$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: HCTPcr9ZojrlRRfdmQROnn+opGI3HIxf9HGR9o6DoGI= Subject key identifier: 8A:36:D6:38:E2:31:DC:6D:C8:2E:43:FA:A4:1D:60:7F:59:5E:29:EC Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0D28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0D1D Signing time: Sun 10 Aug 2025 18:03:15 +0000 Manifest this update: Sun 10 Aug 2025 18:03:15 +0000 Manifest next update: Sun 17 Aug 2025 18:03:15 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: m6ZGqTTH+fAafBahcOXifim+tbUfprx0M2TyRBGxs9Q=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: mKEvuFivV/Rx5B93IYGv/jXl23LxYS0A2kDJi7kjILY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Aug 10 18:03:15 2025 GMT Not After : Aug 17 18:03:15 2025 GMT Subject: CN=6898dee3-f93c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a6:8e:74:64:16:12:38:37:10:74:1a:51:c0: 78:52:f3:fd:44:53:b4:e6:ae:3a:7b:2b:c0:fc:27: e5:0e:dd:24:83:a4:18:d6:4c:0e:25:83:ac:e2:7f: c2:b9:6b:61:d4:35:df:99:80:7f:a0:f0:d0:7a:b3: e0:c5:bf:41:be:d0:72:01:2d:4a:84:3e:ff:e9:16: c4:59:f1:1e:f7:be:61:81:c1:70:9d:e6:b5:d0:00: 16:fa:df:fd:b5:fb:db:a5:10:f1:3f:f8:6e:65:a1: ef:3f:c9:22:0c:e6:57:b6:dd:3e:21:e9:3e:b2:b4: 79:5f:86:8f:da:e2:98:59:bd:80:d2:b4:07:b3:25: c6:10:85:96:e0:94:f8:81:ac:93:77:38:90:4e:aa: 2a:69:75:9e:58:eb:ad:8b:28:f0:86:9a:cf:28:c0: b0:af:a0:c7:ce:9b:66:16:db:f1:20:3d:22:1d:04: 0c:90:9d:af:a5:e2:4b:7f:b5:f2:fc:db:c8:29:d9: 1b:18:34:31:61:72:2b:ca:f2:99:63:83:d3:82:57: 0f:1a:1d:69:ed:65:8a:f4:38:23:d9:d9:2e:eb:ec: a5:ce:2d:65:02:fb:15:b6:76:c4:e4:7d:57:f6:98: 1a:a2:af:8b:2e:fa:0e:5c:b8:96:69:80:5f:bc:3a: f6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:36:D6:38:E2:31:DC:6D:C8:2E:43:FA:A4:1D:60:7F:59:5E:29:EC X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:9c:d8:46:8f:ad:66:60:62:95:0d:3a:09:91:5e:fc:d6:79: 7f:37:a8:4d:4e:d4:9b:6e:08:92:08:94:20:b3:7e:a9:fc:ae: 34:0c:7f:5e:9b:9a:b7:be:2c:38:2f:6a:7a:67:a4:8b:32:a2: d9:58:83:65:61:44:d5:07:91:c2:19:ff:96:f5:f6:d6:2a:66: 13:f5:91:3a:34:ba:04:62:2e:32:4c:22:d9:32:95:f0:2e:f2: 17:82:a0:bc:42:12:a9:26:82:33:12:22:fc:d7:28:27:8e:c1: 6a:bd:fd:93:38:87:14:7b:e2:02:bb:b2:0e:ed:2f:87:3a:8f: 10:14:fb:f7:cb:d5:14:ce:4a:bf:51:74:39:e7:88:0d:31:2b: 24:20:be:d1:e1:49:cc:b3:38:02:1b:f8:92:15:36:73:91:15: 2c:54:6c:8b:a0:f6:44:5a:10:00:09:c6:95:a9:26:fe:58:ea: a8:10:5e:25:cb:48:eb:55:1f:21:3e:1e:08:d9:f7:b7:65:cf: b0:ae:8c:c2:cc:0c:b8:3c:de:5b:a1:ac:fa:78:68:ea:58:dd: 45:5c:c9:51:26:de:ce:b7:11:eb:d9:f7:e6:77:d0:9c:5e:a4: 49:e9:1d:1c:46:b4:8f:fb:e0:bc:f4:60:fe:01:66:90:e7:36: fe:95:eb:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUwODEwMTgwMzE1WhcNMjUwODE3MTgwMzE1WjAYMRYwFAYD VQQDEw02ODk4ZGVlMy1mOTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6aOdGQWEjg3EHQaUcB4UvP9RFO05q46eyvA/CflDt0kg6QY1kwOJYOs4n/C uWth1DXfmYB/oPDQerPgxb9BvtByAS1KhD7/6RbEWfEe975hgcFwnea10AAW+t/9 tfvbpRDxP/huZaHvP8kiDOZXtt0+Iek+srR5X4aP2uKYWb2A0rQHsyXGEIWW4JT4 gayTdziQTqoqaXWeWOutiyjwhprPKMCwr6DHzptmFtvxID0iHQQMkJ2vpeJLf7Xy /NvIKdkbGDQxYXIryvKZY4PTglcPGh1p7WWK9Dgj2dku6+ylzi1lAvsVtnbE5H1X 9pgaoq+LLvoOXLiWaYBfvDr2jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIo21jji MdxtyC5D+qQdYH9ZXinsMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVnNhGj61mYGKVDToJkV781nl/N6hNTtSbbgiSCJQgs36p/K40DH9e m5q3viw4L2p6Z6SLMqLZWINlYUTVB5HCGf+W9fbWKmYT9ZE6NLoEYi4yTCLZMpXw LvIXgqC8QhKpJoIzEiL81ygnjsFqvf2TOIcUe+ICu7IO7S+HOo8QFPv3y9UUzkq/ UXQ554gNMSskIL7R4UnMszgCG/iSFTZzkRUsVGyLoPZEWhAACcaVqSb+WOqoEF4l y0jrVR8hPh4I2fe3Zc+wrozCzAy4PN5boaz6eGjqWN1FXMlRJt7OtxHr2ffmd9Cc XqRJ6R0cRrSP++C89GD+AWaQ5zb+letR -----END CERTIFICATE-----Generated at Mon Aug 11 04:26:58 2025 by rpki-client