$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft File: jhahBq30E6__xY8QEZJ09wDPpZM.mft (raw, json) Hash identifier: FqIJAoK4UlSC1z6C32GF1453GlXnu42dCGxl/2+ysqE= Subject key identifier: 9F:61:43:DD:D5:8E:EA:35:84:AF:97:AF:83:64:3A:E7:5F:29:87:9A Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 Certificate issuer: /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Certificate serial: 02AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft Manifest number: 02AA Signing time: Sun 19 Oct 2025 03:43:43 +0000 Manifest this update: Sun 19 Oct 2025 03:43:43 +0000 Manifest next update: Sun 26 Oct 2025 03:43:43 +0000 Files and hashes: 1: jhahBq30E6__xY8QEZJ09wDPpZM.crl (hash: NGmpTxuw9Zc66SwWL6Le3M5/nGoCWitQC13ZBIUW5Co=) 2: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (hash: g0WHVr1kPPMvFlHteDjphuuHkMNmIovAW1zjTKN/Axk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF8E, serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Validity Not Before: Oct 19 03:43:43 2025 GMT Not After : Oct 26 03:43:43 2025 GMT Subject: CN=68f45e6f-2fce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:79:4d:3b:cf:87:98:d4:70:55:12:94:38:f4: 6c:87:d1:74:10:45:66:ed:e8:c6:04:e1:ea:48:dc: 11:e6:ec:ec:5e:f4:78:a3:1f:3a:df:55:40:f3:46: 3e:70:2c:36:bf:5d:65:9a:03:52:dd:f6:98:a8:c8: fc:9e:30:d9:a7:d7:b8:73:16:a5:ad:11:70:02:a1: 3e:39:37:f6:9e:af:ee:23:a2:e1:a9:1f:24:4d:5c: 03:0a:f3:6d:af:b7:0e:32:55:ce:ab:1d:9a:5c:6b: 53:52:b2:bf:ab:1e:ee:37:56:1d:c3:dd:91:53:bc: 5e:09:37:e7:c3:c3:f8:e2:50:ff:e7:e4:ca:8a:d4: 18:bd:b4:d3:04:be:45:58:0b:4c:88:3e:5e:b4:99: 92:66:36:e6:3a:05:94:96:7f:57:00:b3:3a:69:4e: fd:e1:b5:76:7e:91:a5:2b:e1:bd:5a:d3:47:d6:e7: 32:e2:cd:e0:7d:6a:ed:72:12:f3:6a:15:4b:ec:89: c3:8d:0d:a4:d8:1f:cc:a0:24:74:78:55:c5:20:c0: bc:64:96:61:8d:5f:f1:64:86:82:c7:3b:d1:e2:1d: 4e:2e:70:74:f5:77:81:4f:5f:2a:33:0f:c1:60:47: 77:b5:3d:32:94:ac:0f:75:26:ef:e3:f2:f7:f2:fd: cb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:61:43:DD:D5:8E:EA:35:84:AF:97:AF:83:64:3A:E7:5F:29:87:9A X509v3 Authority Key Identifier: keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:6b:9f:b5:11:6a:b1:a9:ff:78:58:82:7b:40:a2:2a:0f:2e: 76:95:a5:56:c7:4c:01:76:28:34:4c:a1:a1:8e:f9:a9:71:4f: e5:f6:bd:88:c0:b1:ab:d9:4b:bf:63:80:57:6e:84:46:f1:7f: b5:66:9f:9b:88:96:41:4e:3e:84:62:94:50:b2:68:d5:2e:75: 4e:ab:98:9d:eb:21:a1:e2:ed:84:c6:9b:aa:5f:09:6f:db:bb: 4b:91:d2:44:f5:fa:0b:9b:7f:5c:2f:b1:bb:dd:4e:cb:5f:ca: ed:dd:38:ce:06:06:e6:8f:39:d4:e2:62:ae:69:9e:f0:2d:4f: 24:81:8d:36:c4:ca:df:2c:7c:a6:9d:73:4c:69:f3:21:59:81: d9:6e:13:11:73:27:21:66:eb:c6:da:79:9c:14:85:ce:e4:02: f9:bd:87:45:30:b2:34:ab:79:c7:67:30:db:57:40:16:91:0e: 54:32:12:70:0a:ef:6c:a7:7a:ca:f3:70:ba:a4:e9:68:7b:85: 0b:0e:09:09:f7:4c:56:e4:b3:76:a0:e7:f9:77:10:7d:c7:7a: 6a:cb:31:d9:e6:a5:fc:44:9e:71:56:ca:5d:64:8a:b9:cf:26: 91:78:57:ad:19:a4:11:ee:f7:14:f8:9a:c3:74:cb:3d:a8:e4: f7:c6:71:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGOEUxMTAvBgNVBAUTKDhFMTZBMTA2QURGNDEzQUZGRkM1OEYxMDExOTI3NEY3 MDBDRkE1OTMwHhcNMjUxMDE5MDM0MzQzWhcNMjUxMDI2MDM0MzQzWjAYMRYwFAYD VQQDEw02OGY0NWU2Zi0yZmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7nlNO8+HmNRwVRKUOPRsh9F0EEVm7ejGBOHqSNwR5uzsXvR4ox8631VA80Y+ cCw2v11lmgNS3faYqMj8njDZp9e4cxalrRFwAqE+OTf2nq/uI6LhqR8kTVwDCvNt r7cOMlXOqx2aXGtTUrK/qx7uN1Ydw92RU7xeCTfnw8P44lD/5+TKitQYvbTTBL5F WAtMiD5etJmSZjbmOgWUln9XALM6aU794bV2fpGlK+G9WtNH1ucy4s3gfWrtchLz ahVL7InDjQ2k2B/MoCR0eFXFIMC8ZJZhjV/xZIaCxzvR4h1OLnB09XeBT18qMw/B YEd3tT0ylKwPdSbv4/L38v3LywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9hQ93V juo1hK+Xr4NkOudfKYeaMB8GA1UdIwQYMBaAFI4WoQat9BOv/8WPEBGSdPcAz6WT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUY4RS8yQUIyNDkxODE3 MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2X194WThRRVpKMDl3RFBw Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poYWhCcTMwRTZfX3hZOFFFWkowOXdEUHBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUY4RS8yQUIyNDkxODE3MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2 X194WThRRVpKMDl3RFBwWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQa5+1EWqxqf94WIJ7QKIqDy52laVWx0wBdig0TKGhjvmpcU/l9r2I wLGr2Uu/Y4BXboRG8X+1Zp+biJZBTj6EYpRQsmjVLnVOq5id6yGh4u2ExpuqXwlv 27tLkdJE9foLm39cL7G73U7LX8rt3TjOBgbmjznU4mKuaZ7wLU8kgY02xMrfLHym nXNMafMhWYHZbhMRcychZuvG2nmcFIXO5AL5vYdFMLI0q3nHZzDbV0AWkQ5UMhJw Cu9sp3rK83C6pOloe4ULDgkJ90xW5LN2oOf5dxB9x3pqyzHZ5qX8RJ5xVspdZIq5 zyaReFetGaQR7vcU+JrDdMs9qOT3xnFx -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:25 2025 by rpki-client