$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: /8yWcGm1xxg47lXZnD5X3dPG+mDBitXVE4BAXTDwsnQ= Subject key identifier: CA:AF:83:65:35:CD:A3:2C:C9:44:79:87:71:FD:D6:93:C8:B4:91:AA Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: 5F Signing time: Thu 07 Aug 2025 07:46:49 +0000 Manifest this update: Thu 07 Aug 2025 07:46:48 +0000 Manifest next update: Thu 14 Aug 2025 07:46:48 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: UT+X3ls1ZhbfsjFI9zwkZNeYzi1C0wYfT7tLECjfnF8=) 2: 92B377C82CB011F0A2E86B16C4F9AE02.roa (hash: FoDHZvXeH5e/XFJzf3AymBW0SIuGnIL2DXJhgfsRixg=) 3: 7F639A182CB011F08B722116C4F9AE02.roa (hash: 8SOJ6SdOtJ/q3NwLkWGRY6LjHM44wHGZjzKG2cwDOuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E, serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Validity Not Before: Aug 7 07:46:48 2025 GMT Not After : Aug 14 07:46:48 2025 GMT Subject: CN=689459e8-cda3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:4e:fe:db:02:7f:6a:df:3d:d5:b8:26:f5: 27:8c:be:17:47:c0:90:d9:6d:d2:fb:5f:b0:66:8b: 85:2e:b8:25:89:d6:5f:9d:4e:cf:25:b4:f3:5c:91: c4:ed:bc:4a:24:42:63:60:a1:3e:73:59:6c:c6:ea: f4:4e:ec:ec:5c:dc:5a:6d:40:fa:29:03:5b:8b:87: 93:12:09:fe:73:f5:f4:69:3a:f1:26:f3:4f:da:ce: 92:59:51:54:d6:03:29:7e:e4:36:01:9c:aa:59:2e: a4:4c:55:64:00:65:1b:5c:91:ae:b9:50:ff:cd:9f: 71:51:30:61:b5:fa:88:20:5f:68:8a:3e:56:ae:3c: 84:55:3a:05:50:3f:19:86:c3:63:e7:ac:1f:36:fd: cd:88:cb:3f:fd:d4:03:7c:19:4c:9a:35:e4:e3:78: 04:1a:6b:7b:93:69:df:0e:d4:a7:4a:36:e7:fa:43: 52:32:17:bf:e0:56:03:1b:49:63:d1:c9:78:35:18: e8:d0:6b:7e:72:1c:61:6e:b6:fd:f7:ff:ef:91:a5: 60:09:d0:f3:99:a6:9e:c2:eb:1f:c6:f1:3b:87:eb: 8e:06:c2:c3:1d:f3:59:6a:43:b7:85:39:be:00:86: 98:b9:a8:dd:17:61:7f:06:2d:39:7f:d4:69:b0:e2: 47:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:AF:83:65:35:CD:A3:2C:C9:44:79:87:71:FD:D6:93:C8:B4:91:AA X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:12:3d:d0:57:39:86:7e:e6:8b:14:ff:94:37:38:15:3e:1a: a8:e5:c7:09:91:3d:a0:35:33:28:c0:d0:ff:a0:5c:d4:fd:42: 9c:7b:46:5d:a0:77:02:ee:fa:e3:ca:a1:fb:a8:2e:97:d9:18: 16:d5:ac:19:ca:04:51:39:95:67:93:58:0b:1a:1d:31:02:2f: 58:94:77:a5:b1:df:db:7c:21:59:7f:0a:6a:bc:0d:5d:32:f0: 57:24:ff:0b:e6:c0:10:42:d6:26:1c:bc:66:35:08:72:26:b7: 13:9d:5b:bd:bc:c5:b7:a6:cc:43:52:f6:25:d4:35:ad:e2:3d: 29:63:e2:fa:bc:3e:68:fb:9f:ba:85:54:57:08:fe:89:c3:70: 37:59:1c:cf:bf:76:5c:3b:2e:18:6e:f0:fb:86:8e:b3:ef:43: 49:28:80:59:30:69:af:9b:e2:a0:8c:9f:f5:8f:ba:24:1a:42: a7:99:46:9b:9e:79:29:43:62:59:09:95:59:9a:d1:31:79:a1: 42:f5:dd:8f:c5:06:06:67:e6:42:ff:a0:35:2b:99:df:21:99: 84:39:1d:d5:0a:f6:2a:31:a1:92:aa:86:e5:cd:b9:ff:7c:67: b2:25:37:70:1f:98:33:aa:c4:01:21:4a:55:74:7c:d1:b6:f5: 23:8a:ed:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTk2RTExMC8GA1UEBRMoMjQyOUEzRUU1MDg4RjNENDUzNzJBOEUzQjM2ODM0Qzc1 RUFFNkQyOTAeFw0yNTA4MDcwNzQ2NDhaFw0yNTA4MTQwNzQ2NDhaMBgxFjAUBgNV BAMTDTY4OTQ1OWU4LWNkYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHYk7+2wJ/at891bgm9SeMvhdHwJDZbdL7X7Bmi4UuuCWJ1l+dTs8ltPNckcTt vEokQmNgoT5zWWzG6vRO7Oxc3FptQPopA1uLh5MSCf5z9fRpOvEm80/azpJZUVTW Ayl+5DYBnKpZLqRMVWQAZRtcka65UP/Nn3FRMGG1+oggX2iKPlauPIRVOgVQPxmG w2PnrB82/c2Iyz/91AN8GUyaNeTjeAQaa3uTad8O1KdKNuf6Q1IyF7/gVgMbSWPR yXg1GOjQa35yHGFutv33/++RpWAJ0POZpp7C6x/G8TuH644GwsMd81lqQ7eFOb4A hpi5qN0XYX8GLTl/1Gmw4kdbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyq+DZTXN oyzJRHmHcf3Wk8i0kaowHwYDVR0jBBgwFoAUJCmj7lCI89RTcqjjs2g0x16ubSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTZFLzIzRDJGMTZFRUMy MTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkNtajdsQ0k4OVJUY3FqanMyZzB4MTZ1YlNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF OTZFLzIzRDJGMTZFRUMyMTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlS VGNxampzMmcweDE2dWJTay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALYSPdBXOYZ+5osU/5Q3OBU+GqjlxwmRPaA1MyjA0P+gXNT9Qpx7Rl2g dwLu+uPKofuoLpfZGBbVrBnKBFE5lWeTWAsaHTECL1iUd6Wx39t8IVl/Cmq8DV0y 8Fck/wvmwBBC1iYcvGY1CHImtxOdW728xbemzENS9iXUNa3iPSlj4vq8Pmj7n7qF VFcI/onDcDdZHM+/dlw7Lhhu8PuGjrPvQ0kogFkwaa+b4qCMn/WPuiQaQqeZRpue eSlDYlkJlVma0TF5oUL13Y/FBgZn5kL/oDUrmd8hmYQ5HdUK9ioxoZKqhuXNuf98 Z7IlN3AfmDOqxAEhSlV0fNG29SOK7Ww= -----END CERTIFICATE-----Generated at Fri Aug 8 13:08:48 2025 by rpki-client