8NO-Y.mft (raw, json) Hash identifier: +G7V9i0HYyCFSJrFxTbLW+Rph+Hyn1agwegw3J5uiAs= Subject key identifier: B8:44:77:90:DE:F2:DD:46:29:DC:A2:DB:6E:19:69:95:72:BD:32:4D Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft Manifest number: 021D Signing time: Sat 23 Aug 2025 02:10:53 +0000 Manifest this update: Sat 23 Aug 2025 02:10:53 +0000 Manifest next update: Sat 30 Aug 2025 02:10:53 +0000 Files and hashes: 1: CJx_ANge3WTbq20DcSKyoh8NO-Y.crl (hash: c+JQMnbikxrARtcy7LF4pV6m5eYQv0A5c0zk1iorna0=) 2: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (hash: BP/glgq2z1dVEQeJ08W20vuLvcBOY54eQXp8HeomvRk=) 3: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (hash: FNYorUcrDZxaoz80iDO589JZkm4kbfGRGurVB7ty8DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Aug 23 02:10:53 2025 GMT Not After : Aug 30 02:10:53 2025 GMT Subject: CN=68a9232d-1b2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bd:50:02:ec:52:08:66:2d:6e:12:83:1a:4a: 5c:02:58:98:88:d8:04:15:16:0b:77:26:29:f4:31: 75:57:43:78:37:24:5b:3b:bf:c5:17:5b:68:b4:06: 0b:5e:a4:ff:be:89:62:e0:98:60:03:34:a8:4c:5f: 2a:38:7e:13:b1:64:bd:4b:fa:5e:af:5f:00:bf:4d: f3:4d:39:d3:11:b5:96:6f:db:5d:3b:97:3c:07:aa: 5a:22:62:a6:7c:cb:35:9b:12:31:ed:c2:df:c3:37: 77:10:4b:1d:34:b1:15:58:f6:b2:cb:23:07:d5:88: be:a6:47:b4:11:75:43:24:44:44:db:9e:d4:73:c2: d2:d1:77:9a:c3:9e:ed:06:e6:a1:51:a9:a5:d7:70: 80:ab:32:73:f9:97:a5:c6:71:b9:1c:0b:c4:c6:3d: 96:fe:08:47:d1:5c:1a:f6:7d:cf:85:0c:b4:d1:78: 05:8c:db:a6:8f:d6:5f:a0:74:65:46:b1:bd:57:f5: 94:71:9d:f5:cb:34:0f:d6:b8:61:d2:40:a9:5f:af: 7d:91:15:fd:8e:51:99:46:74:c3:71:f9:80:1d:07: 5e:5f:eb:17:2c:e7:a8:4a:de:20:09:90:20:f5:5a: f0:99:15:d9:43:6e:6f:b6:f7:85:b6:bb:c9:cf:22: 8e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:44:77:90:DE:F2:DD:46:29:DC:A2:DB:6E:19:69:95:72:BD:32:4D X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:1a:af:e2:f2:8a:be:58:2e:e8:8c:a6:98:99:35:88:54:37: 90:5e:e9:43:8b:32:f4:d2:f2:95:d6:a6:17:9d:08:70:ff:34: 54:f6:4f:75:45:8e:3a:9f:5f:9d:6c:18:f0:7e:1c:a6:75:77: 04:1d:93:7b:dd:22:44:87:16:05:53:f7:4a:ca:ba:a4:2c:a3: ae:b9:59:df:59:8d:9e:ab:b9:d7:84:bc:39:4f:8f:05:94:bf: 42:23:5b:7f:bf:0d:b8:a3:c1:9c:59:97:b5:4a:53:f6:99:c1: f3:e7:d0:e9:33:29:dd:84:9d:d7:f4:af:2e:07:ab:60:5b:30: ff:ce:0c:b1:f3:3b:45:89:7d:5c:c2:58:35:58:d0:95:e0:4e: 23:04:b7:3a:8b:39:4c:1f:b2:29:18:12:85:9d:f4:1b:90:c2: 1b:68:3c:d6:14:be:2e:57:c9:4a:05:3e:8d:9d:e3:20:f3:9d: c6:b3:f8:3e:14:73:2d:30:79:79:f1:3b:7e:af:57:47:10:48: 7f:a0:9e:ef:b4:e3:44:48:52:12:f1:32:a8:92:dd:70:d6:51: 08:fd:39:7c:65:a6:32:c7:87:93:e2:3c:f1:ff:b5:c5:b9:15: 31:92:3e:ba:14:16:b4:b4:5e:b5:d5:b4:f0:d3:a5:7c:3d:1d: 5c:fa:c2:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjUwODIzMDIxMDUzWhcNMjUwODMwMDIxMDUzWjAYMRYwFAYD VQQDEw02OGE5MjMyZC0xYjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwb1QAuxSCGYtbhKDGkpcAliYiNgEFRYLdyYp9DF1V0N4NyRbO7/FF1totAYL XqT/voli4JhgAzSoTF8qOH4TsWS9S/per18Av03zTTnTEbWWb9tdO5c8B6paImKm fMs1mxIx7cLfwzd3EEsdNLEVWPayyyMH1Yi+pke0EXVDJERE257Uc8LS0Xeaw57t BuahUaml13CAqzJz+ZelxnG5HAvExj2W/ghH0Vwa9n3PhQy00XgFjNumj9ZfoHRl RrG9V/WUcZ31yzQP1rhh0kCpX699kRX9jlGZRnTDcfmAHQdeX+sXLOeoSt4gCZAg 9VrwmRXZQ25vtveFtrvJzyKO7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhEd5De 8t1GKdyi224ZaZVyvTJNMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjVGMi80QUVFRDkxQzQzQjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNX VGJxMjBEY1NLeW9oOE5PLVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFGq/i8oq+WC7ojKaYmTWIVDeQXulDizL00vKV1qYXnQhw/zRU9k91 RY46n1+dbBjwfhymdXcEHZN73SJEhxYFU/dKyrqkLKOuuVnfWY2eq7nXhLw5T48F lL9CI1t/vw24o8GcWZe1SlP2mcHz59DpMyndhJ3X9K8uB6tgWzD/zgyx8ztFiX1c wlg1WNCV4E4jBLc6izlMH7IpGBKFnfQbkMIbaDzWFL4uV8lKBT6NneMg853Gs/g+ FHMtMHl58Tt+r1dHEEh/oJ7vtONESFIS8TKokt1w1lEI/Tl8ZaYyx4eT4jzx/7XF uRUxkj66FBa0tF611bTw06V8PR1c+sKH -----END CERTIFICATE-----Generated at Sat Aug 23 10:42:36 2025 by rpki-client