$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft File: jIdTtwqo02LsUz6Sfxlv62mbGF0.mft (raw, json) Hash identifier: He9oHF+dZv06JulAr21/Y+UJZmbZb8i9ix9mmtT7f74= Subject key identifier: E1:C6:B0:33:5B:65:73:F9:41:94:A6:AE:11:C4:46:B6:05:5B:5C:7A Authority key identifier: 8C:87:53:B7:0A:A8:D3:62:EC:53:3E:92:7F:19:6F:EB:69:9B:18:5D Certificate issuer: /CN=A91E7BD5/serialNumber=8C8753B70AA8D362EC533E927F196FEB699B185D Certificate serial: 02A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft Manifest number: 029E Signing time: Tue 01 Jul 2025 02:12:45 +0000 Manifest this update: Tue 01 Jul 2025 02:12:44 +0000 Manifest next update: Tue 08 Jul 2025 02:12:44 +0000 Files and hashes: 1: jIdTtwqo02LsUz6Sfxlv62mbGF0.crl (hash: 1MKeH+JATTmUmn3qfzsEVEOfHZMUaU1N+lSOkgsCQLo=) 2: 15920FC8380111F08B5A444DC4F9AE02.roa (hash: wxBRePCssOd58xYrGvHNVm/XauRd81h4lKDVyDyTr0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.crl rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 676 (0x2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD5, serialNumber=8C8753B70AA8D362EC533E927F196FEB699B185D Validity Not Before: Jul 1 02:12:44 2025 GMT Not After : Jul 8 02:12:44 2025 GMT Subject: CN=6863441c-101c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b0:ee:ac:96:08:60:b8:b0:fb:c4:6b:eb:96: 5b:68:99:31:a9:5e:7a:71:69:8b:6c:37:e2:89:9b: 3b:ce:d2:8e:ab:9b:0c:14:03:95:61:43:79:87:ed: 88:eb:2c:24:1e:c1:74:de:8a:25:ee:f4:ff:ff:a3: 54:19:45:d0:12:a9:94:98:48:fa:dc:cb:43:9b:91: 2e:62:24:87:60:42:53:c1:49:0e:2b:92:0e:9d:80: e0:7f:89:45:a3:fa:64:a2:d8:57:44:12:89:2a:55: d7:37:b3:1a:51:90:68:20:96:f3:3b:51:10:0d:35: e3:05:73:6d:5c:65:de:1b:9e:07:6c:57:ff:dc:30: 92:bd:a3:72:1a:77:a0:86:c2:54:dd:df:af:e8:99: 66:bd:b2:17:d9:f8:d5:11:58:fd:86:19:b7:21:84: 94:67:8b:4f:40:76:25:06:a7:96:56:16:d9:fb:d7: 1c:0c:90:d6:90:60:ec:1b:56:20:22:ff:74:ce:c0: 90:16:4f:bc:ca:7c:ff:a9:89:38:f9:02:3e:b4:9a: d7:fc:6c:a9:1b:45:63:03:91:d8:e3:a5:d4:78:41: 18:50:e0:d2:d6:ec:fc:11:38:eb:9f:45:3a:78:d0: 5f:61:d3:36:f9:e1:7d:cf:77:35:1f:94:74:3e:1e: 30:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C6:B0:33:5B:65:73:F9:41:94:A6:AE:11:C4:46:B6:05:5B:5C:7A X509v3 Authority Key Identifier: keyid:8C:87:53:B7:0A:A8:D3:62:EC:53:3E:92:7F:19:6F:EB:69:9B:18:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:dc:70:2f:22:12:f2:4c:33:50:9c:35:56:b4:35:50:17:f5: 1a:61:2d:62:7c:d5:5b:77:1b:95:bf:13:36:32:02:d2:ee:c6: ff:2d:13:fc:59:e2:5f:7b:a2:34:0a:cc:ad:4d:35:12:fe:8a: 03:c3:e6:91:43:f0:e0:91:d6:ce:72:ca:59:93:d2:36:ff:d6: 45:c2:9c:b7:53:74:2c:05:78:ed:c8:1b:a4:5d:30:a7:f3:65: d5:8e:36:cc:70:e3:4e:69:12:62:cc:0b:0b:be:35:d8:40:6a: 91:8f:62:22:e9:83:c2:49:f8:2f:d5:d7:5b:3d:3b:76:32:45: 7d:bc:99:d1:c5:0c:ca:7c:ce:3c:4e:72:05:ea:77:f3:3a:a8: 1b:17:d0:d9:0f:4e:85:11:d2:7d:d8:fe:65:49:e9:0b:00:07: 26:89:ea:30:85:68:46:fe:02:47:77:16:c6:39:7e:73:4d:f6: 99:97:dd:87:37:2f:ee:e1:f1:b9:63:72:bc:39:25:43:06:d4: 17:8f:aa:a7:d1:7d:cc:eb:74:55:8c:04:ca:46:b2:48:d8:5c: 72:31:b7:b6:c2:45:c6:32:ba:ec:12:b9:78:98:48:ff:5f:9f: 7a:60:bd:a1:df:e3:a6:e8:5b:f5:e6:52:b6:38:67:83:37:96: 0d:4d:a9:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDUxMTAvBgNVBAUTKDhDODc1M0I3MEFBOEQzNjJFQzUzM0U5MjdGMTk2RkVC Njk5QjE4NUQwHhcNMjUwNzAxMDIxMjQ0WhcNMjUwNzA4MDIxMjQ0WjAYMRYwFAYD VQQDEw02ODYzNDQxYy0xMDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47DurJYIYLiw+8Rr65ZbaJkxqV56cWmLbDfiiZs7ztKOq5sMFAOVYUN5h+2I 6ywkHsF03ool7vT//6NUGUXQEqmUmEj63MtDm5EuYiSHYEJTwUkOK5IOnYDgf4lF o/pkothXRBKJKlXXN7MaUZBoIJbzO1EQDTXjBXNtXGXeG54HbFf/3DCSvaNyGneg hsJU3d+v6JlmvbIX2fjVEVj9hhm3IYSUZ4tPQHYlBqeWVhbZ+9ccDJDWkGDsG1Yg Iv90zsCQFk+8ynz/qYk4+QI+tJrX/GypG0VjA5HY46XUeEEYUODS1uz8ETjrn0U6 eNBfYdM2+eF9z3c1H5R0Ph4wwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHGsDNb ZXP5QZSmrhHERrYFW1x6MB8GA1UdIwQYMBaAFIyHU7cKqNNi7FM+kn8Zb+tpmxhd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENS8yMDFFQjQzNDA1 QTgxMUVEODNGRDc0ODRDNEY5QUUwMi9qSWRUdHdxbzAyTHNVejZTZnhsdjYybWJH RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pJZFR0d3FvMDJMc1V6NlNmeGx2NjJtYkdGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENS8yMDFFQjQzNDA1QTgxMUVEODNGRDc0ODRDNEY5QUUwMi9qSWRUdHdxbzAy THNVejZTZnhsdjYybWJHRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg3HAvIhLyTDNQnDVWtDVQF/UaYS1ifNVbdxuVvxM2MgLS7sb/LRP8 WeJfe6I0CsytTTUS/ooDw+aRQ/DgkdbOcspZk9I2/9ZFwpy3U3QsBXjtyBukXTCn 82XVjjbMcONOaRJizAsLvjXYQGqRj2Ii6YPCSfgv1ddbPTt2MkV9vJnRxQzKfM48 TnIF6nfzOqgbF9DZD06FEdJ92P5lSekLAAcmieowhWhG/gJHdxbGOX5zTfaZl92H Ny/u4fG5Y3K8OSVDBtQXj6qn0X3M63RVjATKRrJI2FxyMbe2wkXGMrrsErl4mEj/ X596YL2h3+Om6Fv15lK2OGeDN5YNTalh -----END CERTIFICATE-----Generated at Tue Jul 1 23:27:17 2025 by rpki-client