$ rpki-client -vvf rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft File: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft (raw, json) Hash identifier: GqRm1v92Su+zeqm+aKy9MbYWZDraChXQ9v5Y0xysWg4= Subject key identifier: 2B:78:99:6C:47:3C:7E:4A:43:FC:11:3B:A5:AE:C5:41:30:67:61:3F Authority key identifier: 8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 Certificate issuer: /CN=A919DD2D/serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Certificate serial: 1227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft Manifest number: 121E Signing time: Sun 24 Aug 2025 17:06:42 +0000 Manifest this update: Sun 24 Aug 2025 17:06:42 +0000 Manifest next update: Sun 31 Aug 2025 17:06:42 +0000 Files and hashes: 1: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl (hash: ppQeO++hKZA8szNeMT+S65h6aSR8cy+qLmi19FGBTYY=) 2: A295F860E71011E8899C3917C4F9AE02.roa (hash: u3ZjS5PQ+cLOr7B4bn5ZklBTiFJgjz1r0/eLvbqbKzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4647 (0x1227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DD2D, serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Validity Not Before: Aug 24 17:06:42 2025 GMT Not After : Aug 31 17:06:42 2025 GMT Subject: CN=68ab46a2-c3ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c7:24:70:dc:a7:77:e1:8e:85:19:e7:22:5c: 2c:8a:65:17:3d:2e:69:e4:84:d2:69:cd:c2:86:0f: a3:d4:2e:75:ad:eb:d3:b9:5a:8b:4d:94:bc:8f:25: 48:7b:0e:04:ba:6a:a8:25:5c:05:64:d4:de:27:cc: 73:be:3f:1c:f0:0c:4c:4a:f8:20:88:d1:15:59:98: 75:bc:26:f1:2f:23:18:b6:67:ec:aa:3d:a8:ad:4a: bd:b3:22:dd:05:22:66:0f:48:c9:8d:da:43:35:8b: 53:c7:0d:69:aa:43:d8:2c:72:b3:13:79:4d:06:a5: a1:3e:f6:b0:2f:e8:54:d2:78:13:0b:a4:2d:fd:30: 33:03:48:64:11:f2:4b:1f:8b:2a:6a:fd:6b:04:b6: 5b:ac:e4:22:95:b6:ff:18:37:0f:98:84:e4:e2:6e: 99:4c:ac:9d:d8:23:6d:cf:a5:1e:d9:04:d7:c1:f4: 32:38:40:78:c1:d4:54:72:7d:3e:08:88:1d:8b:72: c0:af:6e:32:4b:cd:36:dc:f9:06:27:c9:27:0f:2c: 56:9e:83:01:08:ff:75:71:26:95:bd:46:ec:26:c5: df:34:ed:37:fe:59:da:26:2d:d8:85:ff:38:48:31: c8:e6:30:f3:38:f6:2a:7f:10:47:20:6f:4b:d3:5b: 9e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:78:99:6C:47:3C:7E:4A:43:FC:11:3B:A5:AE:C5:41:30:67:61:3F X509v3 Authority Key Identifier: keyid:8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:1e:b8:96:0d:c5:bd:cb:fc:37:0e:57:95:4e:a7:07:07:c1: 2a:f7:ee:61:88:ca:82:b8:24:11:28:e9:19:d9:eb:9d:ee:ec: 71:43:9e:5f:14:27:2c:a3:b4:49:f3:3e:03:d7:90:1b:48:33: e0:14:a6:2c:24:e0:4f:b2:7f:04:a9:1d:d3:07:d3:95:cb:71: 8a:17:a3:6b:c7:46:fb:a3:77:b3:fe:b5:ad:6f:54:9c:d0:90: eb:12:d4:3a:df:56:0a:4a:40:20:14:62:7e:06:3b:73:a9:1d: 46:27:54:d6:14:b2:86:26:aa:30:e5:e2:c7:dd:48:dc:40:e3: 1f:4b:59:e4:6f:7f:41:54:9f:93:c5:00:37:eb:71:5f:a6:60: 1e:5a:17:80:6d:06:62:3e:17:56:52:a9:35:65:2e:ef:1f:14: aa:ad:73:94:37:a5:ff:ea:2e:fc:11:6f:47:bd:7f:4d:d8:7d: 78:f8:44:3d:f5:94:d1:94:02:01:5c:f2:77:b4:7d:98:b5:57: 27:1e:9a:ea:e7:fd:d5:36:05:86:34:8f:33:d3:13:13:a2:21: ea:4d:bd:0f:bf:d8:01:11:89:ef:09:a5:46:e4:05:11:fa:fc: dd:fa:98:fd:50:b6:bc:74:e0:61:38:63:78:ac:1b:54:4f:05: fb:1e:6f:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUREMkQxMTAvBgNVBAUTKDhDRjQyMzk4MEZEM0E3RjY3RUM1RjRBNTQzQTIwM0E1 M0UzQ0U2NzYwHhcNMjUwODI0MTcwNjQyWhcNMjUwODMxMTcwNjQyWjAYMRYwFAYD VQQDEw02OGFiNDZhMi1jM2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsckcNynd+GOhRnnIlwsimUXPS5p5ITSac3Chg+j1C51revTuVqLTZS8jyVI ew4EumqoJVwFZNTeJ8xzvj8c8AxMSvggiNEVWZh1vCbxLyMYtmfsqj2orUq9syLd BSJmD0jJjdpDNYtTxw1pqkPYLHKzE3lNBqWhPvawL+hU0ngTC6Qt/TAzA0hkEfJL H4sqav1rBLZbrOQilbb/GDcPmITk4m6ZTKyd2CNtz6Ue2QTXwfQyOEB4wdRUcn0+ CIgdi3LAr24yS8023PkGJ8knDyxWnoMBCP91cSaVvUbsJsXfNO03/lnaJi3Yhf84 SDHI5jDzOPYqfxBHIG9L01ue0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCt4mWxH PH5KQ/wRO6WuxUEwZ2E/MB8GA1UdIwQYMBaAFIz0I5gP06f2fsX0pUOiA6U+POZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REQyRC85RDEyNjk1Q0U3 MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBfWi14ZlNsUTZJRHBUNDg1 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQUWptQV9UcF9aLXhmU2xRNklEcFQ0ODVuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REQyRC85RDEyNjk1Q0U3MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBf Wi14ZlNsUTZJRHBUNDg1blkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkHriWDcW9y/w3DleVTqcHB8Eq9+5hiMqCuCQRKOkZ2eud7uxxQ55f FCcso7RJ8z4D15AbSDPgFKYsJOBPsn8EqR3TB9OVy3GKF6Nrx0b7o3ez/rWtb1Sc 0JDrEtQ631YKSkAgFGJ+BjtzqR1GJ1TWFLKGJqow5eLH3UjcQOMfS1nkb39BVJ+T xQA363FfpmAeWheAbQZiPhdWUqk1ZS7vHxSqrXOUN6X/6i78EW9HvX9N2H14+EQ9 9ZTRlAIBXPJ3tH2YtVcnHprq5/3VNgWGNI8z0xMToiHqTb0Pv9gBEYnvCaVG5AUR +vzd+pj9ULa8dOBhOGN4rBtUTwX7Hm/1 -----END CERTIFICATE-----Generated at Sun Aug 24 22:11:21 2025 by rpki-client