$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft File: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft (raw, json) Hash identifier: vBxOdAVcf0SkkxidxPXeGxwrbt5qEZyrY0Rz9ZnsqEU= Subject key identifier: A9:B9:4D:64:2A:41:09:D1:4C:54:3B:9A:2C:AC:59:33:97:1E:B4:E0 Authority key identifier: 24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D Certificate issuer: /CN=A91E8BAF/serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Certificate serial: 34CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft Manifest number: 34BA Signing time: Fri 08 Aug 2025 15:22:21 +0000 Manifest this update: Fri 08 Aug 2025 15:22:21 +0000 Manifest next update: Fri 15 Aug 2025 15:22:21 +0000 Files and hashes: 1: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl (hash: MTRxORNkRi3CDu4XDVwsX7e4ERAsakLGjKSeg5AEGCg=) 2: F87DB8B440C811EEB681DC40C4F9AE02.roa (hash: a03YccLD26+EVq1g9SXKvWZ2v+EmXltyBYT+9f1nANI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13517 (0x34cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BAF, serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Validity Not Before: Aug 8 15:22:21 2025 GMT Not After : Aug 15 15:22:21 2025 GMT Subject: CN=6896162d-fbad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:e4:73:2c:f1:6d:4b:08:62:8b:6a:fd:bc: eb:bb:c4:30:13:a0:1f:a5:54:e8:dc:df:12:80:0a: 36:63:7f:11:94:b8:fa:5a:a9:84:b4:e1:47:5a:04: af:95:b5:a9:87:d1:ce:2b:93:81:61:e7:ac:99:cf: b3:4a:e7:8a:d2:18:7f:e6:c4:a1:e9:f4:a7:6f:6d: 89:39:61:f5:8f:e2:22:2f:15:11:bd:08:d8:19:ef: 76:af:5d:10:07:b2:82:bf:f6:6d:ee:1b:1c:e5:01: 4e:53:f4:6d:9d:85:c9:d6:61:38:d2:a1:79:2c:b6: 62:ec:36:6c:48:d3:01:92:1a:ce:6d:e0:03:ea:35: 92:db:94:e8:bc:9d:08:62:4d:fb:6c:06:b5:42:98: 07:13:77:cc:b9:64:21:cc:6b:f9:13:10:64:de:ed: ea:85:3b:d5:87:6e:e4:db:2a:79:77:40:dc:92:37: 93:df:34:da:6d:4a:5c:ee:63:e0:bc:96:d0:ab:c9: 03:a3:76:81:17:83:e5:db:5b:8c:2a:3f:6c:fb:1e: bf:1a:f4:c8:e3:83:75:d1:a4:d6:c1:a6:84:0c:63: 22:9e:5b:22:39:66:d3:a7:52:2b:c1:ff:1a:ec:5a: e7:65:ab:41:57:eb:30:49:b4:f9:b1:54:47:4f:dd: 23:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B9:4D:64:2A:41:09:D1:4C:54:3B:9A:2C:AC:59:33:97:1E:B4:E0 X509v3 Authority Key Identifier: keyid:24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:56:d0:4c:44:ce:84:4b:d7:0a:92:94:84:28:1d:35:08:f8: 4a:cd:0a:84:91:ac:4b:5d:87:13:3d:e4:50:39:73:fa:23:9e: 9f:fd:18:e4:0a:b0:ae:f3:fb:74:1d:78:9d:34:5a:9d:c4:96: 92:35:0c:d2:b5:df:b6:7e:15:0a:db:62:ab:b7:c3:81:95:39: 1f:24:78:1e:6d:11:88:3f:83:21:a9:74:e7:29:84:20:92:95: 66:eb:82:b3:16:0e:27:ba:e3:d1:5a:d0:f8:57:ad:70:4a:98: bc:0c:9d:cc:0c:ea:fe:0b:9e:36:2b:1b:dc:18:43:b3:b0:5e: a4:6f:2a:2e:f4:38:25:91:71:0f:6d:e9:5c:fd:14:03:61:13: 51:a2:1e:36:8c:da:84:b2:96:be:4b:63:b0:db:73:cb:c4:01: e3:34:43:7e:31:99:c8:37:02:76:67:c6:08:d1:1a:2a:7a:7f: 2f:7f:dd:25:8e:c4:2a:7f:3f:55:e9:f4:c0:5c:8a:46:a8:0d: 41:0f:55:81:27:23:28:f6:4a:3c:e5:ed:9e:62:5b:8c:96:8b: 77:09:30:c8:cf:b1:14:87:b9:e6:a9:b8:fa:a4:b4:c9:74:db: 6a:68:6f:8a:c5:1a:31:2e:16:1b:80:18:50:81:79:4b:37:bf: 57:2c:51:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCQUYxMTAvBgNVBAUTKDI0OERCMUZFRTU1MTBDOEE2QUY4NUVBQzgxMEVDNEND QUU4QkY5MEQwHhcNMjUwODA4MTUyMjIxWhcNMjUwODE1MTUyMjIxWjAYMRYwFAYD VQQDEw02ODk2MTYyZC1mYmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwrkcyzxbUsIYotq/bzru8QwE6AfpVTo3N8SgAo2Y38RlLj6WqmEtOFHWgSv lbWph9HOK5OBYeesmc+zSueK0hh/5sSh6fSnb22JOWH1j+IiLxURvQjYGe92r10Q B7KCv/Zt7hsc5QFOU/RtnYXJ1mE40qF5LLZi7DZsSNMBkhrObeAD6jWS25TovJ0I Yk37bAa1QpgHE3fMuWQhzGv5ExBk3u3qhTvVh27k2yp5d0DckjeT3zTabUpc7mPg vJbQq8kDo3aBF4Pl21uMKj9s+x6/GvTI44N10aTWwaaEDGMinlsiOWbTp1Irwf8a 7FrnZatBV+swSbT5sVRHT90jhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKm5TWQq QQnRTFQ7miysWTOXHrTgMB8GA1UdIwQYMBaAFCSNsf7lUQyKavherIEOxMyui/kN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJBRi8zMkQ4RTIyRTFE QUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJcHEtRjZzZ1E3RXpLNkwt UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJMnhfdVZSRElwcS1GNnNnUTdFeks2TC1RMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJBRi8zMkQ4RTIyRTFEQUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJ cHEtRjZzZ1E3RXpLNkwtUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZVtBMRM6ES9cKkpSEKB01CPhKzQqEkaxLXYcTPeRQOXP6I56f/Rjk CrCu8/t0HXidNFqdxJaSNQzStd+2fhUK22Krt8OBlTkfJHgebRGIP4MhqXTnKYQg kpVm64KzFg4nuuPRWtD4V61wSpi8DJ3MDOr+C542KxvcGEOzsF6kbyou9DglkXEP belc/RQDYRNRoh42jNqEspa+S2Ow23PLxAHjNEN+MZnINwJ2Z8YI0Roqen8vf90l jsQqfz9V6fTAXIpGqA1BD1WBJyMo9ko85e2eYluMlot3CTDIz7EUh7nmqbj6pLTJ dNtqaG+KxRoxLhYbgBhQgXlLN79XLFET -----END CERTIFICATE-----Generated at Fri Aug 8 20:44:05 2025 by rpki-client