$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft File: JTgA7RbtD_M39wQNDj3xFBwWFhw.mft (raw, json) Hash identifier: 0FuDAE+jBnkk59UfgyMKgcCDCbfO43tVDLT/7mdyUVw= Subject key identifier: 2F:6E:A0:16:CA:65:93:01:94:81:74:73:EF:91:F0:43:B9:B3:9F:3F Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft Manifest number: 020B Signing time: Wed 23 Jul 2025 02:36:06 +0000 Manifest this update: Wed 23 Jul 2025 02:36:05 +0000 Manifest next update: Wed 30 Jul 2025 02:36:05 +0000 Files and hashes: 1: JTgA7RbtD_M39wQNDj3xFBwWFhw.crl (hash: 13JGfTfqgYGu/C9k1undb7dzLBE2sMst0ZYiP/pED08=) 2: 2D215B32584111EDBE50107CC4F9AE02.roa (hash: up6WHjnsfS0bIxQesxTATm4WYD2tutF7YiezZwJi2Bc=) 3: ED685B8CDFA511EF8CC2890BC4F9AE02.roa (hash: NqrZmcVp/US1PncX6fEsquuB9U+PwjdNaQFtiMmKje0=) 4: D45117DEEBF311EEAECC405FC4F9AE02.roa (hash: L3m+NQNaRyXNu/ZiemkthKYLeI1gIGN4M/qfSkh3IEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 02:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C9, serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Validity Not Before: Jul 23 02:36:05 2025 GMT Not After : Jul 30 02:36:05 2025 GMT Subject: CN=68804a96-12ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a2:80:97:32:4c:76:71:0c:5a:da:11:77:aa: 7a:b0:f7:5c:ed:e1:7e:89:a4:af:f4:53:f7:24:85: 86:42:53:2f:a1:ae:c2:97:1b:55:16:2c:3f:4d:7b: 50:93:38:82:ba:bb:6b:a3:62:dc:47:1f:83:5a:2f: 80:cb:cf:8c:c7:b7:20:71:e7:64:b4:d2:34:5c:23: a4:eb:23:fc:d2:79:d6:b0:d1:55:d7:36:e3:4d:ce: d1:8a:1e:2b:16:8f:e0:da:21:af:f9:1c:2a:21:d1: 93:9a:d6:91:4c:45:8a:00:82:0b:f0:7d:74:8c:f5: ca:fd:dd:cc:0c:98:31:85:d8:a0:9a:7b:ce:a3:6d: 77:fd:1e:13:7c:ad:c6:01:01:77:2e:f1:c1:74:a5: c7:e2:d1:1d:91:a3:67:53:e1:7b:20:90:1d:7e:04: dc:e0:6e:6b:70:95:9d:de:b0:a3:97:8b:46:66:0d: 62:64:04:e2:8d:ee:a6:e4:6b:25:2d:5e:f7:37:c9: a4:64:d8:cf:eb:f4:5e:d1:94:bf:e5:5b:05:ea:3f: 13:e3:6f:b8:23:05:c2:5c:2b:c1:2e:1b:4a:33:26: 14:77:a7:8e:4b:3c:30:a2:1c:3a:fc:0c:3c:9d:40: b5:b1:03:a4:f7:c2:a4:4c:16:bd:62:0b:6e:2e:b1: a7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6E:A0:16:CA:65:93:01:94:81:74:73:EF:91:F0:43:B9:B3:9F:3F X509v3 Authority Key Identifier: keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:5b:3e:db:e3:34:cf:85:62:e1:81:66:21:14:cc:3e:f9:46: 3a:fa:8f:85:42:b4:d8:27:42:5c:18:6c:b8:c3:2f:8a:ba:48: aa:08:bd:4f:cb:01:87:04:d7:5f:d3:55:c4:37:e2:04:01:9e: e3:02:f4:53:6d:4c:b3:5d:69:1b:9f:f0:43:7b:8a:8d:45:06: 4e:2b:24:ac:42:3b:2e:2e:03:ee:5b:a1:25:73:45:f2:1b:07: c9:5a:5c:1e:a4:52:60:ab:77:b4:b3:14:a9:58:cd:91:3a:ae: a3:83:f6:de:e5:18:9a:ad:5f:21:c8:47:15:bd:33:32:b0:74: 01:5a:e6:51:67:18:ef:84:84:70:94:4b:18:23:a0:1b:ec:a9: ad:44:1b:0b:a3:2b:de:90:2d:09:01:0d:9b:af:d0:08:60:73: 15:cb:0c:db:8a:1b:75:cc:65:78:da:2b:33:e6:ef:bb:1f:6a: 73:d9:db:bf:d4:46:9d:67:9f:4d:ef:d5:cb:a3:f2:a4:80:d5: 58:d4:87:08:f9:ce:ca:03:e0:6c:24:1d:76:54:b9:9f:e9:bb: 9f:9e:a5:8e:bc:7a:a3:97:1b:10:7a:39:53:d7:f9:85:4b:16: 4b:76:c6:da:a5:ba:c2:a2:95:10:32:fc:bf:06:5d:a0:cb:eb: 9b:52:56:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzkxMTAvBgNVBAUTKDI1MzgwMEVEMTZFRDBGRjMzN0Y3MDQwRDBFM0RGMTE0 MUMxNjE2MUMwHhcNMjUwNzIzMDIzNjA1WhcNMjUwNzMwMDIzNjA1WjAYMRYwFAYD VQQDEw02ODgwNGE5Ni0xMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaKAlzJMdnEMWtoRd6p6sPdc7eF+iaSv9FP3JIWGQlMvoa7ClxtVFiw/TXtQ kziCurtro2LcRx+DWi+Ay8+Mx7cgcedktNI0XCOk6yP80nnWsNFV1zbjTc7Rih4r Fo/g2iGv+RwqIdGTmtaRTEWKAIIL8H10jPXK/d3MDJgxhdigmnvOo213/R4TfK3G AQF3LvHBdKXH4tEdkaNnU+F7IJAdfgTc4G5rcJWd3rCjl4tGZg1iZATije6m5Gsl LV73N8mkZNjP6/Re0ZS/5VsF6j8T42+4IwXCXCvBLhtKMyYUd6eOSzwwohw6/Aw8 nUC1sQOk98KkTBa9YgtuLrGntQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9uoBbK ZZMBlIF0c++R8EO5s58/MB8GA1UdIwQYMBaAFCU4AO0W7Q/zN/cEDQ498RQcFhYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOS8yMTk3QjA5MjU4 M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERfTTM5d1FORGozeEZCd1dG aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pUZ0E3UmJ0RF9NMzl3UU5EajN4RkJ3V0Zody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjhDOS8yMTk3QjA5MjU4M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERf TTM5d1FORGozeEZCd1dGaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfWz7b4zTPhWLhgWYhFMw++UY6+o+FQrTYJ0JcGGy4wy+KukiqCL1P ywGHBNdf01XEN+IEAZ7jAvRTbUyzXWkbn/BDe4qNRQZOKySsQjsuLgPuW6Elc0Xy GwfJWlwepFJgq3e0sxSpWM2ROq6jg/be5RiarV8hyEcVvTMysHQBWuZRZxjvhIRw lEsYI6Ab7KmtRBsLoyvekC0JAQ2br9AIYHMVywzbiht1zGV42isz5u+7H2pz2du/ 1EadZ59N79XLo/KkgNVY1IcI+c7KA+BsJB12VLmf6bufnqWOvHqjlxsQejlT1/mF SxZLdsbapbrCopUQMvy/Bl2gy+ubUlY/ -----END CERTIFICATE-----Generated at Wed Jul 23 18:55:34 2025 by rpki-client