$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft File: JTgA7RbtD_M39wQNDj3xFBwWFhw.mft (raw, json) Hash identifier: yKt6ujhhoM+1dsJHQTkF62//h28Fi1Q38+i7MdFZPfE= Subject key identifier: 04:1B:CB:DD:D1:AA:E2:39:99:B5:F9:BC:DE:42:0F:A1:84:F5:8B:4D Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft Manifest number: 0224 Signing time: Tue 09 Sep 2025 02:08:49 +0000 Manifest this update: Tue 09 Sep 2025 02:08:49 +0000 Manifest next update: Tue 16 Sep 2025 02:08:49 +0000 Files and hashes: 1: JTgA7RbtD_M39wQNDj3xFBwWFhw.crl (hash: XfoWSDCN7S8n9M3Y1DvbSHB4P3xZHAr/m4lGOkL9JXw=) 2: 2D215B32584111EDBE50107CC4F9AE02.roa (hash: up6WHjnsfS0bIxQesxTATm4WYD2tutF7YiezZwJi2Bc=) 3: ED685B8CDFA511EF8CC2890BC4F9AE02.roa (hash: NqrZmcVp/US1PncX6fEsquuB9U+PwjdNaQFtiMmKje0=) 4: D45117DEEBF311EEAECC405FC4F9AE02.roa (hash: L3m+NQNaRyXNu/ZiemkthKYLeI1gIGN4M/qfSkh3IEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C9, serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Validity Not Before: Sep 9 02:08:49 2025 GMT Not After : Sep 16 02:08:49 2025 GMT Subject: CN=68bf8c31-872d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:28:9a:92:d1:30:d7:b2:fe:be:50:d6:fc:65: 1f:1b:43:26:93:a7:75:8b:3e:85:da:d8:1c:cb:de: 13:96:5b:65:89:b4:7f:be:cb:b8:fb:52:35:5a:84: 86:15:2b:11:b4:60:3a:6f:6c:0f:10:4a:c6:72:dd: e6:d7:8f:e4:b2:2f:bb:67:29:5a:c3:58:3d:34:81: 72:5e:22:9e:95:77:d4:1f:b6:fb:de:e6:12:fd:97: ef:53:8e:ed:20:f2:e8:7c:73:e6:8c:e5:7b:ad:e7: 6e:71:a8:b3:7f:47:c6:4f:86:d0:8c:94:41:f5:59: 04:3f:52:35:51:af:00:65:02:80:b3:e7:79:0e:54: 74:4e:b0:7a:d1:b0:e0:e6:81:a8:35:68:34:7b:cc: ed:26:c7:1e:58:29:f8:9f:e6:a9:84:ff:48:9e:ac: ef:f8:f8:71:91:68:c6:b4:db:e9:7a:98:c6:22:99: 0f:9c:63:7c:7d:b3:7c:37:c0:97:20:48:80:31:a6: 19:a7:81:43:88:5d:e1:9e:3d:e8:24:b2:f7:5d:ec: 18:bb:78:ab:e8:9f:c8:bd:c9:a8:0e:32:bb:9d:13: c2:a5:33:bb:db:45:08:f1:24:06:04:22:ff:ce:f2: ad:ae:cf:b8:7a:74:5c:46:50:dd:fe:83:a1:20:80: 88:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1B:CB:DD:D1:AA:E2:39:99:B5:F9:BC:DE:42:0F:A1:84:F5:8B:4D X509v3 Authority Key Identifier: keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:3f:fe:8d:d6:c3:69:68:38:f0:ea:4c:b0:8e:b1:53:c3:58: b5:76:b2:fc:62:79:cd:1f:b8:81:e1:1b:ee:a4:eb:1f:36:c3: db:a9:6f:7b:4a:c6:0f:0f:1d:ed:fd:7d:63:2a:53:33:6e:dc: f4:cb:07:c8:eb:ae:30:3c:e6:17:25:f1:d9:5e:42:47:9a:cf: 9c:f2:60:8b:a1:ac:fe:73:e4:ba:b5:37:c3:90:35:aa:91:a8: 35:41:aa:69:0c:98:98:99:2d:b3:f7:4a:21:43:60:58:c5:cb: 6f:27:72:93:83:ef:c1:cf:0d:f7:9d:ca:4a:46:24:33:30:4b: 2c:36:6a:11:6d:69:91:27:2c:04:66:ec:46:27:28:b8:f1:8a: 5c:75:7d:35:e6:01:89:a0:47:98:56:31:a7:9b:32:5e:e2:2c: fb:41:d1:5f:5c:94:c4:4b:a3:ad:56:9a:6b:70:30:3e:05:07: fa:f5:01:2f:42:ef:be:6b:0f:10:d9:3f:a6:92:3b:6a:02:be: df:2e:17:cd:86:7c:bb:9d:d3:6a:91:ac:ae:db:17:d1:94:c5: 36:6c:14:9d:9b:a4:d1:04:7d:42:63:1a:a1:50:9f:ec:a8:0e: c5:1f:b4:7d:d8:ca:e1:81:ab:84:81:94:d5:14:d6:66:9b:18: 88:42:09:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzkxMTAvBgNVBAUTKDI1MzgwMEVEMTZFRDBGRjMzN0Y3MDQwRDBFM0RGMTE0 MUMxNjE2MUMwHhcNMjUwOTA5MDIwODQ5WhcNMjUwOTE2MDIwODQ5WjAYMRYwFAYD VQQDEw02OGJmOGMzMS04NzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CiaktEw17L+vlDW/GUfG0Mmk6d1iz6F2tgcy94TlltlibR/vsu4+1I1WoSG FSsRtGA6b2wPEErGct3m14/ksi+7Zylaw1g9NIFyXiKelXfUH7b73uYS/ZfvU47t IPLofHPmjOV7reducaizf0fGT4bQjJRB9VkEP1I1Ua8AZQKAs+d5DlR0TrB60bDg 5oGoNWg0e8ztJsceWCn4n+aphP9Inqzv+PhxkWjGtNvpepjGIpkPnGN8fbN8N8CX IEiAMaYZp4FDiF3hnj3oJLL3XewYu3ir6J/IvcmoDjK7nRPCpTO720UI8SQGBCL/ zvKtrs+4enRcRlDd/oOhIICIJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQby93R quI5mbX5vN5CD6GE9YtNMB8GA1UdIwQYMBaAFCU4AO0W7Q/zN/cEDQ498RQcFhYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOS8yMTk3QjA5MjU4 M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERfTTM5d1FORGozeEZCd1dG aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pUZ0E3UmJ0RF9NMzl3UU5EajN4RkJ3V0Zody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjhDOS8yMTk3QjA5MjU4M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERf TTM5d1FORGozeEZCd1dGaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARP/6N1sNpaDjw6kywjrFTw1i1drL8YnnNH7iB4RvupOsfNsPbqW97 SsYPDx3t/X1jKlMzbtz0ywfI664wPOYXJfHZXkJHms+c8mCLoaz+c+S6tTfDkDWq kag1QappDJiYmS2z90ohQ2BYxctvJ3KTg+/Bzw33ncpKRiQzMEssNmoRbWmRJywE ZuxGJyi48YpcdX015gGJoEeYVjGnmzJe4iz7QdFfXJTES6OtVpprcDA+BQf69QEv Qu++aw8Q2T+mkjtqAr7fLhfNhny7ndNqkayu2xfRlMU2bBSdm6TRBH1CYxqhUJ/s qA7FH7R92MrhgauEgZTVFNZmmxiIQgn3 -----END CERTIFICATE-----Generated at Tue Sep 9 14:19:46 2025 by rpki-client