$ rpki-client -vvf rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft File: jFWTypaApeo4eDP9NEAjS56AINA.mft (raw, json) Hash identifier: AFACCXtiPbtkvkeKHq9fsLR01NTWyFZpwnZRawcVuLU= Subject key identifier: 5E:1D:7C:3C:AD:8C:17:CC:9B:0F:E1:D5:D9:34:58:AD:11:DC:3D:A5 Authority key identifier: 8C:55:93:CA:96:80:A5:EA:38:78:33:FD:34:40:23:4B:9E:80:20:D0 Certificate issuer: /CN=A91D78FD/serialNumber=8C5593CA9680A5EA387833FD3440234B9E8020D0 Certificate serial: 066A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft Manifest number: 0659 Signing time: Fri 22 Aug 2025 22:48:15 +0000 Manifest this update: Fri 22 Aug 2025 22:48:14 +0000 Manifest next update: Fri 29 Aug 2025 22:48:14 +0000 Files and hashes: 1: jFWTypaApeo4eDP9NEAjS56AINA.crl (hash: KrjlkcMHLcVtWW8WpenrBDcWLmYzl1YHU7/0UVAWNKw=) 2: F603D584E99611EDB0837738C4F9AE02.roa (hash: Okhu1FQgQA+Kf0eFI37SSlIwutQLAOMIG0YXzuCGyrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.crl rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1642 (0x66a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D78FD, serialNumber=8C5593CA9680A5EA387833FD3440234B9E8020D0 Validity Not Before: Aug 22 22:48:14 2025 GMT Not After : Aug 29 22:48:14 2025 GMT Subject: CN=68a8f3af-158a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0c:8a:93:2c:b3:ea:ba:65:b8:77:66:cf:d0: 9e:d8:53:44:61:9a:42:27:e7:6e:6e:7d:10:3e:fc: f0:b4:3e:59:78:dd:34:41:0d:fd:87:fc:65:67:4c: 8d:d5:45:ec:b2:bd:87:9f:6b:1c:9c:f4:48:5d:12: a9:21:d4:c0:4e:27:eb:9a:01:dc:a7:4b:ee:aa:e6: 77:ea:18:48:6c:d0:73:cb:06:46:e1:53:77:f0:59: b3:cb:1f:0e:cc:21:5b:a6:6e:b6:05:ae:a1:97:ce: 8f:cd:6a:4f:6d:c4:a9:ca:73:f5:4c:ab:53:09:f3: 86:9d:79:13:98:86:1f:22:f1:7a:e8:2d:52:01:53: ac:27:a1:68:fd:17:50:37:25:4b:f9:fa:e2:10:ce: 18:30:28:c2:fd:15:6e:12:e4:5e:ef:54:3a:47:4c: 04:a8:92:07:97:ca:a0:18:4b:ac:fe:1a:4a:22:a4: a4:ca:71:92:ff:f2:57:f4:48:fc:f7:f6:37:d4:29: b8:d4:9d:df:94:4a:a0:7b:99:15:da:fb:69:3e:de: b4:0f:4a:e3:e6:34:55:52:9a:2c:c5:33:36:dd:3e: e5:5a:28:75:22:6b:8b:40:86:e7:9e:53:6d:ea:12: 5f:0f:a9:e0:ce:d9:07:7c:61:16:2c:fd:1a:b7:1b: ce:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:1D:7C:3C:AD:8C:17:CC:9B:0F:E1:D5:D9:34:58:AD:11:DC:3D:A5 X509v3 Authority Key Identifier: keyid:8C:55:93:CA:96:80:A5:EA:38:78:33:FD:34:40:23:4B:9E:80:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:21:09:8d:cd:b4:a5:d1:f0:1b:12:8f:9e:5f:a8:91:ac:51: 05:89:69:80:22:68:dd:77:04:d4:f5:a4:4c:54:06:42:2a:67: e6:bb:1f:1f:99:e7:b9:53:26:cd:3b:16:37:40:f3:d7:7c:a4: 10:39:8f:37:f8:7d:7c:14:d3:83:8d:5a:76:71:fc:74:9f:f9: f8:b2:0c:33:0c:e2:8f:8d:72:8d:89:d9:94:8b:25:eb:ee:09: 56:4c:16:dd:4c:f4:7d:ee:67:0c:21:b6:11:22:11:59:0b:c0: 09:97:09:82:5f:98:11:d4:c2:a9:9f:2c:e6:2c:c1:8c:38:46: 3a:68:db:34:54:4a:26:0b:e5:48:c0:0b:42:ab:29:51:6e:c7: 47:fb:60:b6:6a:fb:2f:77:b2:e9:fe:c4:46:44:ac:1b:82:80: bd:4b:af:39:3a:7e:57:43:8a:29:aa:4f:1b:76:c0:02:5c:55: 60:7e:18:d5:26:ec:76:9b:5c:5a:62:c2:f4:4d:30:5f:40:5f: 8c:25:a6:83:55:db:d6:87:31:22:1c:83:94:82:70:d8:23:01: dd:da:b4:45:fa:61:8a:f2:e7:6e:98:bc:3b:d4:38:0c:92:3d: b5:c8:f1:60:dc:aa:4e:74:c6:2c:09:fa:48:5c:0b:89:d9:51: cf:0f:aa:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc4RkQxMTAvBgNVBAUTKDhDNTU5M0NBOTY4MEE1RUEzODc4MzNGRDM0NDAyMzRC OUU4MDIwRDAwHhcNMjUwODIyMjI0ODE0WhcNMjUwODI5MjI0ODE0WjAYMRYwFAYD VQQDEw02OGE4ZjNhZi0xNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gyKkyyz6rpluHdmz9Ce2FNEYZpCJ+dubn0QPvzwtD5ZeN00QQ39h/xlZ0yN 1UXssr2Hn2scnPRIXRKpIdTATifrmgHcp0vuquZ36hhIbNBzywZG4VN38Fmzyx8O zCFbpm62Ba6hl86PzWpPbcSpynP1TKtTCfOGnXkTmIYfIvF66C1SAVOsJ6Fo/RdQ NyVL+friEM4YMCjC/RVuEuRe71Q6R0wEqJIHl8qgGEus/hpKIqSkynGS//JX9Ej8 9/Y31Cm41J3flEqge5kV2vtpPt60D0rj5jRVUposxTM23T7lWih1ImuLQIbnnlNt 6hJfD6ngztkHfGEWLP0atxvOHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4dfDyt jBfMmw/h1dk0WK0R3D2lMB8GA1UdIwQYMBaAFIxVk8qWgKXqOHgz/TRAI0uegCDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzhGRC9DODBGNkY5MDlC NkQxMUVCODJGQTAzM0VDNEY5QUUwMi9qRldUeXBhQXBlbzRlRFA5TkVBalM1NkFJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGV1R5cGFBcGVvNGVEUDlORUFqUzU2QUlOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzhGRC9DODBGNkY5MDlCNkQxMUVCODJGQTAzM0VDNEY5QUUwMi9qRldUeXBhQXBl bzRlRFA5TkVBalM1NkFJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDiIQmNzbSl0fAbEo+eX6iRrFEFiWmAImjddwTU9aRMVAZCKmfmux8f mee5UybNOxY3QPPXfKQQOY83+H18FNODjVp2cfx0n/n4sgwzDOKPjXKNidmUiyXr 7glWTBbdTPR97mcMIbYRIhFZC8AJlwmCX5gR1MKpnyzmLMGMOEY6aNs0VEomC+VI wAtCqylRbsdH+2C2avsvd7Lp/sRGRKwbgoC9S685On5XQ4opqk8bdsACXFVgfhjV Jux2m1xaYsL0TTBfQF+MJaaDVdvWhzEiHIOUgnDYIwHd2rRF+mGK8udumLw71DgM kj21yPFg3KpOdMYsCfpIXAuJ2VHPD6qh -----END CERTIFICATE-----Generated at Sat Aug 23 20:22:17 2025 by rpki-client