$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft File: jGb5wOZorJCB33ENYELfR0kLCrk.mft (raw, json) Hash identifier: DoHq8j8W7RTFZyxHFg3gXyB47z292qBDiaofUfA8vI4= Subject key identifier: 6C:EC:97:2B:9E:C8:5E:32:F3:A4:39:FF:01:31:4F:79:8A:B7:30:4D Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft Manifest number: 0C42 Signing time: Fri 08 Aug 2025 18:55:09 +0000 Manifest this update: Fri 08 Aug 2025 18:55:08 +0000 Manifest next update: Fri 15 Aug 2025 18:55:08 +0000 Files and hashes: 1: jGb5wOZorJCB33ENYELfR0kLCrk.crl (hash: alxwEvARms+XzyJ0c+sWdMABeItb7FK8p53RH8sWwfU=) 2: 90576660E19711EFA11C2227C4F9AE02.roa (hash: 4znOjftmOLUP9F0sqZtn3shUbp4rIvm9xbYnsSSpuqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97F0, serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Validity Not Before: Aug 8 18:55:08 2025 GMT Not After : Aug 15 18:55:08 2025 GMT Subject: CN=6896480c-fc0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e1:d4:41:3f:dd:63:25:b2:da:0d:42:03:d4: 65:ee:71:7b:66:43:19:e2:a9:a7:43:d5:d4:b9:47: 18:d3:a3:bf:6c:f9:39:d6:cd:8e:3b:61:2a:33:f5: 25:b9:aa:2d:14:9b:cd:3f:a0:78:2c:41:08:ef:96: 3f:45:58:32:fb:38:81:69:d9:4a:30:ec:c2:94:d7: b1:bb:52:42:39:a9:07:14:84:0d:c7:88:d6:82:2a: ca:e6:5f:2e:bf:cc:cf:1f:ea:b5:42:ba:d1:a0:12: 2a:6a:81:02:7c:00:61:1d:db:19:52:3d:73:ac:c5: 8e:84:cc:7a:33:03:46:8a:97:a9:26:36:7f:66:3a: 5d:4e:95:14:ee:28:9c:5e:77:6b:94:23:d3:b5:1c: e2:95:91:93:81:f3:e4:2c:e9:fe:02:eb:64:84:bc: a0:2d:2a:2d:28:e1:2d:7b:b3:7c:df:f3:41:a4:d9: 07:c4:38:55:ff:93:90:38:08:fd:a9:9b:aa:96:7b: 0e:b2:5f:60:4b:14:d4:be:69:1c:8a:d9:59:9c:2d: fe:11:c3:f2:41:8f:4b:39:35:45:57:16:8c:45:4f: 25:51:f6:8e:f9:31:be:89:b1:0e:01:56:19:59:9f: 37:ff:dd:0c:ef:0f:b0:97:91:6c:0e:c4:98:4b:86: 0c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:EC:97:2B:9E:C8:5E:32:F3:A4:39:FF:01:31:4F:79:8A:B7:30:4D X509v3 Authority Key Identifier: keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:70:f6:e2:c5:3d:aa:af:b8:18:b0:d3:64:43:61:20:b1:54: 16:49:5a:cb:f5:d1:a8:bd:8a:06:00:f1:fa:8a:af:53:6e:15: cd:c5:47:ed:de:3a:79:e6:85:db:d9:13:9b:79:84:54:92:64: bd:d5:94:4d:b7:87:4c:47:e9:ee:11:a7:de:8a:38:07:1c:c8: d7:f7:bc:a4:08:82:03:34:b7:88:8f:b9:4c:35:fb:70:c9:13: a5:7e:b8:d1:e2:dc:50:61:e4:8f:0f:f4:80:82:32:af:86:2c: 22:8f:5e:cf:17:df:a3:6c:60:c1:a0:4f:42:4b:08:32:fe:4c: b6:54:da:fd:7d:40:2f:a4:c6:10:12:88:19:7a:67:4a:88:38: 68:25:c6:ac:c6:22:9e:53:9c:e4:88:dc:8c:77:58:8b:53:49: 14:cd:ed:08:dd:71:fd:31:4c:2b:ca:56:92:d6:d4:08:d7:f3: ea:dd:8a:ff:28:d6:e4:68:6e:67:91:7e:2d:c8:b4:83:57:9f: 72:b3:a1:60:4e:0d:30:9b:3d:e2:46:7a:f4:51:52:f0:50:cc: 71:21:0d:d5:bf:6f:ac:c8:9f:78:a8:6a:c8:03:c4:e7:6f:ca: 88:65:00:b4:30:25:71:f4:8f:55:91:69:12:1d:96:55:0d:32: 71:17:c5:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RjAxMTAvBgNVBAUTKDhDNjZGOUMwRTY2OEFDOTA4MURGNzEwRDYwNDJERjQ3 NDkwQjBBQjkwHhcNMjUwODA4MTg1NTA4WhcNMjUwODE1MTg1NTA4WjAYMRYwFAYD VQQDEw02ODk2NDgwYy1mYzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eHUQT/dYyWy2g1CA9Rl7nF7ZkMZ4qmnQ9XUuUcY06O/bPk51s2OO2EqM/Ul uaotFJvNP6B4LEEI75Y/RVgy+ziBadlKMOzClNexu1JCOakHFIQNx4jWgirK5l8u v8zPH+q1QrrRoBIqaoECfABhHdsZUj1zrMWOhMx6MwNGipepJjZ/ZjpdTpUU7iic XndrlCPTtRzilZGTgfPkLOn+AutkhLygLSotKOEte7N83/NBpNkHxDhV/5OQOAj9 qZuqlnsOsl9gSxTUvmkcitlZnC3+EcPyQY9LOTVFVxaMRU8lUfaO+TG+ibEOAVYZ WZ83/90M7w+wl5FsDsSYS4YMWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzslyue yF4y86Q5/wExT3mKtzBNMB8GA1UdIwQYMBaAFIxm+cDmaKyQgd9xDWBC30dJCwq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdGMC9BNjYzMTlGMDEy RDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JKQ0IzM0VOWUVMZlIwa0xD cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHYjV3T1pvckpDQjMzRU5ZRUxmUjBrTENyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdGMC9BNjYzMTlGMDEyRDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JK Q0IzM0VOWUVMZlIwa0xDcmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDcPbixT2qr7gYsNNkQ2EgsVQWSVrL9dGovYoGAPH6iq9TbhXNxUft 3jp55oXb2RObeYRUkmS91ZRNt4dMR+nuEafeijgHHMjX97ykCIIDNLeIj7lMNftw yROlfrjR4txQYeSPD/SAgjKvhiwij17PF9+jbGDBoE9CSwgy/ky2VNr9fUAvpMYQ EogZemdKiDhoJcasxiKeU5zkiNyMd1iLU0kUze0I3XH9MUwrylaS1tQI1/Pq3Yr/ KNbkaG5nkX4tyLSDV59ys6FgTg0wmz3iRnr0UVLwUMxxIQ3Vv2+syJ94qGrIA8Tn b8qIZQC0MCVx9I9VkWkSHZZVDTJxF8Us -----END CERTIFICATE-----Generated at Sun Aug 10 13:58:51 2025 by rpki-client