$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft File: CJx_ANge3WTbq20DcSKyoh8NO-Y.mft (raw, json) Hash identifier: TGXd3qKeJsoUmAVLYAbX5E+ivDowTbrB6Rti7sUr+u0= Subject key identifier: F1:0B:7E:79:DC:50:4B:3A:B0:C6:B9:5E:6A:BF:78:A2:3D:9C:53:D7 Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft Manifest number: 0203 Signing time: Thu 03 Jul 2025 02:25:07 +0000 Manifest this update: Thu 03 Jul 2025 02:25:07 +0000 Manifest next update: Thu 10 Jul 2025 02:25:07 +0000 Files and hashes: 1: CJx_ANge3WTbq20DcSKyoh8NO-Y.crl (hash: My9Ptyc3Rnvqkyu6p8/J7jrQvNRoQ5V+XnTeraWoJr8=) 2: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (hash: BP/glgq2z1dVEQeJ08W20vuLvcBOY54eQXp8HeomvRk=) 3: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (hash: FNYorUcrDZxaoz80iDO589JZkm4kbfGRGurVB7ty8DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Jul 3 02:25:07 2025 GMT Not After : Jul 10 02:25:07 2025 GMT Subject: CN=6865ea03-e76b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4b:6b:43:e3:2f:1e:f6:2a:2d:44:35:fc:09: 20:36:90:91:dd:16:16:c4:18:bd:24:ca:11:be:ad: 5f:5a:bb:b7:b8:1c:57:3e:36:08:3f:e5:12:96:57: 88:d1:40:50:c7:0f:75:97:65:e8:c1:3d:c3:ce:d3: 8d:d6:3f:6a:b9:d5:4c:16:ad:9a:e3:54:7a:25:65: d0:4f:e8:0a:1d:32:35:64:41:80:39:94:2a:b5:cf: bb:12:78:5f:7f:0c:1d:84:c9:d0:77:1e:0d:8f:c6: bb:f3:07:03:64:2a:1b:72:68:b8:9b:db:8b:f5:2f: 05:54:d5:2c:30:74:c6:21:de:57:f1:32:dc:6e:6f: 15:c2:b9:da:16:75:65:c5:0d:4c:5a:ab:7d:6d:95: b5:00:00:aa:6c:4a:9b:0d:b3:25:33:37:27:33:21: 1f:d5:e1:6e:8c:a5:09:4e:79:ef:30:07:88:44:17: 3c:9b:da:11:6c:23:bc:49:28:19:21:71:cd:dc:52: e1:b3:6f:3d:ad:86:89:73:9c:62:1b:c5:9a:80:44: e2:d0:54:94:87:c7:5b:46:b0:9d:2c:67:5d:98:16: cb:6c:5e:a9:b7:d7:1a:07:32:fa:28:93:a1:89:55: f0:39:da:05:79:b0:9b:b6:c2:7b:0f:8b:66:23:75: f5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0B:7E:79:DC:50:4B:3A:B0:C6:B9:5E:6A:BF:78:A2:3D:9C:53:D7 X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:71:4d:ae:03:00:17:98:83:86:76:b7:be:70:97:01:6d:16: 4c:82:db:98:6e:bb:20:6c:53:0b:5a:3d:e9:c8:33:4a:87:cf: 74:aa:91:ac:03:aa:c4:38:20:4c:ae:b2:bb:2f:1f:82:44:e9: 00:e7:75:63:3d:47:2b:83:6c:ea:03:e4:37:ae:21:b2:4a:14: ab:2a:39:73:67:34:a3:6a:a7:05:cc:0f:50:4b:ac:5d:54:6f: a7:06:17:d5:06:22:0a:44:fa:fa:04:39:21:e1:e8:94:a8:7a: 8e:86:6c:96:cc:ef:6c:1c:c2:a7:56:f0:01:c5:18:51:5e:7b: 1e:ba:f1:dc:63:5f:66:97:af:27:02:5f:73:49:15:d1:85:d1: 74:1a:46:59:84:c4:52:2a:36:8d:0e:a4:5f:c4:4b:5e:63:db: 52:92:68:7b:eb:c0:db:a3:03:40:dc:94:33:d7:df:95:19:62: 1b:19:2a:72:32:c3:e5:ae:fa:35:f3:98:c0:9b:b7:2b:b2:14: d2:56:d4:8a:57:85:23:44:8c:ee:78:4e:40:39:58:79:29:34: 3f:bf:fb:24:2e:dd:29:b6:58:d4:22:f5:b8:f8:8e:70:ff:d8: 55:e8:18:30:a0:0e:02:ba:5b:6f:73:08:38:da:3c:48:4a:3b: 43:08:1e:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjUwNzAzMDIyNTA3WhcNMjUwNzEwMDIyNTA3WjAYMRYwFAYD VQQDEw02ODY1ZWEwMy1lNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEtrQ+MvHvYqLUQ1/AkgNpCR3RYWxBi9JMoRvq1fWru3uBxXPjYIP+USlleI 0UBQxw91l2XowT3DztON1j9qudVMFq2a41R6JWXQT+gKHTI1ZEGAOZQqtc+7Enhf fwwdhMnQdx4Nj8a78wcDZCobcmi4m9uL9S8FVNUsMHTGId5X8TLcbm8VwrnaFnVl xQ1MWqt9bZW1AACqbEqbDbMlMzcnMyEf1eFujKUJTnnvMAeIRBc8m9oRbCO8SSgZ IXHN3FLhs289rYaJc5xiG8WagETi0FSUh8dbRrCdLGddmBbLbF6pt9caBzL6KJOh iVXwOdoFebCbtsJ7D4tmI3X18QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPELfnnc UEs6sMa5Xmq/eKI9nFPXMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjVGMi80QUVFRDkxQzQzQjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNX VGJxMjBEY1NLeW9oOE5PLVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+cU2uAwAXmIOGdre+cJcBbRZMgtuYbrsgbFMLWj3pyDNKh890qpGs A6rEOCBMrrK7Lx+CROkA53VjPUcrg2zqA+Q3riGyShSrKjlzZzSjaqcFzA9QS6xd VG+nBhfVBiIKRPr6BDkh4eiUqHqOhmyWzO9sHMKnVvABxRhRXnseuvHcY19ml68n Al9zSRXRhdF0GkZZhMRSKjaNDqRfxEteY9tSkmh768DbowNA3JQz19+VGWIbGSpy MsPlrvo185jAm7crshTSVtSKV4UjRIzueE5AOVh5KTQ/v/skLt0ptljUIvW4+I5w /9hV6BgwoA4Cultvcwg42jxISjtDCB4T -----END CERTIFICATE-----Generated at Thu Jul 3 08:10:11 2025 by rpki-client