$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: kof2Qr3+Sp+XkTZ4BGJGPpa2UJc8UDslDfJ3mQOFRlg= Subject key identifier: 7C:AE:04:AA:16:59:A9:BD:D2:C4:98:9D:F9:80:CD:02:9F:54:A3:FB Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: F3 Signing time: Thu 03 Jul 2025 05:26:34 +0000 Manifest this update: Thu 03 Jul 2025 05:26:34 +0000 Manifest next update: Thu 10 Jul 2025 05:26:34 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: paacMXl1WdUGAX+Zxyxbol+D2ZrLD1s0XBUNlUX3Vhw=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Jul 3 05:26:34 2025 GMT Not After : Jul 10 05:26:34 2025 GMT Subject: CN=6866148a-927c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:51:5d:44:4d:aa:39:b0:7b:df:01:e4:07:2a: ef:57:23:06:ec:76:7e:16:5d:1b:c2:67:4f:fa:97: e0:81:d0:4a:6b:63:1d:e6:0e:24:5e:6d:eb:dd:20: 7a:56:1b:2f:a2:8d:fe:af:9e:09:23:65:fb:12:f2: 17:ca:b8:1d:87:50:4f:13:34:65:63:9c:58:31:8d: 00:ef:8d:cf:a4:2c:e4:6e:c4:55:c1:34:14:ed:d1: be:bc:d9:b8:f1:67:68:c2:1c:ac:df:9d:2b:ff:21: 98:42:b2:0e:21:e8:3c:c6:61:94:1b:8f:0a:92:1d: 63:64:d2:55:ed:8a:da:ab:f8:bf:5c:49:ec:2b:bf: 2d:5f:e8:df:5b:c8:21:c0:e2:c2:a7:35:74:f2:44: 9a:f4:c7:b7:ff:00:92:31:55:78:e0:f3:68:b4:6d: d6:f8:45:43:01:22:e3:43:63:d0:50:d2:58:f0:08: d9:9a:e0:2a:b3:b3:3e:70:21:ce:d9:3b:27:04:b4: dc:d0:35:c2:6e:28:d5:30:86:d2:11:9a:88:a0:0c: 40:a1:4f:a6:fc:e2:fb:cf:86:21:09:2d:8c:fc:98: ee:ed:2c:37:28:58:76:fc:22:c1:12:e2:4a:ff:2e: 90:a7:20:28:0a:76:5a:1f:73:7b:68:70:fa:2a:f6: 67:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AE:04:AA:16:59:A9:BD:D2:C4:98:9D:F9:80:CD:02:9F:54:A3:FB X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:80:9a:df:b1:66:ec:14:cc:f2:c4:14:da:d1:e9:4e:be:d3: 6d:be:17:c1:bb:e5:da:4c:98:17:bb:4d:40:9c:fa:55:f9:b2: 77:91:2b:19:08:c8:7f:81:ea:1f:4e:40:f0:e5:d3:4e:4e:5a: a3:ba:b4:25:db:42:d3:c8:dc:c3:08:af:90:ee:0f:cd:6e:c2: 8e:82:79:30:a8:25:57:7c:f5:03:d6:8c:95:eb:06:84:a9:ae: 53:ff:34:83:fe:2d:4c:29:e6:04:ad:31:09:9f:8f:89:54:33: a1:fb:bc:90:22:78:f6:71:51:d7:78:b7:5d:d0:f9:5a:fe:69: 20:fe:fe:98:ef:69:76:47:95:81:4d:5e:40:a2:a6:28:6f:cf: c4:82:d2:27:71:eb:6b:e5:d5:14:5e:2f:e5:3a:bb:0d:42:2c: 26:db:83:f5:a1:fa:9c:2d:65:b5:3a:0b:cb:b6:21:0e:89:9b: 46:df:34:8e:71:1d:33:04:8d:fe:1e:3e:af:a4:42:cf:4f:77: 04:ca:3c:af:e8:de:5c:b7:fd:1a:35:ab:e1:ce:1b:d8:b7:30: 71:45:bb:03:ae:fd:ec:55:18:1d:e4:27:41:48:0d:c8:86:bb: 78:15:8e:0a:f5:5b:e1:8e:75:04:f0:b9:90:c1:42:a5:b5:b5: 78:db:23:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUwNzAzMDUyNjM0WhcNMjUwNzEwMDUyNjM0WjAYMRYwFAYD VQQDEw02ODY2MTQ4YS05MjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVFdRE2qObB73wHkByrvVyMG7HZ+Fl0bwmdP+pfggdBKa2Md5g4kXm3r3SB6 Vhsvoo3+r54JI2X7EvIXyrgdh1BPEzRlY5xYMY0A743PpCzkbsRVwTQU7dG+vNm4 8Wdowhys350r/yGYQrIOIeg8xmGUG48Kkh1jZNJV7Yraq/i/XEnsK78tX+jfW8gh wOLCpzV08kSa9Me3/wCSMVV44PNotG3W+EVDASLjQ2PQUNJY8AjZmuAqs7M+cCHO 2TsnBLTc0DXCbijVMIbSEZqIoAxAoU+m/OL7z4YhCS2M/Jju7Sw3KFh2/CLBEuJK /y6QpyAoCnZaH3N7aHD6KvZnPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyuBKoW Wam90sSYnfmAzQKfVKP7MB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCugJrfsWbsFMzyxBTa0elOvtNtvhfBu+XaTJgXu01AnPpV+bJ3kSsZ CMh/geofTkDw5dNOTlqjurQl20LTyNzDCK+Q7g/NbsKOgnkwqCVXfPUD1oyV6waE qa5T/zSD/i1MKeYErTEJn4+JVDOh+7yQInj2cVHXeLdd0Pla/mkg/v6Y72l2R5WB TV5AoqYob8/EgtIncetr5dUUXi/lOrsNQiwm24P1ofqcLWW1OgvLtiEOiZtG3zSO cR0zBI3+Hj6vpELPT3cEyjyv6N5ct/0aNavhzhvYtzBxRbsDrv3sVRgd5CdBSA3I hrt4FY4K9VvhjnUE8LmQwUKltbV42yPj -----END CERTIFICATE-----Generated at Thu Jul 3 10:41:31 2025 by rpki-client