$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: i2c8tQT9qoyOuLdXnYnHuAYSo94Qr9UfNYTIRWRF6YY= Subject key identifier: 26:F6:FF:C5:FF:F5:6F:39:88:B8:A3:78:50:81:58:EC:20:12:F0:6C Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D32 Signing time: Mon 30 Jun 2025 16:17:58 +0000 Manifest this update: Mon 30 Jun 2025 16:17:57 +0000 Manifest next update: Mon 07 Jul 2025 16:17:57 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: wpAKZ+VKh2xVS+ShEeD/KW7W3H/cA6bX4XWfFMsHlsQ=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: 5WitENJnrkIaDKSZdGfav4jBMV1MXsoOLjamdvAz9SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7488 (0x1d40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Jun 30 16:17:57 2025 GMT Not After : Jul 7 16:17:57 2025 GMT Subject: CN=6862b8b5-42ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:22:8e:ec:c4:98:05:01:24:88:99:48:04:16: 17:dd:e8:72:55:44:08:04:8f:74:d5:fa:98:ca:54: c6:04:61:7e:e9:6e:c2:75:c3:05:b4:f6:e3:1e:1b: 8a:05:7c:c5:16:ae:b8:29:fe:90:54:64:f5:00:de: 7f:6c:87:32:b4:7e:c3:e8:82:04:85:ea:1e:c0:76: c9:17:54:c8:6f:41:54:64:b8:08:4f:27:6b:4f:45: c3:55:c8:9c:90:6e:f9:29:63:3e:85:16:88:e5:4f: bb:a0:e9:4b:37:1c:04:98:02:40:31:7b:87:c1:d1: 96:6d:67:63:54:d0:0c:55:40:51:37:3b:13:8a:28: 9b:fa:97:27:a5:4e:87:9e:47:16:21:bb:2e:c2:c7: 64:02:63:cd:2e:48:a5:00:eb:84:83:d3:9e:f9:ab: 33:45:08:16:45:12:03:88:42:4a:4b:1a:47:c0:a6: 67:00:7d:a6:b1:09:2d:d0:56:a2:e5:bf:29:be:c9: 08:73:18:80:8d:50:7f:5f:10:b9:89:f8:61:e7:5d: f4:0d:b7:4f:04:65:bb:88:16:75:a6:2b:40:b4:89: 71:f7:d1:7f:50:4a:30:3d:2a:0a:ec:30:49:66:e5: 16:33:42:9a:a8:d2:4f:4b:8e:ed:94:54:3a:e0:ba: 76:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F6:FF:C5:FF:F5:6F:39:88:B8:A3:78:50:81:58:EC:20:12:F0:6C X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:91:1d:d5:84:9a:6c:48:00:cc:86:e4:37:6b:5c:b6:5f:d5: 34:33:52:75:7e:42:37:7e:f4:c9:58:36:3e:5e:14:73:7d:a9: 8b:ec:4e:e7:22:0f:f6:06:ee:4d:05:08:09:f2:48:f4:c1:98: 29:6a:54:5b:86:b5:e4:22:01:a1:27:7c:44:d7:3d:eb:cc:0c: 97:45:b0:0f:9b:01:de:f3:63:ef:ae:ca:0f:03:e2:60:1b:28: 60:48:85:74:4e:80:9d:8a:e2:8c:86:69:8f:60:5c:f3:7a:60: 76:d6:b9:74:87:9b:22:28:d6:9c:db:bb:83:8a:8f:8c:b2:06: f3:cd:ca:f4:63:dc:ab:3f:dc:79:97:06:a4:d3:97:8f:b8:47: a2:6a:48:55:7d:99:e4:0a:c9:42:e3:4b:7c:bd:2a:7b:4d:d9: 54:64:67:73:97:cb:1a:3d:46:e9:a3:23:74:a2:56:28:5c:7b: f0:1d:83:81:92:a9:41:4e:62:5e:d3:1f:7f:b1:a2:11:0a:6d: 54:30:49:e7:02:3e:f1:c5:4b:90:c0:48:bf:38:9e:8c:22:59: 94:b2:70:07:18:c0:1b:c9:16:0c:77:87:37:a9:08:23:6e:46: bf:0c:0c:b0:3b:16:1f:b6:ab:cc:a5:ec:97:a6:6c:a7:35:69: ee:10:17:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUwNjMwMTYxNzU3WhcNMjUwNzA3MTYxNzU3WjAYMRYwFAYD VQQDEw02ODYyYjhiNS00MmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCKO7MSYBQEkiJlIBBYX3ehyVUQIBI901fqYylTGBGF+6W7CdcMFtPbjHhuK BXzFFq64Kf6QVGT1AN5/bIcytH7D6IIEheoewHbJF1TIb0FUZLgITydrT0XDVcic kG75KWM+hRaI5U+7oOlLNxwEmAJAMXuHwdGWbWdjVNAMVUBRNzsTiiib+pcnpU6H nkcWIbsuwsdkAmPNLkilAOuEg9Oe+aszRQgWRRIDiEJKSxpHwKZnAH2msQkt0Fai 5b8pvskIcxiAjVB/XxC5ifhh5130DbdPBGW7iBZ1pitAtIlx99F/UEowPSoK7DBJ ZuUWM0KaqNJPS47tlFQ64Lp2iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCb2/8X/ 9W85iLijeFCBWOwgEvBsMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJkR3VhJpsSADMhuQ3a1y2X9U0M1J1fkI3fvTJWDY+XhRzfamL7E7n Ig/2Bu5NBQgJ8kj0wZgpalRbhrXkIgGhJ3xE1z3rzAyXRbAPmwHe82PvrsoPA+Jg GyhgSIV0ToCdiuKMhmmPYFzzemB21rl0h5siKNac27uDio+Msgbzzcr0Y9yrP9x5 lwak05ePuEeiakhVfZnkCslC40t8vSp7TdlUZGdzl8saPUbpoyN0olYoXHvwHYOB kqlBTmJe0x9/saIRCm1UMEnnAj7xxUuQwEi/OJ6MIlmUsnAHGMAbyRYMd4c3qQgj bka/DAywOxYftqvMpeyXpmynNWnuEBfP -----END CERTIFICATE-----Generated at Tue Jul 1 05:10:14 2025 by rpki-client