$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: owyn50zTyt0dZWOHHHzftX6cCRikRzlqIO54aQ0vWew= Subject key identifier: 78:5C:41:8E:1C:D9:29:25:3F:F9:79:06:7D:A1:FC:14:6C:4F:28:E8 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: EA Signing time: Sun 15 Jun 2025 04:31:12 +0000 Manifest this update: Sun 15 Jun 2025 04:31:12 +0000 Manifest next update: Sun 22 Jun 2025 04:31:12 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: r7atG83fROQGD8aUGRcwejJpdjGJpegB3bTqDBfuw8M=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Jun 15 04:31:12 2025 GMT Not After : Jun 22 04:31:12 2025 GMT Subject: CN=684e4c90-31ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:a6:d1:40:cb:c8:ca:2d:e1:cc:2f:70:70:df: 67:86:bb:7c:dd:56:f3:01:4c:8a:54:f8:11:44:9d: a3:7b:56:c3:be:19:6d:45:87:16:24:33:0b:06:96: 20:a6:d0:f6:06:1a:13:56:84:d4:bd:c7:08:b2:3b: 1b:44:17:c1:24:9f:9e:58:99:b7:5c:ba:b2:42:73: fa:9e:91:b9:2a:f1:79:40:6a:4e:c4:b6:22:a5:76: 4b:9a:cc:56:ae:97:be:5f:03:7d:92:82:b0:b4:95: 19:de:4a:b7:3e:5a:21:02:0d:23:a3:ae:ac:1f:2c: 70:31:06:c3:a7:ee:b3:af:94:f6:30:a5:94:74:5e: b2:2f:e5:96:a6:16:33:82:0d:55:5c:fe:8e:c6:11: 27:6e:81:54:d7:71:8b:4e:d9:7b:40:e1:e6:9f:43: 3c:a3:6a:18:d8:2f:70:73:ab:49:66:02:a1:3f:fa: 1c:64:8e:b8:bf:df:4e:b2:83:f9:02:39:d9:63:89: e1:db:92:71:93:e0:6e:a1:79:4e:8e:ea:a6:2f:da: 24:14:cc:84:49:84:a9:e7:58:1d:c7:85:b6:fa:83: 5c:d9:f0:8d:40:32:9a:9a:92:f9:55:56:84:82:ec: 87:c6:b7:d9:a3:d1:16:b0:c1:14:08:bd:71:3e:e4: 7b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:5C:41:8E:1C:D9:29:25:3F:F9:79:06:7D:A1:FC:14:6C:4F:28:E8 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:97:be:c4:b2:f8:96:48:95:eb:36:04:bf:ac:eb:de:af:76: ad:29:ec:50:b8:51:00:27:f3:4f:02:fc:d2:83:3f:90:56:fe: 14:0a:96:2c:e0:9f:f2:38:6a:0a:f6:a7:15:98:8a:72:91:5e: 9d:ae:36:7d:6e:98:05:b4:0f:d8:52:66:f7:4a:52:2e:d6:27: 00:87:bc:d8:0a:90:10:99:a4:36:73:05:f0:88:0b:37:23:7d: e2:e4:27:3c:69:15:cd:0a:42:21:b2:ca:d0:6d:0c:c6:55:84: 40:ff:2d:75:68:48:89:05:2b:38:af:b7:ea:94:1c:3a:b5:f0: 2e:1e:88:dc:34:0d:85:94:d7:e1:f3:c9:5a:19:21:af:bb:ed: 34:b4:c2:b0:9f:4d:a0:f9:8f:ac:9e:7d:35:ad:f8:df:e1:ae: f7:48:24:e7:25:8d:07:80:52:b0:e1:86:85:61:dd:43:27:b4: 1e:9d:7c:ef:7b:30:53:d4:43:2e:74:b6:26:bc:46:86:f1:e1: 8c:ee:73:dd:50:14:ec:dd:fa:e7:3d:33:2c:a2:bd:78:a0:b7: b5:bd:db:eb:79:7f:99:22:d6:11:19:b4:9f:da:bd:16:3b:e8: 44:01:b9:83:e4:8d:ec:df:93:df:d8:c7:4d:ed:ff:0c:fd:45: 4e:c2:3d:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUwNjE1MDQzMTEyWhcNMjUwNjIyMDQzMTEyWjAYMRYwFAYD VQQDEw02ODRlNGM5MC0zMWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/KbRQMvIyi3hzC9wcN9nhrt83VbzAUyKVPgRRJ2je1bDvhltRYcWJDMLBpYg ptD2BhoTVoTUvccIsjsbRBfBJJ+eWJm3XLqyQnP6npG5KvF5QGpOxLYipXZLmsxW rpe+XwN9koKwtJUZ3kq3PlohAg0jo66sHyxwMQbDp+6zr5T2MKWUdF6yL+WWphYz gg1VXP6OxhEnboFU13GLTtl7QOHmn0M8o2oY2C9wc6tJZgKhP/ocZI64v99OsoP5 AjnZY4nh25Jxk+BuoXlOjuqmL9okFMyESYSp51gdx4W2+oNc2fCNQDKampL5VVaE guyHxrfZo9EWsMEUCL1xPuR7SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhcQY4c 2SklP/l5Bn2h/BRsTyjoMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsl77EsviWSJXrNgS/rOver3atKexQuFEAJ/NPAvzSgz+QVv4UCpYs 4J/yOGoK9qcVmIpykV6drjZ9bpgFtA/YUmb3SlIu1icAh7zYCpAQmaQ2cwXwiAs3 I33i5Cc8aRXNCkIhssrQbQzGVYRA/y11aEiJBSs4r7fqlBw6tfAuHojcNA2FlNfh 88laGSGvu+00tMKwn02g+Y+snn01rfjf4a73SCTnJY0HgFKw4YaFYd1DJ7QenXzv ezBT1EMudLYmvEaG8eGM7nPdUBTs3frnPTMsor14oLe1vdvreX+ZItYRGbSf2r0W O+hEAbmD5I3s35Pf2MdN7f8M/UVOwj3g -----END CERTIFICATE-----Generated at Sun Jun 15 09:39:22 2025 by rpki-client