$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft File: jPbyYoPglD4X1BKxnKKvLNYNRYc.mft (raw, json) Hash identifier: 1bQIsAarnYquaj0rMWR7mlKzb87eaWkBjlARJ6dq4ZM= Subject key identifier: 2B:A0:FF:51:88:7E:80:2D:19:2C:EB:21:4B:D7:86:6B:FF:75:F1:9D Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 Certificate issuer: /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Certificate serial: 0A64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft Manifest number: 0A56 Signing time: Thu 18 Sep 2025 19:56:15 +0000 Manifest this update: Thu 18 Sep 2025 19:56:15 +0000 Manifest next update: Thu 25 Sep 2025 19:56:15 +0000 Files and hashes: 1: jPbyYoPglD4X1BKxnKKvLNYNRYc.crl (hash: xVkeZAjf1LO6RbpSTM7nLz7xI35daBZk7DwjdmbBxTs=) 2: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (hash: NYdc2f4yDizOBPmg8EBE/rQVPUKcax5Hh13GoWVtgRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2660 (0xa64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B7EB, serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Validity Not Before: Sep 18 19:56:15 2025 GMT Not After : Sep 25 19:56:15 2025 GMT Subject: CN=68cc63df-06dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:59:43:39:96:d5:5a:32:0b:91:09:e7:47:26: 31:4c:30:42:43:03:fd:77:e1:c0:2c:2c:09:44:a5: 7a:dc:e0:93:33:46:b7:8b:d2:75:1e:f2:a3:1f:3a: b8:c7:30:98:43:a5:1d:70:46:0e:de:62:0b:25:01: ca:25:0e:31:98:86:16:ed:51:52:df:9e:b5:91:91: af:b4:81:a9:10:06:05:44:fb:d7:1d:5f:a2:2a:f7: 18:7b:dd:bd:d4:d3:12:af:2d:1e:ff:01:c9:5a:af: 0e:12:e4:7b:40:5f:d3:13:9a:e7:de:8f:55:b6:b9: 83:9e:53:4d:93:c6:da:81:d4:0f:09:0a:2b:37:8f: 93:b4:08:75:93:e6:86:c0:4a:06:e3:ba:d5:00:96: 96:72:8f:eb:73:6e:f2:f3:03:cd:d6:d3:d9:e0:39: 48:9c:b4:5b:87:ca:0d:bf:f1:5e:7d:56:c6:14:57: d5:75:63:7a:a0:48:fd:1f:d9:55:c4:1f:44:56:8b: 58:7b:6a:a0:cc:b9:f3:bc:0d:2f:57:44:b0:46:20: 30:ac:77:fe:b7:d7:3c:39:13:7e:4e:cf:d9:99:95: 51:b3:4e:72:d0:a4:ad:10:92:9f:d0:e2:35:a1:79: 9f:bc:37:28:3e:0f:b1:15:db:99:a7:ad:fd:86:14: 83:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A0:FF:51:88:7E:80:2D:19:2C:EB:21:4B:D7:86:6B:FF:75:F1:9D X509v3 Authority Key Identifier: keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ad:19:56:83:4e:d5:ee:a7:cc:d9:95:ee:f4:4d:51:66:82: 04:df:40:59:e8:b0:99:24:ed:a2:77:48:09:73:67:73:bd:54: b3:76:8d:5a:f0:6f:f6:bb:e5:cb:a1:49:a4:e3:b6:ca:53:c7: 3a:4b:4b:f3:39:5b:a3:ba:ea:68:6f:e4:83:49:b6:ee:ba:44: 99:07:41:81:a2:96:38:18:ce:d2:6a:86:f1:f3:59:74:ad:c0: 16:b5:6a:55:07:2e:00:5b:e1:51:cd:2d:d1:f6:25:66:47:4c: 55:df:3e:be:3b:42:8a:d3:6a:b1:fc:fa:b0:e6:a3:b7:e6:e5: 5b:04:ee:3f:23:25:83:99:87:51:80:0c:cb:27:e2:22:a8:ae: 6c:3f:06:93:b5:52:46:f9:77:c1:e6:ba:9e:43:26:04:27:08: f8:86:09:a1:f4:ab:3e:5f:0c:ef:d8:3e:37:91:18:c4:c1:20: 88:97:c7:09:b2:c6:f1:aa:80:00:f7:9d:fd:b9:f1:9b:db:8d: 64:19:ee:4c:ba:c8:6b:dd:28:05:e5:52:db:eb:72:8b:69:34: f1:2f:5f:94:11:90:06:9c:f0:c7:2d:b8:34:45:c6:6a:ad:16: 24:ea:dc:b0:eb:6d:0f:87:63:09:d7:89:94:8a:22:d9:66:51: 22:f0:98:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI3RUIxMTAvBgNVBAUTKDhDRjZGMjYyODNFMDk0M0UxN0Q0MTJCMTlDQTJBRjJD RDYwRDQ1ODcwHhcNMjUwOTE4MTk1NjE1WhcNMjUwOTI1MTk1NjE1WjAYMRYwFAYD VQQDEw02OGNjNjNkZi0wNmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFlDOZbVWjILkQnnRyYxTDBCQwP9d+HALCwJRKV63OCTM0a3i9J1HvKjHzq4 xzCYQ6UdcEYO3mILJQHKJQ4xmIYW7VFS3561kZGvtIGpEAYFRPvXHV+iKvcYe929 1NMSry0e/wHJWq8OEuR7QF/TE5rn3o9VtrmDnlNNk8bagdQPCQorN4+TtAh1k+aG wEoG47rVAJaWco/rc27y8wPN1tPZ4DlInLRbh8oNv/FefVbGFFfVdWN6oEj9H9lV xB9EVotYe2qgzLnzvA0vV0SwRiAwrHf+t9c8ORN+Ts/ZmZVRs05y0KStEJKf0OI1 oXmfvDcoPg+xFduZp639hhSDawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCug/1GI foAtGSzrIUvXhmv/dfGdMB8GA1UdIwQYMBaAFIz28mKD4JQ+F9QSsZyiryzWDUWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjdFQi83OTFGNEU3Njcz RTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xENFgxQkt4bktLdkxOWU5S WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQYnlZb1BnbEQ0WDFCS3huS0t2TE5ZTlJZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjdFQi83OTFGNEU3NjczRTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xE NFgxQkt4bktLdkxOWU5SWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtrRlWg07V7qfM2ZXu9E1RZoIE30BZ6LCZJO2id0gJc2dzvVSzdo1a 8G/2u+XLoUmk47bKU8c6S0vzOVujuupob+SDSbbuukSZB0GBopY4GM7Saobx81l0 rcAWtWpVBy4AW+FRzS3R9iVmR0xV3z6+O0KK02qx/Pqw5qO35uVbBO4/IyWDmYdR gAzLJ+IiqK5sPwaTtVJG+XfB5rqeQyYEJwj4hgmh9Ks+Xwzv2D43kRjEwSCIl8cJ ssbxqoAA9539ufGb241kGe5Mushr3SgF5VLb63KLaTTxL1+UEZAGnPDHLbg0RcZq rRYk6tyw620Ph2MJ14mUiiLZZlEi8Jj7 -----END CERTIFICATE-----Generated at Fri Sep 19 03:44:31 2025 by rpki-client