$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: xgxY5gK1fAjnWe1CKRCwwUZ1OQZhNSflwIGn/jBQAvQ= Subject key identifier: D0:15:E2:C5:30:9A:2E:F0:E0:B8:30:8A:78:40:11:30:3B:82:95:E6 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D44 Signing time: Mon 04 Aug 2025 16:17:09 +0000 Manifest this update: Mon 04 Aug 2025 16:17:09 +0000 Manifest next update: Mon 11 Aug 2025 16:17:09 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: QKBqZpZSRSeBCpgDMfXQ0qgdbAt/X49ywo6/Q/UDenQ=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: 5WitENJnrkIaDKSZdGfav4jBMV1MXsoOLjamdvAz9SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7506 (0x1d52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Aug 4 16:17:09 2025 GMT Not After : Aug 11 16:17:09 2025 GMT Subject: CN=6890dd05-56ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:42:9f:e1:85:f5:c5:54:0f:2b:8e:37:39: d0:ca:65:b4:56:bd:84:88:64:48:27:9c:9a:63:ba: a7:eb:51:79:37:1d:8d:ef:da:e0:09:58:6f:57:a2: df:08:96:47:c8:53:55:1d:51:6d:0b:5a:c9:bb:a7: f9:8c:d8:9f:4b:f1:23:89:93:0a:25:5d:67:94:35: c8:1a:b7:a5:1d:3c:48:75:38:6b:b5:23:a3:3d:0f: d5:9a:21:8f:55:d2:69:76:77:03:07:e7:91:2b:e0: c9:1e:f4:b1:c5:9d:65:80:99:92:38:ce:ac:65:10: 4b:8d:01:09:98:00:a4:af:15:6b:49:3a:0d:fe:56: 24:e1:d5:90:a0:dc:72:c8:3e:ae:ed:5f:d8:cc:a6: 4f:8f:ce:64:fc:bb:32:cb:f7:0b:3b:8a:5e:a0:04: cc:84:f7:6f:a6:47:ae:97:ed:b5:a9:09:26:f0:7e: 47:2f:2c:ed:3b:1f:5e:e6:c8:e8:b2:db:22:69:9f: ca:fd:93:6e:bb:a9:5f:45:83:fe:d6:26:74:23:4f: 29:fa:92:a7:43:63:68:e5:a6:83:78:60:bd:40:15: 40:35:96:2d:96:41:49:2f:71:a0:63:b6:8e:3c:63: d8:32:f1:f3:2d:67:9b:ab:fd:a4:77:ee:6b:84:7c: c8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:15:E2:C5:30:9A:2E:F0:E0:B8:30:8A:78:40:11:30:3B:82:95:E6 X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c4:c1:77:7c:bc:12:55:a5:b9:25:89:62:d7:bd:ab:c0:49: 38:53:ed:c8:c9:d9:2b:a3:60:bc:96:42:a9:8e:4a:d7:02:fc: 63:02:cd:10:df:87:5b:97:a7:bf:67:de:07:43:39:d8:f8:65: 4c:c2:a6:31:a2:06:14:61:8b:44:23:b4:01:75:3e:c0:08:d9: db:d3:f6:06:89:e4:04:7d:25:a9:36:a8:14:c5:b5:4f:5f:ef: 49:a4:53:02:af:26:20:a3:72:2d:c2:88:ac:45:a5:af:24:46: 71:7a:22:2a:0d:0b:f0:ae:fc:9a:ae:d1:8d:3f:f4:78:80:0d: 83:3f:10:96:30:43:f3:f2:24:32:86:60:33:d5:3b:c0:d7:69: 1c:32:40:7d:24:29:71:a9:d0:35:f4:75:39:7b:e1:c4:57:55: 79:84:47:75:f6:0b:34:7a:f6:e3:ab:96:a1:48:85:e2:5f:dc: 3e:2c:69:72:2e:09:65:ca:52:9c:ab:78:00:5c:d7:79:ad:a9: 2d:95:3d:87:9b:33:72:fa:ad:06:77:22:6d:1c:86:2c:7d:1f: 8c:e1:20:5b:c0:2c:d2:47:20:58:1c:3c:89:d1:9c:62:61:60: 5a:83:8d:61:16:54:9b:70:33:d2:ea:3a:a5:7f:04:d1:e9:b6: d4:1a:88:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUwODA0MTYxNzA5WhcNMjUwODExMTYxNzA5WjAYMRYwFAYD VQQDEw02ODkwZGQwNS01NmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZNCn+GF9cVUDyuONznQymW0Vr2EiGRIJ5yaY7qn61F5Nx2N79rgCVhvV6Lf CJZHyFNVHVFtC1rJu6f5jNifS/EjiZMKJV1nlDXIGrelHTxIdThrtSOjPQ/VmiGP VdJpdncDB+eRK+DJHvSxxZ1lgJmSOM6sZRBLjQEJmACkrxVrSToN/lYk4dWQoNxy yD6u7V/YzKZPj85k/Lsyy/cLO4peoATMhPdvpkeul+21qQkm8H5HLyztOx9e5sjo stsiaZ/K/ZNuu6lfRYP+1iZ0I08p+pKnQ2No5aaDeGC9QBVANZYtlkFJL3GgY7aO PGPYMvHzLWebq/2kd+5rhHzIAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAV4sUw mi7w4LgwinhAETA7gpXmMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKxMF3fLwSVaW5JYli172rwEk4U+3Iydkro2C8lkKpjkrXAvxjAs0Q 34dbl6e/Z94HQznY+GVMwqYxogYUYYtEI7QBdT7ACNnb0/YGieQEfSWpNqgUxbVP X+9JpFMCryYgo3ItwoisRaWvJEZxeiIqDQvwrvyartGNP/R4gA2DPxCWMEPz8iQy hmAz1TvA12kcMkB9JClxqdA19HU5e+HEV1V5hEd19gs0evbjq5ahSIXiX9w+LGly LgllylKcq3gAXNd5raktlT2HmzNy+q0GdyJtHIYsfR+M4SBbwCzSRyBYHDyJ0Zxi YWBag41hFlSbcDPS6jqlfwTR6bbUGojs -----END CERTIFICATE-----Generated at Tue Aug 5 17:09:36 2025 by rpki-client