$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: fBkfzZWAGqc8pyh1kfKJcGqr3R8JzBw02uj8CNWdU/Q= Subject key identifier: 46:68:09:CC:0F:37:CB:C0:4F:2A:9F:A9:59:82:4A:BC:3A:1F:75:51 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: F0 Signing time: Sun 19 Oct 2025 08:37:50 +0000 Manifest this update: Sun 19 Oct 2025 08:37:49 +0000 Manifest next update: Sun 26 Oct 2025 08:37:49 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: PERjseFk2qQNK2WVm8np2aON6l5AtuSc3SraKm+EuQU=) 2: F0CEC2E2663811F089040A3DC4F9AE02.roa (hash: 4eCQXPIoXqLFis62/nmMgnZplG75TTG2mCb5ZkTz7as=) 3: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: lyaciBaHQ7wicHWM/adA9CDhCXcjs8ttP7h7VzDSE2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Oct 19 08:37:49 2025 GMT Not After : Oct 26 08:37:49 2025 GMT Subject: CN=68f4a35e-3d0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:95:e5:f4:9a:ba:01:f9:82:a6:71:d3:57:87: cb:ef:f3:df:d7:cb:5d:ac:60:cb:29:57:76:43:7f: 36:e6:43:83:45:70:39:c5:b0:da:ce:db:75:42:ee: 06:0c:29:7f:32:e8:5d:cf:8b:5a:7f:ae:24:f4:b1: 0b:a7:b1:75:d6:c5:4d:3d:e2:22:07:a8:b6:60:45: d6:3a:b0:e6:c4:e5:32:8c:81:28:f3:b4:87:7a:31: 0a:76:db:bf:8a:7c:70:0b:7c:67:3a:e5:5e:ad:d9: 36:27:be:13:ea:64:e8:94:d8:ba:65:bc:f3:98:d3: 54:f7:36:2c:32:c7:53:86:17:60:fc:84:21:04:d1: a1:37:40:74:f4:ba:ed:92:97:ed:e1:72:31:cf:87: 95:59:fb:1c:8f:21:19:20:27:c6:70:cd:45:c1:ce: 28:e6:c9:d0:a9:55:e3:08:04:56:f7:4d:d7:54:ba: 73:e5:7e:90:59:fb:de:8c:b1:5f:f8:21:5d:6a:b5: 2a:61:1f:53:f5:40:7b:a2:75:35:31:32:62:be:82: 38:d3:bf:9d:44:05:5d:d4:2e:cc:71:68:f3:e4:1a: 5b:02:f5:45:63:c8:40:5b:47:b2:50:75:36:58:ea: 27:c3:e1:c1:9a:60:db:f6:5a:68:23:cc:49:58:b5: 39:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:68:09:CC:0F:37:CB:C0:4F:2A:9F:A9:59:82:4A:BC:3A:1F:75:51 X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ad:d3:01:f2:04:73:f2:79:6a:fb:ba:68:aa:23:31:bc:a2: 5a:69:cd:62:9b:2a:23:0f:37:aa:7e:bb:03:ac:39:bd:78:7a: 40:9f:82:b8:e9:f5:ad:45:70:74:84:d5:80:ad:b2:d9:bb:d7: 83:d9:53:c0:a5:b0:77:0d:f9:62:31:70:3f:15:9c:a2:0f:6b: 72:53:34:23:25:d2:cc:e5:5c:09:1d:93:fb:26:b0:f9:61:0a: 54:89:d7:96:c0:db:81:12:8a:28:32:b7:a6:ac:e1:1a:cb:e5: be:63:d5:df:7d:e4:be:1d:d9:de:a3:69:66:41:48:55:37:a1: 5c:42:66:f5:f6:c2:f9:45:c2:23:9f:94:0d:69:14:bd:7d:94: 7e:91:73:02:57:59:d0:89:ed:92:95:2f:49:c6:92:fd:af:80: bd:aa:12:4c:bf:b6:56:a0:c9:0e:58:50:93:02:86:1c:da:4d: 95:4f:ba:7f:9c:31:04:95:1a:54:72:ce:c4:9e:8d:3e:0b:31: 0f:1f:35:bc:80:2e:9c:f2:15:32:cd:b6:1b:40:98:f7:3d:b2: 64:bc:98:a4:5e:35:9d:35:c1:5b:e2:87:05:fa:66:41:93:c7: d8:18:09:4b:36:36:11:44:88:58:d8:bb:23:c0:5e:9f:e5:ce: 27:45:98:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUxMDE5MDgzNzQ5WhcNMjUxMDI2MDgzNzQ5WjAYMRYwFAYD VQQDEw02OGY0YTM1ZS0zZDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJXl9Jq6AfmCpnHTV4fL7/Pf18tdrGDLKVd2Q3825kODRXA5xbDaztt1Qu4G DCl/Muhdz4taf64k9LELp7F11sVNPeIiB6i2YEXWOrDmxOUyjIEo87SHejEKdtu/ inxwC3xnOuVerdk2J74T6mTolNi6ZbzzmNNU9zYsMsdThhdg/IQhBNGhN0B09Lrt kpft4XIxz4eVWfscjyEZICfGcM1Fwc4o5snQqVXjCARW903XVLpz5X6QWfvejLFf +CFdarUqYR9T9UB7onU1MTJivoI407+dRAVd1C7McWjz5BpbAvVFY8hAW0eyUHU2 WOonw+HBmmDb9lpoI8xJWLU5awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZoCcwP N8vATyqfqVmCSrw6H3VRMB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCrdMB8gRz8nlq+7poqiMxvKJaac1imyojDzeqfrsDrDm9eHpAn4K4 6fWtRXB0hNWArbLZu9eD2VPApbB3DfliMXA/FZyiD2tyUzQjJdLM5VwJHZP7JrD5 YQpUideWwNuBEoooMremrOEay+W+Y9XffeS+Hdneo2lmQUhVN6FcQmb19sL5RcIj n5QNaRS9fZR+kXMCV1nQie2SlS9JxpL9r4C9qhJMv7ZWoMkOWFCTAoYc2k2VT7p/ nDEElRpUcs7Eno0+CzEPHzW8gC6c8hUyzbYbQJj3PbJkvJikXjWdNcFb4ocF+mZB k8fYGAlLNjYRRIhY2LsjwF6f5c4nRZiR -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:36 2025 by rpki-client