$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft File: JCq5H6fHpkrOd9m09mHijAsVuOA.mft (raw, json) Hash identifier: dgDzF1LRhtMcBFX1fHBqmviqXdUvSP6aFWjOBSD99QU= Subject key identifier: 53:11:D5:B1:C2:8F:55:3A:FB:07:CB:EB:D5:CE:32:3A:47:93:C5:E4 Authority key identifier: 24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 Certificate issuer: /CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft Manifest number: DD Signing time: Wed 03 Sep 2025 05:59:55 +0000 Manifest this update: Wed 03 Sep 2025 05:59:55 +0000 Manifest next update: Wed 10 Sep 2025 05:59:55 +0000 Files and hashes: 1: JCq5H6fHpkrOd9m09mHijAsVuOA.crl (hash: zwzuSXxe7QIWUXU48IhgRrcUNe1pWoLHfOxP28ySvUs=) 2: 95C79E36379611EF87CBA24DC4F9AE02.roa (hash: ZMHJbDurrQwg9LuHdJ4fXoBTwDMXXjxbFZ/gpf/dfBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E, serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Validity Not Before: Sep 3 05:59:55 2025 GMT Not After : Sep 10 05:59:55 2025 GMT Subject: CN=68b7d95b-8087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a4:94:c9:36:0b:fd:cf:e6:e3:7b:a9:fe:48: b9:fb:62:27:d5:d5:73:62:4d:59:44:0f:5a:ba:31: 8a:bc:bb:f0:49:99:db:b2:e8:2d:9d:d3:d1:ea:8f: cc:dd:cf:08:7c:78:7d:0c:94:c7:5c:0a:76:bf:2c: bd:83:42:67:d8:1f:ba:e5:5c:ac:15:01:5e:56:68: eb:01:e0:d2:59:a1:a8:ea:19:1e:50:11:73:0a:57: 30:29:c5:a9:25:82:7e:a8:19:99:87:4d:10:1e:d3: 76:bc:d5:02:0b:54:8e:4e:fd:dc:03:cd:34:53:18: 3c:64:67:fe:c3:8e:9f:8f:0f:9a:c4:63:ee:c3:cb: b4:37:65:e8:c6:e3:7b:37:21:0e:ad:36:69:47:64: c4:45:42:26:59:d6:1d:04:db:86:bd:0f:34:df:07: e4:68:70:86:e5:0a:d1:e7:73:53:5c:d4:95:4a:a3: 76:4f:36:49:92:62:b1:44:15:54:bc:e6:64:9c:89: f8:85:06:60:af:91:1a:52:ec:cd:d4:64:38:16:b5: 97:ec:8a:9c:cc:88:c8:87:b5:be:71:4f:21:58:ef: 85:9b:12:d7:2a:04:61:f7:8d:3b:89:c4:59:4c:32: 1d:b3:f8:01:cc:38:36:6e:31:9a:b3:f1:d4:f1:2a: 32:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:11:D5:B1:C2:8F:55:3A:FB:07:CB:EB:D5:CE:32:3A:47:93:C5:E4 X509v3 Authority Key Identifier: keyid:24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:6a:c3:ac:ad:41:e9:40:33:3d:c9:5e:20:f7:94:7e:83:a3: e9:78:10:40:e9:a4:52:6b:4d:2a:8e:59:87:8b:57:05:63:a9: 72:5d:e2:3f:57:a3:64:d3:37:de:c6:a3:f3:d4:87:43:53:6e: 17:db:28:f8:b9:31:d6:db:3a:9a:ae:df:83:cf:cb:53:d0:85: af:d0:3d:e7:9f:62:31:2f:81:81:dd:76:d2:1b:8b:69:b3:82: 70:61:6b:98:57:0a:dc:34:73:10:59:f1:cf:ce:a5:9a:93:c6: 8d:46:6f:1b:4c:16:14:77:33:d4:81:0b:04:32:fa:8d:fb:f4: fc:b7:bd:6c:0b:83:22:9a:6f:ed:8e:d6:16:fc:d4:f2:5c:9c: 4e:75:35:4e:0b:15:bf:cb:69:94:0e:98:e2:4e:49:b9:52:3d: c9:dc:09:5d:60:af:74:83:24:2c:f4:c2:7f:88:85:86:8a:bb: cf:59:61:8e:d4:93:1d:74:54:9a:0f:d6:a6:33:e2:fc:e6:56: 8c:fd:91:5d:5e:1c:22:66:77:be:96:47:92:d7:8d:2f:d3:f2: 3b:a1:ad:0b:ec:ab:94:5a:db:9a:77:d4:05:39:73:9b:2e:c3: 5e:f4:ab:a5:77:3e:23:9f:1a:4a:99:48:62:d4:e2:ad:57:c3: a9:a3:a5:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIyMkUxMTAvBgNVBAUTKDI0MkFCOTFGQTdDN0E2NEFDRTc3RDlCNEY2NjFFMjhD MEIxNUI4RTAwHhcNMjUwOTAzMDU1OTU1WhcNMjUwOTEwMDU1OTU1WjAYMRYwFAYD VQQDEw02OGI3ZDk1Yi04MDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqSUyTYL/c/m43up/ki5+2In1dVzYk1ZRA9aujGKvLvwSZnbsugtndPR6o/M 3c8IfHh9DJTHXAp2vyy9g0Jn2B+65VysFQFeVmjrAeDSWaGo6hkeUBFzClcwKcWp JYJ+qBmZh00QHtN2vNUCC1SOTv3cA800Uxg8ZGf+w46fjw+axGPuw8u0N2XoxuN7 NyEOrTZpR2TERUImWdYdBNuGvQ803wfkaHCG5QrR53NTXNSVSqN2TzZJkmKxRBVU vOZknIn4hQZgr5EaUuzN1GQ4FrWX7IqczIjIh7W+cU8hWO+FmxLXKgRh9407icRZ TDIds/gBzDg2bjGas/HU8SoycQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMR1bHC j1U6+wfL69XOMjpHk8XkMB8GA1UdIwQYMBaAFCQquR+nx6ZKznfZtPZh4owLFbjg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjIyRS84MzQxNUIzNjM3 OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi9KQ3E1SDZmSHBrck9kOW0wOW1IaWpBc1Z1 T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pDcTVINmZIcGtyT2Q5bTA5bUhpakFzVnVPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjIyRS84MzQxNUIzNjM3OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi9KQ3E1SDZmSHBr ck9kOW0wOW1IaWpBc1Z1T0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEasOsrUHpQDM9yV4g95R+g6PpeBBA6aRSa00qjlmHi1cFY6lyXeI/ V6Nk0zfexqPz1IdDU24X2yj4uTHW2zqart+Dz8tT0IWv0D3nn2IxL4GB3XbSG4tp s4JwYWuYVwrcNHMQWfHPzqWak8aNRm8bTBYUdzPUgQsEMvqN+/T8t71sC4Mimm/t jtYW/NTyXJxOdTVOCxW/y2mUDpjiTkm5Uj3J3AldYK90gyQs9MJ/iIWGirvPWWGO 1JMddFSaD9amM+L85laM/ZFdXhwiZne+lkeS140v0/I7oa0L7KuUWtuad9QFOXOb LsNe9Kuldz4jnxpKmUhi1OKtV8Opo6UO -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:36 2025 by rpki-client