$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: r8OgfbyjHxbj/1rcXuJjHuemvENTYFeLe8zUGEylNWA= Subject key identifier: E9:86:72:8E:DB:1F:98:B3:8B:F2:38:7C:A4:A8:D3:B6:74:1C:80:1D Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 48 Signing time: Thu 07 Aug 2025 08:05:22 +0000 Manifest this update: Thu 07 Aug 2025 08:05:22 +0000 Manifest next update: Thu 14 Aug 2025 08:05:22 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: sfz2gFbTC8/XxRuaOE7PQsQhq8Ri6vbzxo58uFzWg6k=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Aug 7 08:05:22 2025 GMT Not After : Aug 14 08:05:22 2025 GMT Subject: CN=68945e42-38e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:28:6c:4c:a0:2a:fb:aa:a5:08:c6:66:ea:d9: 89:da:d4:7d:d6:6d:f5:a4:3b:c2:cc:82:92:39:9d: 2c:64:10:cb:0b:f1:3c:8c:88:19:8f:1c:02:4e:d6: 2f:6b:1a:ab:99:f2:18:bc:e0:8b:55:2c:ad:b7:d5: 03:b6:e7:5b:36:36:ac:7d:54:3f:e2:92:08:65:cc: f9:49:06:a5:70:62:88:af:46:49:39:dd:03:1b:11: da:5a:b3:54:6a:78:ea:5e:f6:40:02:59:02:23:c6: b0:f7:c1:d5:4a:6e:13:03:6d:76:4d:46:36:03:92: 00:5d:ed:b6:cd:bd:91:fa:f9:5e:92:62:c6:04:06: 5c:0e:d2:4f:14:07:18:26:1f:9d:f7:8d:d1:18:fe: 5c:80:c9:75:fd:2d:9a:42:27:a6:5e:2a:89:83:30: 46:22:d1:6c:4c:0f:49:ee:7b:80:f6:bf:32:cd:cd: 57:78:6b:29:db:a9:e8:d5:e7:3d:cf:9c:51:d1:82: c9:9c:d9:9c:8d:1e:8a:7b:0f:cc:10:4d:7a:54:72: d5:d0:83:cb:7b:61:b1:a3:b1:1b:11:75:c7:45:75: c2:4a:f4:55:a3:2a:6b:c9:25:6e:5e:83:2e:2f:29: d0:e3:80:18:6f:a1:23:1e:de:16:87:9b:8c:81:e4: d3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:86:72:8E:DB:1F:98:B3:8B:F2:38:7C:A4:A8:D3:B6:74:1C:80:1D X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:79:f6:86:c7:61:f8:76:22:2e:a3:1c:71:74:de:e3:05:53: 78:00:33:ba:7d:85:93:f8:6b:fb:17:ff:42:be:68:46:10:b5: 6c:04:ff:c8:7e:be:22:0c:21:b9:c2:f8:24:3e:cc:b7:52:ad: 27:38:cb:90:df:44:ef:a0:61:43:5b:51:7c:46:ea:6e:69:89: c9:28:c0:e8:b5:fb:79:d2:76:31:06:29:a3:d8:8f:c1:bc:a2: c5:a5:7c:13:43:a1:35:d9:dd:a1:45:44:e2:cc:1b:79:f1:fa: 53:b8:f4:cf:ac:f6:5a:1b:ce:c3:2c:fe:49:fd:04:bd:48:98: 2a:91:11:44:79:a7:15:91:1b:d5:71:79:10:bb:f5:4e:2e:93: 90:2a:fe:2a:92:0e:c5:f6:d3:b6:17:cb:4a:d7:44:fb:23:27: 73:2b:30:e0:2b:01:d1:f8:01:8d:ad:f1:1d:57:55:6c:e2:87: 34:1f:63:5b:23:16:45:cf:1c:ee:c2:fc:37:88:48:b0:15:13: df:30:b1:2d:07:27:d8:51:71:8b:2e:4d:c5:4c:eb:61:0d:56: 3c:cf:3f:1c:3d:90:29:77:75:2d:09:34:0d:ae:8f:5a:84:b8: 46:60:88:19:4a:a6:00:0d:d2:5d:eb:d3:23:c2:a8:6a:e0:bf: ff:f0:2d:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTA4MDcwODA1MjJaFw0yNTA4MTQwODA1MjJaMBgxFjAUBgNV BAMTDTY4OTQ1ZTQyLTM4ZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSKGxMoCr7qqUIxmbq2Yna1H3WbfWkO8LMgpI5nSxkEMsL8TyMiBmPHAJO1i9r GquZ8hi84ItVLK231QO251s2Nqx9VD/ikghlzPlJBqVwYoivRkk53QMbEdpas1Rq eOpe9kACWQIjxrD3wdVKbhMDbXZNRjYDkgBd7bbNvZH6+V6SYsYEBlwO0k8UBxgm H533jdEY/lyAyXX9LZpCJ6ZeKomDMEYi0WxMD0nue4D2vzLNzVd4aynbqejV5z3P nFHRgsmc2ZyNHop7D8wQTXpUctXQg8t7YbGjsRsRdcdFdcJK9FWjKmvJJW5egy4v KdDjgBhvoSMe3haHm4yB5NMVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6YZyjtsf mLOL8jh8pKjTtnQcgB0wHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdM SHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZ59obHYfh2Ii6jHHF03uMFU3gAM7p9hZP4a/sX/0K+aEYQtWwE/8h+ viIMIbnC+CQ+zLdSrSc4y5DfRO+gYUNbUXxG6m5pickowOi1+3nSdjEGKaPYj8G8 osWlfBNDoTXZ3aFFROLMG3nx+lO49M+s9lobzsMs/kn9BL1ImCqREUR5pxWRG9Vx eRC79U4uk5Aq/iqSDsX207YXy0rXRPsjJ3MrMOArAdH4AY2t8R1XVWzihzQfY1sj FkXPHO7C/DeISLAVE98wsS0HJ9hRcYsuTcVM62ENVjzPPxw9kCl3dS0JNA2uj1qE uEZgiBlKpgAN0l3r0yPCqGrgv//wLeM= -----END CERTIFICATE-----Generated at Fri Aug 8 13:11:50 2025 by rpki-client