$ rpki-client -vvf rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft File: JhOQ197eXRxAsfPigPOKCNqv3N4.mft (raw, json) Hash identifier: 4WyqcSCMQ0cooyqzfpuOazr02Ta8K6CbPRpQT/5ssRY= Subject key identifier: EC:72:F9:D2:D6:13:8A:F5:EF:E4:DD:D3:75:16:AB:AE:34:1D:47:D6 Authority key identifier: 26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE Certificate issuer: /CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft Manifest number: 01C5 Signing time: Mon 21 Jul 2025 02:59:29 +0000 Manifest this update: Mon 21 Jul 2025 02:59:29 +0000 Manifest next update: Mon 28 Jul 2025 02:59:29 +0000 Files and hashes: 1: JhOQ197eXRxAsfPigPOKCNqv3N4.crl (hash: AHiN1tnHelIILA6AmHl3wyaZdYEhIZT4ynkvtpkDETA=) 2: 738195EEB11811ED997EA457C4F9AE02.roa (hash: Y3uWvVWc5h8AjMOh0rbq998afPQd3Tj5ztFh5AezKOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E367, serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Validity Not Before: Jul 21 02:59:29 2025 GMT Not After : Jul 28 02:59:29 2025 GMT Subject: CN=687dad11-1359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:07:5c:b6:c3:cb:b5:7e:3d:2d:72:1f:b4:3e: 46:64:93:f7:7d:44:28:01:db:41:d4:4f:7d:07:88: cd:59:04:42:b0:c3:63:b3:21:b0:42:dd:8d:2a:1a: b8:9a:8f:53:8c:9f:17:cc:b2:d3:b4:cd:bb:49:39: b0:d5:25:bf:4d:36:85:3d:03:5e:c2:ce:e7:64:62: 1f:f9:dc:4d:84:55:6a:b6:eb:dd:b3:b1:4c:01:8a: 8c:2e:95:1e:c1:8b:7a:0d:a8:84:8a:31:f0:7a:64: 24:ca:27:8b:9b:54:a8:e2:1b:38:4d:85:5d:96:59: 09:c9:3c:26:99:1e:91:24:ee:25:a5:72:66:74:f3: 85:bd:78:cf:5e:1a:2d:40:3a:22:c6:a2:e7:6a:87: bb:b3:1a:a1:05:6f:e8:f1:54:b9:43:d1:65:39:7a: be:66:db:ba:9f:c7:7b:1f:cf:73:2f:ce:ba:49:1c: be:82:e6:a4:a0:bf:e1:c4:ab:4d:28:49:09:7e:06: ea:df:b6:12:45:14:ce:07:ca:b9:2f:89:be:fd:71: 09:82:23:c4:b9:d9:c5:db:5e:78:3d:39:97:96:43: 07:c5:b9:2b:47:c6:c7:53:74:91:77:9c:da:f9:59: 61:48:54:d2:63:d1:26:ef:35:e1:5f:18:f0:26:c0: ec:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:72:F9:D2:D6:13:8A:F5:EF:E4:DD:D3:75:16:AB:AE:34:1D:47:D6 X509v3 Authority Key Identifier: keyid:26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:0c:6d:b5:6b:a1:62:b5:c6:5a:d0:e7:46:05:f7:65:2f:c9: 09:2c:bf:d8:66:3c:a6:5a:2a:a3:5c:c1:18:c4:4c:df:86:22: 85:78:99:63:40:b1:5a:bc:35:31:a1:f9:bf:9b:94:c2:ca:84: e5:d9:7e:19:f3:7c:0e:7d:b7:28:4b:1e:a2:9e:b6:ef:e0:7d: 71:35:94:02:55:09:ee:4b:bc:8a:5b:1a:69:5c:fb:a6:8b:07: a0:cd:77:fb:ed:52:2e:f7:49:78:7e:56:d7:f1:58:0d:74:63: dd:41:d6:37:fa:5d:f4:eb:b6:7c:2f:6f:fe:5c:c4:c8:9c:63: 8f:d1:0e:c8:d1:ce:0e:d6:e8:5f:8f:8f:d3:e8:fa:16:ee:68: 0e:5e:93:fb:ae:bc:0f:6d:aa:6f:da:67:33:84:e8:8a:41:85: ed:6a:21:5a:a6:e5:19:e8:c4:7b:3d:c1:4f:63:c0:8c:b3:d0: c9:6f:27:f6:ae:d0:2f:9b:13:76:98:f4:08:3c:15:a2:a5:07: 4a:cd:bf:0c:65:31:df:ed:4f:33:31:5e:99:ed:9e:8d:e4:b2: d0:c7:30:53:de:72:89:bd:f0:d6:65:d6:9d:d0:4d:67:87:52: 36:ce:5b:2d:37:94:11:11:6b:e7:9a:13:38:fe:68:ee:04:59: 83:fa:73:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzNjcxMTAvBgNVBAUTKDI2MTM5MEQ3REVERTVEMUM0MEIxRjNFMjgwRjM4QTA4 REFBRkRDREUwHhcNMjUwNzIxMDI1OTI5WhcNMjUwNzI4MDI1OTI5WjAYMRYwFAYD VQQDEw02ODdkYWQxMS0xMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQdctsPLtX49LXIftD5GZJP3fUQoAdtB1E99B4jNWQRCsMNjsyGwQt2NKhq4 mo9TjJ8XzLLTtM27STmw1SW/TTaFPQNews7nZGIf+dxNhFVqtuvds7FMAYqMLpUe wYt6DaiEijHwemQkyieLm1So4hs4TYVdllkJyTwmmR6RJO4lpXJmdPOFvXjPXhot QDoixqLnaoe7sxqhBW/o8VS5Q9FlOXq+Ztu6n8d7H89zL866SRy+guakoL/hxKtN KEkJfgbq37YSRRTOB8q5L4m+/XEJgiPEudnF2154PTmXlkMHxbkrR8bHU3SRd5za +VlhSFTSY9Em7zXhXxjwJsDscQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxy+dLW E4r17+Td03UWq640HUfWMB8GA1UdIwQYMBaAFCYTkNfe3l0cQLHz4oDzigjar9ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTM2Ny82QkNFQ0UwQUFE RjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhSeEFzZlBpZ1BPS0NOcXYz TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0poT1ExOTdlWFJ4QXNmUGlnUE9LQ05xdjNONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTM2Ny82QkNFQ0UwQUFERjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhS eEFzZlBpZ1BPS0NOcXYzTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2DG21a6FitcZa0OdGBfdlL8kJLL/YZjymWiqjXMEYxEzfhiKFeJlj QLFavDUxofm/m5TCyoTl2X4Z83wOfbcoSx6inrbv4H1xNZQCVQnuS7yKWxppXPum iwegzXf77VIu90l4flbX8VgNdGPdQdY3+l3067Z8L2/+XMTInGOP0Q7I0c4O1uhf j4/T6PoW7mgOXpP7rrwPbapv2mczhOiKQYXtaiFapuUZ6MR7PcFPY8CMs9DJbyf2 rtAvmxN2mPQIPBWipQdKzb8MZTHf7U8zMV6Z7Z6N5LLQxzBT3nKJvfDWZdad0E1n h1I2zlstN5QREWvnmhM4/mjuBFmD+nPK -----END CERTIFICATE-----Generated at Tue Jul 22 19:22:45 2025 by rpki-client