$ rpki-client -vvf rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft File: jBwU3BZ027aLSUMBWHs9L5jtcBs.mft (raw, json) Hash identifier: 97rPTKzLyYGfNAmLoj2uq1lEk6y1czJI3c3vZkj/JKM= Subject key identifier: FD:98:FE:E5:20:C3:39:A7:84:84:64:06:0E:E9:16:E2:D3:A6:89:C0 Authority key identifier: 8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B Certificate issuer: /CN=A912ECA4/serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft Manifest number: 0112 Signing time: Thu 21 Aug 2025 05:04:14 +0000 Manifest this update: Thu 21 Aug 2025 05:04:13 +0000 Manifest next update: Thu 28 Aug 2025 05:04:13 +0000 Files and hashes: 1: jBwU3BZ027aLSUMBWHs9L5jtcBs.crl (hash: v2ezwbLJH4VMIfdbvbd0l6fSE+J9zsoTA0A/jnCR/X0=) 2: 24241410E2A211EEBFC9412EC4F9AE02.roa (hash: /HUgZFHQdOKqVGsoyIo8SC7cdtj7Z66CHfzRpJ6gBOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ECA4, serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Validity Not Before: Aug 21 05:04:13 2025 GMT Not After : Aug 28 05:04:13 2025 GMT Subject: CN=68a6a8cd-fab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:18:3f:ec:db:4c:5b:b3:4f:2a:8a:78:a2:f2: 68:57:3e:0f:3b:11:69:2f:bd:6c:d5:6e:b0:46:fb: 0e:dc:97:41:9a:eb:62:19:d4:cb:24:79:30:eb:6d: 9b:75:b6:0e:2e:96:a0:ad:00:42:56:04:e5:0c:de: 2c:f0:57:ac:2c:67:9f:6c:b5:db:c8:b1:74:20:11: 9b:a0:40:dc:bc:00:04:58:a8:26:0d:e8:3a:c3:1e: ad:f1:52:7d:ae:c9:b6:e1:78:b2:5a:ac:00:2e:9f: 67:97:8f:da:7e:20:63:34:87:a6:6b:8f:fc:60:d0: 36:65:bb:fc:c3:60:11:59:87:1b:11:a2:2c:25:66: 04:20:5f:fb:f0:33:cd:00:0b:59:b9:08:98:ff:42: d6:a3:d7:2e:f3:18:4f:7c:bc:ac:93:ef:3b:6c:aa: 21:d3:01:27:50:25:af:8b:c8:ba:df:3d:d1:ce:9f: 04:d5:8f:75:f4:00:a2:4d:08:b9:d4:fb:2c:f2:93: 81:26:e4:51:03:4b:e0:57:e2:9f:9e:51:3d:5c:2f: b5:b8:ca:9d:a4:05:b6:3e:07:b3:4e:e8:76:9d:f5: f2:c8:eb:f9:e1:a7:ca:b2:49:b8:21:f4:04:0a:8c: 8f:27:ee:ea:8a:86:87:d0:49:7c:f4:c4:75:76:64: 7f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:98:FE:E5:20:C3:39:A7:84:84:64:06:0E:E9:16:E2:D3:A6:89:C0 X509v3 Authority Key Identifier: keyid:8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:36:50:a3:47:59:d1:e0:1f:b2:b9:ea:a8:94:46:6f:d0:fa: 73:4f:b8:2b:04:29:51:86:83:64:95:9a:a8:cd:4d:b8:3b:cd: 36:5f:1a:3b:80:38:8f:c5:f6:ff:c1:2e:cb:82:1c:a0:00:e8: 66:6a:43:b6:11:97:77:fd:58:6f:39:11:7d:a4:e3:f7:73:02: 0a:4d:a6:57:ab:a5:48:45:9a:7c:9a:7b:50:8d:69:84:27:01: e7:c6:21:26:a4:f9:81:a4:33:ef:9d:94:f3:8a:28:72:ac:9e: 16:85:18:5e:1e:31:3b:e3:80:4a:a6:a5:07:9d:fb:63:78:66: 4b:4f:ef:0a:92:14:e4:d3:27:a4:04:90:44:58:c9:6d:f5:ff: c8:14:34:df:ac:5a:c5:a4:0f:20:e7:9e:0e:eb:3e:c7:21:ef: 19:9e:c3:e5:4a:43:fc:22:70:b5:bc:c8:78:a3:a7:76:18:a2: ef:b0:86:44:29:94:70:20:89:89:93:85:0e:7e:ed:2b:6b:5d: 90:f1:da:49:8f:cd:b3:d8:a0:21:66:c7:9d:cb:42:31:e5:58: 45:2c:7c:7f:2f:8f:ce:e0:00:0f:95:c5:1b:92:d0:53:18:33: ea:8f:7f:ee:a5:b6:da:29:ec:d4:f4:16:8f:43:5b:aa:72:a3: c4:3e:79:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVDQTQxMTAvBgNVBAUTKDhDMUMxNERDMTY3NERCQjY4QjQ5NDMwMTU4N0IzRDJG OThFRDcwMUIwHhcNMjUwODIxMDUwNDEzWhcNMjUwODI4MDUwNDEzWjAYMRYwFAYD VQQDEw02OGE2YThjZC1mYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRg/7NtMW7NPKop4ovJoVz4POxFpL71s1W6wRvsO3JdBmutiGdTLJHkw622b dbYOLpagrQBCVgTlDN4s8FesLGefbLXbyLF0IBGboEDcvAAEWKgmDeg6wx6t8VJ9 rsm24XiyWqwALp9nl4/afiBjNIema4/8YNA2Zbv8w2ARWYcbEaIsJWYEIF/78DPN AAtZuQiY/0LWo9cu8xhPfLysk+87bKoh0wEnUCWvi8i63z3Rzp8E1Y919ACiTQi5 1Pss8pOBJuRRA0vgV+KfnlE9XC+1uMqdpAW2PgezTuh2nfXyyOv54afKskm4IfQE CoyPJ+7qioaH0El89MR1dmR/tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2Y/uUg wzmnhIRkBg7pFuLTponAMB8GA1UdIwQYMBaAFIwcFNwWdNu2i0lDAVh7PS+Y7XAb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUNBNC80ODVGMzM2QURD RUQxMUVFQkJCRjQwMkZDNEY5QUUwMi9qQndVM0JaMDI3YUxTVU1CV0hzOUw1anRj QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pCd1UzQlowMjdhTFNVTUJXSHM5TDVqdGNCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RUNBNC80ODVGMzM2QURDRUQxMUVFQkJCRjQwMkZDNEY5QUUwMi9qQndVM0JaMDI3 YUxTVU1CV0hzOUw1anRjQnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHNlCjR1nR4B+yueqolEZv0PpzT7grBClRhoNklZqozU24O802Xxo7 gDiPxfb/wS7LghygAOhmakO2EZd3/VhvORF9pOP3cwIKTaZXq6VIRZp8mntQjWmE JwHnxiEmpPmBpDPvnZTziihyrJ4WhRheHjE744BKpqUHnftjeGZLT+8KkhTk0yek BJBEWMlt9f/IFDTfrFrFpA8g554O6z7HIe8ZnsPlSkP8InC1vMh4o6d2GKLvsIZE KZRwIImJk4UOfu0ra12Q8dpJj82z2KAhZsedy0Ix5VhFLHx/L4/O4AAPlcUbktBT GDPqj3/upbbaKezU9BaPQ1uqcqPEPnlV -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:24 2025 by rpki-client