$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: 3969WqnwwWEPGb6eH65SerlAf92ph4T8Nig93vbfj+k= Subject key identifier: 9C:FD:2F:28:A0:17:7B:16:5E:2A:C0:82:1B:64:2D:2B:35:B3:1F:AC Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1AA9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 1AA2 Signing time: Sun 10 Aug 2025 15:39:45 +0000 Manifest this update: Sun 10 Aug 2025 15:39:44 +0000 Manifest next update: Sun 17 Aug 2025 15:39:44 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: C6itUnKEs6sS4AlGX50VcZbuN0ngUo7423o+iX9ulBc=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6825 (0x1aa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Aug 10 15:39:44 2025 GMT Not After : Aug 17 15:39:44 2025 GMT Subject: CN=6898bd40-4851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:48:b9:b9:29:ef:c4:9e:d3:b3:b0:0e:59:31: 90:c1:12:18:df:ec:c5:8c:14:a3:7e:d3:7d:e9:98: a5:1c:cf:67:9b:a2:84:44:f7:0a:f3:e2:66:c7:70: 45:5a:5c:82:28:36:c5:a8:10:2e:fb:0b:99:20:d4: 70:e2:ac:c6:cb:b8:93:02:1c:07:c6:ee:1a:e6:30: 9d:0f:19:7d:86:26:ac:e9:e1:5f:77:ad:f6:a6:95: 60:ea:35:07:e3:5a:26:e9:32:98:3a:72:a1:e7:d7: ef:ef:26:56:55:34:3e:05:b2:45:cb:bb:44:74:93: af:d4:b7:f9:8f:ee:eb:70:88:1a:f0:92:57:93:87: cb:3d:6b:ed:a9:d9:25:06:45:d4:ae:30:89:4b:9a: 57:b7:e1:ee:61:41:ca:cc:30:cd:a3:68:e4:48:ef: 60:86:c3:f5:fc:3c:00:9b:b3:37:99:1f:df:a2:6f: 5a:b3:b2:db:08:61:a9:b1:81:b2:1f:61:a4:d7:1a: 31:be:36:1d:b8:fe:18:a5:48:50:43:d4:0c:6e:89: 32:40:12:1b:41:9f:49:4f:d0:37:4d:ec:08:87:ab: cc:62:21:43:ed:9d:60:ed:5b:6a:b6:42:c1:1d:d9: 7f:8d:d1:75:ae:7f:10:97:9c:8d:b3:ae:bb:c2:7c: 69:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:FD:2F:28:A0:17:7B:16:5E:2A:C0:82:1B:64:2D:2B:35:B3:1F:AC X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:0e:a8:5b:38:dd:95:18:6f:f7:ab:e7:fd:79:30:99:50:21: 37:0f:5e:39:a9:82:98:ff:d5:44:cd:b7:41:c8:1d:f7:75:62: 82:02:29:9b:9b:d8:83:e1:02:65:83:da:52:88:2e:c3:81:0f: 00:a3:81:2c:5d:d6:c7:6c:1e:5b:fb:ed:98:7e:90:d1:41:74: 5c:71:e4:52:25:7c:a2:70:b8:30:05:b4:62:8a:65:18:40:4a: 43:56:df:6d:6d:2c:2b:36:56:5c:37:6b:89:15:df:9a:50:0a: 78:89:ba:23:e6:19:0e:3a:d4:c1:57:24:1a:cf:4d:4f:90:d5: 21:6c:a0:e0:bb:31:bc:6b:9d:9f:bf:e2:ae:e6:68:20:08:95: 48:c0:d5:e5:61:0b:6d:d1:16:8a:81:e2:96:80:3f:49:29:b8: 6b:d0:38:64:16:d2:f7:33:84:73:bf:68:24:24:5a:a7:63:e9: ed:8a:e4:13:32:4f:e6:b5:2a:b6:d9:1f:32:70:70:28:ec:92: 5e:e3:7b:d4:92:c4:a1:00:bd:1a:09:93:31:b9:30:d7:3f:cf: d3:3c:54:41:f5:f5:4c:05:08:ef:2b:61:95:22:9f:01:54:a0: c5:51:b5:f9:c9:da:45:d0:eb:fb:b7:71:68:f3:2b:d9:3b:9b: 08:bb:1f:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjUwODEwMTUzOTQ0WhcNMjUwODE3MTUzOTQ0WjAYMRYwFAYD VQQDEw02ODk4YmQ0MC00ODUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Ei5uSnvxJ7Ts7AOWTGQwRIY3+zFjBSjftN96ZilHM9nm6KERPcK8+Jmx3BF WlyCKDbFqBAu+wuZINRw4qzGy7iTAhwHxu4a5jCdDxl9hias6eFfd632ppVg6jUH 41om6TKYOnKh59fv7yZWVTQ+BbJFy7tEdJOv1Lf5j+7rcIga8JJXk4fLPWvtqdkl BkXUrjCJS5pXt+HuYUHKzDDNo2jkSO9ghsP1/DwAm7M3mR/fom9as7LbCGGpsYGy H2Gk1xoxvjYduP4YpUhQQ9QMbokyQBIbQZ9JT9A3TewIh6vMYiFD7Z1g7VtqtkLB Hdl/jdF1rn8Ql5yNs667wnxpdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJz9Lyig F3sWXirAghtkLSs1sx+sMB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNDqhbON2VGG/3q+f9eTCZUCE3D145qYKY/9VEzbdByB33dWKCAimb m9iD4QJlg9pSiC7DgQ8Ao4EsXdbHbB5b++2YfpDRQXRcceRSJXyicLgwBbRiimUY QEpDVt9tbSwrNlZcN2uJFd+aUAp4iboj5hkOOtTBVyQaz01PkNUhbKDguzG8a52f v+Ku5mggCJVIwNXlYQtt0RaKgeKWgD9JKbhr0DhkFtL3M4Rzv2gkJFqnY+ntiuQT Mk/mtSq22R8ycHAo7JJe43vUksShAL0aCZMxuTDXP8/TPFRB9fVMBQjvK2GVIp8B VKDFUbX5ydpF0Ov7t3Fo8yvZO5sIux/4 -----END CERTIFICATE-----Generated at Mon Aug 11 04:19:40 2025 by rpki-client