$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: D1m5ZPDSQy25VJlZSJVbS6cXnbWAsdbYrbzdmhXiRiU= Subject key identifier: AF:5A:C0:B0:39:9F:03:A2:81:31:9C:15:FB:A8:4C:68:C9:51:E1:A0 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: 010D Signing time: Sat 23 Aug 2025 05:06:46 +0000 Manifest this update: Sat 23 Aug 2025 05:06:45 +0000 Manifest next update: Sat 30 Aug 2025 05:06:45 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: Mw2FFi5GfJqEQPq3LfMnO35bHrV3jAEMacK+we1INs0=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Aug 23 05:06:45 2025 GMT Not After : Aug 30 05:06:45 2025 GMT Subject: CN=68a94c65-d72f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:77:bd:b7:16:20:d2:52:f5:f2:b1:db:f3:e3: ac:a0:51:6c:20:d7:40:bb:fc:4e:7a:10:e0:8a:6a: ad:cc:00:a5:be:f5:b2:e1:c4:84:09:8a:50:34:10: 27:5b:4e:36:cd:4c:74:78:86:d6:ea:10:2a:0a:ad: d0:5c:c2:46:78:2c:88:7b:95:4a:d9:e7:9b:17:61: 7c:5f:77:c7:c0:27:78:81:cf:23:2d:d8:cc:87:c8: 90:22:04:96:3a:97:a4:bd:3f:0f:93:09:f4:16:9b: 22:9e:63:39:88:5d:b0:71:f5:47:52:3e:c5:40:25: 0f:0f:49:a3:15:75:3a:fc:0c:ac:f2:48:ca:43:99: c3:dc:15:0f:64:d1:5d:f1:a7:ac:08:b2:38:c0:f4: c6:54:88:8a:a7:0b:fb:2c:29:82:f1:26:4a:87:0d: b5:8c:4f:fb:16:66:b0:17:e1:14:71:28:a8:16:8a: 37:36:ac:53:e6:48:e8:34:57:e7:d1:55:1a:b3:71: 09:b6:39:f9:4a:fb:57:76:64:f1:14:08:6e:37:f4: 27:b9:4c:2d:22:59:ab:6e:b5:a1:c5:00:27:43:90: c6:47:c3:b5:ad:fc:53:37:7e:2e:29:57:c7:b4:2b: e9:3f:75:9e:98:47:e1:60:de:9d:64:8a:33:68:0e: b7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5A:C0:B0:39:9F:03:A2:81:31:9C:15:FB:A8:4C:68:C9:51:E1:A0 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:2b:79:ff:4a:43:ef:a1:d2:65:c0:36:99:8d:2d:b2:75:f5: 36:75:d1:fa:9c:09:50:1a:62:9b:c4:51:b2:56:d6:d5:f9:13: 47:1c:6a:c9:1e:46:44:1b:fb:24:3f:95:d4:f6:a0:38:7f:ec: 05:63:e4:6f:5b:74:11:9a:0d:8d:65:8b:f6:f7:72:41:a9:80: 19:4c:1a:a4:27:74:c4:6d:ee:29:e0:c4:d8:0e:1a:1b:40:3e: 99:46:69:41:49:fc:83:44:9a:b9:7f:48:78:0d:a4:b0:97:b4: 6a:fa:2b:01:80:66:f4:d4:75:6b:c9:65:8c:f8:71:74:0f:ec: 8e:c6:36:96:1e:64:b2:5c:d0:7c:ce:1c:b7:71:79:d6:cc:02: a2:e6:e5:52:c9:d0:76:c8:c8:83:0a:84:11:82:c0:a8:57:e2: cb:d1:53:24:cd:fd:61:5a:aa:01:4a:31:01:2f:c7:1e:f5:b6: 67:4c:8a:66:81:32:fd:67:5c:eb:c1:73:58:36:9d:b8:a3:54: 72:5b:e9:9d:23:f2:a7:80:f4:c5:ff:1d:d3:97:bc:04:d2:8d: 3c:0d:b0:c2:89:c1:d0:44:0a:af:9f:14:84:97:5d:ff:46:21: 74:7e:ae:95:fc:30:22:19:91:01:88:77:85:e3:ed:ea:4a:cb: d4:e8:ae:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUwODIzMDUwNjQ1WhcNMjUwODMwMDUwNjQ1WjAYMRYwFAYD VQQDEw02OGE5NGM2NS1kNzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXe9txYg0lL18rHb8+OsoFFsINdAu/xOehDgimqtzAClvvWy4cSECYpQNBAn W042zUx0eIbW6hAqCq3QXMJGeCyIe5VK2eebF2F8X3fHwCd4gc8jLdjMh8iQIgSW OpekvT8Pkwn0FpsinmM5iF2wcfVHUj7FQCUPD0mjFXU6/Ays8kjKQ5nD3BUPZNFd 8aesCLI4wPTGVIiKpwv7LCmC8SZKhw21jE/7FmawF+EUcSioFoo3NqxT5kjoNFfn 0VUas3EJtjn5SvtXdmTxFAhuN/QnuUwtIlmrbrWhxQAnQ5DGR8O1rfxTN34uKVfH tCvpP3WemEfhYN6dZIozaA63YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9awLA5 nwOigTGcFfuoTGjJUeGgMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZK3n/SkPvodJlwDaZjS2ydfU2ddH6nAlQGmKbxFGyVtbV+RNHHGrJ HkZEG/skP5XU9qA4f+wFY+RvW3QRmg2NZYv293JBqYAZTBqkJ3TEbe4p4MTYDhob QD6ZRmlBSfyDRJq5f0h4DaSwl7Rq+isBgGb01HVryWWM+HF0D+yOxjaWHmSyXNB8 zhy3cXnWzAKi5uVSydB2yMiDCoQRgsCoV+LL0VMkzf1hWqoBSjEBL8ce9bZnTIpm gTL9Z1zrwXNYNp24o1RyW+mdI/KngPTF/x3Tl7wE0o08DbDCicHQRAqvnxSEl13/ RiF0fq6V/DAiGZEBiHeF4+3qSsvU6K7x -----END CERTIFICATE-----Generated at Sun Aug 24 09:02:30 2025 by rpki-client