$ rpki-client -vvf rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft File: JbCzFZvpDPGiOyUhpSER_wOQXvc.mft (raw, json) Hash identifier: odwwQD6TGLvEgAeNqRkm/DUZBSTmtAc2fNX5a4AbpL0= Subject key identifier: 85:B7:91:26:D0:CA:09:8F:ED:9A:15:12:44:43:A0:24:4C:33:42:5E Authority key identifier: 25:B0:B3:15:9B:E9:0C:F1:A2:3B:25:21:A5:21:11:FF:03:90:5E:F7 Certificate issuer: /CN=A919A716/serialNumber=25B0B3159BE90CF1A23B2521A52111FF03905EF7 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft Manifest number: 39 Signing time: Mon 21 Jul 2025 07:46:29 +0000 Manifest this update: Mon 21 Jul 2025 07:46:29 +0000 Manifest next update: Mon 28 Jul 2025 07:46:29 +0000 Files and hashes: 1: JbCzFZvpDPGiOyUhpSER_wOQXvc.crl (hash: xtxs10uz0jJyvjwTxtRgvgShpYUClmnf/wvsyDfJJB0=) 2: 3051CA240FBB11F0B9C1D274C4F9AE02.roa (hash: LQXESBC03M55eTRwU/sXkaRTACDEQkRKoyFYlNpa2vw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.crl rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A716, serialNumber=25B0B3159BE90CF1A23B2521A52111FF03905EF7 Validity Not Before: Jul 21 07:46:29 2025 GMT Not After : Jul 28 07:46:29 2025 GMT Subject: CN=687df055-f3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cb:f6:23:4e:b3:bd:47:fa:af:db:06:57:d6: 00:bd:bd:63:94:4a:01:e7:62:5f:f8:de:86:1e:c0: 65:ca:b9:f6:e0:59:a6:ac:fc:52:79:f7:1d:ec:1e: 69:c5:2e:bb:66:e2:4c:bb:2e:ce:e9:d1:a0:64:df: ea:ef:45:d4:c9:b9:3e:f1:1e:7d:14:57:b5:02:fd: 02:f9:73:db:d5:7e:22:ce:f4:ee:72:17:7a:8f:68: 0a:ea:43:56:7c:d4:96:4d:16:f3:7a:15:bb:17:bb: 57:57:bb:65:1b:db:c3:c5:96:d1:7f:70:e6:fe:50: 12:a9:2c:80:ea:89:8e:4c:9c:2f:16:7a:2c:2a:a3: ec:4b:f5:7b:a1:cb:11:18:c3:7e:51:95:30:63:40: e2:19:01:64:05:62:c4:b0:19:9c:9f:38:26:19:4f: e3:12:27:af:97:4c:9b:26:1f:b3:a8:2f:a1:77:a4: af:ce:2e:40:70:cb:e4:14:d1:00:e1:fe:f9:2e:40: dc:b4:8b:b6:d2:06:e7:9d:67:42:04:c7:6f:93:e0: 3b:0b:fd:88:6b:19:7a:a9:d9:7d:9c:00:37:4e:d2: fb:a1:e7:a9:15:46:b7:26:cf:b3:f8:1e:0f:d3:0f: 71:0a:7c:dd:22:d6:10:92:a4:fa:44:6a:d3:08:08: 1d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B7:91:26:D0:CA:09:8F:ED:9A:15:12:44:43:A0:24:4C:33:42:5E X509v3 Authority Key Identifier: keyid:25:B0:B3:15:9B:E9:0C:F1:A2:3B:25:21:A5:21:11:FF:03:90:5E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:47:43:c6:f3:92:83:71:b3:f9:f2:68:92:36:e5:b7:3f:ee: b1:c3:d8:cb:7f:cc:4b:23:85:6b:3a:73:96:9a:0c:ba:f1:80: 0c:e2:e5:ca:50:de:13:ec:3d:e0:9d:53:f6:58:77:0f:fb:30: 82:83:00:12:59:56:93:d9:e8:49:0c:1d:d3:77:56:62:98:e2: c1:9d:72:1d:d9:92:41:93:ef:70:bc:67:49:da:5c:51:b5:9f: ed:49:e2:ec:cb:99:7b:50:ef:c6:b9:25:c6:eb:fe:78:b4:41: e6:95:15:f6:53:79:11:f5:52:96:ad:71:70:3b:d0:8f:56:4c: 83:4d:45:6f:30:2e:4b:12:9c:e5:bb:7d:92:65:60:76:28:f8: 51:7a:d0:ab:f7:e8:ad:1f:7a:5a:f0:3e:3d:34:f6:86:19:d7: c9:06:66:94:54:78:cc:c1:49:0c:89:cf:02:8c:8b:aa:92:c4: 07:1e:6c:82:08:8c:84:a5:3a:69:b9:82:19:d0:68:c8:cf:38: cf:1f:01:01:2b:96:59:35:88:d9:39:15:b0:1b:76:89:47:ef: 71:53:24:66:b3:99:cf:99:83:c9:52:d4:ea:e2:75:2f:e9:d1: b6:63:21:8f:dc:57:11:8f:0e:8f:18:9e:98:c1:32:2f:85:b4: 98:d6:4e:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QTcxNjExMC8GA1UEBRMoMjVCMEIzMTU5QkU5MENGMUEyM0IyNTIxQTUyMTExRkYw MzkwNUVGNzAeFw0yNTA3MjEwNzQ2MjlaFw0yNTA3MjgwNzQ2MjlaMBgxFjAUBgNV BAMTDTY4N2RmMDU1LWYzYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTy/YjTrO9R/qv2wZX1gC9vWOUSgHnYl/43oYewGXKufbgWaas/FJ59x3sHmnF Lrtm4ky7Ls7p0aBk3+rvRdTJuT7xHn0UV7UC/QL5c9vVfiLO9O5yF3qPaArqQ1Z8 1JZNFvN6FbsXu1dXu2Ub28PFltF/cOb+UBKpLIDqiY5MnC8Weiwqo+xL9XuhyxEY w35RlTBjQOIZAWQFYsSwGZyfOCYZT+MSJ6+XTJsmH7OoL6F3pK/OLkBwy+QU0QDh /vkuQNy0i7bSBuedZ0IEx2+T4DsL/YhrGXqp2X2cADdO0vuh56kVRrcmz7P4Hg/T D3EKfN0i1hCSpPpEatMICB39AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhbeRJtDK CY/tmhUSREOgJEwzQl4wHwYDVR0jBBgwFoAUJbCzFZvpDPGiOyUhpSER/wOQXvcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBNzE2LzYwMTlEM0ZDMEY5 QjExRjBBQkM4NDA3NEM0RjlBRTAyL0piQ3pGWnZwRFBHaU95VWhwU0VSX3dPUVh2 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSmJDekZadnBEUEdpT3lVaHBTRVJfd09RWHZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlB NzE2LzYwMTlEM0ZDMEY5QjExRjBBQkM4NDA3NEM0RjlBRTAyL0piQ3pGWnZwRFBH aU95VWhwU0VSX3dPUVh2Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEVHQ8bzkoNxs/nyaJI25bc/7rHD2Mt/zEsjhWs6c5aaDLrxgAzi5cpQ 3hPsPeCdU/ZYdw/7MIKDABJZVpPZ6EkMHdN3VmKY4sGdch3ZkkGT73C8Z0naXFG1 n+1J4uzLmXtQ78a5Jcbr/ni0QeaVFfZTeRH1UpatcXA70I9WTINNRW8wLksSnOW7 fZJlYHYo+FF60Kv36K0felrwPj009oYZ18kGZpRUeMzBSQyJzwKMi6qSxAcebIII jISlOmm5ghnQaMjPOM8fAQErllk1iNk5FbAbdolH73FTJGazmc+Zg8lS1OridS/p 0bZjIY/cVxGPDo8YnpjBMi+FtJjWTso= -----END CERTIFICATE-----Generated at Wed Jul 23 02:18:13 2025 by rpki-client