$ rpki-client -vvf rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft File: JbCzFZvpDPGiOyUhpSER_wOQXvc.mft (raw, json) Hash identifier: naFMkBfMN3Y989IdRTQ69pQjOYqrQ99vxVe0etlRDIY= Subject key identifier: E6:37:8C:23:84:98:13:20:B5:0F:B3:82:3C:3F:56:31:0C:93:92:1C Authority key identifier: 25:B0:B3:15:9B:E9:0C:F1:A2:3B:25:21:A5:21:11:FF:03:90:5E:F7 Certificate issuer: /CN=A919A716/serialNumber=25B0B3159BE90CF1A23B2521A52111FF03905EF7 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft Manifest number: 3A Signing time: Wed 23 Jul 2025 07:55:29 +0000 Manifest this update: Wed 23 Jul 2025 07:55:29 +0000 Manifest next update: Wed 30 Jul 2025 07:55:29 +0000 Files and hashes: 1: JbCzFZvpDPGiOyUhpSER_wOQXvc.crl (hash: NrL5H35jf2IhhJcbqvTZC5e/cwY9sJCWNgiNVABwl7I=) 2: 3051CA240FBB11F0B9C1D274C4F9AE02.roa (hash: LQXESBC03M55eTRwU/sXkaRTACDEQkRKoyFYlNpa2vw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.crl rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A716, serialNumber=25B0B3159BE90CF1A23B2521A52111FF03905EF7 Validity Not Before: Jul 23 07:55:29 2025 GMT Not After : Jul 30 07:55:29 2025 GMT Subject: CN=68809571-c097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:05:b5:71:04:71:29:93:e2:11:0e:f5:28:b7: 4c:88:2f:10:e3:98:fc:19:0d:96:ce:f8:04:73:3b: 23:0c:1a:7d:a7:be:ab:96:fe:d5:33:2c:02:2e:a3: 79:f0:fc:90:8b:c7:75:0a:aa:70:99:5d:62:e5:c7: 9a:9c:71:3b:25:49:ff:71:06:e1:ea:5d:23:4b:86: 99:94:bb:95:14:9b:7a:9a:7e:13:eb:c3:5d:6a:f0: af:ab:a0:9a:7f:0d:ec:ee:7c:0d:c2:26:4a:88:a5: b3:67:94:2a:7c:fd:42:e3:2f:51:5a:f8:da:70:cc: fa:a8:54:53:10:53:0a:fa:35:b8:0f:2e:c3:7f:d1: 99:8a:77:f3:ad:6a:9e:82:e2:fe:31:7c:48:47:e2: 92:6d:83:55:cc:e0:e8:b4:4a:85:eb:e8:bf:c4:af: 7a:f1:51:66:cf:23:e3:28:25:5b:0c:f9:61:90:bb: 4a:f8:6e:b3:a7:76:92:b2:1d:e6:4f:e5:e1:e5:69: b3:55:fb:67:a6:b6:0d:32:2e:bd:42:86:9e:74:58: 88:0f:97:85:66:78:19:28:0f:8b:9d:01:5b:08:ac: 99:c6:75:77:c5:e0:64:39:69:0f:05:c0:4e:08:b5: 23:03:95:93:63:44:e2:b9:bf:63:45:22:5c:09:aa: 1c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:37:8C:23:84:98:13:20:B5:0F:B3:82:3C:3F:56:31:0C:93:92:1C X509v3 Authority Key Identifier: keyid:25:B0:B3:15:9B:E9:0C:F1:A2:3B:25:21:A5:21:11:FF:03:90:5E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JbCzFZvpDPGiOyUhpSER_wOQXvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A716/6019D3FC0F9B11F0ABC84074C4F9AE02/JbCzFZvpDPGiOyUhpSER_wOQXvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:24:6c:3b:13:81:41:df:70:3c:18:1a:e1:24:9d:6b:14:ff: dd:50:ed:cb:e4:f0:80:1a:e1:77:1f:b3:dc:0e:4c:7c:d4:8c: 82:a8:77:b8:46:1f:f3:3d:df:8d:00:4d:cb:2a:9a:f3:42:a4: 66:9d:e9:da:5e:c9:f9:74:d1:84:55:35:a7:61:42:a4:77:02: 31:03:45:36:87:17:50:b1:17:47:f0:46:ea:7d:6b:ca:20:84: 0f:7d:f5:a5:6f:ff:f8:63:1a:f1:4c:a1:d9:e2:ea:cc:bc:b1: 66:49:51:ec:45:a0:3d:72:9e:c0:9f:68:40:28:39:35:5a:33: 19:d2:97:d6:6b:69:89:4d:40:b0:73:c9:ae:33:4f:06:ce:dc: c7:bd:21:7c:b6:cb:7b:62:b4:fd:b3:da:4c:51:0b:30:d8:3a: fa:2a:06:bc:9e:ea:fa:fd:62:e5:cb:18:7c:4a:50:8e:66:e6: 45:41:72:aa:97:ca:59:6f:85:a7:45:1c:b4:85:53:97:db:17: 25:2f:af:28:80:cc:41:77:19:2a:12:d9:66:67:1d:9e:5d:2b: 2f:3b:55:38:79:29:a4:81:d1:77:55:5f:49:fd:69:29:8e:e7: 4b:ec:77:5b:5e:71:d8:ec:50:fe:b4:2a:1a:0f:64:6a:42:e5: 21:dd:f7:03 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QTcxNjExMC8GA1UEBRMoMjVCMEIzMTU5QkU5MENGMUEyM0IyNTIxQTUyMTExRkYw MzkwNUVGNzAeFw0yNTA3MjMwNzU1MjlaFw0yNTA3MzAwNzU1MjlaMBgxFjAUBgNV BAMTDTY4ODA5NTcxLWMwOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvBbVxBHEpk+IRDvUot0yILxDjmPwZDZbO+ARzOyMMGn2nvquW/tUzLAIuo3nw /JCLx3UKqnCZXWLlx5qccTslSf9xBuHqXSNLhpmUu5UUm3qafhPrw11q8K+roJp/ DezufA3CJkqIpbNnlCp8/ULjL1Fa+NpwzPqoVFMQUwr6NbgPLsN/0ZmKd/Otap6C 4v4xfEhH4pJtg1XM4Oi0SoXr6L/Er3rxUWbPI+MoJVsM+WGQu0r4brOndpKyHeZP 5eHlabNV+2emtg0yLr1Chp50WIgPl4VmeBkoD4udAVsIrJnGdXfF4GQ5aQ8FwE4I tSMDlZNjROK5v2NFIlwJqhwhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5jeMI4SY EyC1D7OCPD9WMQyTkhwwHwYDVR0jBBgwFoAUJbCzFZvpDPGiOyUhpSER/wOQXvcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBNzE2LzYwMTlEM0ZDMEY5 QjExRjBBQkM4NDA3NEM0RjlBRTAyL0piQ3pGWnZwRFBHaU95VWhwU0VSX3dPUVh2 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSmJDekZadnBEUEdpT3lVaHBTRVJfd09RWHZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlB NzE2LzYwMTlEM0ZDMEY5QjExRjBBQkM4NDA3NEM0RjlBRTAyL0piQ3pGWnZwRFBH aU95VWhwU0VSX3dPUVh2Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFYkbDsTgUHfcDwYGuEknWsU/91Q7cvk8IAa4Xcfs9wOTHzUjIKod7hG H/M9340ATcsqmvNCpGad6dpeyfl00YRVNadhQqR3AjEDRTaHF1CxF0fwRup9a8og hA999aVv//hjGvFModni6sy8sWZJUexFoD1ynsCfaEAoOTVaMxnSl9ZraYlNQLBz ya4zTwbO3Me9IXy2y3titP2z2kxRCzDYOvoqBrye6vr9YuXLGHxKUI5m5kVBcqqX yllvhadFHLSFU5fbFyUvryiAzEF3GSoS2WZnHZ5dKy87VTh5KaSB0XdVX0n9aSmO 50vsd1tecdjsUP60KhoPZGpC5SHd9wM= -----END CERTIFICATE-----Generated at Thu Jul 24 12:14:40 2025 by rpki-client