$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: YL+oWya2m/rIysAeVNigWTaVw+BwtFcRxhJVx/GXHmM= Subject key identifier: 49:3C:FE:30:9C:0F:DD:67:21:1F:63:06:A8:E9:8D:D5:F9:16:00:00 Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0E36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0E2B Signing time: Fri 08 Aug 2025 18:00:24 +0000 Manifest this update: Fri 08 Aug 2025 18:00:24 +0000 Manifest next update: Fri 15 Aug 2025 18:00:24 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: YEw5zctxpdbFS9XxP9hV8shuM9Hxr5TkMaYz0FU1wGY=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Aug 8 18:00:24 2025 GMT Not After : Aug 15 18:00:24 2025 GMT Subject: CN=68963b38-6d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:00:8c:63:03:a3:e7:c2:ab:57:f9:ab:7b:74: 7a:c3:fb:e3:84:44:4e:48:b9:e1:c4:ec:1f:4f:d7: 93:cb:47:8a:7f:6a:a7:f4:91:5f:c6:c9:28:7b:53: 8b:4b:89:15:e1:5f:dc:73:ba:4d:06:84:ad:b9:ae: a4:bf:f2:84:be:18:48:8f:f7:57:93:7d:3e:50:75: 41:a7:36:2c:d5:8b:aa:20:98:b4:95:97:4c:27:a4: 2f:6c:c2:d7:93:47:73:a2:3d:47:25:b4:88:92:15: 50:c4:61:d9:af:a0:d1:b1:44:0f:8a:71:ae:72:81: 9f:ce:df:54:4e:47:00:8b:22:d1:09:5d:34:5e:0f: 3f:95:7d:16:87:38:cd:b6:f2:9e:6b:e0:a1:cf:7c: de:14:f0:96:ac:0f:fd:e6:bc:f6:fc:44:5d:ec:06: 82:3c:8c:eb:27:d8:49:4b:2e:29:5f:f2:3e:6f:27: cd:59:eb:3f:5f:44:da:ee:c2:06:e5:07:54:1d:fa: 8f:2b:9e:27:f5:a3:54:50:08:66:92:1e:26:3f:30: df:07:00:2a:88:7c:84:bc:f1:fa:e9:7f:19:64:4d: d6:fc:29:64:9f:e2:dc:83:18:ad:32:f5:1c:5c:c9: 93:ae:dd:ae:10:35:07:fd:ce:0e:97:1c:bb:13:b4: 9b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:3C:FE:30:9C:0F:DD:67:21:1F:63:06:A8:E9:8D:D5:F9:16:00:00 X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:6f:97:7c:a5:29:8a:3b:f8:7c:c4:ba:65:b2:e7:2b:78:f3: 67:8d:24:6a:8f:0f:e6:2f:b2:e6:80:09:a6:9b:21:1f:f8:5f: 9c:a3:e4:ef:55:f1:f8:e3:83:2b:0b:c9:4f:39:c2:d0:14:db: 46:cd:7e:8c:65:b5:2a:7c:2d:1e:b7:fb:08:f2:cd:da:50:6b: 93:10:f6:bb:ed:1f:99:ff:36:e4:da:c5:ba:db:b6:ba:b5:98: a8:e6:76:7a:dc:de:bf:6c:ba:1c:19:c3:69:99:27:da:6d:12: 57:d3:bb:5d:ff:81:41:ea:d1:3b:6a:56:1b:a7:24:3f:6b:a9: 31:17:4f:0e:54:37:be:68:71:6f:1d:1f:b1:e4:d3:cf:92:39: 9a:f8:e5:2c:cb:18:fc:a9:30:2e:6f:51:08:53:93:53:d7:08: d3:f2:ec:b2:a6:4c:28:de:3d:c4:6f:ff:e7:05:2c:4a:22:a6: 3e:be:a9:44:e6:c8:75:9d:b8:13:02:f5:e4:5a:05:65:b2:66: 56:27:39:b8:37:29:25:52:34:f7:7d:78:c0:49:0c:96:7c:fd: c0:01:2d:ba:f6:a9:49:00:e5:18:47:35:82:27:31:a9:4a:84: 41:10:59:c1:11:82:24:be:7b:af:17:42:46:26:fe:c9:55:ae: c0:2e:dc:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUwODA4MTgwMDI0WhcNMjUwODE1MTgwMDI0WjAYMRYwFAYD VQQDEw02ODk2M2IzOC02ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzACMYwOj58KrV/mre3R6w/vjhEROSLnhxOwfT9eTy0eKf2qn9JFfxskoe1OL S4kV4V/cc7pNBoStua6kv/KEvhhIj/dXk30+UHVBpzYs1YuqIJi0lZdMJ6QvbMLX k0dzoj1HJbSIkhVQxGHZr6DRsUQPinGucoGfzt9UTkcAiyLRCV00Xg8/lX0WhzjN tvKea+Chz3zeFPCWrA/95rz2/ERd7AaCPIzrJ9hJSy4pX/I+byfNWes/X0Ta7sIG 5QdUHfqPK54n9aNUUAhmkh4mPzDfBwAqiHyEvPH66X8ZZE3W/Clkn+LcgxitMvUc XMmTrt2uEDUH/c4Olxy7E7SbTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEk8/jCc D91nIR9jBqjpjdX5FgAAMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWb5d8pSmKO/h8xLplsucrePNnjSRqjw/mL7LmgAmmmyEf+F+co+Tv VfH444MrC8lPOcLQFNtGzX6MZbUqfC0et/sI8s3aUGuTEPa77R+Z/zbk2sW627a6 tZio5nZ63N6/bLocGcNpmSfabRJX07td/4FB6tE7alYbpyQ/a6kxF08OVDe+aHFv HR+x5NPPkjma+OUsyxj8qTAub1EIU5NT1wjT8uyypkwo3j3Eb//nBSxKIqY+vqlE 5sh1nbgTAvXkWgVlsmZWJzm4NyklUjT3fXjASQyWfP3AAS269qlJAOUYRzWCJzGp SoRBEFnBEYIkvnuvF0JGJv7JVa7ALtz6 -----END CERTIFICATE-----Generated at Sun Aug 10 16:05:56 2025 by rpki-client