$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: EmEjBxRSOSSJnUcRLPHcfaRK/iWK+h74wgb1A/d+W9Q= Subject key identifier: 53:B2:F3:F3:BB:31:4C:EF:98:91:84:22:7E:BA:EE:C5:B0:7E:1C:A6 Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0D4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0D42 Signing time: Sat 18 Oct 2025 18:42:01 +0000 Manifest this update: Sat 18 Oct 2025 18:42:01 +0000 Manifest next update: Sat 25 Oct 2025 18:42:01 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: rvaALCKIvP4h0UT4DDn7csamiqI9wSnfwHqwCAJ4jao=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: hbFGbb4fXsbz6F3BPhzZvLmW3bUeWq5CqpJ6o7pIq8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3406 (0xd4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Oct 18 18:42:01 2025 GMT Not After : Oct 25 18:42:01 2025 GMT Subject: CN=68f3df79-efc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ba:49:44:c8:d0:9e:19:a9:5b:87:cd:6e:3e: 69:5d:c0:e6:66:20:bb:d2:25:14:dc:bf:3e:0c:57: ae:68:15:06:d8:80:2c:f7:59:a2:0d:53:54:1b:e8: 8a:6b:07:a1:ef:f5:57:9e:5f:1c:fc:4f:76:e6:60: 5c:1a:d5:f3:a9:6b:b7:ca:a1:41:ee:e6:98:ff:b3: e8:6d:21:15:76:41:1c:0a:87:22:56:9d:2d:2a:db: 82:b1:46:52:3f:28:58:6a:19:5e:4e:c9:be:3a:2f: 90:ce:ee:18:89:12:68:d0:98:bb:1d:a5:87:2f:7b: bf:82:87:20:0c:59:c1:43:3f:31:15:d6:3b:a7:9d: de:b6:06:ae:0d:ee:13:0f:1a:8b:86:7d:e4:49:f8: 61:e3:c2:6d:73:f6:5d:19:69:22:4c:ef:0f:dd:68: 47:9a:6e:79:c7:3b:8a:78:a3:c7:af:e1:b6:7d:9e: e5:30:e7:79:e8:b2:72:78:99:b5:d9:a0:33:6c:c3: c2:30:a1:64:4a:5d:6b:24:e0:50:64:40:3a:3a:d1: 11:27:e9:0d:69:02:8a:76:98:8e:fd:d7:4f:f0:c3: db:3e:89:4d:a4:f7:38:03:57:3c:ba:6c:55:31:10: 5d:3e:75:a4:7b:38:8e:fa:fe:c3:51:05:98:2c:a1: f3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B2:F3:F3:BB:31:4C:EF:98:91:84:22:7E:BA:EE:C5:B0:7E:1C:A6 X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:da:5a:57:a6:86:25:05:32:50:48:8a:eb:94:d4:db:77:34: ca:75:b5:9e:22:a9:85:52:28:64:45:74:ea:3e:c8:eb:d6:14: 25:d4:7c:11:b5:4d:7d:2b:07:eb:25:b9:a4:6e:08:a9:5a:b0: 9d:dc:ab:1b:a6:f8:74:fa:6c:d7:37:f7:6e:7c:08:ee:fb:5d: e0:17:59:8e:83:36:39:45:e2:30:45:6c:f1:b4:a8:bc:40:86: 05:aa:56:43:1c:b6:28:88:89:c2:9b:d8:ed:10:e7:74:58:51: a5:27:59:b8:cc:49:40:34:38:ca:7e:44:c8:1a:3b:83:f3:81: de:50:f0:79:44:ff:29:05:7f:42:4b:1e:bd:70:e0:d2:a2:f7: d1:da:9b:d9:45:6e:73:37:7a:ad:e8:fa:32:00:ad:64:85:69: 47:4a:b9:26:af:7b:92:a4:b2:14:0a:22:3e:f4:39:88:f2:79: af:d2:48:08:6d:83:c9:7c:de:51:16:14:91:f8:a8:ed:cc:4e: 38:f1:c5:64:72:41:b1:a1:9d:70:b5:66:8b:ce:93:04:3a:c5: 2f:b1:d5:19:ff:4f:c1:53:dd:bd:e8:4c:4f:06:8a:cd:b5:c9: b2:cd:a1:5c:5e:59:2c:e7:ab:44:ae:f6:a7:b9:26:d0:2c:90: 7f:1d:81:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUxMDE4MTg0MjAxWhcNMjUxMDI1MTg0MjAxWjAYMRYwFAYD VQQDEw02OGYzZGY3OS1lZmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7pJRMjQnhmpW4fNbj5pXcDmZiC70iUU3L8+DFeuaBUG2IAs91miDVNUG+iK aweh7/VXnl8c/E925mBcGtXzqWu3yqFB7uaY/7PobSEVdkEcCociVp0tKtuCsUZS PyhYahleTsm+Oi+Qzu4YiRJo0Ji7HaWHL3u/gocgDFnBQz8xFdY7p53etgauDe4T DxqLhn3kSfhh48Jtc/ZdGWkiTO8P3WhHmm55xzuKeKPHr+G2fZ7lMOd56LJyeJm1 2aAzbMPCMKFkSl1rJOBQZEA6OtERJ+kNaQKKdpiO/ddP8MPbPolNpPc4A1c8umxV MRBdPnWkeziO+v7DUQWYLKHzqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOy8/O7 MUzvmJGEIn667sWwfhymMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl2lpXpoYlBTJQSIrrlNTbdzTKdbWeIqmFUihkRXTqPsjr1hQl1HwR tU19KwfrJbmkbgipWrCd3Ksbpvh0+mzXN/dufAju+13gF1mOgzY5ReIwRWzxtKi8 QIYFqlZDHLYoiInCm9jtEOd0WFGlJ1m4zElANDjKfkTIGjuD84HeUPB5RP8pBX9C Sx69cODSovfR2pvZRW5zN3qt6PoyAK1khWlHSrkmr3uSpLIUCiI+9DmI8nmv0kgI bYPJfN5RFhSR+KjtzE448cVkckGxoZ1wtWaLzpMEOsUvsdUZ/0/BU9296ExPBorN tcmyzaFcXlks56tErvanuSbQLJB/HYFK -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:45 2025 by rpki-client