$ rpki-client -vvf rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft File: jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft (raw, json) Hash identifier: 1ezX32k4G4bOXI26GwIYxJj+NWm9/L96hTsya1f2u+o= Subject key identifier: E9:5C:8B:C2:55:FB:60:2D:49:52:1A:99:56:C5:49:8D:4B:26:DB:DE Authority key identifier: 8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 Certificate issuer: /CN=A91190A9/serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Certificate serial: 0B58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft Manifest number: 0B52 Signing time: Mon 20 Oct 2025 19:51:26 +0000 Manifest this update: Mon 20 Oct 2025 19:51:25 +0000 Manifest next update: Mon 27 Oct 2025 19:51:25 +0000 Files and hashes: 1: jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl (hash: k8fOHWJNoKMvkkgoCEsWuRgEIVaipETY6PuotEJfaUI=) 2: 344C54A441B811EAA856BE49C4F9AE02.roa (hash: WrNvje3c+z7lsqTQqXn/sqPriUfd4/uYt7v0A72LhYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2904 (0xb58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190A9, serialNumber=8D473BCC57C3F2AE4E8748EDEFD3D2817C206566 Validity Not Before: Oct 20 19:51:25 2025 GMT Not After : Oct 27 19:51:25 2025 GMT Subject: CN=68f692bd-6927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8e:9c:1e:69:38:28:7e:28:0a:10:72:d6:ba: 63:b7:70:c7:e7:eb:17:49:53:e1:b2:1e:84:1e:ee: f1:92:62:34:d6:a3:fa:6f:8e:46:eb:02:f9:90:a3: 60:dc:7b:35:3c:17:d2:22:91:0c:34:be:e9:79:0c: 8b:43:8b:df:65:0c:26:f7:58:16:a8:c0:2d:2a:5a: ab:a1:3c:59:c9:61:53:ac:b7:e1:46:8b:aa:2c:65: a9:31:35:c0:30:52:e2:b1:3d:2f:a2:7f:eb:cd:e8: 88:10:09:7c:28:3c:d9:41:88:aa:27:52:78:f0:00: dd:48:97:bc:c7:4a:81:9b:9a:20:3f:67:ea:dd:d4: bc:7f:dd:91:92:d4:41:00:9f:73:4a:1f:6e:fd:2f: cf:87:bf:c9:ff:f1:b1:9d:08:2b:3d:f7:6b:02:fa: 6f:c1:8c:f0:93:f3:ba:8c:cf:1e:35:4d:51:29:f8: 00:dc:a4:45:7f:38:b0:b8:00:e8:ae:29:5f:6f:32: a2:16:cb:b8:c3:47:e4:4a:3c:ef:34:d9:09:84:23: 9d:b6:b1:11:36:48:fb:65:3e:d6:db:11:e6:fd:8a: 6d:b2:b6:2c:66:d0:b2:44:e8:39:c6:0e:7b:95:2d: f3:aa:3a:d9:0b:4d:a8:89:57:71:3c:67:46:f4:ce: a5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:5C:8B:C2:55:FB:60:2D:49:52:1A:99:56:C5:49:8D:4B:26:DB:DE X509v3 Authority Key Identifier: keyid:8D:47:3B:CC:57:C3:F2:AE:4E:87:48:ED:EF:D3:D2:81:7C:20:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUc7zFfD8q5Oh0jt79PSgXwgZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190A9/A974049A41B611EABF33B846C4F9AE02/jUc7zFfD8q5Oh0jt79PSgXwgZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:65:66:7e:5f:2d:cd:cc:71:32:e1:50:3b:f9:5a:f5:11:e4: 69:f5:30:7f:66:ba:e9:c6:b6:6d:d0:e2:39:41:a4:f6:0c:a7: 49:8d:ec:5c:f2:be:7d:4d:1c:94:ea:b8:ec:9d:00:2d:c8:a6: 84:42:49:e9:fb:c0:61:3b:e9:6f:b4:10:5d:ba:8a:46:e8:d0: b6:4e:70:79:19:17:9d:6c:a1:5c:1f:c4:5f:68:b7:f4:0c:04: 4d:2d:15:a8:d1:37:92:30:a3:06:49:68:ed:9b:a9:26:7b:e3: f4:f0:32:08:1f:36:5c:52:65:64:75:66:2e:b2:c2:16:75:a1: 4b:5d:9b:e0:63:a6:cf:12:3a:7b:f2:77:47:5b:46:40:ab:81: 78:52:43:60:39:3d:07:cf:ac:11:ce:e8:ac:e5:69:73:ae:49: b8:38:15:21:26:30:b4:c2:e0:72:af:f4:e7:5e:71:6b:b9:21: cd:34:f9:66:bb:d4:5e:c0:96:a1:7d:67:26:40:09:17:b7:19: 2b:03:52:c7:dd:62:15:8e:c8:93:63:8c:64:47:b5:c2:79:4d: 60:38:6f:ae:44:ee:e8:ac:af:44:f9:fe:29:33:00:fa:39:47: a3:1f:c5:43:da:0b:48:d6:30:f7:30:4a:36:6e:ab:b6:75:98: 64:cf:aa:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQTkxMTAvBgNVBAUTKDhENDczQkNDNTdDM0YyQUU0RTg3NDhFREVGRDNEMjgx N0MyMDY1NjYwHhcNMjUxMDIwMTk1MTI1WhcNMjUxMDI3MTk1MTI1WjAYMRYwFAYD VQQDEw02OGY2OTJiZC02OTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3I6cHmk4KH4oChBy1rpjt3DH5+sXSVPhsh6EHu7xkmI01qP6b45G6wL5kKNg 3Hs1PBfSIpEMNL7peQyLQ4vfZQwm91gWqMAtKlqroTxZyWFTrLfhRouqLGWpMTXA MFLisT0von/rzeiIEAl8KDzZQYiqJ1J48ADdSJe8x0qBm5ogP2fq3dS8f92RktRB AJ9zSh9u/S/Ph7/J//GxnQgrPfdrAvpvwYzwk/O6jM8eNU1RKfgA3KRFfziwuADo rilfbzKiFsu4w0fkSjzvNNkJhCOdtrERNkj7ZT7W2xHm/YptsrYsZtCyROg5xg57 lS3zqjrZC02oiVdxPGdG9M6l+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlci8JV +2AtSVIamVbFSY1LJtveMB8GA1UdIwQYMBaAFI1HO8xXw/KuTodI7e/T0oF8IGVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBBOS9BOTc0MDQ5QTQx QjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhxNU9oMGp0NzlQU2dYd2da V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVYzd6RmZEOHE1T2gwanQ3OVBTZ1h3Z1pXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBBOS9BOTc0MDQ5QTQxQjYxMUVBQkYzM0I4NDZDNEY5QUUwMi9qVWM3ekZmRDhx NU9oMGp0NzlQU2dYd2daV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiZWZ+Xy3NzHEy4VA7+Vr1EeRp9TB/ZrrpxrZt0OI5QaT2DKdJjexc 8r59TRyU6rjsnQAtyKaEQknp+8BhO+lvtBBduopG6NC2TnB5GRedbKFcH8RfaLf0 DARNLRWo0TeSMKMGSWjtm6kme+P08DIIHzZcUmVkdWYussIWdaFLXZvgY6bPEjp7 8ndHW0ZAq4F4UkNgOT0Hz6wRzuis5Wlzrkm4OBUhJjC0wuByr/TnXnFruSHNNPlm u9RewJahfWcmQAkXtxkrA1LH3WIVjsiTY4xkR7XCeU1gOG+uRO7orK9E+f4pMwD6 OUejH8VD2gtI1jD3MEo2bqu2dZhkz6rX -----END CERTIFICATE-----Generated at Tue Oct 21 05:17:38 2025 by rpki-client