$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: 6fRDWE18H5Xlc/2xiyMEUlwZCB7Rmx1aY4F5bcUktFk= Subject key identifier: E7:1C:E1:77:7E:9B:67:EB:0E:14:77:2F:25:21:E3:4F:BD:82:70:51 Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0C76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0C6A Signing time: Fri 08 Aug 2025 18:41:07 +0000 Manifest this update: Fri 08 Aug 2025 18:41:06 +0000 Manifest next update: Fri 15 Aug 2025 18:41:06 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: cK9seEW10qxdiM6aeFyqBNAMKC1Pu1zf6VLiJSEFOYg=) 2: 02D73B5ED1A911EC97A6335DC4F9AE02.roa (hash: fmgPgYqBF9oBKC2f0IYHXXUOKdyTPKcBMpy4SVGahtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Aug 8 18:41:06 2025 GMT Not After : Aug 15 18:41:06 2025 GMT Subject: CN=689644c3-a02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d7:12:4f:77:16:f6:fd:ff:a9:2e:0f:e8:25: ef:d7:71:bc:45:7a:92:dc:16:c3:c9:38:63:a0:e7: c7:83:56:59:4c:16:bc:53:cc:19:4a:5f:aa:a2:98: 85:e6:b9:fd:27:a1:df:0a:2e:92:18:a9:4b:94:ef: 29:f1:d8:88:c3:e4:cb:4c:a0:b0:c1:89:73:fd:df: ad:6d:75:9b:d9:5c:c9:91:43:57:5e:9b:8a:54:22: 31:76:aa:de:55:0a:db:6e:f3:be:34:81:7a:30:fd: d7:4e:f9:00:aa:0f:16:b6:4d:72:62:22:7e:bf:3f: 41:67:f9:e9:f5:05:26:94:5b:6b:3a:31:20:26:d6: 7d:d7:f8:d8:d7:96:d7:16:7c:d1:49:c4:07:3f:49: 31:f8:23:95:2b:76:7c:cb:ec:4c:e7:97:de:b1:86: ec:c8:fc:6e:77:c3:69:6e:b8:c2:53:3e:7e:4d:4a: 46:1f:8c:3d:cc:4f:ff:e7:1e:1d:a2:86:38:52:a9: 03:04:9b:4d:f3:27:6b:8d:99:05:44:87:09:be:90: 57:0a:c9:1b:69:f3:15:b3:29:ba:d5:4f:75:d8:11: 7b:db:29:61:6a:e7:96:3a:7b:4d:f2:74:8c:02:ee: 57:55:27:03:17:00:3d:1c:d4:ea:5e:2d:09:c5:5b: b7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:1C:E1:77:7E:9B:67:EB:0E:14:77:2F:25:21:E3:4F:BD:82:70:51 X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:84:d2:d3:74:f4:24:80:13:c4:dd:4a:5e:bc:01:12:dc:01: 1e:38:b2:e3:8c:ba:44:75:71:cd:fe:89:a5:a9:ad:3f:c3:0a: 2e:7b:99:0f:94:08:a6:b8:3b:ce:6f:73:65:c3:88:94:1f:c8: a9:71:82:68:70:33:78:ca:32:b5:ba:53:b2:92:6b:3d:47:4e: 3f:ca:a7:a7:0b:7f:f6:67:95:f5:95:b4:17:6b:0e:e4:cd:03: 50:a7:2a:08:46:d8:91:3a:05:6a:73:15:11:74:23:9a:46:cd: 99:91:46:d6:25:08:00:81:90:ad:48:18:4f:05:95:a2:d0:69: f9:6c:d9:5b:c7:dc:d9:e5:60:1e:98:a1:fc:da:23:71:0b:0c: fc:40:27:76:85:34:44:f3:28:f1:d2:22:bb:ef:ac:5a:ee:b4: 0c:43:be:dd:bc:3f:98:e0:f8:7c:86:cc:a8:cd:fc:c5:af:ef: 28:de:ab:49:66:8c:be:c6:8b:a8:2a:47:ab:f0:60:95:ec:55: f6:2c:7a:0a:84:2a:3e:0f:f1:71:e0:13:53:82:d8:d8:56:fd: 92:39:9f:69:d7:c9:60:c0:d2:81:8f:23:3a:66:03:04:db:25: 40:bd:4b:c8:12:0c:05:2b:7d:36:bd:0c:72:5c:88:d1:75:2b: 9f:0c:4a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjUwODA4MTg0MTA2WhcNMjUwODE1MTg0MTA2WjAYMRYwFAYD VQQDEw02ODk2NDRjMy1hMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldcST3cW9v3/qS4P6CXv13G8RXqS3BbDyThjoOfHg1ZZTBa8U8wZSl+qopiF 5rn9J6HfCi6SGKlLlO8p8diIw+TLTKCwwYlz/d+tbXWb2VzJkUNXXpuKVCIxdqre VQrbbvO+NIF6MP3XTvkAqg8Wtk1yYiJ+vz9BZ/np9QUmlFtrOjEgJtZ91/jY15bX FnzRScQHP0kx+COVK3Z8y+xM55fesYbsyPxud8NpbrjCUz5+TUpGH4w9zE//5x4d ooY4UqkDBJtN8ydrjZkFRIcJvpBXCskbafMVsym61U912BF72ylhaueWOntN8nSM Au5XVScDFwA9HNTqXi0JxVu3cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcc4Xd+ m2frDhR3LyUh40+9gnBRMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRhNLTdPQkgBPE3UpevAES3AEeOLLjjLpEdXHN/omlqa0/wwoue5kP lAimuDvOb3Nlw4iUH8ipcYJocDN4yjK1ulOykms9R04/yqenC3/2Z5X1lbQXaw7k zQNQpyoIRtiROgVqcxURdCOaRs2ZkUbWJQgAgZCtSBhPBZWi0Gn5bNlbx9zZ5WAe mKH82iNxCwz8QCd2hTRE8yjx0iK776xa7rQMQ77dvD+Y4Ph8hsyozfzFr+8o3qtJ Zoy+xouoKker8GCV7FX2LHoKhCo+D/Fx4BNTgtjYVv2SOZ9p18lgwNKBjyM6ZgME 2yVAvUvIEgwFK302vQxyXIjRdSufDEox -----END CERTIFICATE-----Generated at Sun Aug 10 16:07:40 2025 by rpki-client