$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: UV+O1lHgJ95Ntvarcws9zwozZkbpvdV3KylWh7SH2UA= Subject key identifier: BA:08:8A:12:01:27:F6:EF:0D:9D:71:5C:CE:71:09:C7:1A:DD:CF:EA Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0CE8 Signing time: Sat 18 Oct 2025 18:50:51 +0000 Manifest this update: Sat 18 Oct 2025 18:50:50 +0000 Manifest next update: Sat 25 Oct 2025 18:50:50 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: UkL/U+rHNchh93bp1Tl57TpH4OSSPEiUDEd1gbmqGt4=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: bJm8x/jB8mtzKPQKI3Nnf1xFyPp1oMwYrBpRRhfwUbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3328 (0xd00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Oct 18 18:50:50 2025 GMT Not After : Oct 25 18:50:50 2025 GMT Subject: CN=68f3e18a-4c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:06:d8:d5:3f:84:f5:e6:07:44:ed:5a:82:8c: bf:e1:2d:56:35:7c:87:8b:64:76:50:ac:13:d2:fd: 1f:eb:6a:0a:da:be:9b:55:82:16:df:80:18:9e:ad: 27:df:5c:52:15:24:15:e9:65:ca:30:90:d6:25:3b: 58:c7:e0:d2:20:5d:a2:cc:81:18:fe:a2:7c:40:a6: 45:ad:7d:d3:dd:58:af:12:33:16:87:61:fc:bf:9d: 6c:42:7f:a8:6e:6c:18:a0:69:23:f8:2f:3c:3d:59: 02:7b:8d:7e:e6:65:85:ba:2b:de:58:17:88:56:0d: b5:4f:9a:cf:cd:ff:95:f8:eb:dd:41:dc:1d:06:eb: 17:e3:13:ba:45:bb:ed:bf:c8:b3:29:28:af:89:1c: e9:24:94:46:25:47:c1:66:9a:ae:12:ff:c9:2b:78: a6:16:3c:bc:e8:8a:2c:6e:74:d3:76:41:c8:27:87: 32:da:32:41:f6:57:c4:1d:b1:f4:12:97:e6:0a:80: 41:aa:34:6e:5d:cf:ab:c2:fc:c4:5f:45:e4:fe:a2: 67:2c:a9:eb:15:1b:8f:e1:7d:2f:7e:0f:64:fa:53: 2f:56:7f:21:b9:54:48:d2:7a:8b:91:db:0f:bc:29: 8d:59:b8:a2:2c:4c:e7:ac:57:8e:d4:6c:66:be:09: d1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:08:8A:12:01:27:F6:EF:0D:9D:71:5C:CE:71:09:C7:1A:DD:CF:EA X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:7b:b1:eb:31:61:eb:3c:5a:e6:83:f6:fb:a4:90:d8:c3:be: 8f:16:6e:46:23:c4:6b:ad:f9:1c:14:95:ea:69:1f:d5:85:62: a3:61:da:ba:28:01:b4:8d:69:8f:b6:8f:70:6f:f9:ab:77:ef: 25:90:d2:72:e8:77:6e:af:5a:22:70:b7:49:06:30:29:70:e9: 70:32:a8:e4:c6:bd:a7:30:24:35:07:74:7f:22:58:b5:5f:5d: 32:5a:9c:ef:2c:77:a1:ee:a2:2e:88:91:d3:b6:b8:27:dd:30: d1:33:5d:63:37:ae:8b:49:80:b1:26:89:73:5e:0e:e8:de:00: a7:0a:c0:66:5c:08:9b:12:85:d3:98:aa:8e:de:d0:47:67:a1: 40:d7:0e:09:86:44:62:ef:6d:ce:2c:e1:24:9d:38:2c:82:26: 9c:23:72:86:99:b8:3e:28:b2:65:26:18:9a:dc:54:51:c8:81: 1f:49:c7:08:eb:e8:3f:f1:e7:7d:56:d1:f5:f9:72:88:7e:1d: 76:bd:c1:39:43:a5:15:e6:25:0c:b3:37:50:a2:d2:8d:cb:4e: db:5b:5f:0b:6b:a9:20:9e:9e:2e:35:ef:56:14:0e:f9:1f:a7: 4d:e7:4e:fa:01:52:22:3f:fc:66:06:83:a6:be:09:f2:c0:8b: 23:13:cc:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUxMDE4MTg1MDUwWhcNMjUxMDI1MTg1MDUwWjAYMRYwFAYD VQQDEw02OGYzZTE4YS00YzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAbY1T+E9eYHRO1agoy/4S1WNXyHi2R2UKwT0v0f62oK2r6bVYIW34AYnq0n 31xSFSQV6WXKMJDWJTtYx+DSIF2izIEY/qJ8QKZFrX3T3VivEjMWh2H8v51sQn+o bmwYoGkj+C88PVkCe41+5mWFuiveWBeIVg21T5rPzf+V+OvdQdwdBusX4xO6Rbvt v8izKSiviRzpJJRGJUfBZpquEv/JK3imFjy86IosbnTTdkHIJ4cy2jJB9lfEHbH0 EpfmCoBBqjRuXc+rwvzEX0Xk/qJnLKnrFRuP4X0vfg9k+lMvVn8huVRI0nqLkdsP vCmNWbiiLEznrFeO1GxmvgnR3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoIihIB J/bvDZ1xXM5xCcca3c/qMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoe7HrMWHrPFrmg/b7pJDYw76PFm5GI8RrrfkcFJXqaR/VhWKjYdq6 KAG0jWmPto9wb/mrd+8lkNJy6Hdur1oicLdJBjApcOlwMqjkxr2nMCQ1B3R/Ili1 X10yWpzvLHeh7qIuiJHTtrgn3TDRM11jN66LSYCxJolzXg7o3gCnCsBmXAibEoXT mKqO3tBHZ6FA1w4JhkRi723OLOEknTgsgiacI3KGmbg+KLJlJhia3FRRyIEfSccI 6+g/8ed9VtH1+XKIfh12vcE5Q6UV5iUMszdQotKNy07bW18La6kgnp4uNe9WFA75 H6dN5076AVIiP/xmBoOmvgnywIsjE8w1 -----END CERTIFICATE-----Generated at Mon Oct 20 09:30:17 2025 by rpki-client