$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft File: jhahBq30E6__xY8QEZJ09wDPpZM.mft (raw, json) Hash identifier: 51bej4WvfXNbMucQBwSscu/RGuEk2vYPV2cfYKniDqE= Subject key identifier: AE:2A:BE:17:0B:AA:59:D2:38:F1:20:0C:A2:C9:88:1B:ED:48:E5:8D Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 Certificate issuer: /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Certificate serial: 027E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft Manifest number: 027A Signing time: Mon 21 Jul 2025 02:01:21 +0000 Manifest this update: Mon 21 Jul 2025 02:01:20 +0000 Manifest next update: Mon 28 Jul 2025 02:01:20 +0000 Files and hashes: 1: jhahBq30E6__xY8QEZJ09wDPpZM.crl (hash: fOV+PuygTrccS92imuuI9TeBnmu07ch+n3cpYlq/oKk=) 2: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (hash: dftYADdFFUc1O011GFzDE5h9w7SMkc25c1t2QDLUX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF8E, serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Validity Not Before: Jul 21 02:01:20 2025 GMT Not After : Jul 28 02:01:20 2025 GMT Subject: CN=687d9f71-2e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ad:a6:2b:31:89:e3:16:7d:19:bc:84:52:bf: d4:da:f0:99:be:75:5d:38:cb:ab:44:f5:b7:62:c3: 9f:94:52:2d:a8:5c:78:39:25:dc:4f:04:f8:35:4a: 57:4f:e9:54:48:2c:4a:69:30:48:ef:a7:de:52:94: ed:67:59:44:f4:fa:17:f1:42:84:13:7f:7e:bd:59: 4d:c7:30:b3:2c:2c:43:ba:4b:af:6c:25:93:e3:22: 2a:e7:d5:4f:be:b3:a4:fc:58:da:f9:ce:02:a8:78: cb:1b:a6:50:4d:ee:1e:fa:ed:38:50:d4:64:5c:43: 57:79:08:55:f3:c1:95:a7:19:87:22:00:e3:4c:ac: fc:bd:69:51:46:54:83:1e:54:e4:2a:10:9f:8b:f7: 41:c2:5a:01:77:71:37:8d:d8:db:a0:0c:80:6c:24: 77:94:69:00:ac:cd:1f:c5:5a:17:b4:e5:48:e3:93: d2:e7:fd:a1:82:12:25:83:26:e2:6d:20:69:a8:09: 36:7f:61:0d:60:f2:57:a0:ea:34:64:20:d9:00:21: d3:dd:5a:10:f3:38:43:14:7f:7e:f1:e7:fd:7c:4f: 29:46:08:78:4d:b3:67:29:05:6b:ae:1b:23:e1:f2: c3:02:c1:d0:41:1c:dd:68:52:63:e7:34:9a:79:dd: 83:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:2A:BE:17:0B:AA:59:D2:38:F1:20:0C:A2:C9:88:1B:ED:48:E5:8D X509v3 Authority Key Identifier: keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:a4:44:b7:c4:2a:63:e3:77:ef:42:dd:ae:8e:da:7b:71:65: 00:b9:43:5c:83:ca:07:e5:07:f7:20:45:d3:30:cf:66:2f:a5: 86:09:e5:e3:ac:19:71:69:23:52:a4:ed:46:7d:49:3c:19:40: a8:16:33:ff:59:9e:eb:6a:2d:f1:01:26:b1:19:bf:54:f3:c2: 07:19:d8:1c:d0:c6:c9:f2:5f:2c:96:cc:ce:38:ff:22:c4:e4: e1:9e:0d:26:be:8d:1e:d5:79:2c:3c:39:af:d3:41:6d:1d:73: 3e:8f:4c:8c:7c:2a:37:2e:46:6a:34:15:2c:d8:ae:f6:aa:79: 34:21:fe:51:ba:cc:a8:44:12:ca:fd:c9:83:48:95:2f:45:d8: 26:cb:fb:7e:71:73:4a:8f:85:08:6f:db:69:95:bc:3d:15:a4: a4:ed:6e:64:92:fb:8e:6f:38:42:40:4d:be:85:1e:89:45:83: e7:47:02:3b:df:6b:b5:16:af:6a:64:4e:b3:a4:c0:a8:af:18: 29:25:81:ea:97:74:33:15:20:84:82:84:10:1a:62:ab:86:83: 88:9c:cc:c5:73:91:10:c2:c8:90:f6:ef:e5:96:48:19:3b:8b: 5a:a2:7a:45:84:7e:39:59:bd:57:02:79:bd:6f:c3:2c:c6:ad: b8:2f:a7:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGOEUxMTAvBgNVBAUTKDhFMTZBMTA2QURGNDEzQUZGRkM1OEYxMDExOTI3NEY3 MDBDRkE1OTMwHhcNMjUwNzIxMDIwMTIwWhcNMjUwNzI4MDIwMTIwWjAYMRYwFAYD VQQDEw02ODdkOWY3MS0yZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1a2mKzGJ4xZ9GbyEUr/U2vCZvnVdOMurRPW3YsOflFItqFx4OSXcTwT4NUpX T+lUSCxKaTBI76feUpTtZ1lE9PoX8UKEE39+vVlNxzCzLCxDukuvbCWT4yIq59VP vrOk/Fja+c4CqHjLG6ZQTe4e+u04UNRkXENXeQhV88GVpxmHIgDjTKz8vWlRRlSD HlTkKhCfi/dBwloBd3E3jdjboAyAbCR3lGkArM0fxVoXtOVI45PS5/2hghIlgybi bSBpqAk2f2ENYPJXoOo0ZCDZACHT3VoQ8zhDFH9+8ef9fE8pRgh4TbNnKQVrrhsj 4fLDAsHQQRzdaFJj5zSaed2DdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4qvhcL qlnSOPEgDKLJiBvtSOWNMB8GA1UdIwQYMBaAFI4WoQat9BOv/8WPEBGSdPcAz6WT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUY4RS8yQUIyNDkxODE3 MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2X194WThRRVpKMDl3RFBw Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poYWhCcTMwRTZfX3hZOFFFWkowOXdEUHBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUY4RS8yQUIyNDkxODE3MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2 X194WThRRVpKMDl3RFBwWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMpES3xCpj43fvQt2ujtp7cWUAuUNcg8oH5Qf3IEXTMM9mL6WGCeXj rBlxaSNSpO1GfUk8GUCoFjP/WZ7rai3xASaxGb9U88IHGdgc0MbJ8l8slszOOP8i xOThng0mvo0e1XksPDmv00FtHXM+j0yMfCo3LkZqNBUs2K72qnk0If5RusyoRBLK /cmDSJUvRdgmy/t+cXNKj4UIb9tplbw9FaSk7W5kkvuObzhCQE2+hR6JRYPnRwI7 32u1Fq9qZE6zpMCorxgpJYHql3QzFSCEgoQQGmKrhoOInMzFc5EQwsiQ9u/llkgZ O4taonpFhH45Wb1XAnm9b8Msxq24L6e3 -----END CERTIFICATE-----Generated at Wed Jul 23 02:27:04 2025 by rpki-client