$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: b3AlvNrDmiU78UzXFs9iIVV8kAfVxMY4X45gXlJ739M= Subject key identifier: E6:FC:10:57:6B:9E:9E:9C:D3:F9:09:4F:8F:5C:C5:1B:AD:E9:4C:D9 Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: 96 Signing time: Mon 20 Oct 2025 16:24:32 +0000 Manifest this update: Mon 20 Oct 2025 16:24:32 +0000 Manifest next update: Mon 27 Oct 2025 16:24:32 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: iJmPwDCRCpBjFm5qzRi/VP8kjzqfRxuJYSjivyBNSo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Oct 20 16:24:32 2025 GMT Not After : Oct 27 16:24:32 2025 GMT Subject: CN=68f66240-e30a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:89:60:92:f5:67:9f:8b:ac:6e:28:8c:8b:f9: 44:56:fe:d9:9c:d3:3a:91:e3:dc:20:7d:08:37:1f: b2:79:c8:08:77:f8:65:b3:d4:a9:14:4f:88:cc:00: 31:1e:6d:11:75:f8:9c:b7:c5:45:8d:73:2c:e1:64: 49:65:69:1e:1c:18:9a:e9:13:8b:ea:99:b8:53:82: d7:34:d4:eb:b2:87:26:96:c1:7a:01:9c:ef:f0:17: 2e:b4:6a:d1:42:ac:0b:83:3d:84:83:a4:00:c5:8e: 5e:6d:f0:f8:46:13:3e:4b:6c:e9:9b:cb:62:15:ef: c1:a8:09:60:6e:c4:8c:76:bd:9d:2a:d1:71:6d:c7: f9:e9:12:2a:dc:0d:1f:7a:0a:f8:49:0e:5e:d7:97: 5c:f0:0d:40:da:4a:94:4a:d8:63:83:39:f8:53:42: 90:38:f2:8a:31:a0:52:8a:df:39:ea:3e:15:7d:b0: 90:f5:f9:70:32:a7:9f:5d:fc:bb:ba:52:f2:56:9c: 2a:08:63:14:6f:a3:78:d6:14:f0:de:dc:4c:6e:45: 97:fe:a5:76:84:b5:f2:a7:a2:dd:61:35:30:09:24: ca:14:e6:82:cd:3c:e0:7a:1e:d4:24:73:28:c5:38: 0d:64:11:13:93:aa:f1:02:1f:67:37:53:3a:b2:26: 76:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:FC:10:57:6B:9E:9E:9C:D3:F9:09:4F:8F:5C:C5:1B:AD:E9:4C:D9 X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:73:78:55:cf:4f:da:45:43:39:ab:52:c7:69:8b:f3:63:3c: 8f:f2:e1:30:e8:5d:51:34:39:64:a6:47:f6:0d:34:75:41:a4: 37:7b:fc:08:f0:71:37:c6:ad:14:dc:0f:e6:12:f7:6e:87:58: ae:56:67:fc:d4:91:1e:cf:0d:14:2e:8d:39:63:b8:51:06:4d: 71:f6:b5:ce:23:1b:53:d8:40:e1:81:82:0c:ff:4e:36:70:60: 67:7a:51:9d:2e:56:bd:db:6d:77:e5:6c:e8:34:08:4d:66:2c: 4d:1f:f2:d4:02:82:c2:cb:2d:dd:8c:36:8b:8e:58:d7:70:70: 62:14:f4:b4:9a:0d:ff:fe:ea:7d:b7:86:d0:b8:1b:5f:fd:37: 23:15:f4:cb:21:cc:e5:ea:ce:71:3b:3d:df:ed:94:74:aa:48: af:fb:92:81:f9:ca:63:03:fe:ce:84:39:85:b1:c3:73:1d:63: a3:6f:59:c7:c8:bc:80:d0:60:b5:b4:5a:73:17:52:82:e3:3e: 55:5f:b8:e2:4c:a3:05:b7:f6:69:92:32:1b:2e:48:02:49:8b: 40:0e:85:f9:9c:9b:cd:f6:f7:60:75:1a:7a:db:d0:db:36:bc: a1:95:fb:f8:98:32:3e:07:ef:77:51:f3:ee:f1:dc:e5:df:58: 6d:3c:c8:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDQ0OTUxNzNCRDJDMjkzOERFMzA2NzdDRkRERTczQ0Qz MUI4QTI2NzYwHhcNMjUxMDIwMTYyNDMyWhcNMjUxMDI3MTYyNDMyWjAYMRYwFAYD VQQDEw02OGY2NjI0MC1lMzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyolgkvVnn4usbiiMi/lEVv7ZnNM6kePcIH0INx+yecgId/hls9SpFE+IzAAx Hm0Rdfict8VFjXMs4WRJZWkeHBia6ROL6pm4U4LXNNTrsocmlsF6AZzv8BcutGrR QqwLgz2Eg6QAxY5ebfD4RhM+S2zpm8tiFe/BqAlgbsSMdr2dKtFxbcf56RIq3A0f egr4SQ5e15dc8A1A2kqUSthjgzn4U0KQOPKKMaBSit856j4VfbCQ9flwMqefXfy7 ulLyVpwqCGMUb6N41hTw3txMbkWX/qV2hLXyp6LdYTUwCSTKFOaCzTzgeh7UJHMo xTgNZBETk6rxAh9nN1M6siZ2cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOb8EFdr np6c0/kJT49cxRut6UzZMB8GA1UdIwQYMBaAFESVFzvSwpON4wZ3z93nPNMbiiZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC8yMjBCMTcyOENC QzIxMUVGQTMyNDY1NzNDNEY5QUUwMi9SSlVYTzlMQ2s0M2pCbmZQM2VjODB4dUtK blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTA5OC8yMjBCMTcyOENCQzIxMUVGQTMyNDY1NzNDNEY5QUUwMi9SSlVYTzlMQ2s0 M2pCbmZQM2VjODB4dUtKblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtc3hVz0/aRUM5q1LHaYvzYzyP8uEw6F1RNDlkpkf2DTR1QaQ3e/wI 8HE3xq0U3A/mEvduh1iuVmf81JEezw0ULo05Y7hRBk1x9rXOIxtT2EDhgYIM/042 cGBnelGdLla922135WzoNAhNZixNH/LUAoLCyy3djDaLjljXcHBiFPS0mg3//up9 t4bQuBtf/TcjFfTLIczl6s5xOz3f7ZR0qkiv+5KB+cpjA/7OhDmFscNzHWOjb1nH yLyA0GC1tFpzF1KC4z5VX7jiTKMFt/ZpkjIbLkgCSYtADoX5nJvN9vdgdRp629Db Nryhlfv4mDI+B+93UfPu8dzl31htPMgp -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:34 2025 by rpki-client