$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: 8hFsiBsxrWwvYI1tZ0A86mYEqjzcNmWFEeNvokRgnWg= Subject key identifier: DA:B6:29:4C:87:CD:2A:C9:67:97:42:E1:7A:66:E3:E9:FB:99:90:CE Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 1719 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 16F6 Signing time: Mon 20 Oct 2025 17:00:53 +0000 Manifest this update: Mon 20 Oct 2025 17:00:53 +0000 Manifest next update: Mon 27 Oct 2025 17:00:53 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: YwBkP4gxGBN7ReN9npNeSBzU5LphFvVZ+PcgjS38P/U=) 2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: i/Bdlwtsw60KlWyTtnZoHMYWyMWkX8rBZXwz4SUYdDY=) 3: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: x5fSlx3nNKz6ifMgnnFr+DL48Yd9QT9h8VtP+zrrY4c=) 4: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: 9PGVW+39KLlj0WI9eJ5OovuG1UvnRDi3eMzS7oZFC4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5913 (0x1719) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Oct 20 17:00:53 2025 GMT Not After : Oct 27 17:00:53 2025 GMT Subject: CN=68f66ac5-1282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e7:0d:d5:6a:c2:e8:1d:e6:2b:47:0d:53:72: 18:bf:54:1c:db:ef:3a:bf:0c:d7:cd:e4:ac:d8:05: 37:94:2a:62:1d:35:d9:14:b7:05:a4:e0:84:6e:3c: 78:c6:f4:79:b8:03:9c:de:a1:f3:d5:42:9d:be:4a: 58:60:b4:66:4a:ab:e6:9f:30:f6:56:64:05:3e:c7: 09:35:80:fc:9b:6a:2e:fb:84:c4:9b:79:2b:06:d0: 12:73:56:48:a1:80:45:45:58:76:30:e5:b2:35:6b: 75:0a:1a:78:cd:df:53:3d:f4:fc:fd:dd:87:9b:5b: c7:64:62:66:02:0b:d5:3f:67:1a:f0:85:aa:1e:63: 5d:40:a1:98:66:71:09:5a:d4:76:0e:f5:b4:35:57: 78:4a:49:f9:78:53:e5:53:a4:60:57:c7:66:97:d7: a2:ee:07:f8:7c:4d:51:64:12:1d:9d:07:7c:49:4d: 1e:97:4f:17:4b:57:3a:59:29:bc:87:ac:a6:b8:ec: 57:96:61:ec:85:c1:41:2d:35:8d:1f:31:34:43:77: 7b:3d:aa:77:6a:99:d4:70:06:a4:d6:4b:62:e1:ec: a7:02:f2:59:96:1d:1f:4e:09:f6:fd:3d:d3:aa:78: 31:ba:d8:ed:84:68:88:e7:ce:20:b8:1c:b8:24:23: 30:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B6:29:4C:87:CD:2A:C9:67:97:42:E1:7A:66:E3:E9:FB:99:90:CE X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:54:d6:94:a5:33:31:87:8f:0a:54:49:0e:0e:aa:b1:fb:80: 9a:3a:63:c8:d2:dd:65:e4:61:7c:55:fb:94:86:d7:8d:63:4b: f9:3c:78:08:6c:68:2e:72:ab:c3:a1:7c:ba:49:6e:fc:b8:b9: 08:8e:a7:1f:a5:94:6e:42:ac:1f:0b:9c:db:fd:8e:19:d5:6d: 4c:69:21:df:15:f4:1d:eb:ef:09:81:89:e6:61:cb:f1:f4:26: aa:34:a4:ad:d5:9f:19:49:7b:ba:1e:96:38:64:00:58:fa:58: ac:e3:45:3e:b5:24:24:66:e9:79:73:a2:91:2a:bb:ab:aa:7e: 3f:3e:9c:a3:72:cb:e2:af:1e:37:8e:a3:a8:b4:6b:8d:11:7c: e5:96:d9:df:6f:b2:aa:40:59:48:30:f8:ac:34:08:4d:ba:3d: 97:77:cc:d5:ad:78:99:af:51:5d:75:10:d6:8f:70:0c:58:33: 98:29:7a:fb:04:86:39:fc:42:74:e0:c5:7d:01:1e:7e:50:aa: 6e:0b:39:1b:a0:f2:6e:0b:e0:41:1f:52:67:f4:52:d0:17:5d: d5:b3:7f:1e:8d:dd:b4:d1:a5:a6:01:32:70:40:ec:41:84:6f: c8:df:5e:76:27:69:20:e4:60:20:77:18:48:62:98:79:70:65: ec:ea:9b:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjUxMDIwMTcwMDUzWhcNMjUxMDI3MTcwMDUzWjAYMRYwFAYD VQQDEw02OGY2NmFjNS0xMjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoucN1WrC6B3mK0cNU3IYv1Qc2+86vwzXzeSs2AU3lCpiHTXZFLcFpOCEbjx4 xvR5uAOc3qHz1UKdvkpYYLRmSqvmnzD2VmQFPscJNYD8m2ou+4TEm3krBtASc1ZI oYBFRVh2MOWyNWt1Chp4zd9TPfT8/d2Hm1vHZGJmAgvVP2ca8IWqHmNdQKGYZnEJ WtR2DvW0NVd4Skn5eFPlU6RgV8dml9ei7gf4fE1RZBIdnQd8SU0el08XS1c6WSm8 h6ymuOxXlmHshcFBLTWNHzE0Q3d7Pap3apnUcAak1kti4eynAvJZlh0fTgn2/T3T qngxutjthGiI584guBy4JCMwBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNq2KUyH zSrJZ5dC4Xpm4+n7mZDOMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFVNaUpTMxh48KVEkODqqx+4CaOmPI0t1l5GF8VfuUhteNY0v5PHgI bGgucqvDoXy6SW78uLkIjqcfpZRuQqwfC5zb/Y4Z1W1MaSHfFfQd6+8JgYnmYcvx 9CaqNKSt1Z8ZSXu6HpY4ZABY+lis40U+tSQkZul5c6KRKrurqn4/Ppyjcsvirx43 jqOotGuNEXzlltnfb7KqQFlIMPisNAhNuj2Xd8zVrXiZr1FddRDWj3AMWDOYKXr7 BIY5/EJ04MV9AR5+UKpuCzkboPJuC+BBH1Jn9FLQF13Vs38ejd200aWmATJwQOxB hG/I3152J2kg5GAgdxhIYph5cGXs6psV -----END CERTIFICATE-----Generated at Mon Oct 20 19:35:14 2025 by rpki-client