$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: yvDPGsX/09e8jv9SiIz8FweAby1qpv1O5/C+EpfF008= Subject key identifier: 80:22:27:1D:3D:18:FE:16:64:7B:AB:F9:94:24:0F:94:AD:A0:FB:9A Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D2B Signing time: Mon 16 Jun 2025 16:13:37 +0000 Manifest this update: Mon 16 Jun 2025 16:13:37 +0000 Manifest next update: Mon 23 Jun 2025 16:13:37 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: I1PK9wUbBUllhcaVB+rvtsxl/oa0EfmPP2DsXAxuL+4=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: 5WitENJnrkIaDKSZdGfav4jBMV1MXsoOLjamdvAz9SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:13:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7481 (0x1d39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Jun 16 16:13:37 2025 GMT Not After : Jun 23 16:13:37 2025 GMT Subject: CN=685042b1-c68d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9b:47:b6:0d:d5:57:a7:5b:69:31:f3:50:dc: 99:62:57:1b:f8:d7:81:bb:d3:24:7b:2a:c4:35:1d: 9e:60:38:5b:41:0a:73:25:1c:87:10:c1:6d:7e:8b: 96:f3:a1:30:df:83:b6:ea:47:ec:86:2f:6a:1b:10: b1:a0:10:10:53:fe:d8:9e:73:5d:68:97:02:2c:ba: 79:d2:3b:34:f6:25:d3:b0:9e:d0:28:3e:56:34:7f: 83:f0:15:ef:bd:a2:16:66:61:6a:bc:e8:c6:b0:5d: 83:fe:59:c2:dc:6c:29:fc:a7:ee:72:15:58:cf:66: ca:2b:f1:ae:b4:c0:7b:f8:38:74:af:ba:21:6c:5a: e6:ac:3c:69:14:e5:72:31:96:70:2b:66:d4:50:22: e3:9a:6e:e0:f3:a8:1f:28:9b:4c:8e:b5:b8:04:63: 8a:4f:a6:98:42:04:81:55:eb:e6:28:57:70:17:87: f7:77:0d:37:3d:a7:a8:ea:21:6d:71:6d:02:76:d8: 44:04:5b:2c:a6:44:ff:4b:2a:39:18:c2:d3:4c:b4: 73:13:73:77:92:15:36:57:d2:c1:34:68:56:eb:3d: e6:33:3b:fd:e4:b9:dc:bd:b8:86:38:ec:71:cd:f8: 37:ee:d7:4d:79:0c:54:bd:97:82:97:af:3b:5f:16: 54:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:22:27:1D:3D:18:FE:16:64:7B:AB:F9:94:24:0F:94:AD:A0:FB:9A X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:8e:d6:ff:f2:71:72:40:87:98:9c:a1:6b:db:cf:b2:98:99: 19:ea:0e:3a:73:11:bc:18:24:82:ab:59:35:d7:5c:36:c0:80: c4:17:ea:44:ab:f2:42:be:87:30:74:4d:18:ea:2a:f1:a2:bc: 76:de:80:08:27:2b:d8:d8:e2:13:3f:3c:e5:62:8f:df:18:b2: 64:69:da:1e:54:39:9e:ac:3b:ec:33:f5:10:11:c0:5c:71:81: 25:42:c3:2a:1e:50:70:4d:e8:b6:89:f3:d5:c0:5d:ef:c0:bd: c8:a0:54:27:f7:d5:a0:43:77:07:27:83:12:24:ba:18:e7:3d: 68:18:e0:7a:51:5c:84:41:52:2f:06:5b:d9:15:36:b3:30:83: 44:1d:3d:9c:b2:78:6b:b7:7b:72:fb:4c:7a:96:68:96:9a:ff: 2b:48:c4:fa:30:36:fc:04:17:2c:80:87:ef:bb:a7:64:c7:8c: cc:46:2e:1b:2c:f2:90:2e:18:f2:36:c8:8e:de:c7:7e:d4:42: 03:3c:2b:48:6c:5a:83:66:f5:8d:de:2c:4d:bd:de:f3:8f:86: a4:e5:03:38:11:f7:79:34:a2:90:17:0e:fc:d4:41:08:da:a1: a2:07:df:be:01:44:2c:7a:fe:6d:60:95:a1:19:24:1e:a3:17: 41:49:ac:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUwNjE2MTYxMzM3WhcNMjUwNjIzMTYxMzM3WjAYMRYwFAYD VQQDEw02ODUwNDJiMS1jNjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArptHtg3VV6dbaTHzUNyZYlcb+NeBu9MkeyrENR2eYDhbQQpzJRyHEMFtfouW 86Ew34O26kfshi9qGxCxoBAQU/7YnnNdaJcCLLp50js09iXTsJ7QKD5WNH+D8BXv vaIWZmFqvOjGsF2D/lnC3Gwp/KfuchVYz2bKK/GutMB7+Dh0r7ohbFrmrDxpFOVy MZZwK2bUUCLjmm7g86gfKJtMjrW4BGOKT6aYQgSBVevmKFdwF4f3dw03Paeo6iFt cW0CdthEBFsspkT/Syo5GMLTTLRzE3N3khU2V9LBNGhW6z3mMzv95LncvbiGOOxx zfg37tdNeQxUvZeCl687XxZUgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAiJx09 GP4WZHur+ZQkD5StoPuaMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1jtb/8nFyQIeYnKFr28+ymJkZ6g46cxG8GCSCq1k111w2wIDEF+pE q/JCvocwdE0Y6irxorx23oAIJyvY2OITPzzlYo/fGLJkadoeVDmerDvsM/UQEcBc cYElQsMqHlBwTei2ifPVwF3vwL3IoFQn99WgQ3cHJ4MSJLoY5z1oGOB6UVyEQVIv BlvZFTazMINEHT2csnhrt3ty+0x6lmiWmv8rSMT6MDb8BBcsgIfvu6dkx4zMRi4b LPKQLhjyNsiO3sd+1EIDPCtIbFqDZvWN3ixNvd7zj4ak5QM4Efd5NKKQFw781EEI 2qGiB9++AUQsev5tYJWhGSQeoxdBSayY -----END CERTIFICATE-----Generated at Tue Jun 17 19:18:22 2025 by rpki-client