$ rpki-client -vvf rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft File: jLK71ktqd04WwQ_cplCnrcWzjXg.mft (raw, json) Hash identifier: 9eZkOzzAeI62q6126fbvG1wQ0QB+UGu3HocNpAq9l0s= Subject key identifier: 63:D0:36:9C:EB:80:5B:A4:E7:67:37:7A:8E:1B:E1:16:DA:F3:BC:F0 Authority key identifier: 8C:B2:BB:D6:4B:6A:77:4E:16:C1:0F:DC:A6:50:A7:AD:C5:B3:8D:78 Certificate issuer: /CN=A914749C/serialNumber=8CB2BBD64B6A774E16C10FDCA650A7ADC5B38D78 Certificate serial: 1C37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft Manifest number: 1C1F Signing time: Fri 08 Aug 2025 16:21:15 +0000 Manifest this update: Fri 08 Aug 2025 16:21:15 +0000 Manifest next update: Fri 15 Aug 2025 16:21:15 +0000 Files and hashes: 1: jLK71ktqd04WwQ_cplCnrcWzjXg.crl (hash: myY0NtDsK5yBzhi/oZ2nUw6GckHirbgpw31TfE3NcVU=) 2: 433FBBECF1A511E6BE0A844EC4F9AE02.roa (hash: UTjSg2cr4EOymY78oxKDbnxxdk7LUhNg4mssHXCS3hY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.crl rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7223 (0x1c37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914749C, serialNumber=8CB2BBD64B6A774E16C10FDCA650A7ADC5B38D78 Validity Not Before: Aug 8 16:21:15 2025 GMT Not After : Aug 15 16:21:15 2025 GMT Subject: CN=689623fb-ac2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:18:5b:5c:0a:a3:fc:91:e2:f8:ac:3a:e3:c3: fb:82:28:6c:09:46:35:50:6f:88:a6:1a:86:97:6b: 7c:8d:c0:0a:e3:af:67:7d:c4:f7:36:f0:61:52:40: ea:59:b5:fa:37:e4:da:e5:29:c5:2b:f9:63:1b:7b: 76:17:3a:e9:56:e1:8b:7d:75:97:ab:13:7d:68:0d: f6:f8:52:22:52:9e:47:31:2d:cc:5a:5b:03:61:bb: 2f:fa:31:ea:15:8c:dd:62:ab:0e:9c:94:06:cb:35: 99:df:bd:41:e7:ee:36:53:02:06:24:be:b7:64:67: 5f:a5:34:a2:c3:00:f3:b4:58:f8:42:33:16:7f:c2: 6f:b5:73:f2:20:91:98:7e:08:72:a4:2e:ff:53:ac: ef:34:3c:51:f3:a4:f7:4c:a4:e1:21:f8:67:5f:55: 9d:8c:da:ff:5b:cf:78:67:4f:1c:45:c3:7e:a8:e8: ce:45:6c:d6:6d:1c:f4:96:f1:cf:3e:b4:52:2d:86: c5:35:a2:f1:bc:7e:dc:1f:35:ac:69:21:81:96:57: e5:c8:9a:7e:65:59:da:52:9a:e7:c5:57:a6:b9:93: b5:dd:0a:dc:48:83:d8:74:03:d3:d3:8a:fc:9f:99: 73:e2:a5:34:5c:10:2a:16:fa:33:44:06:79:37:76: 28:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D0:36:9C:EB:80:5B:A4:E7:67:37:7A:8E:1B:E1:16:DA:F3:BC:F0 X509v3 Authority Key Identifier: keyid:8C:B2:BB:D6:4B:6A:77:4E:16:C1:0F:DC:A6:50:A7:AD:C5:B3:8D:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:e8:d3:00:d6:b7:10:fa:d6:ca:d1:bb:e7:fa:6a:9c:4d:9e: bf:6d:a0:b0:da:b1:14:3e:29:05:4d:02:96:06:6d:ae:9e:b9: bd:31:c0:c9:ea:aa:9e:19:b1:4c:fc:9d:74:42:4f:63:2d:6e: ee:d2:e6:55:0a:a8:9e:76:02:fa:a1:51:df:a0:95:b5:cd:02: ef:ba:9a:5d:f9:7c:1f:4f:9e:b6:e2:ef:01:6b:a0:68:d4:45: 50:e6:64:75:66:57:0a:37:64:50:91:c5:67:df:c8:2a:93:e8: c7:91:25:c0:a6:b8:ea:87:1c:d3:eb:33:a2:21:ce:b4:e0:f9: f6:87:2b:26:36:97:5a:b8:93:d5:8f:63:79:47:d6:03:e6:5f: 43:a7:b7:6c:33:97:51:4a:69:fe:87:0e:a6:40:8b:ba:16:bf: d9:81:fc:2f:8a:51:21:d3:aa:e8:34:3d:e0:f3:fa:63:40:75: 70:ed:c8:77:be:56:72:07:82:5c:95:13:c8:23:58:f3:2d:78: c2:e7:4a:2b:97:86:0b:b9:e1:d8:96:54:38:c8:42:c9:c9:01: 9f:90:45:63:b0:88:6a:84:85:6a:69:27:cb:cb:3d:99:42:49: 3a:b3:49:61:f9:07:e5:e1:4e:b7:64:76:e0:85:36:1c:e7:c2: a4:8e:36:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0OUMxMTAvBgNVBAUTKDhDQjJCQkQ2NEI2QTc3NEUxNkMxMEZEQ0E2NTBBN0FE QzVCMzhENzgwHhcNMjUwODA4MTYyMTE1WhcNMjUwODE1MTYyMTE1WjAYMRYwFAYD VQQDEw02ODk2MjNmYi1hYzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4BhbXAqj/JHi+Kw648P7gihsCUY1UG+IphqGl2t8jcAK469nfcT3NvBhUkDq WbX6N+Ta5SnFK/ljG3t2FzrpVuGLfXWXqxN9aA32+FIiUp5HMS3MWlsDYbsv+jHq FYzdYqsOnJQGyzWZ371B5+42UwIGJL63ZGdfpTSiwwDztFj4QjMWf8JvtXPyIJGY fghypC7/U6zvNDxR86T3TKThIfhnX1WdjNr/W894Z08cRcN+qOjORWzWbRz0lvHP PrRSLYbFNaLxvH7cHzWsaSGBllflyJp+ZVnaUprnxVemuZO13QrcSIPYdAPT04r8 n5lz4qU0XBAqFvozRAZ5N3YooQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPQNpzr gFuk52c3eo4b4Rba87zwMB8GA1UdIwQYMBaAFIyyu9ZLandOFsEP3KZQp63Fs414 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzQ5Qy84RDc4RTU3RUYx QTIxMUU2OTQyMUI1NDVDNEY5QUUwMi9qTEs3MWt0cWQwNFd3UV9jcGxDbnJjV3pq WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pMSzcxa3RxZDA0V3dRX2NwbENucmNXempYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzQ5Qy84RDc4RTU3RUYxQTIxMUU2OTQyMUI1NDVDNEY5QUUwMi9qTEs3MWt0cWQw NFd3UV9jcGxDbnJjV3pqWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt6NMA1rcQ+tbK0bvn+mqcTZ6/baCw2rEUPikFTQKWBm2unrm9McDJ 6qqeGbFM/J10Qk9jLW7u0uZVCqiedgL6oVHfoJW1zQLvuppd+XwfT5624u8Ba6Bo 1EVQ5mR1ZlcKN2RQkcVn38gqk+jHkSXAprjqhxzT6zOiIc604Pn2hysmNpdauJPV j2N5R9YD5l9Dp7dsM5dRSmn+hw6mQIu6Fr/ZgfwvilEh06roND3g8/pjQHVw7ch3 vlZyB4JclRPII1jzLXjC50orl4YLueHYllQ4yELJyQGfkEVjsIhqhIVqaSfLyz2Z Qkk6s0lh+Qfl4U63ZHbghTYc58KkjjaH -----END CERTIFICATE-----Generated at Sun Aug 10 16:14:42 2025 by rpki-client