$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: a9AjZHhed1TaYwJs607GEAkTk4a3Tjs+eHgMWOt5DE0= Subject key identifier: F2:EE:DA:AD:FA:56:C4:AB:1D:5A:52:C2:0D:62:EC:9F:A4:AA:4D:67 Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 06AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 06AC Signing time: Sat 18 Oct 2025 23:39:09 +0000 Manifest this update: Sat 18 Oct 2025 23:39:09 +0000 Manifest next update: Sat 25 Oct 2025 23:39:09 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: EqrCro8SLtcLKo/aLn2SGpDu4vxrsQxWeSN14FsrFy4=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: ukg+6KCGHkrsTy11bBIK1xYhpVPUVwZenM7mxd/8rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1710 (0x6ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: Oct 18 23:39:09 2025 GMT Not After : Oct 25 23:39:09 2025 GMT Subject: CN=68f4251d-7bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fb:9a:12:54:61:fd:e5:b1:48:cf:4c:f9:26: 8c:8f:df:d1:fb:49:5b:fa:05:cd:7f:38:51:6e:40: 1d:b8:0f:16:ed:61:07:65:9b:a2:7a:6b:fe:22:8c: b1:b2:7a:77:4d:ef:37:24:e0:75:d5:b7:4d:7b:a7: f2:5f:ab:55:11:95:dd:62:d1:c0:5f:f5:b3:ce:11: 58:71:2f:33:8b:ac:aa:34:f8:2f:c6:e3:47:ef:e8: de:df:41:64:28:73:87:cd:ce:6a:9b:21:33:b3:78: dc:0a:85:33:e9:1e:59:2b:a4:48:85:5b:a3:f4:3d: 19:35:a5:db:95:8f:b8:dd:9a:a9:8f:b3:06:9a:39: 9f:5e:9e:66:e8:c1:3c:92:ad:01:32:d2:f8:29:ef: 70:38:0f:3d:ba:91:85:71:7c:62:40:7b:4c:da:42: da:9e:1c:af:97:6c:d0:be:87:2c:1c:b2:7c:77:a7: 2c:e6:ef:8f:01:66:de:a7:3f:6c:46:3d:73:1a:a4: 8a:6d:0e:5e:f7:54:f2:c6:14:79:ed:56:2c:c8:1d: c8:2a:5b:95:ca:12:51:8d:d8:ab:4d:1d:a2:58:90: 1e:87:eb:54:dd:fd:93:35:50:fb:f7:83:58:39:68: 43:ff:42:4f:b2:0e:a9:53:52:59:3f:a7:39:fe:f9: 2c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EE:DA:AD:FA:56:C4:AB:1D:5A:52:C2:0D:62:EC:9F:A4:AA:4D:67 X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:b9:fd:02:da:ba:d0:91:87:1f:78:e9:44:0e:9b:03:58:80: ae:15:cb:a3:ec:01:5f:fc:6c:6c:75:87:fc:2b:9a:eb:8f:f1: 62:dd:28:7b:b1:d0:c8:3f:2e:eb:e8:38:60:02:2f:e9:38:01: ed:e0:c2:59:1a:c2:d1:65:37:d2:bb:f8:3c:b5:fa:81:05:0b: 9e:37:13:56:ff:07:7e:78:d0:30:fe:e6:21:4c:36:46:b9:b0: 7a:f5:af:20:ea:15:9e:a4:2b:5f:bd:e3:a7:33:88:61:37:7a: 31:39:2b:a8:2c:6b:8d:46:d4:f7:7e:9b:09:4a:2d:c8:fc:d4: b0:91:ad:43:cd:1c:16:0b:a1:6d:d5:0a:af:a0:9d:b9:10:17: 47:9f:2a:7c:9b:e8:d2:08:0f:c1:21:a3:a3:13:11:0d:7b:49: 4c:b7:8e:09:71:19:80:92:cc:f9:aa:ca:39:23:79:44:34:ba: 8e:c4:25:ff:b6:9b:90:61:a6:bc:d0:ae:c0:cd:0e:e5:29:39: a5:2c:40:b8:0d:62:67:1a:a0:0f:1b:ac:6b:7c:89:71:bc:5f: 2d:80:a6:fe:c1:26:13:9c:8a:b1:fd:93:08:08:ff:a3:b7:4a: 07:aa:e8:17:c3:8b:c6:a1:6a:b6:78:68:9b:58:12:fd:51:f6: 0c:31:87:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjUxMDE4MjMzOTA5WhcNMjUxMDI1MjMzOTA5WjAYMRYwFAYD VQQDEw02OGY0MjUxZC03YmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPuaElRh/eWxSM9M+SaMj9/R+0lb+gXNfzhRbkAduA8W7WEHZZuiemv+Ioyx snp3Te83JOB11bdNe6fyX6tVEZXdYtHAX/WzzhFYcS8zi6yqNPgvxuNH7+je30Fk KHOHzc5qmyEzs3jcCoUz6R5ZK6RIhVuj9D0ZNaXblY+43Zqpj7MGmjmfXp5m6ME8 kq0BMtL4Ke9wOA89upGFcXxiQHtM2kLanhyvl2zQvocsHLJ8d6cs5u+PAWbepz9s Rj1zGqSKbQ5e91TyxhR57VYsyB3IKluVyhJRjdirTR2iWJAeh+tU3f2TNVD794NY OWhD/0JPsg6pU1JZP6c5/vksDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLu2q36 VsSrHVpSwg1i7J+kqk1nMB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADuf0C2rrQkYcfeOlEDpsDWICuFcuj7AFf/GxsdYf8K5rrj/Fi3Sh7 sdDIPy7r6DhgAi/pOAHt4MJZGsLRZTfSu/g8tfqBBQueNxNW/wd+eNAw/uYhTDZG ubB69a8g6hWepCtfveOnM4hhN3oxOSuoLGuNRtT3fpsJSi3I/NSwka1DzRwWC6Ft 1QqvoJ25EBdHnyp8m+jSCA/BIaOjExENe0lMt44JcRmAksz5qso5I3lENLqOxCX/ tpuQYaa80K7AzQ7lKTmlLEC4DWJnGqAPG6xrfIlxvF8tgKb+wSYTnIqx/ZMICP+j t0oHqugXw4vGoWq2eGibWBL9UfYMMYdc -----END CERTIFICATE-----Generated at Mon Oct 20 09:35:57 2025 by rpki-client