$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft File: jdQUSFkXzUyAFnvaGdcklkawZyU.mft (raw, json) Hash identifier: ZAFfMQeqVR8osMGbAEgM/vVUhA9ZTE2lKujmPPBP+NA= Subject key identifier: 7A:21:77:79:8C:33:37:72:B6:F4:58:65:17:5A:3D:B0:4D:80:96:74 Authority key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 Certificate issuer: /CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft Manifest number: AA Signing time: Sat 09 Aug 2025 06:36:53 +0000 Manifest this update: Sat 09 Aug 2025 06:36:52 +0000 Manifest next update: Sat 16 Aug 2025 06:36:52 +0000 Files and hashes: 1: jdQUSFkXzUyAFnvaGdcklkawZyU.crl (hash: vpet1kTaS1S4Sq7ik5zPnH0xpEo2f7/2us+oy+vpsfI=) 2: FF3D553675B711EF83FAAE42C4F9AE02.roa (hash: /HTBqf5H3Uz657hsatlKZqGr2vioW9ZJotjtVpnDq5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Validity Not Before: Aug 9 06:36:52 2025 GMT Not After : Aug 16 06:36:52 2025 GMT Subject: CN=6896ec84-7ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:99:f9:94:8b:9b:4f:0c:7a:96:1a:34:b4:de: 86:44:be:66:49:f5:26:7a:75:06:8e:8f:bb:16:12: a5:28:43:20:67:61:78:1f:f7:15:ef:36:6d:9a:bf: e1:b6:be:57:9b:59:1a:bc:d3:30:b3:9e:a0:b5:9f: 79:67:39:9c:f9:c3:5d:13:69:f5:9f:6b:04:23:49: 28:18:16:2e:a6:77:9c:2a:97:01:6a:10:0f:f5:cf: 73:ff:85:af:8d:76:9f:d5:a4:96:d2:6a:c4:12:ba: 96:f4:ff:a4:2a:87:e0:22:b7:b4:8b:a2:14:4b:80: 5a:23:36:c3:05:37:4c:f2:2b:31:a7:53:6e:29:da: ff:fe:ca:ee:6d:16:6d:05:db:33:19:df:8e:a6:62: 85:66:d2:bd:0d:73:93:5a:94:42:e7:30:c1:c7:41: b8:6e:24:4b:b2:df:d2:8f:43:23:0a:08:fd:2b:31: 77:30:91:d7:58:41:5d:2e:fa:23:75:24:5a:c8:76: 54:46:87:2a:f5:ab:68:e0:3d:af:3c:7a:e3:2f:48: fd:ce:39:11:e7:3a:3b:10:a5:66:df:03:38:9c:26: 24:ae:be:f2:05:72:7d:51:8b:0c:16:03:d3:4c:41: c0:4d:ab:35:31:7b:4e:50:f8:92:db:a9:7d:6f:f2: a1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:21:77:79:8C:33:37:72:B6:F4:58:65:17:5A:3D:B0:4D:80:96:74 X509v3 Authority Key Identifier: keyid:8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:dc:68:26:de:bf:eb:65:a3:6a:e7:89:a3:6c:60:3b:7f:c2: 8a:d8:88:e7:bc:09:44:e5:79:d8:75:a3:62:74:85:4d:ca:e2: 9b:4e:00:17:4d:11:a8:83:21:43:4f:56:27:e1:62:c4:4c:03: a2:41:4e:53:d5:99:5e:9e:d7:7d:40:3e:92:42:54:b4:b9:46: 60:6b:ce:93:7c:c9:2b:39:04:28:34:15:a2:dd:04:fb:33:c8: bc:c0:da:ea:c3:6c:d2:ab:f4:61:ad:16:d4:32:49:24:41:0f: 22:5f:1f:5a:1f:73:af:1d:c6:e2:1f:31:c9:fc:b5:2f:aa:67: 6b:d9:ae:34:c4:6d:b4:28:f5:fb:13:2e:1f:0a:0b:92:e0:ea: 5b:08:10:95:f5:fd:fc:9f:26:71:8c:5a:fb:7d:9b:e3:38:98: f2:75:bb:51:9c:7f:9e:4b:6b:0c:78:bd:da:46:f9:e7:9c:54: 69:0f:1a:5e:ba:37:51:be:70:35:9a:e2:a8:e9:3f:60:8b:8e: b3:b6:ed:1f:ef:8a:c3:8f:00:ea:b6:06:c1:cf:8f:68:14:94: 55:db:01:cb:d6:91:5a:a2:d7:e6:4d:2f:30:72:9a:3c:74:56: 74:5e:03:a0:46:f9:36:13:85:50:8c:7f:a8:11:74:bd:13:ce: 77:2b:51:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDhERDQxNDQ4NTkxN0NENEM4MDE2N0JEQTE5RDcyNDk2 NDZCMDY3MjUwHhcNMjUwODA5MDYzNjUyWhcNMjUwODE2MDYzNjUyWjAYMRYwFAYD VQQDEw02ODk2ZWM4NC03ZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZn5lIubTwx6lho0tN6GRL5mSfUmenUGjo+7FhKlKEMgZ2F4H/cV7zZtmr/h tr5Xm1kavNMws56gtZ95Zzmc+cNdE2n1n2sEI0koGBYupnecKpcBahAP9c9z/4Wv jXaf1aSW0mrEErqW9P+kKofgIre0i6IUS4BaIzbDBTdM8isxp1NuKdr//srubRZt BdszGd+OpmKFZtK9DXOTWpRC5zDBx0G4biRLst/Sj0MjCgj9KzF3MJHXWEFdLvoj dSRayHZURocq9ato4D2vPHrjL0j9zjkR5zo7EKVm3wM4nCYkrr7yBXJ9UYsMFgPT TEHATas1MXtOUPiS26l9b/Kh5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHohd3mM MzdytvRYZRdaPbBNgJZ0MB8GA1UdIwQYMBaAFI3UFEhZF81MgBZ72hnXJJZGsGcl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EMjdDOTE1Qzc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpVeUFGbnZhR2Rja2xrYXda eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pkUVVTRmtYelV5QUZudmFHZGNrbGthd1p5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EMjdDOTE1Qzc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpV eUFGbnZhR2Rja2xrYXdaeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB63Ggm3r/rZaNq54mjbGA7f8KK2IjnvAlE5XnYdaNidIVNyuKbTgAX TRGogyFDT1Yn4WLETAOiQU5T1Zlentd9QD6SQlS0uUZga86TfMkrOQQoNBWi3QT7 M8i8wNrqw2zSq/RhrRbUMkkkQQ8iXx9aH3OvHcbiHzHJ/LUvqmdr2a40xG20KPX7 Ey4fCguS4OpbCBCV9f38nyZxjFr7fZvjOJjydbtRnH+eS2sMeL3aRvnnnFRpDxpe ujdRvnA1muKo6T9gi46ztu0f74rDjwDqtgbBz49oFJRV2wHL1pFaotfmTS8wcpo8 dFZ0XgOgRvk2E4VQjH+oEXS9E853K1H3 -----END CERTIFICATE-----Generated at Mon Aug 11 04:17:24 2025 by rpki-client