$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft File: JfnbYAet9vV-xO_3piv01C2nXsU.mft (raw, json) Hash identifier: rtwkDnCP+94N6Uxqftm9jFSItP1CCcD6D3wdK5kqQms= Subject key identifier: E2:70:F3:C8:01:02:E3:23:5A:9A:14:DA:FC:97:B3:7B:2D:D1:05:D0 Authority key identifier: 25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 Certificate issuer: /CN=A91D3F79/serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft Manifest number: 015B Signing time: Sat 23 Aug 2025 04:13:48 +0000 Manifest this update: Sat 23 Aug 2025 04:13:48 +0000 Manifest next update: Sat 30 Aug 2025 04:13:48 +0000 Files and hashes: 1: JfnbYAet9vV-xO_3piv01C2nXsU.crl (hash: L+fzr4P/8C70PMbyLdj4Lc2tidptcj/NC4CkaPO2gDE=) 2: F4CDCE666F1C11EE8CA3F26AC4F9AE02.roa (hash: mEWfsTcA2IvJ08SERafVpG79nAxQN7WQ08fS/psaf1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3F79, serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Validity Not Before: Aug 23 04:13:48 2025 GMT Not After : Aug 30 04:13:48 2025 GMT Subject: CN=68a93ffc-4dc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:91:83:33:db:cd:2b:44:ee:9c:c3:cb:e2:5b: e3:73:56:6f:93:74:b1:e2:4c:67:13:76:97:61:5a: 26:a5:d0:70:69:26:87:f7:69:ea:b0:65:98:ff:dc: eb:12:ff:1a:6f:a1:f9:03:7a:c2:cc:59:21:aa:d0: b0:d0:d9:dc:84:29:4e:cb:92:84:f2:ee:4a:e3:22: 8a:aa:80:a2:dd:54:0f:cf:b9:d2:47:ff:5b:5f:bc: a8:46:67:4b:d8:83:1f:b7:3a:f8:d7:b3:bd:22:bc: fc:75:44:66:a4:84:78:8b:da:81:38:73:78:d0:b3: b5:7f:f7:61:d0:80:30:8d:32:51:b9:43:f5:3a:ac: ab:8e:d0:cf:0d:a5:f4:29:6c:c6:d3:5c:63:72:16: d6:fb:ef:16:ea:60:28:98:a1:9a:94:bd:53:ec:2b: 98:1d:84:c3:c5:14:88:15:8b:74:26:07:47:ae:6d: 52:ce:86:4f:10:c9:d2:e9:a7:38:a5:40:ee:a4:b2: 5b:23:92:be:d1:16:6c:81:d1:92:62:12:37:ee:a6: aa:54:d6:cf:8d:92:92:b5:80:c4:28:32:93:1b:d6: 9e:92:4a:35:92:4f:80:4f:0e:b2:32:b4:2a:fd:92: 7b:9f:82:bc:39:64:f9:e3:26:83:2f:8b:37:78:5e: 5b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:70:F3:C8:01:02:E3:23:5A:9A:14:DA:FC:97:B3:7B:2D:D1:05:D0 X509v3 Authority Key Identifier: keyid:25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:db:54:ce:5f:fa:a9:2c:14:6e:98:dc:fb:c4:eb:16:b8:cc: 8f:57:10:f7:f4:c4:4b:2d:ea:f9:f9:dc:c2:de:0a:b6:38:82: 08:55:ff:19:65:41:b7:c5:21:4b:ac:6a:84:d9:bf:43:59:a1: 45:a5:9b:b5:08:a3:37:a0:4b:dc:46:00:af:f3:b1:e4:c5:e0: 57:e2:c0:92:2f:79:bc:9a:4b:34:c7:b5:c2:e4:00:8b:3e:e7: 9e:92:e6:85:e8:3b:66:60:f3:56:83:56:45:4b:91:86:d6:98: 42:a2:9c:fe:fb:c2:78:24:ab:42:e8:eb:2c:54:56:4e:4b:7a: cb:db:17:71:4b:ee:d6:e8:bd:76:c0:1f:0e:dd:34:08:76:96: e3:03:49:0a:3a:4c:56:ac:3c:40:7c:7e:f5:09:13:5b:e2:1b: ef:99:3a:28:34:cb:dc:cc:26:4c:b1:71:fd:05:5e:f9:38:18: b7:7d:a5:df:ab:2b:9b:c9:b4:93:02:bc:06:41:88:53:27:c0: 65:be:d3:a4:08:d4:bf:63:4c:52:ad:c0:62:19:d2:b7:6e:21: fe:ff:2a:ef:33:a2:f6:2e:10:91:2f:cb:53:a7:f4:4b:b3:90: bc:f0:2e:c6:d9:51:cd:89:12:f0:51:61:2b:19:6b:26:60:e5: b4:e5:0f:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNGNzkxMTAvBgNVBAUTKDI1RjlEQjYwMDdBREY2RjU3RUM0RUZGN0E2MkJGNEQ0 MkRBNzVFQzUwHhcNMjUwODIzMDQxMzQ4WhcNMjUwODMwMDQxMzQ4WjAYMRYwFAYD VQQDEw02OGE5M2ZmYy00ZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpGDM9vNK0TunMPL4lvjc1Zvk3Sx4kxnE3aXYVompdBwaSaH92nqsGWY/9zr Ev8ab6H5A3rCzFkhqtCw0NnchClOy5KE8u5K4yKKqoCi3VQPz7nSR/9bX7yoRmdL 2IMftzr417O9Irz8dURmpIR4i9qBOHN40LO1f/dh0IAwjTJRuUP1OqyrjtDPDaX0 KWzG01xjchbW++8W6mAomKGalL1T7CuYHYTDxRSIFYt0JgdHrm1SzoZPEMnS6ac4 pUDupLJbI5K+0RZsgdGSYhI37qaqVNbPjZKStYDEKDKTG9aekko1kk+ATw6yMrQq /ZJ7n4K8OWT54yaDL4s3eF5b9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJw88gB AuMjWpoU2vyXs3st0QXQMB8GA1UdIwQYMBaAFCX522AHrfb1fsTv96Yr9NQtp17F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Y3OS9GQTMxQTJCMjZG MUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2Vi14T18zcGl2MDFDMm5Y c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pmbmJZQWV0OXZWLXhPXzNwaXYwMUMyblhzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Y3OS9GQTMxQTJCMjZGMUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2 Vi14T18zcGl2MDFDMm5Yc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB421TOX/qpLBRumNz7xOsWuMyPVxD39MRLLer5+dzC3gq2OIIIVf8Z ZUG3xSFLrGqE2b9DWaFFpZu1CKM3oEvcRgCv87HkxeBX4sCSL3m8mks0x7XC5ACL PueekuaF6DtmYPNWg1ZFS5GG1phCopz++8J4JKtC6OssVFZOS3rL2xdxS+7W6L12 wB8O3TQIdpbjA0kKOkxWrDxAfH71CRNb4hvvmTooNMvczCZMsXH9BV75OBi3faXf qyubybSTArwGQYhTJ8BlvtOkCNS/Y0xSrcBiGdK3biH+/yrvM6L2LhCRL8tTp/RL s5C88C7G2VHNiRLwUWErGWsmYOW05Q+0 -----END CERTIFICATE-----Generated at Sat Aug 23 19:27:06 2025 by rpki-client