$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft File: cJbvn454MDQ56aHksDgYgaQy9Ns.mft (raw, json) Hash identifier: 40kpK7ZiVTCuhPC4kh94X7wKSWR04+U5e0gijFj5jbQ= Subject key identifier: 37:6B:19:E5:D1:3C:65:DF:7B:F4:96:14:55:05:98:3D:8A:91:01:69 Authority key identifier: 70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB Certificate issuer: /CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Certificate serial: 03E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft Manifest number: 03DC Signing time: Sun 19 Oct 2025 02:31:35 +0000 Manifest this update: Sun 19 Oct 2025 02:31:34 +0000 Manifest next update: Sun 26 Oct 2025 02:31:34 +0000 Files and hashes: 1: cJbvn454MDQ56aHksDgYgaQy9Ns.crl (hash: ttjusiFL63ojjVSrUKb+jYBSX68lBNotk31svurYFtw=) 2: AFED106A9E1511ECA4B98E73C4F9AE02.roa (hash: IKsBlPoiBaV1Y/8FMivKysodYXv24LUe7kGHbrSaUFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 992 (0x3e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8F8A, serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Validity Not Before: Oct 19 02:31:34 2025 GMT Not After : Oct 26 02:31:34 2025 GMT Subject: CN=68f44d86-d508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:38:55:cc:3d:57:f0:6e:41:e0:5a:08:71:8d: 67:29:3c:1a:1a:58:a9:a7:5a:cb:00:b5:ed:3d:23: 50:aa:ee:e9:75:b0:b3:28:a0:db:8f:4e:ea:a5:ad: 89:fb:be:60:50:16:3b:4b:52:18:4a:d1:38:1e:cd: 55:ab:2c:c3:04:92:97:fe:28:29:19:c7:ee:95:26: ce:1b:23:6a:2b:39:81:42:7b:3d:4a:16:8b:7c:f4: de:f0:55:3a:b5:37:24:4d:52:73:2c:53:ed:e3:de: 8d:d2:bd:ae:5e:63:ae:50:d9:ac:f8:63:7a:4a:6d: 28:de:fa:65:66:26:2a:86:c2:b3:81:fe:c8:da:11: 8a:c7:63:47:8d:dc:17:bf:56:49:d3:19:62:31:a9: 1d:b1:e4:8a:7d:b5:a3:f7:4f:c0:69:38:d1:86:48: b6:f2:4f:4d:2f:f9:78:82:54:eb:b8:c1:0e:5e:f4: fc:5f:33:f8:4a:45:f5:77:5d:a5:8e:24:c9:40:6a: 83:45:43:8b:80:02:10:d8:4b:c5:96:08:5b:d9:8e: 9d:2e:f6:1f:93:89:cf:19:f5:ab:57:7a:d3:f3:bd: 7b:5a:a5:40:f8:da:5a:81:28:d1:9c:db:54:d8:35: b2:70:e7:ce:2f:2f:31:67:91:2a:2c:e0:29:f7:98: de:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6B:19:E5:D1:3C:65:DF:7B:F4:96:14:55:05:98:3D:8A:91:01:69 X509v3 Authority Key Identifier: keyid:70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:4b:6c:f1:c6:0b:42:29:b0:31:8a:79:86:ac:38:5b:1e:2d: d4:84:37:74:b9:95:41:da:4f:f3:a2:f1:aa:6f:dd:ee:28:4d: 55:63:aa:73:aa:61:ec:90:31:94:1f:1b:59:16:33:11:00:f5: b0:f1:9b:58:6e:c3:b8:4a:04:8d:c5:8b:ab:57:32:41:8a:4f: 00:3e:df:9b:49:6f:b0:aa:dc:61:ad:09:1e:b9:b4:a0:6c:dd: 7e:b6:16:03:b5:61:58:d4:21:84:80:f3:dd:15:06:45:db:68: 5c:c2:89:b0:6a:7b:f0:f4:ef:0f:5f:d8:3b:5a:72:5d:fb:94: ec:1e:8a:a5:b5:f7:1c:e1:f2:38:b8:8d:57:41:a4:79:07:06: 67:1e:67:ef:ce:bb:e7:18:cd:e5:31:19:5b:96:c8:ca:39:9c: e4:f3:e9:eb:4b:3f:0a:4d:4d:05:ce:13:6a:91:aa:50:19:f2: 1b:5f:29:c6:b5:96:b3:bf:74:b2:49:44:21:58:a8:0b:70:60: c4:d7:b0:d5:85:46:51:f8:bd:e6:2b:1f:75:7a:c0:8f:ca:e3: e6:41:8f:5b:5f:da:0f:3e:fd:7b:61:b1:ee:dd:a4:60:05:c9: 4b:7c:6b:18:64:7c:2b:64:ec:05:c4:d0:50:77:3c:4b:18:ca: ec:f7:31:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThGOEExMTAvBgNVBAUTKDcwOTZFRjlGOEU3ODMwMzQzOUU5QTFFNEIwMzgxODgx QTQzMkY0REIwHhcNMjUxMDE5MDIzMTM0WhcNMjUxMDI2MDIzMTM0WjAYMRYwFAYD VQQDEw02OGY0NGQ4Ni1kNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DhVzD1X8G5B4FoIcY1nKTwaGlipp1rLALXtPSNQqu7pdbCzKKDbj07qpa2J +75gUBY7S1IYStE4Hs1VqyzDBJKX/igpGcfulSbOGyNqKzmBQns9ShaLfPTe8FU6 tTckTVJzLFPt496N0r2uXmOuUNms+GN6Sm0o3vplZiYqhsKzgf7I2hGKx2NHjdwX v1ZJ0xliMakdseSKfbWj90/AaTjRhki28k9NL/l4glTruMEOXvT8XzP4SkX1d12l jiTJQGqDRUOLgAIQ2EvFlghb2Y6dLvYfk4nPGfWrV3rT8717WqVA+NpagSjRnNtU 2DWycOfOLy8xZ5EqLOAp95jeFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdrGeXR PGXfe/SWFFUFmD2KkQFpMB8GA1UdIwQYMBaAFHCW75+OeDA0Oemh5LA4GIGkMvTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEY4QS83MjE5NUFENDlF MTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1EUTU2YUhrc0RnWWdhUXk5 TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKYnZuNDU0TURRNTZhSGtzRGdZZ2FReTlOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEY4QS83MjE5NUFENDlFMTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1E UTU2YUhrc0RnWWdhUXk5TnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+S2zxxgtCKbAxinmGrDhbHi3UhDd0uZVB2k/zovGqb93uKE1VY6pz qmHskDGUHxtZFjMRAPWw8ZtYbsO4SgSNxYurVzJBik8APt+bSW+wqtxhrQkeubSg bN1+thYDtWFY1CGEgPPdFQZF22hcwomwanvw9O8PX9g7WnJd+5TsHoqltfcc4fI4 uI1XQaR5BwZnHmfvzrvnGM3lMRlblsjKOZzk8+nrSz8KTU0FzhNqkapQGfIbXynG tZazv3SySUQhWKgLcGDE17DVhUZR+L3mKx91esCPyuPmQY9bX9oPPv17YbHu3aRg BclLfGsYZHwrZOwFxNBQdzxLGMrs9zGR -----END CERTIFICATE-----Generated at Mon Oct 20 11:36:06 2025 by rpki-client