$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft File: jiZ6MV35Dplf9M1LLPj8TDMksts.mft (raw, json) Hash identifier: /iq0gy8Zt9dP0SlgRifhL7Jw1CZ+nSrLhrXyVhB9ij4= Subject key identifier: 24:3A:50:DA:38:6D:E2:06:C8:03:23:F1:64:DE:39:AD:CD:41:80:3F Authority key identifier: 8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB Certificate issuer: /CN=A91B35DF/serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft Manifest number: 68 Signing time: Thu 07 Aug 2025 07:37:45 +0000 Manifest this update: Thu 07 Aug 2025 07:37:45 +0000 Manifest next update: Thu 14 Aug 2025 07:37:45 +0000 Files and hashes: 1: jiZ6MV35Dplf9M1LLPj8TDMksts.crl (hash: E+an5/mXSsWoZKMAIsVAXsrwkDezTHck2k52tpjdYtw=) 2: EF714C70D89F11EFA1D2E672C4F9AE02.roa (hash: TZSTn/V1Hb26UcW7zXgR6yK/030+S0LlzJiALzOU8GU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35DF, serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Validity Not Before: Aug 7 07:37:45 2025 GMT Not After : Aug 14 07:37:45 2025 GMT Subject: CN=689457c9-5767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:49:99:63:26:f0:98:b2:50:7b:ee:f4:58: 93:27:af:b5:a0:f4:30:94:41:55:e9:6e:46:d6:27: 54:aa:a4:af:cd:e6:ad:5c:01:0c:45:a0:cd:9e:69: b1:0d:47:78:24:ed:6d:10:02:e1:00:0d:e3:02:81: 4b:16:23:52:04:3a:9b:a4:70:94:c3:58:96:4c:41: b6:f0:65:45:8e:da:f4:41:71:1d:48:fd:7c:64:2c: 57:f1:0e:e4:86:78:dc:f1:20:c6:ca:b2:6a:e4:7d: 10:bc:9e:9f:13:92:b3:7c:d8:68:ab:e4:f8:45:75: c3:2c:d0:cd:1e:dd:7a:df:46:a0:db:b1:48:00:c7: e7:36:13:79:16:c2:00:54:02:b0:b5:91:03:81:27: ac:ac:31:9d:e7:39:e1:ee:03:53:9f:51:f4:86:ac: ea:66:c5:5e:4c:a4:a1:eb:d9:11:3f:f2:6d:25:92: ca:dc:89:5c:23:08:63:33:12:26:71:70:c5:9f:b8: df:76:bd:3d:44:a7:27:05:87:48:e6:6c:57:1d:62: 7f:a4:e1:31:87:36:cc:3c:73:b8:17:ac:6f:9d:52: d5:7b:37:29:19:ac:e9:e4:8d:1c:75:8b:b8:ed:1d: 0a:a4:66:31:3e:aa:05:46:31:bf:b5:d1:8f:fe:d8: 14:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:3A:50:DA:38:6D:E2:06:C8:03:23:F1:64:DE:39:AD:CD:41:80:3F X509v3 Authority Key Identifier: keyid:8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c1:3e:c6:87:e7:d6:7b:0a:c6:ab:a0:04:d7:3f:46:56:b0: 40:c7:1b:c8:45:90:e7:47:eb:70:87:d7:5e:83:63:9f:0a:ed: d5:93:c9:fa:0d:87:64:5a:96:db:d3:47:4a:b8:74:db:ce:3a: 40:bb:ef:a0:7f:7a:f2:f1:c5:52:e5:ca:eb:47:22:a2:a5:67: 0a:4e:c2:a6:f5:e4:ed:d6:f1:3a:e0:f7:8a:fa:ba:1a:3e:05: 3c:bd:b2:22:e9:1e:10:05:8d:e9:c4:72:09:56:7a:27:5a:66: af:8d:52:f8:ff:02:be:6d:6b:22:82:cd:06:41:cd:cb:4d:8e: c4:0b:56:94:64:ed:89:6b:0d:a4:f0:fd:b0:09:01:c6:80:4e: 69:9f:3b:cf:10:b4:0d:63:07:41:ce:bf:b6:2a:22:f6:ba:cc: ef:91:80:f7:6c:7e:da:39:ca:aa:04:39:2a:47:69:a2:4f:68: 4b:8a:9c:9b:98:79:d3:04:24:0d:9d:fc:ed:41:d1:91:42:44: 23:fd:e5:e5:65:60:f9:47:d7:17:a7:a1:d6:1c:58:14:ff:77: 96:ab:09:f7:25:47:f8:ff:97:96:e7:bf:4f:1a:05:42:4e:94: ee:15:96:13:23:66:d6:5b:fa:b9:12:29:54:d8:82:b5:5c:7d: d8:cb:8a:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzVERjExMC8GA1UEBRMoOEUyNjdBMzE1REY5MEU5OTVGRjRDRDRCMkNGOEZDNEMz MzI0QjJEQjAeFw0yNTA4MDcwNzM3NDVaFw0yNTA4MTQwNzM3NDVaMBgxFjAUBgNV BAMTDTY4OTQ1N2M5LTU3NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHtEmZYybwmLJQe+70WJMnr7Wg9DCUQVXpbkbWJ1SqpK/N5q1cAQxFoM2eabEN R3gk7W0QAuEADeMCgUsWI1IEOpukcJTDWJZMQbbwZUWO2vRBcR1I/XxkLFfxDuSG eNzxIMbKsmrkfRC8np8TkrN82Gir5PhFdcMs0M0e3XrfRqDbsUgAx+c2E3kWwgBU ArC1kQOBJ6ysMZ3nOeHuA1OfUfSGrOpmxV5MpKHr2RE/8m0lksrciVwjCGMzEiZx cMWfuN92vT1EpycFh0jmbFcdYn+k4TGHNsw8c7gXrG+dUtV7NykZrOnkjRx1i7jt HQqkZjE+qgVGMb+10Y/+2BQ5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJDpQ2jht 4gbIAyPxZN45rc1BgD8wHwYDVR0jBBgwFoAUjiZ6MV35Dplf9M1LLPj8TDMkstsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzNURGLzFFQTAxOTlDRDg5 RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBsZjlNMUxMUGo4VERNa3N0 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamlaNk1WMzVEcGxmOU0xTExQajhURE1rc3RzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz NURGLzFFQTAxOTlDRDg5RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBs ZjlNMUxMUGo4VERNa3N0cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA3BPsaH59Z7CsaroATXP0ZWsEDHG8hFkOdH63CH116DY58K7dWTyfoN h2RaltvTR0q4dNvOOkC776B/evLxxVLlyutHIqKlZwpOwqb15O3W8Trg94r6uho+ BTy9siLpHhAFjenEcglWeidaZq+NUvj/Ar5tayKCzQZBzctNjsQLVpRk7YlrDaTw /bAJAcaATmmfO88QtA1jB0HOv7YqIva6zO+RgPdsfto5yqoEOSpHaaJPaEuKnJuY edMEJA2d/O1B0ZFCRCP95eVlYPlH1xenodYcWBT/d5arCfclR/j/l5bnv08aBUJO lO4VlhMjZtZb+rkSKVTYgrVcfdjLikE= -----END CERTIFICATE-----Generated at Fri Aug 8 13:04:04 2025 by rpki-client