$ rpki-client -vvf rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.mft File: JbYXi6T4b_C18lUXgJvfINlGjmk.mft (raw, json) Hash identifier: qhc277/1Wvj5D4BDLaF067MkWUH4RIVpe1c9wdN1NuI= Subject key identifier: 96:64:E7:C6:BA:D2:49:2E:9B:1F:D1:99:E3:BD:DF:A2:AD:A4:E9:33 Authority key identifier: 25:B6:17:8B:A4:F8:6F:F0:B5:F2:55:17:80:9B:DF:20:D9:46:8E:69 Certificate issuer: /CN=A9114B57/serialNumber=25B6178BA4F86FF0B5F25517809BDF20D9468E69 Certificate serial: 067B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbYXi6T4b_C18lUXgJvfINlGjmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.mft Manifest number: 0676 Signing time: Sun 20 Jul 2025 22:32:12 +0000 Manifest this update: Sun 20 Jul 2025 22:32:12 +0000 Manifest next update: Sun 27 Jul 2025 22:32:12 +0000 Files and hashes: 1: JbYXi6T4b_C18lUXgJvfINlGjmk.crl (hash: WRwLgwFLrUPfaWe+ot36p2J2FNimVTwTco8DtzxG90Q=) 2: A74155FC835911EBBAB4A13CC4F9AE02.roa (hash: IYSv1L8CrFfVZhb7vVnKxPTFDHznaeEotmtw/x51wYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.crl rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbYXi6T4b_C18lUXgJvfINlGjmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1659 (0x67b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114B57, serialNumber=25B6178BA4F86FF0B5F25517809BDF20D9468E69 Validity Not Before: Jul 20 22:32:12 2025 GMT Not After : Jul 27 22:32:12 2025 GMT Subject: CN=687d6e6c-9bd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:96:1e:f9:94:b2:00:95:0e:db:ca:e4:df:7e: a2:89:69:93:04:cf:d0:2e:65:75:73:81:35:d5:c8: 98:c7:93:50:03:5c:b6:0f:11:9f:ae:ea:9d:6e:4b: f3:ab:ce:6a:81:ab:d0:35:b4:d2:f1:21:39:02:a2: 8c:db:42:7d:b3:7f:13:a1:86:b0:c2:62:f6:18:ad: 9f:53:28:e7:2f:1a:6d:e3:72:7d:eb:18:71:0f:d4: 91:8d:47:55:40:aa:ba:5c:34:17:3d:b0:92:d2:40: ee:57:93:cd:47:38:a9:58:84:d7:91:77:b3:ff:67: 87:e7:94:53:d9:3c:48:b7:b6:58:2e:fc:23:fc:a4: 06:e9:a7:41:7e:e2:c5:5c:34:6d:0e:fb:16:dc:64: 58:08:b8:6c:38:d4:01:88:60:f3:8d:5e:d9:6c:e3: 3a:e1:64:da:ac:e5:5b:58:23:ad:b3:4a:29:47:3b: 38:16:67:be:78:b7:61:30:4c:eb:e1:6b:79:25:92: 19:47:0f:3f:c9:52:10:b3:2d:87:b4:a4:46:7c:d2: cd:43:53:e5:2d:c9:ee:9b:75:5d:24:5e:12:6f:5e: 8f:e7:ca:ee:8d:d1:40:86:1d:6b:0a:a0:1b:72:66: 7b:7d:f0:29:8b:c4:4e:92:77:1d:5c:ad:89:86:30: 62:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:64:E7:C6:BA:D2:49:2E:9B:1F:D1:99:E3:BD:DF:A2:AD:A4:E9:33 X509v3 Authority Key Identifier: keyid:25:B6:17:8B:A4:F8:6F:F0:B5:F2:55:17:80:9B:DF:20:D9:46:8E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbYXi6T4b_C18lUXgJvfINlGjmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114B57/838C8916835811EBB6F0723CC4F9AE02/JbYXi6T4b_C18lUXgJvfINlGjmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:54:94:8a:88:49:8e:29:c2:ad:a3:4d:99:06:3f:a1:82:2c: 68:4d:00:bd:fd:bb:12:f4:2d:1b:91:4d:ab:68:5d:b7:a4:ac: e7:fe:48:9e:8c:17:b0:f8:0b:ee:c8:b6:ae:83:d8:de:10:b0: b1:4c:75:63:eb:55:10:37:2a:71:1c:81:1c:62:86:08:67:14: 3a:c5:f2:c7:44:20:01:70:de:19:f4:bc:5c:30:af:7a:e4:36: f6:dd:c7:82:d0:1f:b4:39:e2:c6:40:d9:03:a4:0c:7b:ef:04: 22:dc:6b:1a:2b:13:28:e8:8c:84:01:bf:1a:8f:c8:e8:b5:36: 21:d1:25:38:1e:9a:6f:d9:cb:8b:26:b0:2c:86:ac:2e:f6:dc: 47:15:c7:78:45:76:8c:8f:9e:14:4f:5d:41:af:73:32:1b:19: d7:85:c8:89:22:23:28:0c:54:70:48:19:38:bc:e1:00:8e:9d: 25:ee:ee:ac:a3:9b:65:59:a3:e8:c8:32:89:05:01:b9:1c:98: 41:81:9d:19:ac:8e:00:24:72:20:b2:6d:6d:a1:fd:c9:83:98: 19:9b:fa:9c:b1:53:b0:38:eb:8c:33:f0:ec:03:89:2f:4f:68: 31:a2:ce:6f:a0:71:63:39:57:bb:18:0d:2c:24:1f:4a:c2:68: bf:13:88:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRCNTcxMTAvBgNVBAUTKDI1QjYxNzhCQTRGODZGRjBCNUYyNTUxNzgwOUJERjIw RDk0NjhFNjkwHhcNMjUwNzIwMjIzMjEyWhcNMjUwNzI3MjIzMjEyWjAYMRYwFAYD VQQDEw02ODdkNmU2Yy05YmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5Ye+ZSyAJUO28rk336iiWmTBM/QLmV1c4E11ciYx5NQA1y2DxGfruqdbkvz q85qgavQNbTS8SE5AqKM20J9s38ToYawwmL2GK2fUyjnLxpt43J96xhxD9SRjUdV QKq6XDQXPbCS0kDuV5PNRzipWITXkXez/2eH55RT2TxIt7ZYLvwj/KQG6adBfuLF XDRtDvsW3GRYCLhsONQBiGDzjV7ZbOM64WTarOVbWCOts0opRzs4Fme+eLdhMEzr 4Wt5JZIZRw8/yVIQsy2HtKRGfNLNQ1PlLcnum3VdJF4Sb16P58rujdFAhh1rCqAb cmZ7ffApi8ROkncdXK2JhjBiLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZk58a6 0kkumx/RmeO936KtpOkzMB8GA1UdIwQYMBaAFCW2F4uk+G/wtfJVF4Cb3yDZRo5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEI1Ny84MzhDODkxNjgz NTgxMUVCQjZGMDcyM0NDNEY5QUUwMi9KYllYaTZUNGJfQzE4bFVYZ0p2ZklObEdq bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0piWVhpNlQ0Yl9DMThsVVhnSnZmSU5sR2ptay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEI1Ny84MzhDODkxNjgzNTgxMUVCQjZGMDcyM0NDNEY5QUUwMi9KYllYaTZUNGJf QzE4bFVYZ0p2ZklObEdqbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4VJSKiEmOKcKto02ZBj+hgixoTQC9/bsS9C0bkU2raF23pKzn/kie jBew+AvuyLaug9jeELCxTHVj61UQNypxHIEcYoYIZxQ6xfLHRCABcN4Z9LxcMK96 5Db23ceC0B+0OeLGQNkDpAx77wQi3GsaKxMo6IyEAb8aj8jotTYh0SU4Hppv2cuL JrAshqwu9txHFcd4RXaMj54UT11Br3MyGxnXhciJIiMoDFRwSBk4vOEAjp0l7u6s o5tlWaPoyDKJBQG5HJhBgZ0ZrI4AJHIgsm1tof3Jg5gZm/qcsVOwOOuMM/DsA4kv T2gxos5voHFjOVe7GA0sJB9Kwmi/E4hy -----END CERTIFICATE-----Generated at Mon Jul 21 13:22:36 2025 by rpki-client