$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: 8t7q3nPw7jHyLIY0BJ0Xn690VwSDltH0q+1yeSIalB4= Subject key identifier: FF:45:FD:8A:91:BC:B5:6A:1F:11:23:D4:8D:11:12:A6:AF:04:6F:D7 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: 0115 Signing time: Sun 07 Sep 2025 05:17:56 +0000 Manifest this update: Sun 07 Sep 2025 05:17:56 +0000 Manifest next update: Sun 14 Sep 2025 05:17:56 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: Ox+eijhY7JVD4nMN/klFnlz1DIBbFt8O+q+4ilHbKIw=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Sep 7 05:17:56 2025 GMT Not After : Sep 14 05:17:56 2025 GMT Subject: CN=68bd1584-18b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:29:29:ee:2c:84:76:4b:76:1f:ea:28:34:08: 26:54:31:32:2a:0d:43:36:c4:4e:eb:a1:d5:d1:7d: 7e:99:5e:ef:b4:1b:fe:ad:1b:c5:da:76:02:07:40: 1f:77:e6:ea:19:47:9e:e2:e5:65:e9:fc:34:3e:0b: c9:c6:0a:fd:c5:46:67:a0:2a:bd:6e:d0:4f:e6:7e: ea:13:74:db:b5:24:06:28:64:9d:01:c3:d3:72:bb: 53:1d:8e:4c:f1:96:cd:7b:d8:bc:57:51:5e:73:66: 18:5d:14:a2:3f:99:70:22:72:90:de:e8:82:06:0e: 5c:8d:86:4d:38:43:70:57:0d:4d:97:da:ea:6d:fe: 2a:e1:bc:49:a7:3d:12:4e:e6:c4:2e:72:4e:05:23: 3e:bd:db:5e:28:71:20:83:b0:7a:dd:b6:a6:cf:0f: f2:d2:5b:50:66:25:8f:c9:8a:03:84:33:50:5c:e8: 78:78:17:05:c1:0b:b8:b9:0f:82:8e:64:55:84:f6: e6:8b:c0:4b:39:17:9b:38:a1:19:ae:60:17:32:ed: 54:c8:81:c6:7e:cc:08:3c:0f:06:63:53:fb:83:72: d7:9c:9d:16:d5:04:2a:87:3b:2d:4e:5d:c0:e6:1f: a8:c5:66:2f:20:19:6e:45:9b:7e:c0:7e:55:3d:2c: f3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:45:FD:8A:91:BC:B5:6A:1F:11:23:D4:8D:11:12:A6:AF:04:6F:D7 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e3:df:9b:5d:a4:84:a4:d1:e5:e6:fc:e7:52:86:fc:94:06: 4d:14:b1:9d:b2:d8:4c:2e:b3:ff:30:65:a4:9b:b6:bb:a4:b2: be:78:3b:66:0e:2e:e3:c7:61:17:92:9f:11:45:0b:cf:db:23: 40:f7:68:85:cb:09:f0:e7:46:db:d4:04:0b:1e:f3:c0:68:79: 7f:99:94:15:ea:09:b4:f2:19:86:c1:72:20:2e:9c:a1:b4:8a: 50:87:09:3f:ac:c9:2d:bb:41:39:1b:22:da:da:5c:f7:de:2e: 5d:46:6e:6c:56:bc:9b:02:b4:8a:77:a7:c3:81:e6:6e:1e:a2: 96:ec:f2:2f:c7:b5:f8:cc:a9:6d:c9:e4:3c:f5:d1:1d:0c:c8: 17:01:00:ce:5d:6d:0c:85:a7:22:b9:6f:95:ea:01:8c:db:70: d1:d1:8e:7a:82:1b:98:7f:cd:77:bc:7e:ad:2d:95:ac:c0:8c: fb:89:9d:d2:48:4f:22:bb:84:ea:9f:da:1d:fb:e3:0a:78:07: df:4a:1a:10:fd:43:3f:04:36:13:46:9f:e5:83:33:97:91:d8: 80:9d:db:07:50:8f:29:c1:48:f1:55:68:bc:a8:9b:ba:aa:c6: 47:40:99:5e:a6:c2:06:ff:b7:38:3a:fe:6c:c6:b9:b2:78:f8: 53:f7:d8:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUwOTA3MDUxNzU2WhcNMjUwOTE0MDUxNzU2WjAYMRYwFAYD VQQDEw02OGJkMTU4NC0xOGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlykp7iyEdkt2H+ooNAgmVDEyKg1DNsRO66HV0X1+mV7vtBv+rRvF2nYCB0Af d+bqGUee4uVl6fw0PgvJxgr9xUZnoCq9btBP5n7qE3TbtSQGKGSdAcPTcrtTHY5M 8ZbNe9i8V1Fec2YYXRSiP5lwInKQ3uiCBg5cjYZNOENwVw1Nl9rqbf4q4bxJpz0S TubELnJOBSM+vdteKHEgg7B63bamzw/y0ltQZiWPyYoDhDNQXOh4eBcFwQu4uQ+C jmRVhPbmi8BLORebOKEZrmAXMu1UyIHGfswIPA8GY1P7g3LXnJ0W1QQqhzstTl3A 5h+oxWYvIBluRZt+wH5VPSzzQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9F/YqR vLVqHxEj1I0REqavBG/XMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ49+bXaSEpNHl5vznUob8lAZNFLGdsthMLrP/MGWkm7a7pLK+eDtm Di7jx2EXkp8RRQvP2yNA92iFywnw50bb1AQLHvPAaHl/mZQV6gm08hmGwXIgLpyh tIpQhwk/rMktu0E5GyLa2lz33i5dRm5sVrybArSKd6fDgeZuHqKW7PIvx7X4zKlt yeQ89dEdDMgXAQDOXW0MhaciuW+V6gGM23DR0Y56ghuYf813vH6tLZWswIz7iZ3S SE8iu4Tqn9od++MKeAffShoQ/UM/BDYTRp/lgzOXkdiAndsHUI8pwUjxVWi8qJu6 qsZHQJlepsIG/7c4Ov5sxrmyePhT99gB -----END CERTIFICATE-----Generated at Mon Sep 8 08:48:02 2025 by rpki-client