$ rpki-client -vvf rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft File: jBwU3BZ027aLSUMBWHs9L5jtcBs.mft (raw, json) Hash identifier: 4+zolRWAV4zyGj1Wpvu2EKyoBQwlFkYGR2pTitOdfis= Subject key identifier: 5A:DB:2D:76:32:04:D3:33:EE:8B:78:C4:54:68:3A:47:F8:CC:A2:A9 Authority key identifier: 8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B Certificate issuer: /CN=A912ECA4/serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft Manifest number: F8 Signing time: Tue 01 Jul 2025 05:43:48 +0000 Manifest this update: Tue 01 Jul 2025 05:43:47 +0000 Manifest next update: Tue 08 Jul 2025 05:43:47 +0000 Files and hashes: 1: jBwU3BZ027aLSUMBWHs9L5jtcBs.crl (hash: EG+xoLislOC7jEE9lsodEO/XMsccKZn4wBEA2hYBbYs=) 2: 24241410E2A211EEBFC9412EC4F9AE02.roa (hash: /HUgZFHQdOKqVGsoyIo8SC7cdtj7Z66CHfzRpJ6gBOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ECA4, serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Validity Not Before: Jul 1 05:43:47 2025 GMT Not After : Jul 8 05:43:47 2025 GMT Subject: CN=68637594-ba19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6e:e1:b5:9c:0c:15:0c:61:fa:64:51:cf:10: 1c:f6:f4:ac:0f:cc:4f:4d:d2:62:7f:ae:dd:51:dd: 13:85:b5:42:66:56:13:fa:0f:22:aa:98:cc:bd:f5: 16:42:ee:ec:45:0b:cb:2b:27:1b:8c:db:37:25:48: 9f:f1:2d:e4:5a:43:df:29:61:09:57:e1:ac:5c:ca: 2e:06:e7:41:ed:8e:c1:87:8b:76:9c:80:42:80:de: c0:1b:9c:80:7d:15:60:0a:1d:74:44:5c:72:7a:92: e5:fd:db:9a:f9:05:4f:8f:a8:cf:87:53:65:e5:a4: ac:dd:af:61:2f:9d:09:97:df:bf:6b:89:23:9b:3f: 94:e1:8c:31:c2:6c:42:43:51:60:80:1e:ff:90:b3: 4b:9d:09:4b:58:07:f0:5c:2b:72:7d:d8:c7:41:b1: 3a:df:86:ee:e4:b5:a0:aa:84:9f:a1:35:f3:df:cf: 1a:f4:4e:07:6f:c5:8a:4f:1f:5a:9d:7a:c4:ac:d4: 13:8a:af:df:43:86:7e:d8:56:ed:d8:7f:64:5a:af: 7e:54:63:ce:14:3c:76:84:8a:27:ae:cd:ba:6c:a8: 77:a7:34:da:65:e6:24:ad:83:e9:7e:5a:18:d5:02: b8:60:8e:ab:4c:ed:82:84:a3:da:31:41:17:36:23: f8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DB:2D:76:32:04:D3:33:EE:8B:78:C4:54:68:3A:47:F8:CC:A2:A9 X509v3 Authority Key Identifier: keyid:8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:92:2d:04:7d:dd:b7:58:2a:6a:4c:a4:7b:ee:09:1c:b9:3b: dd:1a:dc:70:ff:3d:35:b0:6b:61:96:1b:0d:5b:cc:42:4f:f7: e6:55:0b:b3:c5:ea:59:da:74:16:b0:b1:5f:a6:9b:71:e1:ee: c7:ca:46:f6:a9:9a:61:e8:a8:70:6e:76:0c:79:9a:c5:b0:61: 11:b8:f1:01:6d:7b:fc:98:3a:7f:39:26:c5:3f:4d:dc:bf:81: 2a:dd:8c:db:e3:8a:71:82:93:86:aa:86:41:44:3e:28:73:24: 25:2b:cf:d9:d8:9b:eb:a7:db:d4:20:cc:7c:99:3b:07:07:36: 75:85:75:89:e7:e0:c0:f3:3d:03:b9:37:4f:5d:b4:8f:05:29: bd:d6:3a:08:15:4c:4e:5e:79:81:21:a2:d6:87:a5:b3:aa:36: 90:77:9b:da:44:6b:db:76:34:af:b3:a6:6e:3c:2f:28:80:28: f2:04:5d:88:0c:22:16:10:57:37:f3:2d:3b:59:7e:7e:86:c9: b3:b7:2a:85:53:45:0c:84:5b:7d:39:d4:9d:d5:a3:22:16:52: b1:75:b4:b6:6e:67:bf:a6:07:b1:ae:7d:1a:c2:af:a2:04:61: 90:fa:d5:69:0d:ad:55:5a:0a:94:cb:fd:c5:48:95:5a:6e:0f: 43:b5:f0:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVDQTQxMTAvBgNVBAUTKDhDMUMxNERDMTY3NERCQjY4QjQ5NDMwMTU4N0IzRDJG OThFRDcwMUIwHhcNMjUwNzAxMDU0MzQ3WhcNMjUwNzA4MDU0MzQ3WjAYMRYwFAYD VQQDEw02ODYzNzU5NC1iYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm7htZwMFQxh+mRRzxAc9vSsD8xPTdJif67dUd0ThbVCZlYT+g8iqpjMvfUW Qu7sRQvLKycbjNs3JUif8S3kWkPfKWEJV+GsXMouBudB7Y7Bh4t2nIBCgN7AG5yA fRVgCh10RFxyepLl/dua+QVPj6jPh1Nl5aSs3a9hL50Jl9+/a4kjmz+U4YwxwmxC Q1FggB7/kLNLnQlLWAfwXCtyfdjHQbE634bu5LWgqoSfoTXz388a9E4Hb8WKTx9a nXrErNQTiq/fQ4Z+2Fbt2H9kWq9+VGPOFDx2hIonrs26bKh3pzTaZeYkrYPpfloY 1QK4YI6rTO2ChKPaMUEXNiP4LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrbLXYy BNMz7ot4xFRoOkf4zKKpMB8GA1UdIwQYMBaAFIwcFNwWdNu2i0lDAVh7PS+Y7XAb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUNBNC80ODVGMzM2QURD RUQxMUVFQkJCRjQwMkZDNEY5QUUwMi9qQndVM0JaMDI3YUxTVU1CV0hzOUw1anRj QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pCd1UzQlowMjdhTFNVTUJXSHM5TDVqdGNCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RUNBNC80ODVGMzM2QURDRUQxMUVFQkJCRjQwMkZDNEY5QUUwMi9qQndVM0JaMDI3 YUxTVU1CV0hzOUw1anRjQnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYki0Efd23WCpqTKR77gkcuTvdGtxw/z01sGthlhsNW8xCT/fmVQuz xepZ2nQWsLFfpptx4e7Hykb2qZph6KhwbnYMeZrFsGERuPEBbXv8mDp/OSbFP03c v4Eq3Yzb44pxgpOGqoZBRD4ocyQlK8/Z2Jvrp9vUIMx8mTsHBzZ1hXWJ5+DA8z0D uTdPXbSPBSm91joIFUxOXnmBIaLWh6WzqjaQd5vaRGvbdjSvs6ZuPC8ogCjyBF2I DCIWEFc38y07WX5+hsmztyqFU0UMhFt9OdSd1aMiFlKxdbS2bme/pgexrn0awq+i BGGQ+tVpDa1VWgqUy/3FSJVabg9DtfCX -----END CERTIFICATE-----Generated at Tue Jul 1 19:55:01 2025 by rpki-client