$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft File: jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json) Hash identifier: uE9s9f2Ce9EbBBW03TCm9LfR6EqwweBWf+9rG5GtBDA= Subject key identifier: 9A:1F:30:9F:5C:39:9B:7B:06:C8:14:B2:E6:A8:42:E9:EB:91:F8:3B Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft Manifest number: A4 Signing time: Mon 21 Jul 2025 06:22:14 +0000 Manifest this update: Mon 21 Jul 2025 06:22:14 +0000 Manifest next update: Mon 28 Jul 2025 06:22:14 +0000 Files and hashes: 1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: yVZUdawGUeOyfkbgOdwWpjlijlo0YVb6PTbu5TvThqM=) 2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: n3pzdI1R6OnpGAR7FmeF9nZ8iLEx5lsOyhq7ASsGK90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Jul 21 06:22:14 2025 GMT Not After : Jul 28 06:22:14 2025 GMT Subject: CN=687ddc96-ec9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:eb:51:48:73:27:fe:cd:2f:53:ce:ef:29:36: 2c:4c:90:da:8a:32:c7:78:d2:65:5e:a4:e6:f5:40: 2e:46:7a:4e:31:c7:63:73:70:e5:40:fd:6a:97:76: 38:71:2d:f2:36:49:ce:c5:b4:3e:f2:1a:55:ed:f1: a7:b9:07:89:7d:87:98:5f:59:db:d4:44:d7:2c:e1: 19:4b:52:72:0b:bd:28:59:41:57:d9:af:15:18:0b: 12:42:63:dd:f1:24:a6:43:b2:d3:da:3f:0a:05:a7: 65:3d:96:12:f6:d3:40:fd:4d:5b:b9:84:2e:5e:af: ba:35:61:87:2e:39:47:5a:e5:02:2c:eb:50:46:10: 5c:07:9a:c3:cb:1b:3d:8c:57:82:24:3a:33:d1:6d: 53:fa:a7:26:27:f7:2a:a1:5f:29:97:95:75:4b:03: 39:52:aa:b0:d3:70:62:77:5d:eb:d4:85:3e:0a:95: 9a:e7:08:5a:05:09:7c:5a:c3:2a:c7:76:41:9e:da: 61:16:b4:6a:6b:10:ee:16:e7:b1:86:88:17:af:06: 18:e3:05:a6:16:cb:bb:1f:96:3a:ea:b0:40:c3:26: 7e:f1:0b:fe:22:dc:89:8e:1e:39:be:56:39:a8:e6: 3a:bd:27:f2:39:6a:8e:36:eb:24:69:42:3c:4b:61: 3e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1F:30:9F:5C:39:9B:7B:06:C8:14:B2:E6:A8:42:E9:EB:91:F8:3B X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b0:c3:91:62:80:aa:ed:93:0d:b2:1c:d2:a6:86:0e:a7:eb: 9a:1e:7e:1f:84:f6:d0:81:13:42:fa:2d:a1:02:e1:2d:ef:01: e0:40:bd:77:77:e4:63:8b:03:da:e9:6f:f4:83:3a:77:25:cf: 30:f9:8f:9b:48:e0:c7:44:44:23:d5:00:89:67:6e:ad:e8:da: 76:85:4e:d6:f3:bc:71:e0:09:9a:b4:81:04:07:b3:1d:17:23: 17:3b:05:82:ca:c0:6c:16:76:83:97:fa:65:e1:d8:d1:b6:b0: 6f:cb:6e:a6:bb:69:e4:3c:27:c6:15:e8:af:b6:8d:1f:22:c4: 57:31:27:ef:0a:0a:e5:c7:f9:6b:40:77:e8:8a:5e:08:5a:b8: 3f:5d:5f:35:ce:13:53:9f:83:0d:56:fe:e4:88:dc:2a:bc:05: 99:73:9e:e6:c8:fc:d3:40:c8:59:a2:4f:06:aa:a6:95:a7:55: 63:3d:c4:d6:8d:95:bc:1f:c6:8c:e0:bf:98:ab:6e:19:6e:2d: 63:5c:7c:9e:ce:7a:46:0f:ac:ed:7b:24:ec:ec:2d:61:61:0d: 84:c7:e7:79:dd:a7:66:00:4b:a0:d3:bd:f5:be:96:6d:0a:b4: bd:d0:60:02:78:c3:af:3d:ca:6d:36:cc:28:29:ed:cf:d3:98: 48:ce:c4:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBERTAxMTAvBgNVBAUTKDhFQTVCOTU2MzIyN0MyRTU4RDQzOEJDMTdCQTgyMjUw NzU0MjQ0M0IwHhcNMjUwNzIxMDYyMjE0WhcNMjUwNzI4MDYyMjE0WjAYMRYwFAYD VQQDEw02ODdkZGM5Ni1lYzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvetRSHMn/s0vU87vKTYsTJDaijLHeNJlXqTm9UAuRnpOMcdjc3DlQP1ql3Y4 cS3yNknOxbQ+8hpV7fGnuQeJfYeYX1nb1ETXLOEZS1JyC70oWUFX2a8VGAsSQmPd 8SSmQ7LT2j8KBadlPZYS9tNA/U1buYQuXq+6NWGHLjlHWuUCLOtQRhBcB5rDyxs9 jFeCJDoz0W1T+qcmJ/cqoV8pl5V1SwM5Uqqw03Bid13r1IU+CpWa5whaBQl8WsMq x3ZBntphFrRqaxDuFuexhogXrwYY4wWmFsu7H5Y66rBAwyZ+8Qv+ItyJjh45vlY5 qOY6vSfyOWqONuskaUI8S2E+hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJofMJ9c OZt7BsgUsuaoQunrkfg7MB8GA1UdIwQYMBaAFI6luVYyJ8LljUOLwXuoIlB1QkQ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMERFMC83MDQwQThFODZB ODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1V05RNHZCZTZnaVVIVkNS RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MERFMC83MDQwQThFODZBODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1 V05RNHZCZTZnaVVIVkNSRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtsMORYoCq7ZMNshzSpoYOp+uaHn4fhPbQgRNC+i2hAuEt7wHgQL13 d+RjiwPa6W/0gzp3Jc8w+Y+bSODHREQj1QCJZ26t6Np2hU7W87xx4AmatIEEB7Md FyMXOwWCysBsFnaDl/pl4djRtrBvy26mu2nkPCfGFeivto0fIsRXMSfvCgrlx/lr QHfoil4IWrg/XV81zhNTn4MNVv7kiNwqvAWZc57myPzTQMhZok8GqqaVp1VjPcTW jZW8H8aM4L+Yq24Zbi1jXHyeznpGD6zteyTs7C1hYQ2Ex+d53admAEug0731vpZt CrS90GACeMOvPcptNswoKe3P05hIzsS3 -----END CERTIFICATE-----Generated at Mon Jul 21 12:44:32 2025 by rpki-client