$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft File: JfnbYAet9vV-xO_3piv01C2nXsU.mft (raw, json) Hash identifier: 3w+Qwwh9IPU5GcUCoMVc0ll2mUSVUXixRXHaC9scU0A= Subject key identifier: 29:B9:B4:13:0D:29:6C:27:D6:45:D1:87:4E:4D:0B:6F:2A:1F:84:57 Authority key identifier: 25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 Certificate issuer: /CN=A91D3F79/serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft Manifest number: 013E Signing time: Tue 01 Jul 2025 04:52:22 +0000 Manifest this update: Tue 01 Jul 2025 04:52:22 +0000 Manifest next update: Tue 08 Jul 2025 04:52:21 +0000 Files and hashes: 1: JfnbYAet9vV-xO_3piv01C2nXsU.crl (hash: VEvR3mBBte3FVTs2OI1w8aggyWysBIYZYmX7CLllQ3E=) 2: F4CDCE666F1C11EE8CA3F26AC4F9AE02.roa (hash: fsgwXlrQI8Xf5Rjyp/4eVuAgbFz37cGdGAMKHjxGUCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3F79, serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Validity Not Before: Jul 1 04:52:22 2025 GMT Not After : Jul 8 04:52:21 2025 GMT Subject: CN=68636986-0681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:db:98:84:f8:ed:8c:b4:0a:91:9e:11:21:5e: 89:69:f9:c5:ab:7c:a3:73:f5:95:59:61:6b:f2:4d: e5:2a:1d:b4:ec:59:a8:0b:cc:71:59:bd:2e:c8:de: e9:70:df:b5:6c:74:18:5b:bd:8b:1b:8c:5e:c4:b4: 6b:6f:c0:61:3e:ec:b9:da:8f:40:38:32:06:c6:1f: 02:70:c2:c9:79:40:30:59:e3:fc:0c:6c:30:ec:db: 6f:5f:fc:a9:e2:9e:f7:2d:93:40:9a:08:f4:37:09: 10:a8:23:82:4e:a3:d0:79:0e:37:22:db:5f:7d:58: 0a:69:dc:96:2f:4f:0e:ce:b4:e9:ca:2c:72:82:db: da:cd:83:c6:6a:78:f8:6a:a1:d3:a9:88:d3:a0:32: 51:a6:c2:dc:71:d5:73:a9:6e:f2:3a:31:c7:b8:8e: 06:70:54:54:dc:c9:62:ad:5d:87:b4:48:ff:03:d8: f8:41:0a:0a:92:8f:b4:e6:85:7f:cc:46:00:3f:4a: bb:3b:da:bd:bc:03:b1:50:fe:56:b2:96:97:84:44: 9f:f6:5d:ef:92:39:7e:66:53:ce:0e:b9:b2:4b:fb: b4:6b:9f:ef:30:79:3f:56:98:e6:a0:21:57:4d:11: f2:52:2a:81:52:cd:25:1d:7a:5e:62:5c:a8:d1:e0: 12:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B9:B4:13:0D:29:6C:27:D6:45:D1:87:4E:4D:0B:6F:2A:1F:84:57 X509v3 Authority Key Identifier: keyid:25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:a7:c0:7b:0b:6f:dd:16:2a:aa:38:24:6b:cd:cd:e0:d8:fe: 3c:fb:19:4c:4a:b8:ed:c0:68:25:36:b6:34:59:99:f7:b7:10: f3:cd:33:af:62:5a:fd:5b:0d:c3:d2:27:07:60:8f:ea:5d:01: 8f:89:f2:87:b1:14:e2:31:51:a4:dc:0d:c2:36:a6:ce:f7:42: 5f:ae:d4:59:e2:c5:52:e8:a4:b5:38:de:cd:1f:16:e4:09:f4: 1a:a7:d9:f3:2b:6d:79:25:38:56:ef:d0:b2:82:a3:f8:44:bc: cd:02:48:f7:18:a6:f3:c1:21:61:b6:ca:6e:6a:d1:12:70:d9: 6c:88:ae:e6:8c:66:b7:26:57:14:42:2f:36:18:85:d0:60:6c: 93:9d:63:67:14:d9:0e:e8:87:8f:3f:f8:ea:63:5b:14:c0:ef: 46:4f:9c:86:70:86:5d:15:64:7d:78:8f:52:40:a7:62:2d:86: 6e:21:23:c7:ff:1a:44:1c:86:1b:3f:b0:37:4e:99:7b:e3:36: 6b:9d:d6:50:54:00:2d:74:ae:64:23:7a:58:79:a7:d4:d4:07: 91:fc:3f:c9:c7:79:a4:b3:62:c1:74:dc:4b:2f:f1:58:af:f3: a6:fa:9d:a2:21:61:fd:e3:d1:de:85:c7:83:cc:3a:e6:e4:da: 17:dd:be:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNGNzkxMTAvBgNVBAUTKDI1RjlEQjYwMDdBREY2RjU3RUM0RUZGN0E2MkJGNEQ0 MkRBNzVFQzUwHhcNMjUwNzAxMDQ1MjIyWhcNMjUwNzA4MDQ1MjIxWjAYMRYwFAYD VQQDEw02ODYzNjk4Ni0wNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8NuYhPjtjLQKkZ4RIV6JafnFq3yjc/WVWWFr8k3lKh207FmoC8xxWb0uyN7p cN+1bHQYW72LG4xexLRrb8BhPuy52o9AODIGxh8CcMLJeUAwWeP8DGww7NtvX/yp 4p73LZNAmgj0NwkQqCOCTqPQeQ43IttffVgKadyWL08OzrTpyixygtvazYPGanj4 aqHTqYjToDJRpsLccdVzqW7yOjHHuI4GcFRU3MlirV2HtEj/A9j4QQoKko+05oV/ zEYAP0q7O9q9vAOxUP5WspaXhESf9l3vkjl+ZlPODrmyS/u0a5/vMHk/VpjmoCFX TRHyUiqBUs0lHXpeYlyo0eASFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCm5tBMN KWwn1kXRh05NC28qH4RXMB8GA1UdIwQYMBaAFCX522AHrfb1fsTv96Yr9NQtp17F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Y3OS9GQTMxQTJCMjZG MUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2Vi14T18zcGl2MDFDMm5Y c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pmbmJZQWV0OXZWLXhPXzNwaXYwMUMyblhzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Y3OS9GQTMxQTJCMjZGMUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2 Vi14T18zcGl2MDFDMm5Yc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2p8B7C2/dFiqqOCRrzc3g2P48+xlMSrjtwGglNrY0WZn3txDzzTOv Ylr9Ww3D0icHYI/qXQGPifKHsRTiMVGk3A3CNqbO90JfrtRZ4sVS6KS1ON7NHxbk CfQap9nzK215JThW79CygqP4RLzNAkj3GKbzwSFhtspuatEScNlsiK7mjGa3JlcU Qi82GIXQYGyTnWNnFNkO6IePP/jqY1sUwO9GT5yGcIZdFWR9eI9SQKdiLYZuISPH /xpEHIYbP7A3Tpl74zZrndZQVAAtdK5kI3pYeafU1AeR/D/Jx3mks2LBdNxLL/FY r/Om+p2iIWH949HehceDzDrm5NoX3b6J -----END CERTIFICATE-----Generated at Wed Jul 2 12:36:52 2025 by rpki-client