$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json) Hash identifier: joMzKdbuM1fEcMxbKSBjKoPivosgp1x3a5+JoIQqCuU= Subject key identifier: C6:A7:25:71:4D:F4:96:35:F0:B3:6C:E4:D3:C1:A0:61:73:AF:96:A9 Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft Manifest number: A2 Signing time: Sat 19 Jul 2025 06:32:46 +0000 Manifest this update: Sat 19 Jul 2025 06:32:45 +0000 Manifest next update: Sat 26 Jul 2025 06:32:45 +0000 Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: ag22JKhVdS5v9j4UGHCepQc0TCuOp3oVp8Wait1W+to=) 2: 00E00D025BC711F0886C5B59C4F9AE02.roa (hash: sqy/WdKkX/I9+eeWKmyiO40gweC8VofbqWaj5A5W8ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D6C1, serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Validity Not Before: Jul 19 06:32:45 2025 GMT Not After : Jul 26 06:32:45 2025 GMT Subject: CN=687b3c0e-c102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:88:3c:73:be:84:c2:53:98:c3:0f:4c:b3:c9: 81:2c:40:6a:74:b5:33:c3:79:6a:3d:c1:0d:ec:39: fb:31:1b:53:a7:24:f4:07:3f:d0:e7:d8:e5:47:36: 6e:5d:7a:ad:fb:d6:a7:84:c0:8a:ef:2c:43:e9:0c: 12:bc:0f:2b:12:61:17:9e:9c:15:32:14:74:34:24: 5b:f8:9f:76:3b:2e:d3:b8:28:50:06:2f:fc:6a:91: af:8e:8a:4d:22:77:b2:66:38:df:36:ce:db:6e:b4: f4:bc:34:fb:c6:81:2a:c0:80:24:8c:dc:ce:44:74: 7f:0e:7a:99:be:de:ef:a9:6e:58:33:60:fa:d0:79: aa:70:d2:53:1c:b3:31:01:b2:1d:1b:99:e8:1f:fb: d1:92:ca:03:e1:79:06:58:b9:4f:91:43:49:11:27: 24:95:be:cf:71:c5:51:eb:dc:19:67:12:8f:10:4a: 27:9d:e4:14:e3:ee:03:dd:5c:59:3e:1e:ce:79:d9: 56:d1:e4:de:1c:f3:da:1b:e8:d5:98:d3:9c:89:40: 4d:f5:15:26:ba:c9:e1:e4:8a:58:04:23:7a:db:4c: e2:1e:86:0d:fb:8e:90:6f:ca:6e:93:67:74:c9:8d: 34:93:44:10:a0:e8:30:c9:f6:0b:8f:31:50:86:36: 3d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A7:25:71:4D:F4:96:35:F0:B3:6C:E4:D3:C1:A0:61:73:AF:96:A9 X509v3 Authority Key Identifier: keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:5f:b6:0f:d9:b6:d4:97:48:90:d4:c6:c3:0f:00:56:bd:41: c8:05:4e:97:b7:27:a0:d3:ec:49:08:5d:f5:8f:37:57:0a:cf: 0b:17:69:0e:eb:c6:b8:82:e6:2b:2c:65:2e:d1:9f:a5:8f:e2: a4:ae:37:0d:63:a3:6c:be:c5:30:f4:87:fe:44:d6:4f:90:a3: 56:b4:b6:2b:e7:00:01:95:4f:fb:f0:8a:24:28:a2:85:83:3d: e6:d2:80:e7:3b:30:20:77:86:a9:56:ae:87:b8:66:a1:5e:55: 18:19:07:f8:f4:c1:3f:37:6b:6f:5f:ad:dc:ff:7f:c3:b8:67: 1b:33:cf:06:ef:78:68:e2:d8:70:a2:d9:8d:94:5a:a8:17:84: 23:a7:7e:84:d2:cf:17:cb:13:06:44:f1:41:20:f3:8a:28:dd: e0:65:a7:ad:54:5b:a0:e1:c3:2b:e9:ad:5f:d6:94:60:67:37: f3:26:91:ee:9e:6f:b7:28:e2:0d:d4:b2:a5:f6:79:2b:80:0a: 8d:e6:ab:fa:8b:ea:d3:78:a0:31:d1:f6:6c:35:c9:8e:35:1c: eb:53:11:d4:84:69:34:a2:6b:28:e9:a2:c9:0c:27:a3:24:71: 43:83:44:28:ce:60:56:f0:6b:28:ee:7c:38:b3:38:54:86:7f: 1f:64:89:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2QzExMTAvBgNVBAUTKDI2RDg2NDVFRThFRTNBNUQxRUIxRDJERjk3OUI4NTQ5 Qjg3NjFFMkEwHhcNMjUwNzE5MDYzMjQ1WhcNMjUwNzI2MDYzMjQ1WjAYMRYwFAYD VQQDEw02ODdiM2MwZS1jMTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4g8c76EwlOYww9Ms8mBLEBqdLUzw3lqPcEN7Dn7MRtTpyT0Bz/Q59jlRzZu XXqt+9anhMCK7yxD6QwSvA8rEmEXnpwVMhR0NCRb+J92Oy7TuChQBi/8apGvjopN IneyZjjfNs7bbrT0vDT7xoEqwIAkjNzORHR/DnqZvt7vqW5YM2D60HmqcNJTHLMx AbIdG5noH/vRksoD4XkGWLlPkUNJEScklb7PccVR69wZZxKPEEonneQU4+4D3VxZ Ph7OedlW0eTeHPPaG+jVmNOciUBN9RUmusnh5IpYBCN620ziHoYN+46Qb8puk2d0 yY00k0QQoOgwyfYLjzFQhjY9YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFManJXFN 9JY18LNs5NPBoGFzr5apMB8GA1UdIwQYMBaAFCbYZF7o7jpdHrHS35ebhUm4dh4q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDZDMS9EQjcwNDRFMjdB MjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9sMGVzZExmbDV1RlNiaDJI aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p0aGtYdWp1T2wwZXNkTGZsNXVGU2JoMkhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDZDMS9EQjcwNDRFMjdBMjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9s MGVzZExmbDV1RlNiaDJIaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArX7YP2bbUl0iQ1MbDDwBWvUHIBU6Xtyeg0+xJCF31jzdXCs8LF2kO 68a4guYrLGUu0Z+lj+KkrjcNY6NsvsUw9If+RNZPkKNWtLYr5wABlU/78IokKKKF gz3m0oDnOzAgd4apVq6HuGahXlUYGQf49ME/N2tvX63c/3/DuGcbM88G73ho4thw otmNlFqoF4Qjp36E0s8XyxMGRPFBIPOKKN3gZaetVFug4cMr6a1f1pRgZzfzJpHu nm+3KOIN1LKl9nkrgAqN5qv6i+rTeKAx0fZsNcmONRzrUxHUhGk0omso6aLJDCej JHFDg0QozmBW8Gso7nw4szhUhn8fZImr -----END CERTIFICATE-----Generated at Sun Jul 20 10:34:29 2025 by rpki-client