$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft File: jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft (raw, json) Hash identifier: qmy3XGry6qcoxeu/vvwwq0s82KZYbBcLF6Rwuf+0UCA= Subject key identifier: 5D:8A:EA:B3:A0:A4:9F:8F:46:D2:6E:24:A7:44:32:C0:FC:FA:2D:37 Authority key identifier: 8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 Certificate issuer: /CN=A9149A6C/serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Certificate serial: 0728 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft Manifest number: 0723 Signing time: Sat 18 Oct 2025 23:11:13 +0000 Manifest this update: Sat 18 Oct 2025 23:11:13 +0000 Manifest next update: Sat 25 Oct 2025 23:11:13 +0000 Files and hashes: 1: jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl (hash: fQ+YkMai3qEI4MY1KM6sMNF74CvgNIVpoiQHKmZ5MRo=) 2: 22D8137A51A711EBAAAB6410C4F9AE02.roa (hash: W1YtTgfcUQgVCMN18bivEJ+sBWqdB/GL1VhO0Gs0eBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1832 (0x728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A6C, serialNumber=8D16FD0E25FB896E26FA734ABC984CE4B4698DD3 Validity Not Before: Oct 18 23:11:13 2025 GMT Not After : Oct 25 23:11:13 2025 GMT Subject: CN=68f41e91-fbc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6d:33:5c:5c:08:2c:3c:30:67:75:33:96:35: a8:ce:5d:5b:30:d3:81:c0:06:9f:cc:55:b6:e5:32: a6:32:b4:bc:37:f0:eb:41:19:5c:c9:98:6a:9d:6e: 46:3d:ab:3d:0d:de:af:61:2c:e0:a9:a7:3d:7f:70: bc:60:95:5d:85:c3:23:1f:72:d1:1b:94:91:34:b2: 0a:fa:89:72:a1:c1:e5:de:87:e2:c4:99:ad:32:6d: 2a:83:c1:84:c0:e4:85:21:96:6f:14:af:11:c5:22: 61:e8:c3:57:ab:77:c3:4a:b7:9c:89:6f:ae:db:5b: b5:23:7a:17:4a:22:c3:8a:4d:0b:11:7f:d3:43:8e: c0:b0:94:44:d8:d6:d9:94:7a:53:cd:f4:4f:11:ea: e7:58:0d:de:d8:f2:34:ba:5b:93:c6:c2:8d:50:8c: 23:f8:d4:3f:2b:a0:34:71:06:e2:71:f6:75:28:4e: 41:99:3b:f6:15:50:a2:32:83:9f:62:43:3f:89:c2: a6:8c:44:28:80:4e:1d:99:a1:e4:bd:97:28:0b:3c: 9c:48:9a:6f:85:d3:58:a7:3c:59:08:fb:29:fc:0d: 06:d4:3a:cc:84:e8:df:a9:9c:52:9d:85:14:d7:95: 5c:d3:1d:ee:75:2c:c6:d6:93:ce:34:50:87:8a:8e: f0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8A:EA:B3:A0:A4:9F:8F:46:D2:6E:24:A7:44:32:C0:FC:FA:2D:37 X509v3 Authority Key Identifier: keyid:8D:16:FD:0E:25:FB:89:6E:26:FA:73:4A:BC:98:4C:E4:B4:69:8D:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jRb9DiX7iW4m-nNKvJhM5LRpjdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A6C/3B8493B451A511EBB4AF040EC4F9AE02/jRb9DiX7iW4m-nNKvJhM5LRpjdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ab:da:7f:55:cc:a9:88:cf:0c:73:cb:ee:87:ed:e5:99:89: f5:88:4f:9c:0b:7c:2f:c9:17:1a:ac:2a:1e:b3:63:ea:3e:fc: b8:3d:68:9a:4d:22:10:2a:6d:7b:db:94:61:f4:60:6c:30:3a: b3:0e:a2:88:0a:93:36:10:8e:06:6f:0e:18:49:15:bb:a4:27: 74:3f:fa:49:1f:d3:f8:63:e8:5a:6b:98:2d:8a:66:15:43:0a: b1:db:dc:ac:38:79:5c:91:38:69:dd:b3:89:5f:bc:5a:4a:0a: 00:c1:a4:fb:db:27:8c:15:5b:14:c1:20:d2:85:d1:0c:90:8c: 02:54:33:cc:2f:53:10:38:c9:b6:8a:ad:50:c6:95:0d:81:27: 12:4b:76:a2:53:24:c3:a1:c4:42:8f:2d:79:94:40:4e:b9:9b: 11:60:f4:f2:1a:49:8d:f3:28:e8:94:aa:6a:83:59:a3:89:ea: af:4e:d5:82:4f:04:a9:92:05:ae:e5:93:52:f6:e6:74:9e:bd: f5:fa:1f:65:ac:41:cc:cf:11:95:2e:28:b0:b1:24:4a:8f:bb: b2:e9:aa:33:9e:e1:57:51:ac:b4:9a:a4:40:db:e2:3d:74:12: d4:23:93:2d:ed:b0:1a:62:34:26:9a:9c:db:a0:c9:c7:3e:13: 10:39:78:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBNkMxMTAvBgNVBAUTKDhEMTZGRDBFMjVGQjg5NkUyNkZBNzM0QUJDOTg0Q0U0 QjQ2OThERDMwHhcNMjUxMDE4MjMxMTEzWhcNMjUxMDI1MjMxMTEzWjAYMRYwFAYD VQQDEw02OGY0MWU5MS1mYmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy20zXFwILDwwZ3UzljWozl1bMNOBwAafzFW25TKmMrS8N/DrQRlcyZhqnW5G Pas9Dd6vYSzgqac9f3C8YJVdhcMjH3LRG5SRNLIK+olyocHl3ofixJmtMm0qg8GE wOSFIZZvFK8RxSJh6MNXq3fDSreciW+u21u1I3oXSiLDik0LEX/TQ47AsJRE2NbZ lHpTzfRPEernWA3e2PI0uluTxsKNUIwj+NQ/K6A0cQbicfZ1KE5BmTv2FVCiMoOf YkM/icKmjEQogE4dmaHkvZcoCzycSJpvhdNYpzxZCPsp/A0G1DrMhOjfqZxSnYUU 15Vc0x3udSzG1pPONFCHio7wSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2K6rOg pJ+PRtJuJKdEMsD8+i03MB8GA1UdIwQYMBaAFI0W/Q4l+4luJvpzSryYTOS0aY3T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUE2Qy8zQjg0OTNCNDUx QTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lXNG0tbk5LdkpoTTVMUnBq ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pSYjlEaVg3aVc0bS1uTkt2SmhNNUxScGpkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUE2Qy8zQjg0OTNCNDUxQTUxMUVCQjRBRjA0MEVDNEY5QUUwMi9qUmI5RGlYN2lX NG0tbk5LdkpoTTVMUnBqZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2q9p/VcypiM8Mc8vuh+3lmYn1iE+cC3wvyRcarCoes2PqPvy4PWia TSIQKm1725Rh9GBsMDqzDqKICpM2EI4Gbw4YSRW7pCd0P/pJH9P4Y+haa5gtimYV Qwqx29ysOHlckThp3bOJX7xaSgoAwaT72yeMFVsUwSDShdEMkIwCVDPML1MQOMm2 iq1QxpUNgScSS3aiUyTDocRCjy15lEBOuZsRYPTyGkmN8yjolKpqg1mjieqvTtWC TwSpkgWu5ZNS9uZ0nr31+h9lrEHMzxGVLiiwsSRKj7uy6aoznuFXUay0mqRA2+I9 dBLUI5Mt7bAaYjQmmpzboMnHPhMQOXhd -----END CERTIFICATE-----Generated at Mon Oct 20 04:24:43 2025 by rpki-client