$ rpki-client -vvf rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft File: J5KVmyX7-evckzm6nH01VXJpaas.mft (raw, json) Hash identifier: ac4kGvfv1yfY2XFTxMjjE1fFrmiGqcAet/PW2bauphw= Subject key identifier: F2:77:AC:74:6A:F0:8A:28:CC:92:DA:4B:30:E2:1C:CF:9F:30:F3:8C Authority key identifier: 27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB Certificate issuer: /CN=A9189261/serialNumber=2792959B25FBF9EBDC9339BA9C7D3555726969AB Certificate serial: 0676 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft Manifest number: 0671 Signing time: Thu 24 Jul 2025 22:43:13 +0000 Manifest this update: Thu 24 Jul 2025 22:43:12 +0000 Manifest next update: Thu 31 Jul 2025 22:43:12 +0000 Files and hashes: 1: J5KVmyX7-evckzm6nH01VXJpaas.crl (hash: HOFh9JkbF/G3SdvoHEGjYxWFSZljGRKStk0dJ8yR/no=) 2: CDACEC3686AD11EBBDFD106EC4F9AE02.roa (hash: U3xUizSTWdJYMjLLq4qIbC/HRkla7mf9lgp0wntQ29I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.crl rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189261, serialNumber=2792959B25FBF9EBDC9339BA9C7D3555726969AB Validity Not Before: Jul 24 22:43:12 2025 GMT Not After : Jul 31 22:43:12 2025 GMT Subject: CN=6882b701-3a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f6:b5:ab:28:3d:f5:09:42:41:5d:69:03:9d: c3:0c:c5:e9:9a:c2:68:ea:68:87:c0:d4:9b:6d:bb: 03:c3:a0:33:f6:df:db:3e:da:59:d5:4c:53:73:77: 30:c4:01:c7:84:64:73:4e:4e:c1:99:a0:f0:bb:96: 26:0e:d4:e6:1e:ac:62:98:26:d8:45:c5:3c:0d:c6: 2b:fd:4d:16:d5:bd:42:13:b8:1f:bf:cc:53:82:65: 67:c7:56:c0:8d:03:14:71:80:ef:b0:93:a6:77:27: eb:7e:87:52:b2:0c:d2:c3:d5:4d:1c:7a:9d:b4:f1: 8b:2a:93:15:2b:7f:4a:6a:09:98:5d:9e:01:93:0f: 93:a9:a8:4a:e8:e7:96:bf:a2:43:11:ba:6c:2e:56: da:19:e4:09:9d:55:c5:f9:cc:bb:d4:f9:8a:d0:fc: 2d:dc:7f:85:04:1c:b9:0e:f3:4c:3f:a2:d8:fa:5c: 1c:aa:3c:15:03:a6:f6:77:58:05:f6:0f:89:ce:9a: 91:51:01:29:40:a3:67:65:e1:5c:ef:b3:bb:35:ee: 11:95:7b:0c:88:d4:42:42:a5:17:19:89:d2:a8:85: b3:84:dd:1f:61:31:9c:bd:40:41:b4:75:cd:97:f1: 81:90:aa:63:a4:45:a8:a7:0c:f7:38:2a:f5:ed:a3: 3f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:77:AC:74:6A:F0:8A:28:CC:92:DA:4B:30:E2:1C:CF:9F:30:F3:8C X509v3 Authority Key Identifier: keyid:27:92:95:9B:25:FB:F9:EB:DC:93:39:BA:9C:7D:35:55:72:69:69:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5KVmyX7-evckzm6nH01VXJpaas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189261/90B6F72E86AB11EBA9086350C4F9AE02/J5KVmyX7-evckzm6nH01VXJpaas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:27:90:0b:69:f6:44:95:3c:5c:d4:ec:d2:f0:ca:7a:87:c4: d2:fe:3b:6e:d0:27:19:10:7b:40:1a:4a:9d:f2:99:77:3a:11: d8:d8:67:e6:00:9a:a6:60:81:45:74:d1:92:66:f9:0f:ac:61: 3a:85:67:87:ec:7a:82:2a:51:fe:0d:e6:49:cb:9d:fb:1a:f1: 30:ea:13:87:86:75:40:12:13:55:a9:af:f4:22:ee:b5:60:c2: d5:61:e6:e7:d5:01:68:ce:be:c7:dd:12:eb:4e:9c:0f:5c:71: 60:a8:a4:d8:05:3e:2e:65:86:9c:41:8b:ee:d9:a8:75:ac:82: ab:25:03:7d:3b:3d:ec:22:19:1e:95:d1:83:21:85:07:38:b0: e5:5c:78:0f:a5:33:21:87:96:c0:41:b4:9d:f7:88:8d:62:32: f5:1b:0d:51:8d:8a:53:a7:27:01:3f:be:34:6f:50:4a:5a:db: 96:99:44:27:21:2a:a1:e3:ae:52:1b:c3:47:fa:0f:a8:4b:9e: 10:33:3e:4c:6a:8c:ea:16:d0:37:4a:49:94:8d:f3:eb:d0:1c: ac:49:7a:ca:f8:f0:2b:84:2b:7a:4d:1b:e7:4e:6d:49:f4:37: ae:c7:61:75:91:ed:4e:18:54:e8:d4:b4:8f:6b:0a:4a:ee:63: e0:e3:95:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyNjExMTAvBgNVBAUTKDI3OTI5NTlCMjVGQkY5RUJEQzkzMzlCQTlDN0QzNTU1 NzI2OTY5QUIwHhcNMjUwNzI0MjI0MzEyWhcNMjUwNzMxMjI0MzEyWjAYMRYwFAYD VQQDEw02ODgyYjcwMS0zYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/a1qyg99QlCQV1pA53DDMXpmsJo6miHwNSbbbsDw6Az9t/bPtpZ1UxTc3cw xAHHhGRzTk7BmaDwu5YmDtTmHqximCbYRcU8DcYr/U0W1b1CE7gfv8xTgmVnx1bA jQMUcYDvsJOmdyfrfodSsgzSw9VNHHqdtPGLKpMVK39KagmYXZ4Bkw+TqahK6OeW v6JDEbpsLlbaGeQJnVXF+cy71PmK0Pwt3H+FBBy5DvNMP6LY+lwcqjwVA6b2d1gF 9g+JzpqRUQEpQKNnZeFc77O7Ne4RlXsMiNRCQqUXGYnSqIWzhN0fYTGcvUBBtHXN l/GBkKpjpEWopwz3OCr17aM/2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJ3rHRq 8IoozJLaSzDiHM+fMPOMMB8GA1UdIwQYMBaAFCeSlZsl+/nr3JM5upx9NVVyaWmr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTI2MS85MEI2RjcyRTg2 QUIxMUVCQTkwODYzNTBDNEY5QUUwMi9KNUtWbXlYNy1ldmNrem02bkgwMVZYSnBh YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o1S1ZteVg3LWV2Y2t6bTZuSDAxVlhKcGFhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTI2MS85MEI2RjcyRTg2QUIxMUVCQTkwODYzNTBDNEY5QUUwMi9KNUtWbXlYNy1l dmNrem02bkgwMVZYSnBhYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByJ5ALafZElTxc1OzS8Mp6h8TS/jtu0CcZEHtAGkqd8pl3OhHY2Gfm AJqmYIFFdNGSZvkPrGE6hWeH7HqCKlH+DeZJy537GvEw6hOHhnVAEhNVqa/0Iu61 YMLVYebn1QFozr7H3RLrTpwPXHFgqKTYBT4uZYacQYvu2ah1rIKrJQN9Oz3sIhke ldGDIYUHOLDlXHgPpTMhh5bAQbSd94iNYjL1Gw1RjYpTpycBP740b1BKWtuWmUQn ISqh465SG8NH+g+oS54QMz5MaozqFtA3SkmUjfPr0BysSXrK+PArhCt6TRvnTm1J 9Deux2F1ke1OGFTo1LSPawpK7mPg45VX -----END CERTIFICATE-----Generated at Sat Jul 26 08:08:19 2025 by rpki-client