$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft File: jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft (raw, json) Hash identifier: aUlWj+WRssDh4VfqZL3TEDaxHEMABDv4xfBhO/DZktg= Subject key identifier: 76:84:FD:01:98:54:CF:24:36:3A:0E:61:6D:F2:13:EC:90:95:2A:AE Authority key identifier: 8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 Certificate issuer: /CN=A91B2A6F/serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft Manifest number: 0A53 Signing time: Sun 10 Aug 2025 19:43:17 +0000 Manifest this update: Sun 10 Aug 2025 19:43:17 +0000 Manifest next update: Sun 17 Aug 2025 19:43:17 +0000 Files and hashes: 1: jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl (hash: 6lhPmhX1iDK2rqDY68p6CVvSJSRf9C1oRaV5dG4YuEQ=) 2: BDC0899A1FF511ECAE74F266C4F9AE02.roa (hash: r0RKRgF0/rDGEDAesBgC29Z43qYpMBwutyEjFMfF0YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2A6F, serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Validity Not Before: Aug 10 19:43:17 2025 GMT Not After : Aug 17 19:43:17 2025 GMT Subject: CN=6898f655-16f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:10:f5:c9:a4:17:09:45:32:8c:7e:dc:57:8a: 4a:80:3b:95:30:89:77:d7:e7:1d:09:2b:5e:32:2e: 58:8b:5e:56:cf:88:b3:ba:75:32:44:99:b0:fc:ab: 33:3d:7d:a1:63:6b:d5:fc:b4:eb:48:8e:d7:67:dc: 7c:af:38:48:c8:14:4d:a6:80:07:f4:da:88:ad:17: 39:58:9f:59:da:dc:4f:c1:5f:77:ca:56:36:21:2a: 44:6c:08:6a:5a:89:91:1e:f5:6b:79:7c:fb:7c:c4: 63:3a:ad:78:3e:38:f5:da:81:70:8e:b9:e9:4c:08: 3e:b2:6b:21:d9:3c:d3:53:5d:87:b1:14:eb:b1:e3: 5a:5f:ff:19:cf:63:40:7c:43:7e:34:54:aa:c4:27: 82:29:99:c3:18:75:1c:85:92:e6:09:3b:d8:b5:c9: 10:a3:fe:54:72:1b:2d:b0:2e:f1:6d:b0:c4:f0:98: 32:df:4e:ca:3d:0e:c0:2f:27:d0:19:38:cc:3a:ad: 58:c6:be:94:10:62:02:6a:cd:86:b1:0a:ab:13:ba: da:39:c1:43:98:e2:83:ef:76:ff:1f:1d:93:4e:7d: 6e:11:00:c4:1d:62:81:a3:8b:83:60:4e:d0:20:ab: e9:a4:40:47:cd:ea:02:21:88:31:c3:d6:8a:f2:28: bd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:84:FD:01:98:54:CF:24:36:3A:0E:61:6D:F2:13:EC:90:95:2A:AE X509v3 Authority Key Identifier: keyid:8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:be:2a:9a:89:61:c3:fd:ef:0a:0b:bc:ef:5f:ac:d8:68:de: c0:8e:ab:3e:da:42:1c:38:40:be:0e:1e:4e:de:ae:9f:7a:f4: 43:a3:2e:be:30:73:67:fa:4f:73:e6:ab:64:25:01:58:e9:75: 82:8d:07:db:f8:2d:ed:e3:42:11:1f:78:17:e3:aa:18:71:55: 04:ad:df:66:ef:0a:92:0c:8c:1f:b8:cf:71:76:1e:a7:21:eb: 3c:94:98:9d:2f:dd:21:5f:37:36:cd:f9:d0:38:d7:45:a4:49: d9:c5:35:fe:e7:4f:2f:99:c9:52:b1:ad:46:4b:d2:0a:22:e3: 36:43:b9:86:af:6b:17:d4:6c:70:7c:81:ec:fe:ef:b5:0d:6f: 5c:ce:5a:c7:2d:82:15:3f:59:ba:23:8d:bd:8f:a6:22:56:d5: 99:d1:e7:84:29:79:c5:f6:8d:42:e1:44:b0:06:2f:24:61:6d: 5b:52:64:f9:c6:61:8b:13:01:26:d8:2d:b6:39:94:6b:27:86: 32:ce:20:4d:25:3a:0b:5e:0a:90:4c:a4:c9:5d:8b:6f:50:a0: 4f:67:c0:ef:9b:3e:d9:04:97:62:27:4c:6a:e4:c6:7e:d9:94: 07:10:ec:2d:64:d5:88:90:33:81:9c:41:01:41:07:d1:81:f9: 16:58:72:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJBNkYxMTAvBgNVBAUTKDhDNUE4OTk3RkNBNUJGMDI3MEVBRjg2RUU4QzBDQjY1 NTFBQjk3RDEwHhcNMjUwODEwMTk0MzE3WhcNMjUwODE3MTk0MzE3WjAYMRYwFAYD VQQDEw02ODk4ZjY1NS0xNmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBD1yaQXCUUyjH7cV4pKgDuVMIl31+cdCSteMi5Yi15Wz4izunUyRJmw/Ksz PX2hY2vV/LTrSI7XZ9x8rzhIyBRNpoAH9NqIrRc5WJ9Z2txPwV93ylY2ISpEbAhq WomRHvVreXz7fMRjOq14Pjj12oFwjrnpTAg+smsh2TzTU12HsRTrseNaX/8Zz2NA fEN+NFSqxCeCKZnDGHUchZLmCTvYtckQo/5UchstsC7xbbDE8Jgy307KPQ7ALyfQ GTjMOq1Yxr6UEGICas2GsQqrE7raOcFDmOKD73b/Hx2TTn1uEQDEHWKBo4uDYE7Q IKvppEBHzeoCIYgxw9aK8ii9KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaE/QGY VM8kNjoOYW3yE+yQlSquMB8GA1UdIwQYMBaAFIxaiZf8pb8CcOr4bujAy2VRq5fR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkE2Ri9DQURGRjJGRTZF MzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3Snc2dmh1Nk1ETFpWR3Js OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGcUpsX3lsdndKdzZ2aHU2TURMWlZHcmw5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkE2Ri9DQURGRjJGRTZFMzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3 Snc2dmh1Nk1ETFpWR3JsOUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuviqaiWHD/e8KC7zvX6zYaN7Ajqs+2kIcOEC+Dh5O3q6fevRDoy6+ MHNn+k9z5qtkJQFY6XWCjQfb+C3t40IRH3gX46oYcVUErd9m7wqSDIwfuM9xdh6n Ies8lJidL90hXzc2zfnQONdFpEnZxTX+508vmclSsa1GS9IKIuM2Q7mGr2sX1Gxw fIHs/u+1DW9czlrHLYIVP1m6I429j6YiVtWZ0eeEKXnF9o1C4USwBi8kYW1bUmT5 xmGLEwEm2C22OZRrJ4YyziBNJToLXgqQTKTJXYtvUKBPZ8Dvmz7ZBJdiJ0xq5MZ+ 2ZQHEOwtZNWIkDOBnEEBQQfRgfkWWHLT -----END CERTIFICATE-----Generated at Sun Aug 10 21:05:57 2025 by rpki-client