$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft File: JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft (raw, json) Hash identifier: PVv97ZSHpKiU7/3MiF34FCWx8aUxUuGT97fyT2bvf6I= Subject key identifier: E2:92:E1:E1:E4:E0:05:03:55:93:9A:B0:B1:94:5D:D9:43:E5:3D:DC Authority key identifier: 24:52:18:1C:B1:08:AF:11:F4:62:87:37:1B:04:13:FF:5F:82:E8:2E Certificate issuer: /CN=A91D8392/serialNumber=2452181CB108AF11F46287371B0413FF5F82E82E Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft Manifest number: 0663 Signing time: Fri 22 Aug 2025 22:42:29 +0000 Manifest this update: Fri 22 Aug 2025 22:42:28 +0000 Manifest next update: Fri 29 Aug 2025 22:42:28 +0000 Files and hashes: 1: JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl (hash: RhCMrIgHGx4REBE5a7ChKeqOdB1YfXoc/TpE1sBC4+4=) 2: 7510FBA2928911EBB0B38272C4F9AE02.roa (hash: vY9vDu953Z8A1LvSP1j7BcrWJjcpDb2f8NtmWuSIPts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8392, serialNumber=2452181CB108AF11F46287371B0413FF5F82E82E Validity Not Before: Aug 22 22:42:28 2025 GMT Not After : Aug 29 22:42:28 2025 GMT Subject: CN=68a8f255-16a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f3:73:da:88:c0:c9:67:50:2e:cc:5d:64:8e: 8d:38:e2:8b:ff:68:d7:b6:35:6e:67:20:73:7b:96: c2:c6:55:cf:20:73:c7:60:c5:98:81:64:1a:bd:39: a9:db:b1:6d:d0:28:c8:1d:6e:37:19:5d:dc:f7:93: d8:07:2b:e4:8b:41:fe:43:04:e2:e5:81:8c:96:86: 54:56:0a:e9:ff:13:a2:fe:05:e8:d6:18:b1:d4:c4: f4:97:9c:a0:21:84:51:2e:4d:09:e6:f8:aa:36:79: 88:58:2e:10:b9:12:3d:ec:02:b8:b7:56:c8:cd:ec: 35:26:3c:b6:ae:f9:bf:8c:e9:64:9c:e1:4d:ee:85: 29:1f:1a:17:fd:dc:e7:7f:89:13:35:85:e7:63:75: 12:7e:26:55:29:c5:86:4c:01:34:70:df:c8:c1:d9: f5:84:03:62:1e:a4:77:14:c9:f9:a0:d5:fd:58:bc: d0:bd:23:66:55:b6:0c:be:1e:90:2e:b8:a1:3f:b9: b8:e6:ba:d9:5d:4e:2d:e3:fa:d4:2f:65:bf:7c:53: c0:62:f3:78:28:fa:cb:71:47:7f:03:9d:a2:d5:5c: fa:7a:98:a4:26:23:7f:08:2e:c6:70:df:c9:33:9f: fc:7b:4e:38:e8:81:a5:1e:6e:57:a0:6d:97:7a:9a: 2f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:92:E1:E1:E4:E0:05:03:55:93:9A:B0:B1:94:5D:D9:43:E5:3D:DC X509v3 Authority Key Identifier: keyid:24:52:18:1C:B1:08:AF:11:F4:62:87:37:1B:04:13:FF:5F:82:E8:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c6:89:1b:94:5f:0c:79:cf:f1:3f:b5:04:54:d6:ef:76:92: ea:dc:8a:cb:70:ac:8c:f5:68:20:28:4b:16:70:82:8d:2f:c8: 97:5c:4e:78:8c:d6:5d:55:fa:ef:db:56:a2:85:a1:d8:c6:19: 1a:42:e4:91:b9:90:7a:11:94:dd:91:a4:50:7f:3a:f4:8f:d9: c7:8c:5b:fe:a2:ae:46:63:fd:00:ca:21:be:79:b7:50:ff:5a: b9:f8:d7:bb:bf:13:cf:65:c0:e3:96:a6:5d:f1:84:11:c3:90: 57:7b:fe:46:a9:b2:3b:f4:7d:d6:e2:07:ed:c0:2c:d3:05:07: fe:2d:c6:bd:4b:cf:c0:ca:fc:6b:13:54:01:47:34:0d:a8:41: f9:00:d8:56:d4:4f:d2:f1:e3:7a:e1:15:64:ec:2a:8a:b8:78: 60:f4:8d:8b:7c:d3:51:a9:38:ed:49:b6:ec:07:46:df:b1:e6: e7:09:11:d6:cc:e1:9d:f5:52:d8:29:94:d5:b0:ab:25:30:94: 4c:d1:0d:cf:32:b6:08:5a:dc:22:cc:ad:88:78:98:79:ed:64: a9:39:5b:43:ca:c1:50:d8:62:02:f7:3b:04:ba:ae:ec:8e:f6: 98:e4:e4:fb:61:5f:bf:60:ad:b7:aa:e4:71:3a:9f:2f:4f:6b: 7b:2c:bc:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzOTIxMTAvBgNVBAUTKDI0NTIxODFDQjEwOEFGMTFGNDYyODczNzFCMDQxM0ZG NUY4MkU4MkUwHhcNMjUwODIyMjI0MjI4WhcNMjUwODI5MjI0MjI4WjAYMRYwFAYD VQQDEw02OGE4ZjI1NS0xNmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPNz2ojAyWdQLsxdZI6NOOKL/2jXtjVuZyBze5bCxlXPIHPHYMWYgWQavTmp 27Ft0CjIHW43GV3c95PYByvki0H+QwTi5YGMloZUVgrp/xOi/gXo1hix1MT0l5yg IYRRLk0J5viqNnmIWC4QuRI97AK4t1bIzew1Jjy2rvm/jOlknOFN7oUpHxoX/dzn f4kTNYXnY3USfiZVKcWGTAE0cN/Iwdn1hANiHqR3FMn5oNX9WLzQvSNmVbYMvh6Q LrihP7m45rrZXU4t4/rUL2W/fFPAYvN4KPrLcUd/A52i1Vz6epikJiN/CC7GcN/J M5/8e0446IGlHm5XoG2Xepov4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKS4eHk 4AUDVZOasLGUXdlD5T3cMB8GA1UdIwQYMBaAFCRSGByxCK8R9GKHNxsEE/9fgugu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM5Mi8xNEQ5RTM4QTky ODgxMUVCQkJENDU2NzFDNEY5QUUwMi9KRklZSExFSXJ4SDBZb2MzR3dRVF8xLUM2 QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pGSVlITEVJcnhIMFlvYzNHd1FUXzEtQzZDNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM5Mi8xNEQ5RTM4QTkyODgxMUVCQkJENDU2NzFDNEY5QUUwMi9KRklZSExFSXJ4 SDBZb2MzR3dRVF8xLUM2QzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/xokblF8Mec/xP7UEVNbvdpLq3IrLcKyM9WggKEsWcIKNL8iXXE54 jNZdVfrv21aihaHYxhkaQuSRuZB6EZTdkaRQfzr0j9nHjFv+oq5GY/0AyiG+ebdQ /1q5+Ne7vxPPZcDjlqZd8YQRw5BXe/5GqbI79H3W4gftwCzTBQf+Lca9S8/Ayvxr E1QBRzQNqEH5ANhW1E/S8eN64RVk7CqKuHhg9I2LfNNRqTjtSbbsB0bfsebnCRHW zOGd9VLYKZTVsKslMJRM0Q3PMrYIWtwizK2IeJh57WSpOVtDysFQ2GIC9zsEuq7s jvaY5OT7YV+/YK23quRxOp8vT2t7LLyF -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:48 2025 by rpki-client