$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft File: jfabjPAtRHKg4tL07m5JMm09sMU.mft (raw, json) Hash identifier: BeBctEdoJKJcaKQh2STenX34Ad4rj4isst8MNSut07o= Subject key identifier: 70:2C:DC:5F:65:9A:6B:20:FA:F5:CD:B7:7B:DD:C7:B8:C2:3A:DE:B4 Authority key identifier: 8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 Certificate issuer: /CN=A9147BA3/serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Certificate serial: 34E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft Manifest number: 34D7 Signing time: Mon 20 Oct 2025 15:14:43 +0000 Manifest this update: Mon 20 Oct 2025 15:14:42 +0000 Manifest next update: Mon 27 Oct 2025 15:14:42 +0000 Files and hashes: 1: jfabjPAtRHKg4tL07m5JMm09sMU.crl (hash: o+ixuOnaYl4UABGT7/h05kAygJCXvgO8qe8VqF6AbA8=) 2: 2B2C31BE3B8B11EB8D76362DC4F9AE02.roa (hash: END/X8NWEnYQqU51TlQvCrkCaUczqULOOoxx1HVtbaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13536 (0x34e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BA3, serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Validity Not Before: Oct 20 15:14:42 2025 GMT Not After : Oct 27 15:14:42 2025 GMT Subject: CN=68f651e2-c75f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:37:a1:0a:69:7b:c5:1f:97:aa:12:8c:7a:85: e0:d0:03:2f:5c:34:c6:dd:a9:b9:0c:d7:a2:d5:9c: f2:e6:0b:b5:d6:e0:9d:7f:5a:11:cf:45:4e:02:46: bf:06:01:61:3e:df:fd:81:bb:d8:59:19:44:b0:f9: 49:d8:35:3b:68:2d:30:05:0f:a8:9f:56:05:66:01: 83:b6:17:ac:c0:69:4f:d4:87:e9:7d:78:b1:11:d7: bd:7b:b4:85:86:29:da:6f:6a:29:47:d4:9e:56:09: 3e:60:c4:af:e9:1a:93:2c:8d:e7:b7:72:5f:1c:95: 86:a0:c0:55:15:7a:87:b4:7c:66:16:31:4c:7d:51: 09:7d:ec:de:16:6d:84:5f:fb:9b:44:6f:34:c7:28: 8e:e6:a9:3d:b3:c6:14:64:2c:bc:42:72:06:e0:f6: ee:38:5a:a8:3c:b0:e5:25:25:6e:31:9f:f1:7a:ee: df:78:03:68:c2:33:55:7d:99:87:69:3a:0a:85:b8: 6f:d1:88:98:21:3c:b1:f3:9f:ca:70:e7:6f:ee:aa: 3e:ff:1f:fb:25:8f:7d:3b:62:41:90:20:5e:3f:cd: 96:4b:10:85:64:1a:a5:f4:9b:06:80:e3:68:cf:89: 60:ba:d0:a4:ff:4c:f0:e9:a0:f8:f7:15:fb:98:bc: 52:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2C:DC:5F:65:9A:6B:20:FA:F5:CD:B7:7B:DD:C7:B8:C2:3A:DE:B4 X509v3 Authority Key Identifier: keyid:8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:d0:48:b5:82:1f:9b:6c:5c:2d:00:3f:66:33:c9:a6:d4:95: c9:e2:51:39:32:f3:d4:e5:a2:0a:f2:c3:37:67:70:d4:1d:6b: 1b:eb:1a:e4:a4:2c:b3:8f:76:10:95:da:1c:6f:13:be:36:45: 73:ee:70:22:e2:b6:07:92:5c:71:1f:14:60:60:4e:e2:f3:db: 67:fc:c9:a1:ef:4f:33:81:99:c7:30:54:cf:33:5c:b6:4e:a1: ff:32:f3:d1:25:a2:21:91:ec:b7:24:3e:7c:e1:83:43:8b:0c: ff:e0:f4:37:01:f8:87:fe:31:c5:9d:ba:93:7b:7d:e5:34:41: b4:d2:52:85:5b:90:ca:c8:b0:d7:51:83:75:e1:22:21:76:35: a3:75:b7:b1:0e:aa:21:12:05:2a:50:ca:3f:dd:2b:22:b3:31: a8:6d:25:bd:e9:97:ed:d5:67:97:71:62:cf:11:42:9a:fd:78: 8f:9d:c6:31:89:4d:cb:9b:5f:1b:d3:36:1e:8c:ee:15:c7:37: 6f:4a:cd:eb:93:d6:94:1b:37:09:7c:83:34:f8:66:54:6c:e1: b1:63:d7:a4:1e:63:1f:00:04:cb:25:4a:56:a3:8d:5a:20:2c: 13:d0:d7:96:dd:59:3d:85:83:00:98:f6:3c:ac:c5:6a:dd:61: c8:7d:b2:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCQTMxMTAvBgNVBAUTKDhERjY5QjhDRjAyRDQ0NzJBMEUyRDJGNEVFNkU0OTMy NkQzREIwQzUwHhcNMjUxMDIwMTUxNDQyWhcNMjUxMDI3MTUxNDQyWjAYMRYwFAYD VQQDEw02OGY2NTFlMi1jNzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7jehCml7xR+XqhKMeoXg0AMvXDTG3am5DNei1Zzy5gu11uCdf1oRz0VOAka/ BgFhPt/9gbvYWRlEsPlJ2DU7aC0wBQ+on1YFZgGDtheswGlP1IfpfXixEde9e7SF hinab2opR9SeVgk+YMSv6RqTLI3nt3JfHJWGoMBVFXqHtHxmFjFMfVEJfezeFm2E X/ubRG80xyiO5qk9s8YUZCy8QnIG4PbuOFqoPLDlJSVuMZ/xeu7feANowjNVfZmH aToKhbhv0YiYITyx85/KcOdv7qo+/x/7JY99O2JBkCBeP82WSxCFZBql9JsGgONo z4lgutCk/0zw6aD49xX7mLxSowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAs3F9l mmsg+vXNt3vdx7jCOt60MB8GA1UdIwQYMBaAFI32m4zwLURyoOLS9O5uSTJtPbDF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0JBMy83N0VBN0EyNDFE QTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJIS2c0dEwwN201Sk1tMDlz TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pmYWJqUEF0UkhLZzR0TDA3bTVKTW0wOXNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0JBMy83N0VBN0EyNDFEQTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJI S2c0dEwwN201Sk1tMDlzTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA00Ei1gh+bbFwtAD9mM8mm1JXJ4lE5MvPU5aIK8sM3Z3DUHWsb6xrk pCyzj3YQldocbxO+NkVz7nAi4rYHklxxHxRgYE7i89tn/Mmh708zgZnHMFTPM1y2 TqH/MvPRJaIhkey3JD584YNDiwz/4PQ3AfiH/jHFnbqTe33lNEG00lKFW5DKyLDX UYN14SIhdjWjdbexDqohEgUqUMo/3SsiszGobSW96Zft1WeXcWLPEUKa/XiPncYx iU3Lm18b0zYejO4VxzdvSs3rk9aUGzcJfIM0+GZUbOGxY9ekHmMfAATLJUpWo41a ICwT0NeW3Vk9hYMAmPY8rMVq3WHIfbKZ -----END CERTIFICATE-----Generated at Mon Oct 20 19:05:50 2025 by rpki-client