$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft File: jGb5wOZorJCB33ENYELfR0kLCrk.mft (raw, json) Hash identifier: b02P0+MOTlxkPBTYBMlHQx2FATc6158WtCNvdWzh/xc= Subject key identifier: 76:58:D0:37:EF:C5:41:F4:03:19:B1:0B:BA:D8:B8:C1:4F:B8:46:17 Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Certificate serial: 0C4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft Manifest number: 0C38 Signing time: Sun 20 Jul 2025 18:46:45 +0000 Manifest this update: Sun 20 Jul 2025 18:46:45 +0000 Manifest next update: Sun 27 Jul 2025 18:46:45 +0000 Files and hashes: 1: jGb5wOZorJCB33ENYELfR0kLCrk.crl (hash: ZOBp6NSJ67AG0cPb/br2wbSTozyDvKaGHGnSxbCXAZA=) 2: 90576660E19711EFA11C2227C4F9AE02.roa (hash: 4znOjftmOLUP9F0sqZtn3shUbp4rIvm9xbYnsSSpuqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3149 (0xc4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97F0, serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Validity Not Before: Jul 20 18:46:45 2025 GMT Not After : Jul 27 18:46:45 2025 GMT Subject: CN=687d3995-0b4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2d:6c:d8:95:d7:4f:70:29:6f:fa:43:5c:07: c6:fb:b7:b5:f3:a3:3e:51:24:b8:0f:50:37:32:3a: 0a:ba:e8:7c:ad:83:a7:a3:f8:22:31:97:3c:d8:ef: 6d:50:5e:6d:d7:1c:ea:13:3c:d1:7f:a9:68:ec:be: 9f:ee:07:43:e5:cb:2a:a5:ce:6e:04:2d:2a:40:7d: 3d:69:00:87:36:4f:dd:66:d6:15:b9:eb:19:d2:b0: 2e:80:b3:9e:76:a1:6b:d6:18:86:dc:c4:22:8b:b0: f4:30:39:89:68:cb:dd:13:de:eb:5c:40:4e:db:7c: 6f:38:67:fe:7d:8b:7a:a1:a3:6a:c4:6b:ec:f0:aa: 07:22:86:fa:f9:d2:ec:01:6b:2b:50:06:4a:34:1b: dd:b0:5f:8e:78:0b:38:74:3c:9a:02:64:44:b5:42: 8c:39:fc:26:a8:56:8d:e3:c6:ec:2c:1c:09:21:56: b4:28:06:03:53:00:c4:d9:1f:c3:64:fa:c2:85:09: 83:7b:7c:2e:c0:1a:87:eb:8b:1c:75:b4:bb:9f:22: bb:51:0c:90:65:eb:08:aa:83:b5:34:3f:eb:9c:f4: 54:ba:3f:68:fc:1e:c0:14:0d:e0:ff:05:82:df:67: 88:28:33:ad:e1:1e:b2:87:3f:67:1e:da:11:cd:b3: 76:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:58:D0:37:EF:C5:41:F4:03:19:B1:0B:BA:D8:B8:C1:4F:B8:46:17 X509v3 Authority Key Identifier: keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b1:cd:32:88:49:2a:a0:9b:f8:5b:c2:84:17:3d:9e:34:d5: 47:b2:94:f3:da:06:6b:e0:32:a0:d9:e1:8d:44:c6:14:bd:8f: 6a:c8:e7:f7:dc:f6:4e:67:4a:29:23:73:37:ad:c0:79:f6:d0: e0:ed:fc:75:f1:6d:88:64:ed:95:71:59:80:9b:62:f9:b8:ee: 14:19:dd:d1:2d:a8:7f:7a:45:07:bd:76:c2:fd:06:7b:5b:98: b6:2a:4c:8f:b2:44:41:3e:aa:b9:69:01:9d:a8:83:24:5a:75: 47:26:c9:c2:59:fd:b3:1b:b2:fb:84:36:7e:a4:c2:c2:a9:b7: 51:3a:a0:dd:37:88:95:62:97:eb:be:d1:38:cf:9b:24:40:5d: f9:53:0d:e4:90:29:f9:17:06:8e:d5:33:97:ab:bb:61:2f:24: 85:68:55:54:fc:ed:ab:ef:71:eb:73:64:67:e3:70:d5:68:10: 42:f2:19:8c:81:3a:f0:84:76:3a:45:02:b7:6e:01:04:dc:f0: ea:84:5f:20:50:b5:4d:b5:20:76:eb:c7:42:5f:de:98:c9:40: 93:f9:63:44:a0:36:42:20:7a:2b:85:84:36:21:f4:ff:b9:b1: df:db:3b:c4:44:9e:50:73:72:e8:2c:2b:01:82:89:37:e7:63: f2:71:f7:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RjAxMTAvBgNVBAUTKDhDNjZGOUMwRTY2OEFDOTA4MURGNzEwRDYwNDJERjQ3 NDkwQjBBQjkwHhcNMjUwNzIwMTg0NjQ1WhcNMjUwNzI3MTg0NjQ1WjAYMRYwFAYD VQQDEw02ODdkMzk5NS0wYjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy1s2JXXT3Apb/pDXAfG+7e186M+USS4D1A3MjoKuuh8rYOno/giMZc82O9t UF5t1xzqEzzRf6lo7L6f7gdD5csqpc5uBC0qQH09aQCHNk/dZtYVuesZ0rAugLOe dqFr1hiG3MQii7D0MDmJaMvdE97rXEBO23xvOGf+fYt6oaNqxGvs8KoHIob6+dLs AWsrUAZKNBvdsF+OeAs4dDyaAmREtUKMOfwmqFaN48bsLBwJIVa0KAYDUwDE2R/D ZPrChQmDe3wuwBqH64scdbS7nyK7UQyQZesIqoO1ND/rnPRUuj9o/B7AFA3g/wWC 32eIKDOt4R6yhz9nHtoRzbN2NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZY0Dfv xUH0AxmxC7rYuMFPuEYXMB8GA1UdIwQYMBaAFIxm+cDmaKyQgd9xDWBC30dJCwq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdGMC9BNjYzMTlGMDEy RDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JKQ0IzM0VOWUVMZlIwa0xD cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHYjV3T1pvckpDQjMzRU5ZRUxmUjBrTENyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdGMC9BNjYzMTlGMDEyRDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JK Q0IzM0VOWUVMZlIwa0xDcmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfsc0yiEkqoJv4W8KEFz2eNNVHspTz2gZr4DKg2eGNRMYUvY9qyOf3 3PZOZ0opI3M3rcB59tDg7fx18W2IZO2VcVmAm2L5uO4UGd3RLah/ekUHvXbC/QZ7 W5i2KkyPskRBPqq5aQGdqIMkWnVHJsnCWf2zG7L7hDZ+pMLCqbdROqDdN4iVYpfr vtE4z5skQF35Uw3kkCn5FwaO1TOXq7thLySFaFVU/O2r73Hrc2Rn43DVaBBC8hmM gTrwhHY6RQK3bgEE3PDqhF8gULVNtSB268dCX96YyUCT+WNEoDZCIHorhYQ2IfT/ ubHf2zvERJ5Qc3LoLCsBgok352PycfdB -----END CERTIFICATE-----Generated at Mon Jul 21 07:47:38 2025 by rpki-client