$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: /PV1I9d2tU7QG9N4eBg7ijGEjWBPqj5eouhF40JWhOw= Subject key identifier: FD:B2:FA:83:0F:60:3C:49:A6:7C:9A:F8:B0:25:3B:60:3A:3A:27:69 Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 068E Signing time: Wed 20 Aug 2025 22:20:51 +0000 Manifest this update: Wed 20 Aug 2025 22:20:50 +0000 Manifest next update: Wed 27 Aug 2025 22:20:50 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: wYxdZ9IWlcXmpfTHjpk7sOPkVLP+2HBCD6mcGB9edRs=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: ukg+6KCGHkrsTy11bBIK1xYhpVPUVwZenM7mxd/8rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: Aug 20 22:20:50 2025 GMT Not After : Aug 27 22:20:50 2025 GMT Subject: CN=68a64a42-9fdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:40:ab:c9:5c:02:a2:80:ee:a0:80:82:20:6c: 9a:ca:44:c0:56:3a:e7:78:1a:c0:b8:56:34:1b:4c: a1:46:1e:ac:e2:bc:44:99:48:68:a2:b7:59:92:35: 17:9c:d5:3d:50:3e:f4:c1:cf:0c:09:1d:21:e4:ce: 27:b9:51:4a:7e:20:f6:9d:0f:27:34:24:7c:d3:37: 85:56:94:36:78:53:30:38:04:b7:6f:dc:da:3b:0d: 35:6b:c8:cf:4e:5b:c0:c3:0d:62:9c:47:76:5d:6d: 50:27:6c:06:ae:56:92:06:a0:6e:eb:63:c6:76:1d: 5a:fc:91:ce:cd:34:10:b9:b6:32:1a:70:6e:89:e3: 9d:27:55:c2:c4:3a:f3:ab:35:51:3f:16:d5:b1:46: c3:f8:44:9a:74:1c:e8:86:fd:9c:f5:c1:7a:f7:37: d0:7c:1e:bf:95:79:0f:7a:8a:94:0f:2d:ce:66:11: bf:01:16:67:17:de:a5:2a:e4:ce:33:c7:a0:c0:d3: 2b:fe:a7:20:81:86:1c:04:66:b5:df:cc:3a:71:7e: 4b:72:16:08:b8:69:f3:a9:11:98:2e:a9:ba:5c:5b: a1:a7:81:37:43:ce:87:7a:1c:7c:55:b5:7e:69:5f: d4:07:6b:23:71:9d:04:78:3a:9c:07:c0:50:20:a5: e2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B2:FA:83:0F:60:3C:49:A6:7C:9A:F8:B0:25:3B:60:3A:3A:27:69 X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:b9:30:67:71:5f:84:48:6e:e7:e7:91:a9:a2:7c:6a:bd:fb: b9:fa:94:bc:3a:38:3a:bb:49:d1:8f:47:e7:65:20:06:32:e7: 90:f4:04:bc:7b:b8:be:75:90:a4:8a:51:b8:21:ff:4f:3c:51: f2:7f:be:bd:d5:57:30:63:fe:ce:83:f3:44:ba:d5:5e:c5:eb: 49:9e:1b:41:87:9a:88:dc:3e:de:7d:cc:75:6d:eb:74:33:fb: 32:50:6d:fa:6b:44:55:b3:06:1f:da:11:85:61:c8:f5:09:31: 91:5b:e2:59:82:ad:33:f0:fd:0a:f1:7a:18:2f:0c:86:81:ef: cc:69:ed:e9:cb:65:fd:e2:aa:8c:db:34:6f:4a:be:3e:2e:66: 78:bd:cf:af:ea:50:62:1d:c5:7a:ee:82:f6:13:f8:1b:94:c9: 24:42:a4:4a:e3:80:01:08:1c:be:4e:d8:f6:2d:c7:40:e9:b0: d5:6d:70:58:8b:7c:98:6f:3c:b9:fd:2d:04:17:61:ea:65:26: b9:db:a0:0e:49:98:c4:5b:36:00:f4:1e:c5:08:e7:02:a6:79: 17:aa:59:c6:69:1a:fd:39:75:f3:6a:45:5e:28:fb:43:ad:b8: f7:cc:83:4a:f1:04:7a:d9:35:63:eb:3c:ee:53:c9:38:e3:e4: 89:55:2e:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjUwODIwMjIyMDUwWhcNMjUwODI3MjIyMDUwWjAYMRYwFAYD VQQDEw02OGE2NGE0Mi05ZmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6UCryVwCooDuoICCIGyaykTAVjrneBrAuFY0G0yhRh6s4rxEmUhoordZkjUX nNU9UD70wc8MCR0h5M4nuVFKfiD2nQ8nNCR80zeFVpQ2eFMwOAS3b9zaOw01a8jP TlvAww1inEd2XW1QJ2wGrlaSBqBu62PGdh1a/JHOzTQQubYyGnBuieOdJ1XCxDrz qzVRPxbVsUbD+ESadBzohv2c9cF69zfQfB6/lXkPeoqUDy3OZhG/ARZnF96lKuTO M8egwNMr/qcggYYcBGa138w6cX5LchYIuGnzqRGYLqm6XFuhp4E3Q86Hehx8VbV+ aV/UB2sjcZ0EeDqcB8BQIKXiwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2y+oMP YDxJpnya+LAlO2A6OidpMB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8uTBncV+ESG7n55Gponxqvfu5+pS8Ojg6u0nRj0fnZSAGMueQ9AS8 e7i+dZCkilG4If9PPFHyf7691VcwY/7Og/NEutVexetJnhtBh5qI3D7efcx1bet0 M/syUG36a0RVswYf2hGFYcj1CTGRW+JZgq0z8P0K8XoYLwyGge/Mae3py2X94qqM 2zRvSr4+LmZ4vc+v6lBiHcV67oL2E/gblMkkQqRK44ABCBy+Ttj2LcdA6bDVbXBY i3yYbzy5/S0EF2HqZSa526AOSZjEWzYA9B7FCOcCpnkXqlnGaRr9OXXzakVeKPtD rbj3zINK8QR62TVj6zzuU8k44+SJVS7w -----END CERTIFICATE-----Generated at Fri Aug 22 16:31:37 2025 by rpki-client