$ rpki-client -vvf rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft File: jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft (raw, json) Hash identifier: cZPFX43I3SixEr83uh03L78UaBkuK5gqCpXAKuhMvZo= Subject key identifier: 4B:93:83:3B:05:64:66:49:47:34:87:5E:3A:2B:CA:5D:0D:F1:EF:13 Authority key identifier: 8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 Certificate issuer: /CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Certificate serial: 0517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft Manifest number: 050E Signing time: Fri 18 Jul 2025 23:59:59 +0000 Manifest this update: Fri 18 Jul 2025 23:59:59 +0000 Manifest next update: Fri 25 Jul 2025 23:59:59 +0000 Files and hashes: 1: jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl (hash: VD5hGgQURbxzbbZaxNe14TvMuzHqTjlsLPsUHddRiaU=) 2: F85178E05DD111EF83CF1063C4F9AE02.roa (hash: DwXb+joRx9u0BG/TCkqlIKWQRw4604GMuFkdr4cvB14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1303 (0x517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91385F2, serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Validity Not Before: Jul 18 23:59:59 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: CN=687adfff-4f23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e9:a5:aa:c9:47:30:8e:19:9f:8b:f2:54:52: 39:8a:72:12:3e:ee:9c:ab:93:26:4c:f4:0a:be:d1: 8d:54:18:d6:7e:e0:94:c4:64:5e:a8:2e:db:d5:1a: 62:aa:36:f9:d5:6e:c5:61:be:2e:f4:16:0c:1d:0e: 2b:6c:c3:ca:3c:91:e5:f6:a0:9a:d6:29:bb:e4:22: 0c:0c:94:4d:f1:fe:73:c8:2c:8f:64:7a:a8:26:a9: 04:76:9f:61:ed:71:5c:b5:cd:fc:07:7a:32:ad:ce: dc:d6:b5:b5:31:1e:86:9f:32:37:42:2c:ce:65:b2: a7:bc:8f:52:e1:44:27:4e:2c:73:c6:1b:20:b8:ef: 37:d3:08:31:3b:e4:c3:59:21:88:3c:8f:21:c2:4e: 7a:57:c8:d1:0d:0d:02:05:f8:b0:17:aa:e1:b8:34: 33:0f:f7:2c:80:42:04:fe:1a:7e:65:fb:d0:3c:3d: ad:66:93:20:41:9e:3e:3c:9f:d9:e0:0d:ef:b8:e8: eb:fe:30:5d:c0:6d:d3:a6:5c:ef:97:bd:4b:0d:87: 18:2b:a1:35:b0:ef:bf:3e:22:44:69:74:d2:40:16: e5:4d:a8:d4:af:16:84:5a:33:ec:35:2e:c8:18:3d: 7e:b0:1d:3e:12:90:53:2a:70:42:98:d6:a8:f6:ef: 6f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:93:83:3B:05:64:66:49:47:34:87:5E:3A:2B:CA:5D:0D:F1:EF:13 X509v3 Authority Key Identifier: keyid:8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:76:a5:c0:ae:7d:96:a9:80:7d:ec:bd:9d:38:87:5c:64:42: 69:c9:76:11:4d:ac:fc:f9:04:d3:2f:9b:0f:45:c5:1d:a0:67: de:fe:bf:db:48:7f:d2:ab:9c:05:2f:d8:32:2a:29:20:2f:a6: e3:26:2d:ce:c2:80:80:98:f1:6d:4c:54:24:26:1d:19:b8:b7: 86:66:18:9a:9b:5b:29:8c:d2:6d:76:7a:03:20:48:de:8d:32: 72:54:09:9e:72:09:d0:f2:1d:2f:6c:15:ca:67:14:8f:f9:4a: 8b:2d:80:56:41:33:36:3d:ea:56:48:45:4f:0e:fd:19:ad:96: 36:4f:38:5c:53:4b:10:e8:fc:af:f3:b0:6d:5d:16:f7:3e:21: 19:3a:74:13:f1:03:fc:e3:dd:4e:04:ba:96:cb:5c:c5:30:35: 63:0a:45:0d:72:ba:69:b0:71:b3:6f:c9:c5:f7:ef:b4:23:e5: 14:89:4f:cf:a4:48:2d:b4:31:a7:a2:0f:83:c2:ac:f0:d1:da: dc:d6:62:d0:af:70:4d:47:0a:87:52:bc:fc:5b:a7:9d:0f:95: 6e:89:68:e6:a8:67:2b:98:2a:7f:5e:b3:d1:b6:4c:37:77:03: f7:fc:d9:24:8d:1f:ce:07:1c:22:24:4f:43:f8:00:13:f7:ab: b9:f3:42:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg1RjIxMTAvBgNVBAUTKDhDMEExRkZGMUFBMzFDRUE2Q0MwQzg4QjY3QUMyMkQ1 OTQ2MzlDNzUwHhcNMjUwNzE4MjM1OTU5WhcNMjUwNzI1MjM1OTU5WjAYMRYwFAYD VQQDEw02ODdhZGZmZi00ZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsumlqslHMI4Zn4vyVFI5inISPu6cq5MmTPQKvtGNVBjWfuCUxGReqC7b1Rpi qjb51W7FYb4u9BYMHQ4rbMPKPJHl9qCa1im75CIMDJRN8f5zyCyPZHqoJqkEdp9h 7XFctc38B3oyrc7c1rW1MR6GnzI3QizOZbKnvI9S4UQnTixzxhsguO830wgxO+TD WSGIPI8hwk56V8jRDQ0CBfiwF6rhuDQzD/csgEIE/hp+ZfvQPD2tZpMgQZ4+PJ/Z 4A3vuOjr/jBdwG3Tplzvl71LDYcYK6E1sO+/PiJEaXTSQBblTajUrxaEWjPsNS7I GD1+sB0+EpBTKnBCmNao9u9vlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuTgzsF ZGZJRzSHXjoryl0N8e8TMB8GA1UdIwQYMBaAFIwKH/8aoxzqbMDIi2esItWUY5x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODVGMi80RDMwMTZFODE1 MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhPcHN3TWlMWjZ3aTFaUmpu SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pBb2ZfeHFqSE9wc3dNaUxaNndpMVpSam5IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODVGMi80RDMwMTZFODE1MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhP cHN3TWlMWjZ3aTFaUmpuSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFdqXArn2WqYB97L2dOIdcZEJpyXYRTaz8+QTTL5sPRcUdoGfe/r/b SH/Sq5wFL9gyKikgL6bjJi3OwoCAmPFtTFQkJh0ZuLeGZhiam1spjNJtdnoDIEje jTJyVAmecgnQ8h0vbBXKZxSP+UqLLYBWQTM2PepWSEVPDv0ZrZY2TzhcU0sQ6Pyv 87BtXRb3PiEZOnQT8QP8491OBLqWy1zFMDVjCkUNcrppsHGzb8nF9++0I+UUiU/P pEgttDGnog+Dwqzw0drc1mLQr3BNRwqHUrz8W6edD5VuiWjmqGcrmCp/XrPRtkw3 dwP3/NkkjR/OBxwiJE9D+AAT96u580Kh -----END CERTIFICATE-----Generated at Sun Jul 20 03:35:18 2025 by rpki-client