$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: fXH9WTj9OOHTDlZWjhjSiEgejwB6BBv3qxEopITFX+c= Subject key identifier: 81:34:1A:13:67:D5:C3:17:2E:9E:4F:1F:F9:E0:A4:8D:78:47:CE:5B Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: 6F Signing time: Sun 07 Sep 2025 07:28:38 +0000 Manifest this update: Sun 07 Sep 2025 07:28:37 +0000 Manifest next update: Sun 14 Sep 2025 07:28:37 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: ceg7U0xOJaw2p+89n2jCnTNYs8g1mJ8YeHObPdLM0F0=) 2: 92B377C82CB011F0A2E86B16C4F9AE02.roa (hash: FoDHZvXeH5e/XFJzf3AymBW0SIuGnIL2DXJhgfsRixg=) 3: 7F639A182CB011F08B722116C4F9AE02.roa (hash: 8SOJ6SdOtJ/q3NwLkWGRY6LjHM44wHGZjzKG2cwDOuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 07:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E, serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Validity Not Before: Sep 7 07:28:37 2025 GMT Not After : Sep 14 07:28:37 2025 GMT Subject: CN=68bd3426-de79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:16:38:f2:d5:88:ef:2d:de:35:c5:38:60:3f: 39:9e:40:a7:d7:32:99:7d:c8:3b:db:01:6b:2e:45: 2a:47:cc:bb:05:ea:4e:cf:04:ea:71:d4:cd:3a:db: 6f:eb:c7:77:b1:d3:8f:88:f2:d4:77:c8:22:41:3e: 13:56:1b:cc:d2:53:1c:d3:ef:14:2f:ec:75:20:b8: 90:82:03:14:5f:87:97:54:46:fe:d9:09:fa:cc:64: 9b:17:c1:2b:2b:16:f8:2c:f7:2d:a0:11:7f:b7:ac: 6d:34:45:8a:68:5c:16:1e:2c:14:88:11:53:3b:be: 53:f5:34:cd:1e:52:4e:71:1c:05:e4:4e:2e:ed:57: 21:8d:a5:7b:8d:17:2f:07:b2:64:fc:8d:a5:35:a0: 0c:9a:90:ed:7e:f4:34:9c:0c:80:e3:3d:7c:e4:5f: bd:1e:29:b4:a7:fd:e2:2b:0d:51:3e:30:0f:38:f8: dc:b6:01:b3:08:52:89:2c:4a:ea:4f:ed:50:48:eb: 8d:3c:18:2d:af:5e:1e:e6:ad:53:61:27:8c:26:02: 23:98:85:4e:8a:59:8b:65:e7:77:8d:f8:55:ba:20: 38:33:b4:44:bf:b2:56:19:54:8c:39:df:d3:c7:35: 4d:b7:f7:5b:39:04:fd:a5:97:38:5e:8d:15:8e:50: 2e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:34:1A:13:67:D5:C3:17:2E:9E:4F:1F:F9:E0:A4:8D:78:47:CE:5B X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:c4:20:cf:17:a9:8c:82:35:a8:ce:a9:f0:5a:41:60:62:4f: 91:19:e4:68:c2:ae:47:3d:be:60:a7:39:89:f8:6f:59:e7:7e: a1:92:83:3c:81:14:6c:a0:da:ff:8f:2d:d9:c1:b9:c8:f0:a8: 09:70:ad:5f:32:f9:67:d8:5f:30:57:3e:12:d5:c5:36:66:a6: 1c:42:4c:59:f6:61:61:09:59:38:ba:0e:aa:a4:cc:b9:7d:cd: 09:d3:79:62:1b:81:2b:b1:31:5d:ef:05:49:4e:df:14:69:81: 2a:c8:56:d4:26:1c:fd:3f:49:23:c1:85:52:52:f0:44:fa:61: fd:ee:b9:61:b1:58:45:47:21:0c:61:8e:a3:36:8c:cf:b3:c6: 9f:63:6d:51:47:7e:03:2c:1d:49:f5:56:de:4c:9d:23:5b:b2: 11:db:6a:54:82:08:2a:0b:a1:fa:c9:a7:e5:41:51:45:79:d5: 81:c9:e0:99:5b:c5:ad:53:6b:9b:6c:43:db:34:bf:50:77:98: cc:8b:9d:56:3c:9b:49:e5:56:24:54:83:63:e0:0b:17:b9:36: 5e:56:f7:5c:81:2c:83:4b:ac:53:e8:21:76:59:7b:13:b9:7f: a0:dc:78:ed:91:62:7c:84:02:5c:e5:23:ea:0d:63:ae:5a:06: a0:d7:4f:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTk2RTExMC8GA1UEBRMoMjQyOUEzRUU1MDg4RjNENDUzNzJBOEUzQjM2ODM0Qzc1 RUFFNkQyOTAeFw0yNTA5MDcwNzI4MzdaFw0yNTA5MTQwNzI4MzdaMBgxFjAUBgNV BAMTDTY4YmQzNDI2LWRlNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJFjjy1YjvLd41xThgPzmeQKfXMpl9yDvbAWsuRSpHzLsF6k7PBOpx1M0622/r x3ex04+I8tR3yCJBPhNWG8zSUxzT7xQv7HUguJCCAxRfh5dURv7ZCfrMZJsXwSsr Fvgs9y2gEX+3rG00RYpoXBYeLBSIEVM7vlP1NM0eUk5xHAXkTi7tVyGNpXuNFy8H smT8jaU1oAyakO1+9DScDIDjPXzkX70eKbSn/eIrDVE+MA84+Ny2AbMIUoksSupP 7VBI6408GC2vXh7mrVNhJ4wmAiOYhU6KWYtl53eN+FW6IDgztES/slYZVIw539PH NU2391s5BP2llzhejRWOUC7LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgTQaE2fV wxcunk8f+eCkjXhHzlswHwYDVR0jBBgwFoAUJCmj7lCI89RTcqjjs2g0x16ubSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTZFLzIzRDJGMTZFRUMy MTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkNtajdsQ0k4OVJUY3FqanMyZzB4MTZ1YlNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF OTZFLzIzRDJGMTZFRUMyMTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlS VGNxampzMmcweDE2dWJTay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFzEIM8XqYyCNajOqfBaQWBiT5EZ5GjCrkc9vmCnOYn4b1nnfqGSgzyB FGyg2v+PLdnBucjwqAlwrV8y+WfYXzBXPhLVxTZmphxCTFn2YWEJWTi6DqqkzLl9 zQnTeWIbgSuxMV3vBUlO3xRpgSrIVtQmHP0/SSPBhVJS8ET6Yf3uuWGxWEVHIQxh jqM2jM+zxp9jbVFHfgMsHUn1Vt5MnSNbshHbalSCCCoLofrJp+VBUUV51YHJ4Jlb xa1Ta5tsQ9s0v1B3mMyLnVY8m0nlViRUg2PgCxe5Nl5W91yBLINLrFPoIXZZexO5 f6DceO2RYnyEAlzlI+oNY65aBqDXT6U= -----END CERTIFICATE-----Generated at Mon Sep 8 08:47:28 2025 by rpki-client