$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: 73AmdHWLTJnjExAijGQfla1W18hkP2TYIkJI0ZRWp+o= Subject key identifier: FE:14:B4:0E:D3:EE:92:E8:D8:7E:56:DF:8C:6C:6E:00:7F:75:C6:33 Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 0621 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 061B Signing time: Tue 02 Sep 2025 23:06:24 +0000 Manifest this update: Tue 02 Sep 2025 23:06:24 +0000 Manifest next update: Tue 09 Sep 2025 23:06:24 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: pz0oCPsGFzTK6bq4UKZsqGKsvzZX3NxCUqt1JxgcY2o=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 23:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Sep 2 23:06:24 2025 GMT Not After : Sep 9 23:06:24 2025 GMT Subject: CN=68b77870-f9ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0a:cd:89:cc:0b:95:7a:cc:df:2a:b3:07:35: 43:00:22:c6:9e:bf:db:ef:26:d1:a8:78:26:e1:37: e5:69:c4:80:8a:d1:82:c0:b9:ea:61:12:df:2b:67: 80:2c:c7:df:9b:ee:8e:0f:16:93:b5:ef:31:75:54: 8b:6d:c3:2b:a6:34:78:66:cd:9b:f3:12:79:dc:fb: 62:df:f6:c8:4b:7c:a6:58:0f:c9:e7:9e:4a:11:85: 3f:85:0e:59:7d:2d:72:c4:4e:91:fe:1d:95:43:b8: b7:8a:98:0e:fc:85:b9:d3:69:17:93:94:41:04:9b: 58:f6:fe:cf:e8:5b:35:e4:d7:f1:b5:12:55:44:e7: f7:fe:bb:82:cb:67:79:4d:42:ee:09:83:19:b2:67: 6a:b4:8a:81:52:3d:92:5c:09:4c:a1:4f:26:da:f1: e4:ee:ce:ba:79:09:9e:2a:aa:37:79:87:72:b6:7a: 59:1a:9d:ae:c3:9d:d2:fb:45:d5:d0:53:b5:7e:f6: ba:5f:59:3f:0c:82:c9:c8:29:aa:9c:0f:3b:3f:1d: a7:94:7f:a3:31:f4:89:36:c8:aa:d2:e2:4a:1a:92: 1a:33:39:0f:34:26:5f:cd:a7:eb:98:66:3e:65:ef: e2:7a:1f:39:c9:4f:48:a9:f4:f7:df:f7:23:96:cb: ae:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:14:B4:0E:D3:EE:92:E8:D8:7E:56:DF:8C:6C:6E:00:7F:75:C6:33 X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:26:70:3e:1d:3d:c9:5f:cd:ca:b8:2e:1f:ef:7c:7c:c8:9a: 93:34:c1:36:0a:fe:ce:c9:31:cc:37:78:6c:fe:87:e1:0c:de: 12:7c:2f:ed:8c:e1:68:ea:08:d8:40:99:b9:13:ac:62:93:05: b8:b4:47:9f:31:32:98:c5:d0:b2:54:36:66:84:30:be:5f:df: bc:97:92:03:a0:44:f3:16:75:2d:9d:86:68:f4:c1:fe:2e:67: 4a:5e:63:85:d0:0a:19:4f:d5:f3:97:27:45:08:ca:4a:d5:3f: 0c:7e:4d:87:5f:d2:6f:02:7b:eb:1d:d0:05:cc:9a:0a:80:45: c4:38:4b:e1:fb:d2:66:5c:42:d1:4e:e9:23:e1:1e:9b:cd:f9: 15:4f:c2:9a:e2:24:f3:9c:e5:2f:17:1d:cd:90:14:1c:7a:e8: 01:c6:d4:8c:57:67:08:07:d0:05:84:74:30:34:b0:56:fb:b5: 56:10:f7:6f:d7:de:da:31:4b:c7:9e:a8:8b:53:5a:68:c4:8d: c8:a5:e5:21:ed:9e:b7:1d:c8:dd:1c:43:24:5d:44:1a:ac:0d: b1:ad:ed:3b:f2:a4:90:1a:39:6d:6b:81:23:e3:f7:e9:7d:39: 4a:6a:56:da:ba:10:7b:fb:7b:71:d9:23:3e:90:ce:90:7c:20: 46:92:12:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUwOTAyMjMwNjI0WhcNMjUwOTA5MjMwNjI0WjAYMRYwFAYD VQQDEw02OGI3Nzg3MC1mOWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQrNicwLlXrM3yqzBzVDACLGnr/b7ybRqHgm4TflacSAitGCwLnqYRLfK2eA LMffm+6ODxaTte8xdVSLbcMrpjR4Zs2b8xJ53Pti3/bIS3ymWA/J555KEYU/hQ5Z fS1yxE6R/h2VQ7i3ipgO/IW502kXk5RBBJtY9v7P6Fs15NfxtRJVROf3/ruCy2d5 TULuCYMZsmdqtIqBUj2SXAlMoU8m2vHk7s66eQmeKqo3eYdytnpZGp2uw53S+0XV 0FO1fva6X1k/DILJyCmqnA87Px2nlH+jMfSJNsiq0uJKGpIaMzkPNCZfzafrmGY+ Ze/ieh85yU9IqfT33/cjlsuuTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4UtA7T 7pLo2H5W34xsbgB/dcYzMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnJnA+HT3JX83KuC4f73x8yJqTNME2Cv7OyTHMN3hs/ofhDN4SfC/t jOFo6gjYQJm5E6xikwW4tEefMTKYxdCyVDZmhDC+X9+8l5IDoETzFnUtnYZo9MH+ LmdKXmOF0AoZT9XzlydFCMpK1T8Mfk2HX9JvAnvrHdAFzJoKgEXEOEvh+9JmXELR Tukj4R6bzfkVT8Ka4iTznOUvFx3NkBQceugBxtSMV2cIB9AFhHQwNLBW+7VWEPdv 197aMUvHnqiLU1poxI3IpeUh7Z63HcjdHEMkXUQarA2xre078qSQGjlta4Ej4/fp fTlKalbauhB7+3tx2SM+kM6QfCBGkhKd -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:37 2025 by rpki-client