$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: /X1mVz+m+MfF4NZzEHZuDdMFkc030A90iWojwTQbXc8= Subject key identifier: FF:5D:F3:53:D0:3D:83:CB:54:A4:36:2A:08:A3:99:BF:99:E0:B6:D1 Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: 70 Signing time: Fri 08 Aug 2025 16:16:45 +0000 Manifest this update: Fri 08 Aug 2025 16:16:45 +0000 Manifest next update: Fri 15 Aug 2025 16:16:45 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: lNtV8+EIAfyzP9qXYlpnkaq3vJIlxXe8BvGuAY47BbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Aug 8 16:16:45 2025 GMT Not After : Aug 15 16:16:45 2025 GMT Subject: CN=689622ed-6fc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:50:16:5b:20:04:2b:8c:36:af:91:55:da:4e: 57:ad:62:da:77:07:73:e4:76:f0:e8:5c:c2:c3:14: 6f:a4:b4:b1:28:0b:d3:76:65:f6:3d:c7:cf:09:c3: 0d:2a:b0:6e:79:3a:a1:67:52:87:d6:d8:a5:da:ee: ce:70:96:80:54:0f:44:6a:a4:e6:6e:95:c7:17:74: b3:e3:1a:91:dd:16:e8:60:c5:25:89:88:9a:2f:7b: f0:fe:f4:08:ca:70:05:8e:b1:9a:ef:37:53:02:d5: 53:77:24:aa:66:e0:4f:69:3b:52:97:4f:ea:a8:af: 2d:1e:e3:5a:54:8d:50:14:83:54:45:99:8e:93:ca: dc:12:d1:58:26:2b:c5:4f:74:e5:c5:05:41:10:83: 45:9e:27:cd:b3:71:3b:a6:5b:c7:36:f2:5c:c5:9a: 4f:2a:49:f0:0c:46:49:9e:a8:ae:b6:d3:96:3a:46: ca:6f:c8:7c:ff:9e:b4:4e:63:48:fe:ac:3e:f0:f9: d1:c3:4b:26:f0:13:66:d5:8c:3c:16:c1:de:ca:a5: 72:78:b5:43:88:30:2a:2a:02:99:84:28:85:e3:8f: 2b:d8:a1:de:ef:2a:79:4d:11:6f:46:de:85:1b:4f: c5:9c:7c:d6:8f:d9:a0:a8:7a:e2:bd:af:e8:52:96: 8b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5D:F3:53:D0:3D:83:CB:54:A4:36:2A:08:A3:99:BF:99:E0:B6:D1 X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:38:fd:61:08:7b:95:60:cf:69:9e:1e:95:59:3f:ad:f0:86: 58:64:8c:ba:00:35:b9:c7:02:85:ea:02:a1:34:06:8c:dd:6c: fa:0c:06:55:73:6e:4f:b9:fc:a8:c2:95:cc:c1:7c:6d:0e:41: 36:f3:59:0e:13:d4:38:ce:3d:32:44:50:f9:23:fd:08:85:64: 21:75:40:0c:5a:47:50:63:6b:2c:0e:be:85:1a:72:c9:39:97: f6:7c:ab:77:e0:bd:4e:bc:50:61:52:51:cb:4d:3a:fb:3a:0a: ff:54:6b:57:41:3e:60:f4:b2:ce:2f:e5:25:fd:72:4f:5f:a6: 07:f2:96:8a:5f:50:65:63:49:1c:4a:63:07:5e:9d:57:48:a6: 86:78:fb:20:b6:cf:15:1c:af:8d:ed:83:7a:9d:97:df:7e:ff: 97:30:c7:04:a4:49:87:2c:81:2f:51:87:42:32:bc:42:e6:44: ec:f6:2f:c8:4b:ec:83:9f:75:6d:87:02:8d:0e:53:df:56:df: 26:aa:9b:29:8c:d1:56:0c:3b:d8:bc:ec:8c:27:ba:ac:be:0a: 7f:81:17:a9:27:00:d4:f7:55:d6:3f:54:bb:89:47:bd:11:ab: aa:7a:11:7b:92:0b:bf:8d:d9:cb:4f:6a:4e:03:30:15:36:23: 2e:4b:28:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTA5ODExMC8GA1UEBRMoNDQ5NTE3M0JEMkMyOTM4REUzMDY3N0NGRERFNzNDRDMx QjhBMjY3NjAeFw0yNTA4MDgxNjE2NDVaFw0yNTA4MTUxNjE2NDVaMBgxFjAUBgNV BAMTDTY4OTYyMmVkLTZmYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFUBZbIAQrjDavkVXaTletYtp3B3PkdvDoXMLDFG+ktLEoC9N2ZfY9x88Jww0q sG55OqFnUofW2KXa7s5wloBUD0RqpOZulccXdLPjGpHdFuhgxSWJiJove/D+9AjK cAWOsZrvN1MC1VN3JKpm4E9pO1KXT+qory0e41pUjVAUg1RFmY6TytwS0VgmK8VP dOXFBUEQg0WeJ82zcTumW8c28lzFmk8qSfAMRkmeqK6205Y6RspvyHz/nrROY0j+ rD7w+dHDSybwE2bVjDwWwd7KpXJ4tUOIMCoqApmEKIXjjyvYod7vKnlNEW9G3oUb T8WcfNaP2aCoeuK9r+hSlotrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/13zU9A9 g8tUpDYqCKOZv5ngttEwHwYDVR0jBBgwFoAURJUXO9LCk43jBnfP3ec80xuKJnYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MDk4LzIyMEIxNzI4Q0JD MjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0pu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkpVWE85TENrNDNqQm5mUDNlYzgweHVLSm5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MDk4LzIyMEIxNzI4Q0JDMjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQz akJuZlAzZWM4MHh1S0puWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABA4/WEIe5Vgz2meHpVZP63whlhkjLoANbnHAoXqAqE0BozdbPoMBlVz bk+5/KjClczBfG0OQTbzWQ4T1DjOPTJEUPkj/QiFZCF1QAxaR1BjaywOvoUacsk5 l/Z8q3fgvU68UGFSUctNOvs6Cv9Ua1dBPmD0ss4v5SX9ck9fpgfylopfUGVjSRxK YwdenVdIpoZ4+yC2zxUcr43tg3qdl99+/5cwxwSkSYcsgS9Rh0IyvELmROz2L8hL 7IOfdW2HAo0OU99W3yaqmymM0VYMO9i87Iwnuqy+Cn+BF6knANT3VdY/VLuJR70R q6p6EXuSC7+N2ctPak4DMBU2Iy5LKCo= -----END CERTIFICATE-----Generated at Sun Aug 10 16:02:48 2025 by rpki-client