$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json) Hash identifier: 5pPhK21kGFsrEZ8JfcDtmkBnxf/rIjUH6XKMgQ/YR20= Subject key identifier: 68:2C:22:3E:8A:B4:23:E9:4F:18:31:22:B0:4C:49:7A:0C:7D:F7:FE Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft Manifest number: BA Signing time: Wed 03 Sep 2025 06:39:19 +0000 Manifest this update: Wed 03 Sep 2025 06:39:19 +0000 Manifest next update: Wed 10 Sep 2025 06:39:19 +0000 Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: APxm/PkMlQrkwb7uHLh0CJajogWbGvC89KpenBVA9eM=) 2: 00E00D025BC711F0886C5B59C4F9AE02.roa (hash: sqy/WdKkX/I9+eeWKmyiO40gweC8VofbqWaj5A5W8ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 06:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D6C1, serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Validity Not Before: Sep 3 06:39:19 2025 GMT Not After : Sep 10 06:39:19 2025 GMT Subject: CN=68b7e297-7ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f9:38:a6:a9:15:be:1d:2c:c4:9d:ec:f7:d1: 7e:74:89:f2:fe:53:66:9c:29:f8:bc:bc:4e:ed:6c: 87:5b:c2:59:b5:52:d1:aa:1f:04:38:50:d5:f9:05: 1a:dd:33:08:57:74:7f:8a:7a:40:96:a3:b4:41:5a: 5a:1f:11:13:a4:90:7e:96:12:f7:ad:3f:7f:ed:eb: 5a:16:d4:26:2f:3f:45:0d:94:03:66:ad:6f:1f:12: 4f:1a:97:2a:92:8a:c7:76:29:6f:ff:ae:6e:22:b1: b7:b6:90:d8:b3:db:76:83:42:fc:39:28:27:29:55: 98:b1:52:ed:1b:05:ea:6d:6c:46:a3:ba:02:86:37: 54:a6:7c:f0:24:95:70:59:91:8f:91:98:fc:4f:fc: 97:42:78:a8:35:05:3d:25:78:ec:3b:cd:0b:c3:0e: ce:1c:5a:dd:01:ac:44:fc:0f:be:96:8f:33:94:d1: c0:c6:54:69:48:6e:f6:69:19:1c:ac:2d:3a:36:3f: 3a:aa:4b:b3:9c:c6:d2:23:d6:03:67:c5:44:fd:ba: 03:fb:f2:80:15:c0:d6:d2:42:fd:c1:ec:e0:38:e3: a6:5f:f0:e7:63:c1:f8:b3:65:02:53:36:d5:94:5b: 9b:eb:0e:c0:f5:fd:66:61:20:00:f5:3f:65:08:13: dc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2C:22:3E:8A:B4:23:E9:4F:18:31:22:B0:4C:49:7A:0C:7D:F7:FE X509v3 Authority Key Identifier: keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:35:2c:3e:2e:75:d4:fd:ab:53:b4:d2:05:2f:0e:c6:8e:82: 00:ff:ec:1b:8e:33:96:65:7d:4f:de:aa:00:13:0b:38:80:4a: b1:e2:ac:3a:f3:f5:9a:43:de:7f:60:25:8e:96:2d:33:d8:e0: 63:0e:60:cb:91:95:8d:57:82:3f:c4:b3:6e:05:c6:19:b8:90: ab:e8:a3:13:4b:e5:3d:e6:d2:1a:33:73:d7:01:13:95:05:d3: 1d:a2:d9:1e:c3:89:aa:7f:ed:99:5a:95:8b:8d:f7:4a:0c:d8: ff:4f:3b:55:86:45:54:89:40:3e:03:e2:20:9d:8c:c9:76:5d: 90:d2:9b:2a:88:66:02:ff:ed:6d:31:34:a9:65:ef:9e:f5:ef: c2:a8:66:05:42:ad:ab:d1:40:30:9e:e7:b8:fa:5a:eb:5e:93: 86:bc:d1:e7:29:f3:fa:00:1c:08:35:b2:3a:72:54:d5:4d:09: 75:a5:69:5b:c2:e0:b2:e3:fe:22:c0:60:69:29:9e:9b:45:db: d3:79:c8:fd:18:f0:3b:34:14:6f:cb:25:82:8f:4a:17:e2:26: aa:07:fe:f4:cc:7a:20:9f:4c:cf:21:a6:bd:12:69:96:f0:35: a2:02:7d:9e:e7:2d:b5:b0:f1:f1:0f:74:77:94:cc:df:a0:6e: 65:77:96:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2QzExMTAvBgNVBAUTKDI2RDg2NDVFRThFRTNBNUQxRUIxRDJERjk3OUI4NTQ5 Qjg3NjFFMkEwHhcNMjUwOTAzMDYzOTE5WhcNMjUwOTEwMDYzOTE5WjAYMRYwFAYD VQQDEw02OGI3ZTI5Ny03Y2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvk4pqkVvh0sxJ3s99F+dIny/lNmnCn4vLxO7WyHW8JZtVLRqh8EOFDV+QUa 3TMIV3R/inpAlqO0QVpaHxETpJB+lhL3rT9/7etaFtQmLz9FDZQDZq1vHxJPGpcq korHdilv/65uIrG3tpDYs9t2g0L8OSgnKVWYsVLtGwXqbWxGo7oChjdUpnzwJJVw WZGPkZj8T/yXQnioNQU9JXjsO80Lww7OHFrdAaxE/A++lo8zlNHAxlRpSG72aRkc rC06Nj86qkuznMbSI9YDZ8VE/boD+/KAFcDW0kL9wezgOOOmX/DnY8H4s2UCUzbV lFub6w7A9f1mYSAA9T9lCBPcDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgsIj6K tCPpTxgxIrBMSXoMfff+MB8GA1UdIwQYMBaAFCbYZF7o7jpdHrHS35ebhUm4dh4q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDZDMS9EQjcwNDRFMjdB MjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9sMGVzZExmbDV1RlNiaDJI aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p0aGtYdWp1T2wwZXNkTGZsNXVGU2JoMkhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDZDMS9EQjcwNDRFMjdBMjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9s MGVzZExmbDV1RlNiaDJIaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcNSw+LnXU/atTtNIFLw7GjoIA/+wbjjOWZX1P3qoAEws4gEqx4qw6 8/WaQ95/YCWOli0z2OBjDmDLkZWNV4I/xLNuBcYZuJCr6KMTS+U95tIaM3PXAROV BdMdotkew4mqf+2ZWpWLjfdKDNj/TztVhkVUiUA+A+IgnYzJdl2Q0psqiGYC/+1t MTSpZe+e9e/CqGYFQq2r0UAwnue4+lrrXpOGvNHnKfP6ABwINbI6clTVTQl1pWlb wuCy4/4iwGBpKZ6bRdvTecj9GPA7NBRvyyWCj0oX4iaqB/70zHogn0zPIaa9EmmW 8DWiAn2e5y21sPHxD3R3lMzfoG5ld5Zx -----END CERTIFICATE-----Generated at Thu Sep 4 13:58:36 2025 by rpki-client