$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft File: JHItMcJRPk5_h-23Df6dyU-EaLo.mft (raw, json) Hash identifier: 5S2nPDxsK8k6xfxjiqOTKzcrvwvgJiQt058vQQnFPb0= Subject key identifier: 2A:8F:87:54:47:80:22:63:03:15:07:22:B8:C8:48:01:53:5E:94:C0 Authority key identifier: 24:72:2D:31:C2:51:3E:4E:7F:87:ED:B7:0D:FE:9D:C9:4F:84:68:BA Certificate issuer: /CN=A91186C2/serialNumber=24722D31C2513E4E7F87EDB70DFE9DC94F8468BA Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft Manifest number: 8F Signing time: Sun 19 Oct 2025 09:45:19 +0000 Manifest this update: Sun 19 Oct 2025 09:45:18 +0000 Manifest next update: Sun 26 Oct 2025 09:45:18 +0000 Files and hashes: 1: JHItMcJRPk5_h-23Df6dyU-EaLo.crl (hash: F/YBYc50lx8TpcIaM5fsAw3LqB8HMg/Ayv2ZToYkrTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.crl rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=24722D31C2513E4E7F87EDB70DFE9DC94F8468BA Validity Not Before: Oct 19 09:45:18 2025 GMT Not After : Oct 26 09:45:18 2025 GMT Subject: CN=68f4b32f-367b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:20:d4:d0:5b:94:b4:0c:50:aa:ce:3c:12:89: 18:e4:93:c0:9e:dc:4b:d7:9b:ce:72:fe:60:9a:17: bb:e5:a1:d7:17:30:2a:39:2d:30:1a:3b:78:1b:93: c9:ba:32:e5:74:3e:63:11:8f:82:35:6e:8d:47:9f: b0:83:62:7e:f1:3d:c4:5f:2b:e0:d3:6b:2b:40:2b: 71:c5:75:f9:d8:89:6c:8d:81:c7:c5:b9:a9:86:3b: 45:e3:5d:47:52:87:42:00:29:0b:3b:39:0c:2d:b9: ca:61:a3:bb:9a:cc:05:4d:98:c3:2e:e1:57:5e:ac: 24:12:03:f7:6a:62:d8:4c:2e:af:3d:0f:14:8d:c1: fc:1f:88:fe:5b:44:cc:c1:be:f2:bd:c2:5a:fa:df: 24:28:2b:89:19:59:19:ca:27:7b:9b:3b:54:56:e9: d0:35:5a:10:64:16:30:84:ca:04:85:9e:c3:c0:70: 33:55:c6:cc:ee:5b:4f:47:3a:33:cd:24:1d:37:5b: 81:3d:10:3e:37:d4:c9:c7:bd:4b:da:7b:1a:b0:a2: 89:e1:a9:e6:bc:f7:14:ff:ab:ff:cf:7b:a6:39:d5: 7d:55:78:34:51:c7:e5:0a:0d:9f:62:73:bb:de:d3: fb:44:e4:a4:76:de:72:87:1d:b7:fb:53:27:5f:3e: 71:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:8F:87:54:47:80:22:63:03:15:07:22:B8:C8:48:01:53:5E:94:C0 X509v3 Authority Key Identifier: keyid:24:72:2D:31:C2:51:3E:4E:7F:87:ED:B7:0D:FE:9D:C9:4F:84:68:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHItMcJRPk5_h-23Df6dyU-EaLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/2555BF06D17F11EFB3846928C4F9AE02/JHItMcJRPk5_h-23Df6dyU-EaLo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:1d:29:a8:85:99:c5:ef:f1:cf:df:c2:aa:10:48:64:ec:eb: 67:f4:d0:72:07:8e:a7:43:df:23:d9:d2:c3:2d:e3:99:91:84: a0:73:a3:96:a8:14:99:e0:36:00:22:7a:35:7c:1e:08:c8:3f: 1b:96:93:f8:23:31:bf:7c:94:f7:fa:7c:2b:c0:a6:f7:51:ed: 78:e8:bf:a1:6f:dc:b8:a7:19:f5:32:73:b4:5b:33:04:a3:bb: c2:75:b7:4d:8f:4c:65:5a:63:9a:1d:27:01:fb:82:4d:f6:41: 48:4e:be:b7:6f:8a:1b:7d:fd:82:6c:9a:9c:b6:75:7d:c1:31: ac:7d:f3:41:99:8a:2d:ee:40:43:7f:b2:4a:f2:ac:80:b6:a6: 0c:9a:51:cc:b1:a3:69:f0:cd:e3:fa:b5:79:ad:bb:9a:12:24: 7c:bd:26:6e:df:44:79:08:0d:8e:6f:04:04:35:ad:c6:a0:0b: 79:0a:b7:5f:52:61:b4:40:3c:b6:e6:dc:5a:03:ac:fc:79:e0: 13:7a:24:2d:d6:f8:59:6e:58:8a:f7:37:2b:b0:e4:90:90:1a: 4a:6e:d0:31:d6:88:74:38:9b:36:0c:d0:62:3c:2a:5b:65:ca: 44:b3:8d:79:4f:46:13:db:eb:cc:79:a5:c3:ae:02:df:45:48: 70:1b:d2:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2QzIxMTAvBgNVBAUTKDI0NzIyRDMxQzI1MTNFNEU3Rjg3RURCNzBERkU5REM5 NEY4NDY4QkEwHhcNMjUxMDE5MDk0NTE4WhcNMjUxMDI2MDk0NTE4WjAYMRYwFAYD VQQDEw02OGY0YjMyZi0zNjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiDU0FuUtAxQqs48EokY5JPAntxL15vOcv5gmhe75aHXFzAqOS0wGjt4G5PJ ujLldD5jEY+CNW6NR5+wg2J+8T3EXyvg02srQCtxxXX52IlsjYHHxbmphjtF411H UodCACkLOzkMLbnKYaO7mswFTZjDLuFXXqwkEgP3amLYTC6vPQ8UjcH8H4j+W0TM wb7yvcJa+t8kKCuJGVkZyid7mztUVunQNVoQZBYwhMoEhZ7DwHAzVcbM7ltPRzoz zSQdN1uBPRA+N9TJx71L2nsasKKJ4anmvPcU/6v/z3umOdV9VXg0UcflCg2fYnO7 3tP7ROSkdt5yhx23+1MnXz5xAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqPh1RH gCJjAxUHIrjISAFTXpTAMB8GA1UdIwQYMBaAFCRyLTHCUT5Of4fttw3+nclPhGi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODZDMi8yNTU1QkYwNkQx N0YxMUVGQjM4NDY5MjhDNEY5QUUwMi9KSEl0TWNKUlBrNV9oLTIzRGY2ZHlVLUVh TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pISXRNY0pSUGs1X2gtMjNEZjZkeVUtRWFMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODZDMi8yNTU1QkYwNkQxN0YxMUVGQjM4NDY5MjhDNEY5QUUwMi9KSEl0TWNKUlBr NV9oLTIzRGY2ZHlVLUVhTG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNHSmohZnF7/HP38KqEEhk7Otn9NByB46nQ98j2dLDLeOZkYSgc6OW qBSZ4DYAIno1fB4IyD8blpP4IzG/fJT3+nwrwKb3Ue146L+hb9y4pxn1MnO0WzME o7vCdbdNj0xlWmOaHScB+4JN9kFITr63b4obff2CbJqctnV9wTGsffNBmYot7kBD f7JK8qyAtqYMmlHMsaNp8M3j+rV5rbuaEiR8vSZu30R5CA2ObwQENa3GoAt5Crdf UmG0QDy25txaA6z8eeATeiQt1vhZbliK9zcrsOSQkBpKbtAx1oh0OJs2DNBiPCpb ZcpEs415T0YT2+vMeaXDrgLfRUhwG9Jo -----END CERTIFICATE-----Generated at Mon Oct 20 07:06:52 2025 by rpki-client