$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft File: JL-jY1L4TxqPpGnesOg26ANa5GY.mft (raw, json) Hash identifier: F1SrwCFMGXf/BqJg5Od6SljkENO+WSf9+TYA7RHRlOk= Subject key identifier: 47:EE:87:C2:DE:99:17:66:41:51:A7:D3:97:A5:8E:2F:84:D9:CD:52 Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 0863 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft Manifest number: 0851 Signing time: Fri 08 Aug 2025 21:04:42 +0000 Manifest this update: Fri 08 Aug 2025 21:04:42 +0000 Manifest next update: Fri 15 Aug 2025 21:04:42 +0000 Files and hashes: 1: JL-jY1L4TxqPpGnesOg26ANa5GY.crl (hash: Cp3efx2Ri0XZTAkzgMB+fduRm+lwv/KXvnYW3cQh7yc=) 2: 72603CD6D28811EAB7D79A47C4F9AE02.roa (hash: iVfJEeg3Wgdof0gIfzSRbq9faDNqlEFVPNcvpNlnmRA=) 3: 71DBA2E6D28811EAB7D79A47C4F9AE02.roa (hash: w4WjZepte0rY+jWEuTZEQB8JcDFa63LXhrBQUJaEGlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2147 (0x863) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Aug 8 21:04:42 2025 GMT Not After : Aug 15 21:04:42 2025 GMT Subject: CN=6896666a-fe55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:58:be:26:da:88:51:f0:ef:0f:fd:a8:71:bd: d7:bd:f4:a7:78:28:fa:70:dd:1e:ca:24:ac:20:5a: f2:2e:e5:b6:b0:fc:64:1e:87:02:ff:7b:af:4b:a0: 13:47:30:58:6c:a1:d1:12:eb:0a:6a:da:85:79:26: 5d:55:09:df:2e:63:72:dd:75:86:af:8f:d3:11:cf: 8e:d2:5e:87:78:ff:87:e2:5f:c5:27:4a:73:cd:d0: d3:88:21:42:37:03:3c:09:c3:7d:22:f9:8f:6f:5f: b7:b7:0a:ce:b2:7b:a5:6e:57:9a:bb:11:fc:f3:0e: ec:bd:7b:5e:f1:42:e3:5e:25:c4:2a:17:9d:82:3b: bb:41:7a:45:ca:aa:e8:13:7b:a8:cb:eb:08:ea:91: 43:f3:ba:a6:83:53:d7:13:75:f3:25:bd:9f:ac:29: 58:7b:0b:40:d9:19:41:ff:4d:50:79:32:e8:a6:9d: a2:9e:23:d1:c9:eb:d7:e4:54:9d:5a:9e:7e:ef:60: 98:47:b0:f7:fc:51:2e:67:dd:ff:74:b0:25:0c:92: ab:35:1a:a1:30:03:b1:d1:82:f4:fd:9b:fe:e9:5c: 52:51:cc:0d:3a:11:3a:61:ef:c8:b0:56:48:10:55: 0d:72:3b:5f:03:ca:f8:8f:7f:91:20:be:65:06:ec: 9c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:EE:87:C2:DE:99:17:66:41:51:A7:D3:97:A5:8E:2F:84:D9:CD:52 X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:f2:27:1b:6a:27:44:35:3b:c5:87:28:29:6b:9a:3b:3d:ca: 1e:dc:52:31:7b:25:83:33:ac:68:19:36:10:05:0f:43:b9:7f: 9a:1f:5b:07:cf:bf:e0:ef:5e:db:9c:b8:2c:c1:46:4a:77:fa: eb:2d:93:13:c5:15:69:7d:26:0b:49:56:21:61:52:8e:29:8f: e9:f9:96:08:17:eb:59:19:b6:a4:94:10:13:a3:d1:ef:04:9e: 23:72:ce:ad:63:e5:2f:98:44:c4:fb:4f:30:d2:39:0a:89:f6: a5:74:d8:28:ce:7d:7c:2c:fb:52:6f:06:c6:77:21:d5:46:df: 55:af:7f:ed:3a:a8:50:d0:d0:34:86:3b:f4:4e:95:c6:5f:ae: 63:9b:64:50:33:80:cc:54:82:42:f4:59:8f:0e:a9:cc:61:00: b8:35:87:61:a9:79:80:ca:c2:be:dd:9c:72:eb:43:03:e1:be: bc:d0:f3:f8:26:58:79:ab:86:eb:22:66:d6:b9:ca:d0:10:53: 54:cc:7f:99:12:48:e4:36:79:86:43:04:9c:6d:94:55:69:35: 9b:a2:d8:18:21:00:d1:59:bb:16:a8:e9:23:34:16:e3:ed:ac: 63:ad:b7:86:92:d7:f1:9d:7d:2f:1e:7f:f9:85:a8:3c:84:dc: 8a:24:30:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjUwODA4MjEwNDQyWhcNMjUwODE1MjEwNDQyWjAYMRYwFAYD VQQDEw02ODk2NjY2YS1mZTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5li+JtqIUfDvD/2ocb3XvfSneCj6cN0eyiSsIFryLuW2sPxkHocC/3uvS6AT RzBYbKHREusKatqFeSZdVQnfLmNy3XWGr4/TEc+O0l6HeP+H4l/FJ0pzzdDTiCFC NwM8CcN9IvmPb1+3twrOsnulbleauxH88w7svXte8ULjXiXEKhedgju7QXpFyqro E3uoy+sI6pFD87qmg1PXE3XzJb2frClYewtA2RlB/01QeTLopp2iniPRyevX5FSd Wp5+72CYR7D3/FEuZ93/dLAlDJKrNRqhMAOx0YL0/Zv+6VxSUcwNOhE6Ye/IsFZI EFUNcjtfA8r4j3+RIL5lBuycZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfuh8Le mRdmQVGn05elji+E2c1SMB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDNFOC8zRjFGMEREQUQyODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4 cVBwR25lc09nMjZBTmE1R1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF8icbaidENTvFhygpa5o7Pcoe3FIxeyWDM6xoGTYQBQ9DuX+aH1sH z7/g717bnLgswUZKd/rrLZMTxRVpfSYLSVYhYVKOKY/p+ZYIF+tZGbaklBATo9Hv BJ4jcs6tY+UvmETE+08w0jkKifaldNgozn18LPtSbwbGdyHVRt9Vr3/tOqhQ0NA0 hjv0TpXGX65jm2RQM4DMVIJC9FmPDqnMYQC4NYdhqXmAysK+3Zxy60MD4b680PP4 Jlh5q4brImbWucrQEFNUzH+ZEkjkNnmGQwScbZRVaTWbotgYIQDRWbsWqOkjNBbj 7axjrbeGktfxnX0vHn/5hag8hNyKJDDc -----END CERTIFICATE-----Generated at Sun Aug 10 18:15:16 2025 by rpki-client