$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: 5mIbWnsKKg8Ds7ig2GK1ioxlJI7DfvgR2sBxXVmhXq0= Subject key identifier: 67:D2:08:CD:50:90:01:F0:D9:F3:5E:7A:2F:5F:0A:27:53:8F:43:CE Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 0272 Signing time: Sun 03 Aug 2025 02:21:41 +0000 Manifest this update: Sun 03 Aug 2025 02:21:41 +0000 Manifest next update: Sun 10 Aug 2025 02:21:41 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: aoRa3gi/DiVTJ38LDKHAhaXYtFbTD9Tw4eE6HH59Z7k=) 2: E1870478616C11F0A254E10BC4F9AE02.roa (hash: oBxirV5YdcJ1nUF+hzEr2H8141lEcYC5KF9zRC2ntXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Aug 3 02:21:41 2025 GMT Not After : Aug 10 02:21:41 2025 GMT Subject: CN=688ec7b5-42d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2a:d0:84:49:20:19:cd:cb:71:d4:e6:65:12: bb:fb:1b:b3:84:37:6b:31:0b:b8:74:a6:42:97:b5: 09:16:78:f2:b9:bc:fa:e9:20:73:1d:7d:d2:19:ab: 33:eb:19:92:11:bc:86:0d:ce:7e:68:00:f6:30:7b: 6c:87:3a:ac:94:bb:0e:8a:08:ea:b8:2b:40:91:7f: fa:8c:d1:db:2d:b6:a0:76:a6:7c:f0:c7:66:b9:23: ff:3d:f9:ff:49:d8:0b:52:4d:95:88:e3:30:da:4b: c4:49:6e:5e:92:f5:69:35:a3:cd:25:9f:c2:c8:93: f9:f8:57:c5:88:3a:05:e9:19:d0:d7:80:c7:ca:29: 23:8c:c8:e6:66:a3:8c:ad:80:26:5e:88:1a:ab:23: d4:9e:3a:a1:ee:7c:f4:c7:17:c5:c2:e5:b7:26:95: 12:f8:88:d1:f7:6a:68:3f:01:95:21:d6:be:d1:45: 6e:c6:9e:cb:61:d5:f2:05:22:a2:75:df:c5:7c:15: 01:b3:b7:5e:32:7e:cd:0a:57:c0:7f:64:16:ee:9d: 50:13:b5:82:7e:0e:4a:07:b0:86:38:b3:a5:9e:76: 8d:29:0b:a2:c0:3a:0f:33:c8:05:d9:3c:a1:28:c2: 10:2a:0d:e8:fb:5d:34:ac:8f:00:2b:0d:41:1b:00: 79:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D2:08:CD:50:90:01:F0:D9:F3:5E:7A:2F:5F:0A:27:53:8F:43:CE X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:10:13:63:f7:30:d7:ce:0b:bc:b3:99:55:85:11:b2:a7:48: 0c:37:f7:ac:1b:d1:a4:21:7f:8c:7d:95:b7:68:43:e9:69:26: f1:9b:76:4a:fc:99:7e:a8:ed:fa:ba:cb:33:26:a7:83:da:05: e5:05:ba:3c:65:1b:48:f6:5a:8a:52:d3:f9:2b:a6:1e:38:6c: ab:eb:88:29:37:41:4a:55:58:f0:5f:cb:1f:75:41:dd:17:62: 02:b7:93:46:8a:c6:4b:a4:ef:73:f3:d6:89:ed:44:ec:54:97: 3c:52:a5:e6:81:67:ab:cd:44:13:ac:53:15:dd:ec:93:e1:53: 2d:20:cd:0b:0f:f4:eb:8f:9e:c4:4a:3a:97:7e:4f:0d:60:7a: 1c:4e:46:ae:ff:79:f5:83:b0:ca:7a:be:a7:91:85:e9:d6:7e: 17:6c:43:13:92:59:6b:a4:40:74:39:a9:e3:0a:4c:12:7c:3a: df:ff:f6:8a:85:56:11:f3:e7:38:f2:3c:53:6c:26:43:c4:7e: bb:c2:b0:ca:11:f3:ae:d4:51:22:0f:dd:a7:de:37:80:14:8c: 9b:d6:b0:a1:6b:2d:ff:4e:1e:fe:94:a8:bf:4e:ab:7b:fb:12: a8:96:ab:b0:59:d2:3c:53:1b:1d:4d:01:06:4d:dc:16:35:b8: 97:df:d9:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjUwODAzMDIyMTQxWhcNMjUwODEwMDIyMTQxWjAYMRYwFAYD VQQDEw02ODhlYzdiNS00MmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yrQhEkgGc3LcdTmZRK7+xuzhDdrMQu4dKZCl7UJFnjyubz66SBzHX3SGasz 6xmSEbyGDc5+aAD2MHtshzqslLsOigjquCtAkX/6jNHbLbagdqZ88MdmuSP/Pfn/ SdgLUk2ViOMw2kvESW5ekvVpNaPNJZ/CyJP5+FfFiDoF6RnQ14DHyikjjMjmZqOM rYAmXogaqyPUnjqh7nz0xxfFwuW3JpUS+IjR92poPwGVIda+0UVuxp7LYdXyBSKi dd/FfBUBs7deMn7NClfAf2QW7p1QE7WCfg5KB7CGOLOlnnaNKQuiwDoPM8gF2Tyh KMIQKg3o+100rI8AKw1BGwB5vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfSCM1Q kAHw2fNeei9fCidTj0POMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqEBNj9zDXzgu8s5lVhRGyp0gMN/esG9GkIX+MfZW3aEPpaSbxm3ZK /Jl+qO36usszJqeD2gXlBbo8ZRtI9lqKUtP5K6YeOGyr64gpN0FKVVjwX8sfdUHd F2ICt5NGisZLpO9z89aJ7UTsVJc8UqXmgWerzUQTrFMV3eyT4VMtIM0LD/Trj57E SjqXfk8NYHocTkau/3n1g7DKer6nkYXp1n4XbEMTkllrpEB0OanjCkwSfDrf//aK hVYR8+c48jxTbCZDxH67wrDKEfOu1FEiD92n3jeAFIyb1rChay3/Th7+lKi/Tqt7 +xKolquwWdI8UxsdTQEGTdwWNbiX39kr -----END CERTIFICATE-----Generated at Mon Aug 4 11:17:31 2025 by rpki-client