$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: jsi9uw4N/IeI9/ujWZ0ooWjOg7IqNVuFlc39WgQgKXA= Subject key identifier: 89:E2:85:B9:EF:DA:CA:C2:26:AC:C9:4A:B4:29:0B:3F:5B:E5:04:AD Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 2B Signing time: Sun 15 Jun 2025 06:51:45 +0000 Manifest this update: Sun 15 Jun 2025 06:51:45 +0000 Manifest next update: Sun 22 Jun 2025 06:51:45 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: PFN1nMmsRHCc5xkmLyhyM1G5+PMIR0bVmIjEN/qPA3A=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: QZ2cZMYkPm+jK9/JMXPVcucYU0NqHDxW+giSXfrxEfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 06:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Jun 15 06:51:45 2025 GMT Not After : Jun 22 06:51:45 2025 GMT Subject: CN=684e6d81-eedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ef:92:24:fc:a5:48:9b:1c:89:a2:e3:4e:82: 91:58:5c:32:e2:56:91:aa:2c:b9:dc:54:97:6a:fc: 5f:89:2f:0e:0d:c8:5f:33:3d:38:ab:68:65:9e:5d: f8:87:87:c2:8a:d6:ea:61:d6:27:f1:4f:d8:d7:f8: f9:50:81:fa:8a:ac:b6:f6:d1:f5:20:c9:be:c9:95: 7a:1f:23:14:1b:cf:bb:5d:6f:7f:95:e4:a6:4a:aa: c3:7f:7a:77:be:84:73:df:35:1d:db:5b:ce:fd:5c: a9:99:f0:0a:12:ce:3f:f2:d9:7a:b5:32:5e:37:75: 34:93:22:33:0a:e7:bf:36:44:44:76:db:58:e5:6e: d3:f3:14:52:4e:be:65:25:2a:c0:dd:00:0e:a3:6e: 5c:a7:f5:65:8b:c6:64:44:a3:55:3e:1a:27:cd:a6: f7:36:1f:cc:58:1b:a2:93:18:23:eb:1d:6d:0c:e9: 58:46:78:21:a7:f9:63:29:3e:61:07:f9:6d:84:e2: 28:96:3e:20:16:0d:fa:e3:57:22:9d:27:26:ac:a2: d7:a9:51:3a:e1:17:b4:48:e7:64:59:1d:7b:e5:23: c2:2a:b0:cb:77:51:b3:f1:54:21:c0:77:e2:46:93: 29:f4:3a:42:c1:46:d3:6a:0f:5c:ad:d7:00:0d:fd: 03:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:E2:85:B9:EF:DA:CA:C2:26:AC:C9:4A:B4:29:0B:3F:5B:E5:04:AD X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:12:a2:c4:8e:35:a4:05:c7:78:d4:2f:1d:9b:20:55:d0:7f: 88:de:90:b5:29:74:93:bc:bf:de:b0:5c:29:01:0a:50:86:20: b0:8c:44:15:a6:f0:b1:35:0d:95:33:01:8a:ba:1c:04:09:f6: f9:dd:2a:0d:c5:a5:a3:85:fb:09:3c:3c:dc:65:ae:05:ea:39: 9a:c2:c2:24:ab:68:cc:9c:e3:fc:82:46:33:15:f0:c0:26:ba: fa:8c:40:06:fd:a5:74:c7:08:8e:85:b9:54:79:b3:d2:8a:df: 18:f7:60:a1:e3:6e:dd:58:c8:32:44:6c:c2:6a:8c:b7:8b:e9: ac:90:10:e6:8e:3d:b6:fd:3f:35:cc:97:57:3b:3e:4f:c1:f6: cb:29:e3:d5:90:95:fa:5d:8b:09:e8:ba:aa:e9:fd:95:53:3d: ab:ec:96:1e:70:65:0c:b0:60:80:0a:3a:4f:1d:09:01:0b:d6: 5b:7d:d5:e4:1e:44:02:36:0c:ac:bb:17:ad:58:4a:08:74:7e: a0:5d:15:b4:cb:73:4a:12:89:56:95:ed:3b:74:b6:e8:3d:0f: bb:9e:06:ca:f8:5e:f7:22:9c:6c:cd:56:ce:b4:07:1f:b6:8d: 82:3d:bf:9f:c5:4d:3f:d2:f3:cd:3a:ae:4e:ce:dc:e1:de:88: 9b:0a:56:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTA2MTUwNjUxNDVaFw0yNTA2MjIwNjUxNDVaMBgxFjAUBgNV BAMTDTY4NGU2ZDgxLWVlZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd75Ik/KVImxyJouNOgpFYXDLiVpGqLLncVJdq/F+JLw4NyF8zPTiraGWeXfiH h8KK1uph1ifxT9jX+PlQgfqKrLb20fUgyb7JlXofIxQbz7tdb3+V5KZKqsN/ene+ hHPfNR3bW879XKmZ8AoSzj/y2Xq1Ml43dTSTIjMK5782RER221jlbtPzFFJOvmUl KsDdAA6jblyn9WWLxmREo1U+GifNpvc2H8xYG6KTGCPrHW0M6VhGeCGn+WMpPmEH +W2E4iiWPiAWDfrjVyKdJyasotepUTrhF7RI52RZHXvlI8IqsMt3UbPxVCHAd+JG kyn0OkLBRtNqD1yt1wAN/QPnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUieKFue/a ysImrMlKtCkLP1vlBK0wHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdM SHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKoSosSONaQFx3jULx2bIFXQf4jekLUpdJO8v96wXCkBClCGILCMRBWm 8LE1DZUzAYq6HAQJ9vndKg3FpaOF+wk8PNxlrgXqOZrCwiSraMyc4/yCRjMV8MAm uvqMQAb9pXTHCI6FuVR5s9KK3xj3YKHjbt1YyDJEbMJqjLeL6ayQEOaOPbb9PzXM l1c7Pk/B9ssp49WQlfpdiwnouqrp/ZVTPavslh5wZQywYIAKOk8dCQEL1lt91eQe RAI2DKy7F61YSgh0fqBdFbTLc0oSiVaV7Tt0tug9D7ueBsr4XvcinGzNVs60Bx+2 jYI9v5/FTT/S8806rk7O3OHeiJsKVh0= -----END CERTIFICATE-----Generated at Tue Jun 17 01:33:34 2025 by rpki-client