$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: B2izPqjoToSnwlp4y+DOQCSkd+dBbHroTU9AfmX/hNw= Subject key identifier: 9D:BC:23:D8:12:B5:19:34:4F:A3:0E:54:A7:15:23:60:D2:30:8F:08 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 6D Signing time: Sun 19 Oct 2025 10:20:56 +0000 Manifest this update: Sun 19 Oct 2025 10:20:55 +0000 Manifest next update: Sun 26 Oct 2025 10:20:55 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: MC6/HXzjK28el5TH+atFv4tpIYSLd1eJzmxXvXoFEEA=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Oct 19 10:20:55 2025 GMT Not After : Oct 26 10:20:55 2025 GMT Subject: CN=68f4bb87-4265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:93:20:1f:36:b5:c8:60:af:73:7b:bb:f1:27: c2:f1:4b:0f:72:aa:75:5e:09:dd:fa:aa:73:fe:48: e8:47:aa:8c:34:01:88:30:ee:aa:fe:0a:be:61:cf: 48:1f:4c:d7:23:a4:aa:43:aa:1d:56:a7:5a:23:5e: dd:d6:7b:50:f0:7e:01:ed:84:6a:01:1c:c6:b5:03: 75:e9:b1:f5:d1:00:a9:86:a0:4f:58:a3:bb:84:5c: a2:1f:e2:0a:d5:b2:aa:12:6e:11:93:f3:7a:5b:31: 6e:8c:85:a1:8c:e7:36:d3:55:f8:d6:ff:e5:4e:7e: 04:55:e2:ab:59:2b:76:32:7c:2f:78:4a:cd:40:2b: 0b:01:6d:60:32:ff:17:88:5c:59:99:42:d6:c6:a3: 6a:d9:29:62:bf:52:15:9e:58:26:69:2c:ac:d1:f9: 13:48:72:7e:3b:f6:ac:df:38:bc:02:28:85:5a:79: 97:25:cc:76:36:f8:39:ac:c3:a6:9c:b0:63:f1:c8: 24:a6:a1:e4:23:73:10:e8:06:ba:22:f8:e7:fe:dc: 27:29:f8:c0:38:93:51:55:33:58:47:c2:1a:b2:bd: 2c:9f:92:f6:35:fe:5a:99:e0:f3:d2:e5:bf:b0:d4: 12:7e:b7:94:47:40:58:f1:5e:5c:bd:9e:3a:d0:38: e1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BC:23:D8:12:B5:19:34:4F:A3:0E:54:A7:15:23:60:D2:30:8F:08 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:4a:df:fe:0b:8f:d5:57:d7:1a:cb:41:95:1f:9f:5a:a6:f7: 0e:85:dc:e5:cd:ac:35:72:25:fa:32:81:d7:d4:7b:f6:31:73: 13:c3:18:76:7a:03:e6:9a:8f:0b:1f:b9:c6:f9:e5:8a:64:25: a2:0a:27:7a:9d:2d:b6:c3:91:cd:3f:4b:89:7b:f1:d9:fb:c5: 51:80:f9:a1:46:66:86:3f:20:d2:da:98:b1:4c:42:5d:cb:fb: ba:7f:3d:f0:f1:95:06:a1:aa:dc:f9:23:a8:41:a0:a8:3c:25: d9:8e:0d:7c:76:f8:1a:36:9b:e7:25:83:9d:28:17:f3:4e:fc: 22:31:5f:dd:fb:b2:98:07:70:d0:81:44:b0:e2:77:32:3c:7e: 12:7f:f7:61:c9:f6:24:b7:4e:34:5f:db:b0:6e:0e:d3:d8:be: 77:d7:e5:9c:4b:30:15:e0:71:0b:c8:35:24:27:43:0a:f8:fb: 95:49:fc:5e:c3:4f:48:49:7b:f3:e0:21:46:3a:1b:46:c0:7d: 57:e1:bf:06:d9:ab:0a:82:4e:1a:ee:d9:e7:92:98:ec:73:61: 47:c4:d8:fd:29:85:31:18:b3:b3:73:47:f4:ea:9a:34:9d:55: 10:9f:49:6b:6a:db:37:d1:40:7c:69:f2:3c:cb:15:b1:67:69: 90:2f:13:d1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTEwMTkxMDIwNTVaFw0yNTEwMjYxMDIwNTVaMBgxFjAUBgNV BAMTDTY4ZjRiYjg3LTQyNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1kyAfNrXIYK9ze7vxJ8LxSw9yqnVeCd36qnP+SOhHqow0AYgw7qr+Cr5hz0gf TNcjpKpDqh1Wp1ojXt3We1DwfgHthGoBHMa1A3XpsfXRAKmGoE9Yo7uEXKIf4grV sqoSbhGT83pbMW6MhaGM5zbTVfjW/+VOfgRV4qtZK3YyfC94Ss1AKwsBbWAy/xeI XFmZQtbGo2rZKWK/UhWeWCZpLKzR+RNIcn479qzfOLwCKIVaeZclzHY2+Dmsw6ac sGPxyCSmoeQjcxDoBroi+Of+3Ccp+MA4k1FVM1hHwhqyvSyfkvY1/lqZ4PPS5b+w 1BJ+t5RHQFjxXly9njrQOOGRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnbwj2BK1 GTRPow5UpxUjYNIwjwgwHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdM SHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHdK3/4Lj9VX1xrLQZUfn1qm9w6F3OXNrDVyJfoygdfUe/YxcxPDGHZ6 A+aajwsfucb55YpkJaIKJ3qdLbbDkc0/S4l78dn7xVGA+aFGZoY/INLamLFMQl3L +7p/PfDxlQahqtz5I6hBoKg8JdmODXx2+Bo2m+clg50oF/NO/CIxX937spgHcNCB RLDidzI8fhJ/92HJ9iS3TjRf27BuDtPYvnfX5ZxLMBXgcQvINSQnQwr4+5VJ/F7D T0hJe/PgIUY6G0bAfVfhvwbZqwqCThru2eeSmOxzYUfE2P0phTEYs7NzR/TqmjSd VRCfSWtq2zfRQHxp8jzLFbFnaZAvE9E= -----END CERTIFICATE-----Generated at Tue Oct 21 00:07:05 2025 by rpki-client