$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft File: JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft (raw, json) Hash identifier: hc5cQ1Z9yZLcV5H3lgv58mOexv1aLVPFlOmnH9a6WHs= Subject key identifier: 02:A0:E2:66:33:CA:AC:0F:72:BF:C6:F9:5C:F2:83:1C:85:B1:00:24 Authority key identifier: 25:CA:44:C1:0E:A5:92:E4:2B:13:6E:59:D0:8F:67:51:D1:81:8F:AB Certificate issuer: /CN=A91E9004/serialNumber=25CA44C10EA592E42B136E59D08F6751D1818FAB Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft Manifest number: 01D4 Signing time: Wed 23 Jul 2025 03:02:50 +0000 Manifest this update: Wed 23 Jul 2025 03:02:50 +0000 Manifest next update: Wed 30 Jul 2025 03:02:50 +0000 Files and hashes: 1: JcpEwQ6lkuQrE25Z0I9nUdGBj6s.crl (hash: qktUiOv0n34uwWCaz4N8yiMPg4n8tVjpV+j+g4yWgww=) 2: 6722D08898C711ED81343D33C4F9AE02.roa (hash: 3o5e8hyJbXp/j4htRJibyxHdp4yx/meEymWjr2xFXpw=) 3: 660CF80498C711ED81343D33C4F9AE02.roa (hash: wDHbsG2YGl+GXnSYTXXy/M2OjHqsvE/U5hf+DhsTgZo=) 4: 6696898E98C711ED81343D33C4F9AE02.roa (hash: EIHc4Dg0/wu4RlaphcEMaQew886A3AfHSeDepZKruxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.crl rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9004, serialNumber=25CA44C10EA592E42B136E59D08F6751D1818FAB Validity Not Before: Jul 23 03:02:50 2025 GMT Not After : Jul 30 03:02:50 2025 GMT Subject: CN=688050da-9b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:09:10:9c:8a:2c:eb:9c:28:1a:ed:73:83:7d: b2:ec:68:8e:0d:13:59:36:ce:44:a1:ab:07:de:11: 29:03:e9:dd:09:49:b7:82:df:29:5c:8a:f5:2a:c9: 50:61:a2:23:ab:a4:68:d0:08:69:d8:72:65:71:95: 13:55:e9:4e:27:c3:1b:6a:c4:8d:3d:81:f3:a9:1a: 07:46:81:e9:17:ae:1c:79:1a:b2:d1:30:09:d2:bd: 7e:5f:9a:df:3f:82:59:e4:37:85:81:2e:17:73:5f: 4b:0a:95:c1:98:c1:c8:56:b5:c1:c4:6e:58:26:ef: a3:61:d5:60:00:96:45:bb:c2:1a:63:1c:33:c4:37: 4a:c7:af:80:62:73:f4:49:14:30:66:5e:09:07:69: f8:f6:fa:85:0a:8a:e0:90:e5:5f:83:fe:4b:cc:c4: 2b:e2:a0:f8:31:bb:b5:ff:34:75:34:20:16:56:4a: d3:3a:c0:b5:28:b2:80:44:e1:77:53:1f:f4:ca:8d: 16:b5:63:b3:b5:29:23:77:a1:06:5c:7e:56:e8:cc: 60:22:a1:2d:45:bd:d8:aa:07:bd:78:55:3d:64:ac: 0c:71:35:e2:ff:5e:3b:f5:b3:2a:3e:20:42:ac:da: 1d:6b:39:96:ea:d8:cd:99:3d:1d:c0:ab:6f:0f:24: fd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A0:E2:66:33:CA:AC:0F:72:BF:C6:F9:5C:F2:83:1C:85:B1:00:24 X509v3 Authority Key Identifier: keyid:25:CA:44:C1:0E:A5:92:E4:2B:13:6E:59:D0:8F:67:51:D1:81:8F:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9004/5B82EA9098C411ED9871E431C4F9AE02/JcpEwQ6lkuQrE25Z0I9nUdGBj6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:fd:6c:9e:3f:69:be:f7:52:98:46:61:40:ce:de:20:f9:2b: db:b0:41:eb:8e:ff:9c:6d:8d:14:e2:88:ce:64:87:6a:99:68: ed:b9:80:50:a3:40:57:a3:fa:b6:ec:f5:ff:76:e2:51:ca:cb: 3e:08:e0:b9:e8:83:b4:39:44:1d:c0:68:a8:4f:fd:69:c5:ba: 37:0d:f9:16:62:30:63:87:7e:5a:36:9e:4a:03:c2:aa:8d:ff: f6:11:1a:75:5e:e3:d8:dd:b0:e7:fa:8a:af:ce:12:3a:82:33: d7:51:b0:8c:2e:e2:68:03:96:5c:07:cf:49:4d:1d:eb:f1:00: f8:f9:3e:a8:8a:ca:08:11:49:d4:e3:a8:56:3d:dc:af:0e:a7: 5b:55:d8:df:9d:a2:85:03:8e:e4:e5:6f:ea:17:79:af:0f:92: b6:6b:2b:aa:c7:08:2d:c8:78:9b:bc:98:d9:f4:45:50:ab:09: eb:c0:ae:05:1c:fa:96:41:b3:b0:3b:47:f9:62:77:cc:64:96: ba:f9:a7:4c:ce:fb:d7:83:a2:b5:3d:f4:7b:f4:e5:03:ea:87: 72:fe:2d:d7:a5:e2:55:c0:4a:97:29:6f:bf:f4:b1:9a:af:27: 43:1a:af:fa:ef:17:bb:5f:da:89:66:99:fa:11:62:28:17:40: d7:9f:4f:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkwMDQxMTAvBgNVBAUTKDI1Q0E0NEMxMEVBNTkyRTQyQjEzNkU1OUQwOEY2NzUx RDE4MThGQUIwHhcNMjUwNzIzMDMwMjUwWhcNMjUwNzMwMDMwMjUwWjAYMRYwFAYD VQQDEw02ODgwNTBkYS05YjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswkQnIos65woGu1zg32y7GiODRNZNs5EoasH3hEpA+ndCUm3gt8pXIr1KslQ YaIjq6Ro0Ahp2HJlcZUTVelOJ8MbasSNPYHzqRoHRoHpF64ceRqy0TAJ0r1+X5rf P4JZ5DeFgS4Xc19LCpXBmMHIVrXBxG5YJu+jYdVgAJZFu8IaYxwzxDdKx6+AYnP0 SRQwZl4JB2n49vqFCorgkOVfg/5LzMQr4qD4Mbu1/zR1NCAWVkrTOsC1KLKAROF3 Ux/0yo0WtWOztSkjd6EGXH5W6MxgIqEtRb3Yqge9eFU9ZKwMcTXi/1479bMqPiBC rNodazmW6tjNmT0dwKtvDyT9KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKg4mYz yqwPcr/G+VzygxyFsQAkMB8GA1UdIwQYMBaAFCXKRMEOpZLkKxNuWdCPZ1HRgY+r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTAwNC81QjgyRUE5MDk4 QzQxMUVEOTg3MUU0MzFDNEY5QUUwMi9KY3BFd1E2bGt1UXJFMjVaMEk5blVkR0Jq NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pjcEV3UTZsa3VRckUyNVowSTluVWRHQmo2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTAwNC81QjgyRUE5MDk4QzQxMUVEOTg3MUU0MzFDNEY5QUUwMi9KY3BFd1E2bGt1 UXJFMjVaMEk5blVkR0JqNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7/WyeP2m+91KYRmFAzt4g+SvbsEHrjv+cbY0U4ojOZIdqmWjtuYBQ o0BXo/q27PX/duJRyss+COC56IO0OUQdwGioT/1pxbo3DfkWYjBjh35aNp5KA8Kq jf/2ERp1XuPY3bDn+oqvzhI6gjPXUbCMLuJoA5ZcB89JTR3r8QD4+T6oisoIEUnU 46hWPdyvDqdbVdjfnaKFA47k5W/qF3mvD5K2ayuqxwgtyHibvJjZ9EVQqwnrwK4F HPqWQbOwO0f5YnfMZJa6+adMzvvXg6K1PfR79OUD6ody/i3XpeJVwEqXKW+/9LGa rydDGq/67xe7X9qJZpn6EWIoF0DXn09z -----END CERTIFICATE-----Generated at Wed Jul 23 08:25:19 2025 by rpki-client