$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: 6YC/Im+fGiq34jgb2UzeD2gbRJ9OhYxSswFyHvpRMJw= Subject key identifier: 14:7D:FA:73:4B:85:CE:91:09:65:AB:DA:8D:1A:0E:09:23:E4:84:63 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D4F Signing time: Fri 22 Aug 2025 16:11:34 +0000 Manifest this update: Fri 22 Aug 2025 16:11:34 +0000 Manifest next update: Fri 29 Aug 2025 16:11:33 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: Gf3IJyaZ0CBofdfztWsGUsul7dPKiuUcTnKtXn4m3dE=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: ptNgrWHvzJHQ4AbkataHwe2RnXoFWeh5k6roCCdUJ6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7518 (0x1d5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Aug 22 16:11:34 2025 GMT Not After : Aug 29 16:11:33 2025 GMT Subject: CN=68a896b6-2e41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:28:c8:e6:7d:28:de:13:70:e6:dd:b5:70:d3: 21:6c:e8:58:92:19:aa:7b:a4:93:5e:83:a2:b9:3c: 98:72:83:1a:d7:51:1a:6a:4b:7e:54:e2:2b:cf:c0: d6:7e:c3:f7:d8:71:e8:78:94:90:03:07:bd:87:af: a9:51:98:28:be:0f:54:0b:75:38:b2:d3:2f:8a:29: 7f:3d:a8:3a:bb:a9:6f:68:e2:17:70:90:5c:53:b1: 6e:2e:56:ad:08:c6:16:13:f9:97:5d:cc:20:e0:db: fa:f2:29:74:76:ff:46:d4:37:f6:97:d4:53:a8:1a: 46:24:29:63:26:35:09:ef:3e:af:14:00:51:9a:c1: 15:92:c1:25:1d:72:ad:3e:a6:7d:61:a0:08:9f:c0: 11:2d:1b:4b:42:bb:e7:4c:08:e1:10:5c:df:83:96: 04:88:02:f8:a9:ac:b5:bb:e8:e9:1f:40:09:01:1d: 45:6b:9f:70:0d:75:37:31:65:49:76:28:34:f2:08: d9:53:10:b2:ec:ae:cb:cc:d1:09:32:2b:b4:52:29: bc:c3:ff:02:bc:ca:29:99:3a:cf:d7:7b:b8:fe:1c: 2a:97:c2:e8:20:0c:b0:fe:f5:de:5e:2e:61:be:7b: e2:f4:72:6f:be:02:44:29:55:ff:9b:ab:85:3d:69: 0c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:7D:FA:73:4B:85:CE:91:09:65:AB:DA:8D:1A:0E:09:23:E4:84:63 X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:2b:7b:ec:cf:a2:98:b6:f5:d7:1c:f7:cc:6a:cc:4d:f0:7b: 04:99:76:fa:b5:b8:c5:e9:27:77:58:fe:6a:85:af:cf:f2:e2: b1:86:a4:72:29:25:9b:97:98:68:0e:b1:cb:80:39:9d:ac:75: 2b:c5:42:78:6a:ba:a2:87:aa:76:5a:e7:86:bd:30:1c:d0:3e: 5e:ff:f9:ec:46:29:dc:cf:17:44:1b:68:a2:1e:bb:8d:78:37: a5:24:7c:85:e1:97:5d:37:3e:aa:77:b6:9c:e5:2c:26:00:15: 68:84:87:55:29:ba:23:52:36:2d:fd:99:2e:49:38:3f:68:8a: 7e:cb:0c:69:20:ae:c5:7a:0d:47:ee:43:e8:e4:af:e1:06:22: 5a:37:a8:e8:1d:ac:4c:50:21:e0:5c:c0:bd:41:1c:c9:be:86: 2b:78:e9:58:b3:a7:9f:0e:c3:ee:7a:08:f3:bf:ec:41:10:6f: 3a:8b:92:fa:27:03:fe:52:b0:b2:51:6d:d8:31:13:c9:07:e2: d6:e1:03:64:24:c4:95:16:ae:c5:e6:5f:a9:1f:8b:2b:da:a3: e3:32:87:8e:95:2a:82:69:f2:b4:74:10:bf:10:db:7e:20:79: 9c:cf:78:11:6d:f9:5e:47:96:ed:2d:e5:3c:d3:78:fd:1b:79: 9b:5b:98:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUwODIyMTYxMTM0WhcNMjUwODI5MTYxMTMzWjAYMRYwFAYD VQQDEw02OGE4OTZiNi0yZTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yjI5n0o3hNw5t21cNMhbOhYkhmqe6STXoOiuTyYcoMa11Eaakt+VOIrz8DW fsP32HHoeJSQAwe9h6+pUZgovg9UC3U4stMviil/Pag6u6lvaOIXcJBcU7FuLlat CMYWE/mXXcwg4Nv68il0dv9G1Df2l9RTqBpGJCljJjUJ7z6vFABRmsEVksElHXKt PqZ9YaAIn8ARLRtLQrvnTAjhEFzfg5YEiAL4qay1u+jpH0AJAR1Fa59wDXU3MWVJ dig08gjZUxCy7K7LzNEJMiu0Uim8w/8CvMopmTrP13u4/hwql8LoIAyw/vXeXi5h vnvi9HJvvgJEKVX/m6uFPWkMDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBR9+nNL hc6RCWWr2o0aDgkj5IRjMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTK3vsz6KYtvXXHPfMasxN8HsEmXb6tbjF6Sd3WP5qha/P8uKxhqRy KSWbl5hoDrHLgDmdrHUrxUJ4arqih6p2WueGvTAc0D5e//nsRinczxdEG2iiHruN eDelJHyF4ZddNz6qd7ac5SwmABVohIdVKbojUjYt/ZkuSTg/aIp+ywxpIK7Feg1H 7kPo5K/hBiJaN6joHaxMUCHgXMC9QRzJvoYreOlYs6efDsPuegjzv+xBEG86i5L6 JwP+UrCyUW3YMRPJB+LW4QNkJMSVFq7F5l+pH4sr2qPjMoeOlSqCafK0dBC/ENt+ IHmcz3gRbfleR5btLeU803j9G3mbW5iS -----END CERTIFICATE-----Generated at Sat Aug 23 03:24:07 2025 by rpki-client