$ rpki-client -vvf rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft File: J-OLvrji2ycfz6F8E0feawaDRGA.mft (raw, json) Hash identifier: /IUZu6HUaMbxHPr9h0p+ZVoUSzH5BEscqBRnzIwXj4k= Subject key identifier: 9B:2A:08:9F:7B:FA:22:9A:FD:FC:8E:2F:C3:72:36:FF:01:A6:CB:7D Authority key identifier: 27:E3:8B:BE:B8:E2:DB:27:1F:CF:A1:7C:13:47:DE:6B:06:83:44:60 Certificate issuer: /CN=A9151E54/serialNumber=27E38BBEB8E2DB271FCFA17C1347DE6B06834460 Certificate serial: 055F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft Manifest number: 055A Signing time: Fri 18 Jul 2025 23:42:22 +0000 Manifest this update: Fri 18 Jul 2025 23:42:22 +0000 Manifest next update: Fri 25 Jul 2025 23:42:22 +0000 Files and hashes: 1: J-OLvrji2ycfz6F8E0feawaDRGA.crl (hash: HSjcWD6we/zjfZW8OobENbxd3ND0UmW9TRbmo+UPdmE=) 2: 7D20FF46F3E511EBB8BBF720C4F9AE02.roa (hash: C7jDphWDYFgMA4L/08ep7MPFd0RKLP2oweu77NqfdxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.crl rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151E54, serialNumber=27E38BBEB8E2DB271FCFA17C1347DE6B06834460 Validity Not Before: Jul 18 23:42:22 2025 GMT Not After : Jul 25 23:42:22 2025 GMT Subject: CN=687adbde-0db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c6:f8:ab:76:58:a0:62:11:bb:12:8d:f2:57: fe:f6:13:f0:87:f3:31:9c:48:b5:dd:92:22:01:79: 60:fa:1b:fc:41:72:f0:e7:e9:69:d3:08:2b:94:83: 66:3b:57:11:88:11:9e:13:09:27:0e:9f:9e:6a:04: 1b:16:cc:20:67:19:78:c7:d9:f2:5d:05:81:5d:39: f3:43:bf:19:21:0e:30:d3:7c:1f:04:ed:e9:cb:78: b0:64:15:2d:18:1f:e8:66:53:55:9f:b4:6a:2b:60: 7d:46:e5:3e:ff:b8:21:2a:01:05:d6:b6:22:1a:19: ce:d3:a7:74:c2:98:37:2b:34:b5:7e:97:97:b2:b1: 1a:e4:13:31:58:57:83:72:8f:40:1a:d8:6f:c1:6a: 05:47:91:fd:f1:dc:be:c9:99:0e:90:c1:e0:de:bb: 82:eb:bc:45:2a:98:28:04:31:83:00:8c:c6:a7:64: c7:86:97:b9:fc:44:3f:27:c0:b4:91:c1:94:59:a2: 60:42:da:68:4c:6f:01:be:5b:75:29:af:a7:7f:9b: 73:c3:fa:15:af:91:e8:17:3a:7e:b9:09:da:6e:12: 35:a7:6a:c3:ac:a5:21:cc:5d:a5:22:55:05:3d:16: 83:4d:0d:b7:5e:52:67:8a:b1:f6:1d:1d:24:bb:7e: 53:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2A:08:9F:7B:FA:22:9A:FD:FC:8E:2F:C3:72:36:FF:01:A6:CB:7D X509v3 Authority Key Identifier: keyid:27:E3:8B:BE:B8:E2:DB:27:1F:CF:A1:7C:13:47:DE:6B:06:83:44:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:0b:5e:50:c1:a3:dd:fb:c1:1f:3f:40:b4:21:00:a2:a1:9f: 05:4d:8e:c2:8d:2a:02:02:49:5b:4d:e4:d1:9d:71:5d:dc:1a: 28:c8:67:ff:68:1c:22:cf:16:a7:e5:de:b2:8e:7d:4c:15:d0: da:ff:bd:e3:49:7d:38:e9:bf:1a:21:0e:ba:8f:b0:73:a2:3f: e4:19:54:0d:3a:dc:d0:84:ff:8d:bc:46:5c:ce:2d:b5:ed:55: 63:a4:87:32:c7:f8:88:94:1b:3c:80:27:70:9c:be:90:de:96: 74:76:5b:41:b1:76:d8:d1:bf:00:f4:57:37:80:09:f8:e9:2e: 38:1f:cb:33:08:8c:7b:d2:69:29:77:a9:60:72:b2:9c:77:68: b8:73:8f:6d:11:85:91:b2:33:14:0f:17:5c:f5:56:b1:07:5a: 72:18:e2:d8:56:b4:46:d0:a1:2b:6d:ac:fd:ac:f2:af:1f:6d: ca:95:50:4f:ea:44:8d:52:ba:7e:ca:f3:24:20:94:0f:c3:83: 50:10:08:31:a6:05:af:1b:35:a0:a2:6b:61:7f:ca:82:9e:2a: 63:b2:50:36:0c:f8:7e:50:a9:f3:58:f7:15:48:5c:db:50:58: f2:b7:35:e5:de:68:7c:af:7a:f0:0b:28:cb:cc:b9:95:35:a8: b0:f0:24:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFNTQxMTAvBgNVBAUTKDI3RTM4QkJFQjhFMkRCMjcxRkNGQTE3QzEzNDdERTZC MDY4MzQ0NjAwHhcNMjUwNzE4MjM0MjIyWhcNMjUwNzI1MjM0MjIyWjAYMRYwFAYD VQQDEw02ODdhZGJkZS0wZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMb4q3ZYoGIRuxKN8lf+9hPwh/MxnEi13ZIiAXlg+hv8QXLw5+lp0wgrlINm O1cRiBGeEwknDp+eagQbFswgZxl4x9nyXQWBXTnzQ78ZIQ4w03wfBO3py3iwZBUt GB/oZlNVn7RqK2B9RuU+/7ghKgEF1rYiGhnO06d0wpg3KzS1fpeXsrEa5BMxWFeD co9AGthvwWoFR5H98dy+yZkOkMHg3ruC67xFKpgoBDGDAIzGp2THhpe5/EQ/J8C0 kcGUWaJgQtpoTG8Bvlt1Ka+nf5tzw/oVr5HoFzp+uQnabhI1p2rDrKUhzF2lIlUF PRaDTQ23XlJnirH2HR0ku35T+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsqCJ97 +iKa/fyOL8NyNv8Bpst9MB8GA1UdIwQYMBaAFCfji7644tsnH8+hfBNH3msGg0Rg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUU1NC9BRkQxN0EzNkYz RTIxMUVCQUFDRUE3MURDNEY5QUUwMi9KLU9MdnJqaTJ5Y2Z6NkY4RTBmZWF3YURS R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0otT0x2cmppMnljZno2RjhFMGZlYXdhRFJHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUU1NC9BRkQxN0EzNkYzRTIxMUVCQUFDRUE3MURDNEY5QUUwMi9KLU9MdnJqaTJ5 Y2Z6NkY4RTBmZWF3YURSR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhC15QwaPd+8EfP0C0IQCioZ8FTY7CjSoCAklbTeTRnXFd3BooyGf/ aBwizxan5d6yjn1MFdDa/73jSX046b8aIQ66j7Bzoj/kGVQNOtzQhP+NvEZczi21 7VVjpIcyx/iIlBs8gCdwnL6Q3pZ0dltBsXbY0b8A9Fc3gAn46S44H8szCIx70mkp d6lgcrKcd2i4c49tEYWRsjMUDxdc9VaxB1pyGOLYVrRG0KErbaz9rPKvH23KlVBP 6kSNUrp+yvMkIJQPw4NQEAgxpgWvGzWgomthf8qCnipjslA2DPh+UKnzWPcVSFzb UFjytzXl3mh8r3rwCyjLzLmVNaiw8CQk -----END CERTIFICATE-----Generated at Sun Jul 20 18:57:05 2025 by rpki-client