$ rpki-client -vvf rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft File: jhRqR_5i0JoyZs4IOlecrROlgGY.mft (raw, json) Hash identifier: WMPzR1DFeS3bfQHVbeWuLk542/QULplSMvUX0+aCANw= Subject key identifier: 89:A2:14:0C:99:F7:C5:99:ED:2B:F8:B6:87:A0:97:15:9F:E4:BF:E9 Authority key identifier: 8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 Certificate issuer: /CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft Manifest number: 019E Signing time: Sat 09 Aug 2025 03:40:53 +0000 Manifest this update: Sat 09 Aug 2025 03:40:52 +0000 Manifest next update: Sat 16 Aug 2025 03:40:52 +0000 Files and hashes: 1: jhRqR_5i0JoyZs4IOlecrROlgGY.crl (hash: PVUIL8LT99TV3vSKyeuMhwtk2xrSiy4pXua/SgWwu0Q=) 2: DFFEC4ECFA2B11ED89B90A2FC4F9AE02.roa (hash: yNzSo18Zr+VZZ8+QcBD6VKrhKtuzioN93vYAY/qtNGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91570C9, serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Validity Not Before: Aug 9 03:40:52 2025 GMT Not After : Aug 16 03:40:52 2025 GMT Subject: CN=6896c344-1b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9d:b5:c2:b2:07:7b:19:70:85:88:ac:f5:85: 07:82:6c:df:c8:25:4a:d8:19:22:96:be:be:4a:c8: a1:34:db:61:e9:cb:41:19:e8:1f:70:c4:b4:25:95: 18:b6:98:be:f7:1c:20:ef:f3:68:3b:bb:21:b2:29: 52:42:07:3f:ce:38:04:91:e5:18:1c:9a:11:79:2e: c2:31:2c:f3:c1:4c:ef:6a:ff:d7:7a:2e:29:92:1e: ca:57:1f:fc:fb:6c:b5:c5:1c:eb:1d:3f:95:53:53: a1:43:4f:2a:d8:c5:32:d7:ea:b2:17:a2:d4:71:ac: 35:df:f6:ae:e3:31:5f:0a:df:c9:c0:a1:7b:1a:ca: 16:32:e5:23:8d:87:91:31:ab:d8:78:b5:25:99:69: b4:4a:1d:a9:a6:13:36:04:99:7a:d3:6d:c7:53:48: b7:ed:b7:40:a9:8b:9e:d5:c7:87:e3:ca:95:c3:d1: 8b:07:41:67:db:06:5f:3b:71:0d:65:62:c3:71:11: 2c:eb:60:c4:44:0a:e3:b4:84:6f:30:5d:01:be:3a: f4:8b:61:32:56:3e:41:ca:1e:35:60:b7:d9:60:21: d1:85:12:49:59:c8:61:53:20:01:de:d2:b7:94:0d: 42:89:18:68:7d:38:45:33:78:27:2a:5b:88:59:fb: 39:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A2:14:0C:99:F7:C5:99:ED:2B:F8:B6:87:A0:97:15:9F:E4:BF:E9 X509v3 Authority Key Identifier: keyid:8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:2b:f6:55:04:db:d1:94:13:6e:5a:52:1d:cc:66:95:1c:e5: 6b:59:54:fc:3c:65:3c:67:92:4d:3d:10:eb:c1:c3:f0:85:99: 90:c0:ef:8c:d8:85:2e:d1:2a:bd:14:4c:4a:89:a2:bb:e0:a0: b0:04:6a:2b:75:fd:3d:9b:cc:92:71:03:41:7d:f4:9b:1d:7d: 70:17:2d:12:94:a3:db:91:57:b4:04:9d:ec:b9:e6:4b:4c:55: 66:b1:0a:e2:ac:08:df:f7:51:c0:e4:49:df:83:55:e7:2f:a5: b8:41:67:e4:27:64:bc:03:bd:77:66:90:c1:99:9d:10:76:dd: 3d:9b:13:17:16:58:2b:73:c1:9a:94:95:cc:93:7c:5b:4a:06: dc:3c:cd:46:1e:6a:b1:aa:58:9c:ca:80:dc:43:35:cc:31:7c: a2:e4:ee:d6:7f:eb:75:7c:ef:14:ac:74:3d:f6:98:5f:86:70: e2:76:e9:9f:87:da:a1:0a:1f:5a:fd:74:62:2d:19:97:e7:43: 62:49:73:51:91:0b:48:63:94:a5:a6:86:9a:b6:3f:cc:be:6f: 57:73:d5:c5:80:98:21:81:1d:40:ab:ed:1e:c6:6d:30:ba:87: f2:1b:4a:ce:1c:fc:07:2b:1e:c2:a4:48:91:35:5d:f8:32:96: ae:bc:a0:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwQzkxMTAvBgNVBAUTKDhFMTQ2QTQ3RkU2MkQwOUEzMjY2Q0UwODNBNTc5Q0FE MTNBNTgwNjYwHhcNMjUwODA5MDM0MDUyWhcNMjUwODE2MDM0MDUyWjAYMRYwFAYD VQQDEw02ODk2YzM0NC0xYjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz521wrIHexlwhYis9YUHgmzfyCVK2Bkilr6+SsihNNth6ctBGegfcMS0JZUY tpi+9xwg7/NoO7shsilSQgc/zjgEkeUYHJoReS7CMSzzwUzvav/Xei4pkh7KVx/8 +2y1xRzrHT+VU1OhQ08q2MUy1+qyF6LUcaw13/au4zFfCt/JwKF7GsoWMuUjjYeR MavYeLUlmWm0Sh2pphM2BJl6023HU0i37bdAqYue1ceH48qVw9GLB0Fn2wZfO3EN ZWLDcREs62DERArjtIRvMF0Bvjr0i2EyVj5Byh41YLfZYCHRhRJJWchhUyAB3tK3 lA1CiRhofThFM3gnKluIWfs5gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImiFAyZ 98WZ7Sv4toeglxWf5L/pMB8GA1UdIwQYMBaAFI4Uakf+YtCaMmbOCDpXnK0TpYBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzBDOS8wMjI3QjlBRUZB MjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBKb3laczRJT2xlY3JST2xn R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poUnFSXzVpMEpveVpzNElPbGVjclJPbGdHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzBDOS8wMjI3QjlBRUZBMjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBK b3laczRJT2xlY3JST2xnR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARK/ZVBNvRlBNuWlIdzGaVHOVrWVT8PGU8Z5JNPRDrwcPwhZmQwO+M 2IUu0Sq9FExKiaK74KCwBGordf09m8yScQNBffSbHX1wFy0SlKPbkVe0BJ3sueZL TFVmsQrirAjf91HA5Enfg1XnL6W4QWfkJ2S8A713ZpDBmZ0Qdt09mxMXFlgrc8Ga lJXMk3xbSgbcPM1GHmqxqlicyoDcQzXMMXyi5O7Wf+t1fO8UrHQ99phfhnDidumf h9qhCh9a/XRiLRmX50NiSXNRkQtIY5Slpoaatj/Mvm9Xc9XFgJghgR1Aq+0exm0w uofyG0rOHPwHKx7CpEiRNV34MpauvKDT -----END CERTIFICATE-----Generated at Mon Aug 11 04:08:33 2025 by rpki-client