$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft File: jNGQoUOqLh5IcwOxPcBT7Re86x4.mft (raw, json) Hash identifier: PeGMlHObuC+2A64gQuprjC4J1KmetFLJ0FnRxc5DskE= Subject key identifier: 7A:37:33:FD:E6:D5:A5:33:C3:0E:9B:9B:74:E0:5C:3A:C0:17:26:B7 Authority key identifier: 8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E Certificate issuer: /CN=A91BDF2B/serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft Manifest number: 10 Signing time: Thu 03 Jul 2025 08:20:14 +0000 Manifest this update: Thu 03 Jul 2025 08:20:14 +0000 Manifest next update: Thu 10 Jul 2025 08:20:14 +0000 Files and hashes: 1: jNGQoUOqLh5IcwOxPcBT7Re86x4.crl (hash: oaS1oF5XFtLqLPIV2zTMdRqZ7Ti+XWkBTGys6LPuSIk=) 2: 653C22F441C311F0999A9935C4F9AE02.roa (hash: nMBBR9lD5xYiXfIobFM2SlzdnRZMD+0VZpUbgMpJGzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDF2B, serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Validity Not Before: Jul 3 08:20:14 2025 GMT Not After : Jul 10 08:20:14 2025 GMT Subject: CN=68663d3e-ae03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:71:d8:87:bc:73:c3:d4:df:06:48:cb:53:bc: 07:ad:26:09:82:bc:ff:b2:3f:67:b6:9e:d1:db:d1: 22:45:d4:eb:fa:82:fb:94:e5:65:15:c3:b7:67:ee: 1e:70:53:20:0b:07:9c:04:63:1b:7b:3f:64:31:e1: 7a:c7:58:f6:1e:91:a7:c5:04:f4:43:34:6c:c0:bf: c0:fa:bc:c4:df:f0:4d:c8:4f:3e:b1:e3:21:0d:68: bb:18:d2:08:f8:45:05:fe:2c:d4:e5:c2:0c:5d:7a: 5d:91:a7:0f:14:e3:c2:d9:16:22:a7:93:e8:2c:e5: fd:a3:01:ff:e5:e9:b8:c8:6c:44:4c:30:0c:0c:1d: 4c:10:11:30:86:35:dd:a1:a1:ab:cf:65:ab:bc:25: e6:d1:5a:c6:73:a6:49:6f:93:b8:be:eb:d7:80:4f: 04:bf:f9:e1:62:84:9e:58:1a:ad:7f:ef:68:a9:52: 5d:d6:c6:00:5a:d5:76:9e:0b:81:69:f2:25:1e:0f: be:0d:1e:a0:f1:a7:75:9c:5a:ce:de:14:96:ad:7a: 78:2a:bc:6a:b3:7b:87:76:80:5e:09:31:ed:81:3c: 84:28:e8:5c:7b:90:f6:7b:2c:24:a6:ad:20:fc:4e: 1e:d9:8e:77:41:39:98:8a:16:43:50:28:b9:4e:13: 72:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:37:33:FD:E6:D5:A5:33:C3:0E:9B:9B:74:E0:5C:3A:C0:17:26:B7 X509v3 Authority Key Identifier: keyid:8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:c2:99:88:2e:6c:1e:dd:34:8a:10:ee:62:ff:77:90:9d:a5: 20:0b:b0:e8:88:43:9c:59:5b:b0:69:78:0e:0f:d3:06:ab:70: 23:d1:a6:43:f8:de:b9:51:35:3b:46:62:67:22:a2:d9:c3:01: b1:25:01:9b:31:8c:5c:d1:bf:94:e9:15:5d:40:b6:5c:a0:55: 3f:c8:58:40:08:41:49:2c:c4:aa:9d:0f:57:0b:08:c0:e3:07: 08:eb:be:46:a2:21:b3:2c:96:74:92:b3:8a:ed:54:81:02:46: 38:61:84:47:0b:ec:6f:07:ec:ad:79:04:d7:e3:15:d7:dd:e6: ab:97:fe:ee:30:92:7e:1e:21:ed:8a:2f:f1:a0:74:fb:47:61: 7d:00:46:b5:a2:f2:87:d1:44:a5:5c:c4:7a:13:ec:46:d7:05: d1:15:e4:1d:1c:09:3b:9a:07:73:a3:75:f6:9c:20:aa:fa:4d: e1:bb:0a:15:c7:1c:a5:4a:11:31:f5:60:64:79:d2:4d:5f:a1: 55:05:bd:95:fe:d0:23:f0:85:93:dd:60:14:49:1c:ff:85:d1: d1:8c:fa:9a:ec:9e:5d:c3:98:30:a5:d6:d0:db:d5:fe:11:07: 18:f5:a6:68:23:5b:5d:84:21:2e:ba:68:e2:74:d5:f4:38:e7: e2:88:0a:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REYyQjExMC8GA1UEBRMoOENEMTkwQTE0M0FBMkUxRTQ4NzMwM0IxM0RDMDUzRUQx N0JDRUIxRTAeFw0yNTA3MDMwODIwMTRaFw0yNTA3MTAwODIwMTRaMBgxFjAUBgNV BAMTDTY4NjYzZDNlLWFlMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqcdiHvHPD1N8GSMtTvAetJgmCvP+yP2e2ntHb0SJF1Ov6gvuU5WUVw7dn7h5w UyALB5wEYxt7P2Qx4XrHWPYekafFBPRDNGzAv8D6vMTf8E3ITz6x4yENaLsY0gj4 RQX+LNTlwgxdel2Rpw8U48LZFiKnk+gs5f2jAf/l6bjIbERMMAwMHUwQETCGNd2h oavPZau8JebRWsZzpklvk7i+69eATwS/+eFihJ5YGq1/72ipUl3WxgBa1XaeC4Fp 8iUeD74NHqDxp3WcWs7eFJatengqvGqze4d2gF4JMe2BPIQo6Fx7kPZ7LCSmrSD8 Th7ZjndBOZiKFkNQKLlOE3L7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUejcz/ebV pTPDDpubdOBcOsAXJrcwHwYDVR0jBBgwFoAUjNGQoUOqLh5IcwOxPcBT7Re86x4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERjJCLzZDMkI3QjFDNDFC QjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1SWN3T3hQY0JUN1JlODZ4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvak5HUW9VT3FMaDVJY3dPeFBjQlQ3UmU4Nng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE RjJCLzZDMkI3QjFDNDFCQjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1 SWN3T3hQY0JUN1JlODZ4NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALHCmYgubB7dNIoQ7mL/d5CdpSALsOiIQ5xZW7BpeA4P0warcCPRpkP4 3rlRNTtGYmciotnDAbElAZsxjFzRv5TpFV1AtlygVT/IWEAIQUksxKqdD1cLCMDj BwjrvkaiIbMslnSSs4rtVIECRjhhhEcL7G8H7K15BNfjFdfd5quX/u4wkn4eIe2K L/GgdPtHYX0ARrWi8ofRRKVcxHoT7EbXBdEV5B0cCTuaB3OjdfacIKr6TeG7ChXH HKVKETH1YGR50k1foVUFvZX+0CPwhZPdYBRJHP+F0dGM+prsnl3DmDCl1tDb1f4R Bxj1pmgjW12EIS66aOJ01fQ45+KICj0= -----END CERTIFICATE-----Generated at Thu Jul 3 10:42:29 2025 by rpki-client