$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft File: CNJW1CbKIXH86BfGRSP4MqNpF70.mft (raw, json) Hash identifier: MvwNfTa+b0RTVMCODfi49mPTKlgVAxjYNQe9DZY6q08= Subject key identifier: 28:AE:19:66:5A:90:A2:D3:A6:86:25:D6:62:42:4D:EC:10:2D:57:92 Authority key identifier: 08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD Certificate issuer: /CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Certificate serial: 0A76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft Manifest number: 0A52 Signing time: Mon 04 Aug 2025 20:00:38 +0000 Manifest this update: Mon 04 Aug 2025 20:00:37 +0000 Manifest next update: Mon 11 Aug 2025 20:00:37 +0000 Files and hashes: 1: CNJW1CbKIXH86BfGRSP4MqNpF70.crl (hash: txIwncsTnThGW6JNTA6/L34XxRSZruQPBRLehKwM7lc=) 2: F15AD62031FA11EE96640F3EC4F9AE02.roa (hash: WTs+9o9qNNM6mr7pnkWN7ajLcOyi6E/nvXwiULfR9Fc=) 3: 54098620A37B11EFAC4F8E3CC4F9AE02.roa (hash: FXrJzxpIMY/mjFWppW9CWCLKoy10/on9Vdnxt1X4PXY=) 4: 8F12C9C8391F11EFB455E565C4F9AE02.roa (hash: EvThvFOZKz48161MvTnVXiDNJ6HNF5HAel5hAOJCG+c=) 5: C6671418A37A11EFBED1AE3BC4F9AE02.roa (hash: RtmiTTWdzbSA6sjEHPl66WT8irnWI6qg0r7cthFL2r8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 20:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2678 (0xa76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FCC, serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Validity Not Before: Aug 4 20:00:37 2025 GMT Not After : Aug 11 20:00:37 2025 GMT Subject: CN=68911165-66db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a5:26:dd:3f:17:4b:4f:ec:0c:ed:5f:92:0e: e4:ed:78:ec:37:a2:2d:86:55:62:5c:ba:d5:bc:96: 0c:90:4f:b9:02:2e:e1:c2:3e:8e:67:cf:5d:8c:52: 8b:15:0e:ec:53:37:28:1e:e7:0a:56:aa:88:26:d0: 88:55:4c:fc:1d:cd:da:97:b9:e7:69:ef:d8:a1:51: d8:18:24:dd:7d:a9:df:ee:d2:80:3f:53:68:9a:84: 81:ea:ed:7d:47:38:f4:d5:bd:89:40:a8:98:4d:5d: 1f:93:8a:69:87:9a:b4:41:fc:13:db:3d:a2:60:98: 3e:27:27:47:c6:72:72:86:8c:b6:fb:08:79:08:c6: 1d:2c:2a:9b:aa:15:e6:e8:7c:55:1c:6d:94:30:db: d0:d4:a3:aa:ea:da:a8:df:e1:1e:a7:df:6c:35:c6: a9:f0:0d:a0:42:50:6c:8f:71:53:de:7c:c0:45:bf: 15:69:5a:5c:39:ad:69:ce:45:f1:43:dc:a1:a5:da: 30:3a:7a:6c:14:a6:a7:12:45:3b:ae:8c:c2:ee:70: d6:18:e0:14:a5:97:e0:ee:51:88:12:da:fc:c1:37: 77:43:23:33:c7:14:59:b2:da:3f:58:40:05:a6:e3: 69:06:c1:13:8e:1d:f4:ec:5c:c1:d1:fd:88:0a:65: 52:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AE:19:66:5A:90:A2:D3:A6:86:25:D6:62:42:4D:EC:10:2D:57:92 X509v3 Authority Key Identifier: keyid:08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:c5:7f:f6:c1:27:b3:4f:72:91:b0:0c:31:d7:2c:62:4d:00: d3:84:84:56:74:4a:45:8f:30:f2:35:35:7f:2c:86:f7:f6:ba: ab:9e:0e:45:d5:2d:96:9c:56:37:a0:0e:62:49:eb:c5:5c:af: 5a:ac:3f:af:93:e2:4c:00:23:ac:4e:79:19:4e:60:c4:22:dc: 6b:80:d1:b1:7a:31:fe:42:c6:5b:76:3d:2f:69:8a:74:20:b0: 9c:87:2d:c6:da:e8:8d:b9:d8:a1:02:27:5d:45:64:b2:a9:24: ec:a6:17:91:15:1e:7d:d5:6e:f6:37:0a:96:20:85:b1:8d:a5: dd:be:41:e2:76:66:db:bf:4d:24:36:5f:c7:aa:57:72:d9:0f: dd:7c:c3:17:9b:9e:40:73:f8:db:fc:c6:bd:f7:b0:3d:99:b2: 1b:8c:c5:ba:eb:d8:84:26:b5:85:e1:0f:b0:ce:c9:5f:c5:84: 33:b2:d0:52:18:fa:ce:fe:23:10:a9:1e:90:0e:63:10:52:59: e3:7e:46:9a:4f:a2:20:ad:0a:86:b7:89:15:b5:80:90:cd:a6: 9b:90:a4:eb:3a:a8:7e:f9:40:5b:d5:69:21:4b:b0:58:f2:29: eb:04:24:db:ff:33:13:75:6b:10:64:85:ff:44:75:0f:74:fb: 2b:69:5d:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQ0MxMTAvBgNVBAUTKDA4RDI1NkQ0MjZDQTIxNzFGQ0U4MTdDNjQ1MjNGODMy QTM2OTE3QkQwHhcNMjUwODA0MjAwMDM3WhcNMjUwODExMjAwMDM3WjAYMRYwFAYD VQQDEw02ODkxMTE2NS02NmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaUm3T8XS0/sDO1fkg7k7XjsN6IthlViXLrVvJYMkE+5Ai7hwj6OZ89djFKL FQ7sUzcoHucKVqqIJtCIVUz8Hc3al7nnae/YoVHYGCTdfanf7tKAP1NomoSB6u19 Rzj01b2JQKiYTV0fk4pph5q0QfwT2z2iYJg+JydHxnJyhoy2+wh5CMYdLCqbqhXm 6HxVHG2UMNvQ1KOq6tqo3+Eep99sNcap8A2gQlBsj3FT3nzARb8VaVpcOa1pzkXx Q9yhpdowOnpsFKanEkU7rozC7nDWGOAUpZfg7lGIEtr8wTd3QyMzxxRZsto/WEAF puNpBsETjh307FzB0f2ICmVS2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiuGWZa kKLTpoYl1mJCTewQLVeSMB8GA1UdIwQYMBaAFAjSVtQmyiFx/OgXxkUj+DKjaRe9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZDQy9DREJDNTk4Njcz MDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lYSDg2QmZHUlNQNE1xTnBG NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOSlcxQ2JLSVhIODZCZkdSU1A0TXFOcEY3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZDQy9DREJDNTk4NjczMDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lY SDg2QmZHUlNQNE1xTnBGNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOxX/2wSezT3KRsAwx1yxiTQDThIRWdEpFjzDyNTV/LIb39rqrng5F 1S2WnFY3oA5iSevFXK9arD+vk+JMACOsTnkZTmDEItxrgNGxejH+QsZbdj0vaYp0 ILCchy3G2uiNudihAiddRWSyqSTspheRFR591W72NwqWIIWxjaXdvkHidmbbv00k Nl/Hqldy2Q/dfMMXm55Ac/jb/Ma997A9mbIbjMW669iEJrWF4Q+wzslfxYQzstBS GPrO/iMQqR6QDmMQUlnjfkaaT6IgrQqGt4kVtYCQzaabkKTrOqh++UBb1WkhS7BY 8inrBCTb/zMTdWsQZIX/RHUPdPsraV0r -----END CERTIFICATE-----Generated at Wed Aug 6 16:10:44 2025 by rpki-client