$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft File: JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft (raw, json) Hash identifier: yET/OiUKBgSL6T/UsrNKaKb4w3fVfCi4y9HQfpLPkd4= Subject key identifier: 76:B2:C8:EA:34:A9:7A:04:D0:B1:BD:0B:DC:E7:FA:9B:8C:AF:7E:0F Authority key identifier: 24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA Certificate issuer: /CN=A91AC73E/serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Certificate serial: 0507 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft Manifest number: 0500 Signing time: Sun 19 Oct 2025 01:25:43 +0000 Manifest this update: Sun 19 Oct 2025 01:25:42 +0000 Manifest next update: Sun 26 Oct 2025 01:25:42 +0000 Files and hashes: 1: JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl (hash: +1BLhU3A7Hnq/VfPAFeC1p7vSeglPrWQgKdQhFSIXu4=) 2: 020CA7B24E4C11EC8045E71EC4F9AE02.roa (hash: tyZWDAn9bcgruEQUmKMpj2KMCjpkdyP72IeeYTIEOW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC73E, serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Validity Not Before: Oct 19 01:25:42 2025 GMT Not After : Oct 26 01:25:42 2025 GMT Subject: CN=68f43e16-bea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cf:6e:09:52:18:8f:29:a0:cb:0d:a7:7a:af: f7:d0:50:51:9b:8e:8c:de:82:91:4e:a5:06:77:a3: 56:2c:71:c9:94:fa:89:02:76:0d:96:db:f2:76:16: 1b:e0:0d:aa:16:96:86:24:ee:f3:76:12:43:52:08: ed:3f:8b:58:cc:cb:3b:de:77:da:c8:0e:b5:4f:57: a3:c7:e9:cb:fa:04:f8:e1:8d:5a:77:a6:ad:7b:95: cd:ee:95:6b:de:18:39:8f:ae:be:0a:3c:d9:1c:2f: 28:59:62:50:c7:24:7b:22:5d:dc:ca:4c:18:f2:d4: 00:56:92:98:11:b2:2a:18:7d:15:3f:b8:63:5c:43: c3:d6:40:c6:22:dc:97:f6:7d:29:76:76:4a:23:6e: bf:c6:9d:e8:58:d2:43:f7:51:26:3a:36:04:6a:2e: d9:cb:88:81:9d:4a:ab:21:96:e1:d4:92:24:fd:75: 3c:79:f4:60:93:e8:a5:04:80:2e:2d:06:38:6c:d3: fb:cb:61:73:17:ec:55:46:72:56:a1:50:71:65:da: ab:9f:c6:34:1a:3f:ac:3d:44:ab:98:b9:12:44:ad: c4:83:78:b4:af:89:59:b4:7f:95:0e:dd:bd:2c:97: 66:22:1d:e3:cd:12:2b:75:a2:38:75:cc:95:0c:14: 14:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B2:C8:EA:34:A9:7A:04:D0:B1:BD:0B:DC:E7:FA:9B:8C:AF:7E:0F X509v3 Authority Key Identifier: keyid:24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:63:fe:f2:52:36:3b:4e:9d:e6:02:b6:26:92:0b:ce:ed:23: 16:13:ca:9c:6a:8a:0c:2e:86:27:a7:1a:b1:31:d1:3b:92:2f: 58:8e:59:97:61:4c:79:a8:eb:ea:cd:ab:d6:3f:79:2e:c6:9b: e7:9a:5c:86:dc:2d:97:b6:f3:e5:45:f5:d2:54:04:15:53:75: 85:15:6f:da:dc:8e:28:6b:3e:2d:2d:08:37:db:06:ce:28:c4: 72:26:6a:ff:ab:07:17:95:d8:18:87:b1:f0:b2:75:db:3d:ad: 5b:83:bb:5c:80:c7:cb:46:af:24:dd:83:50:d1:0f:6e:da:20: 2a:4c:d0:57:8f:ae:ce:ed:d5:f2:1e:07:98:b6:b1:a7:68:2c: 42:2c:af:de:af:21:78:ac:0b:2d:12:5c:48:01:e1:ce:09:f2: 13:30:53:72:33:5e:bf:6e:11:97:9d:53:5f:a3:6d:8b:14:07: 0b:41:64:28:96:cf:b2:00:c3:90:3d:97:1c:4e:f9:cd:ea:aa: 2e:5d:68:22:58:d6:8c:6b:d7:32:db:0b:14:dd:82:51:41:e8: 91:41:ee:79:df:a5:e9:6c:7f:1b:cf:87:29:3c:90:38:dd:de: 0c:b2:f1:8e:b5:a5:cf:9c:7d:0e:0f:f4:c3:61:12:25:40:9e: 35:38:f3:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3M0UxMTAvBgNVBAUTKDI0M0YyRDQ0NzI3RjFEMUI4MDc5RjQwMTRGNjlGNEEw NzREMUYxRUEwHhcNMjUxMDE5MDEyNTQyWhcNMjUxMDI2MDEyNTQyWjAYMRYwFAYD VQQDEw02OGY0M2UxNi1iZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM9uCVIYjymgyw2neq/30FBRm46M3oKRTqUGd6NWLHHJlPqJAnYNltvydhYb 4A2qFpaGJO7zdhJDUgjtP4tYzMs73nfayA61T1ejx+nL+gT44Y1ad6ate5XN7pVr 3hg5j66+CjzZHC8oWWJQxyR7Il3cykwY8tQAVpKYEbIqGH0VP7hjXEPD1kDGItyX 9n0pdnZKI26/xp3oWNJD91EmOjYEai7Zy4iBnUqrIZbh1JIk/XU8efRgk+ilBIAu LQY4bNP7y2FzF+xVRnJWoVBxZdqrn8Y0Gj+sPUSrmLkSRK3Eg3i0r4lZtH+VDt29 LJdmIh3jzRIrdaI4dcyVDBQUcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHayyOo0 qXoE0LG9C9zn+puMr34PMB8GA1UdIwQYMBaAFCQ/LURyfx0bgHn0AU9p9KB00fHq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzczRS80NDU1NDU2MjJD OTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hSdUFlZlFCVDJuMG9IVFI4 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEOHRSSEpfSFJ1QWVmUUJUMm4wb0hUUjhlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzczRS80NDU1NDU2MjJDOTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hS dUFlZlFCVDJuMG9IVFI4ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Y/7yUjY7Tp3mArYmkgvO7SMWE8qcaooMLoYnpxqxMdE7ki9YjlmX YUx5qOvqzavWP3kuxpvnmlyG3C2XtvPlRfXSVAQVU3WFFW/a3I4oaz4tLQg32wbO KMRyJmr/qwcXldgYh7HwsnXbPa1bg7tcgMfLRq8k3YNQ0Q9u2iAqTNBXj67O7dXy HgeYtrGnaCxCLK/eryF4rAstElxIAeHOCfITMFNyM16/bhGXnVNfo22LFAcLQWQo ls+yAMOQPZccTvnN6qouXWgiWNaMa9cy2wsU3YJRQeiRQe5536XpbH8bz4cpPJA4 3d4MsvGOtaXPnH0OD/TDYRIlQJ41OPPd -----END CERTIFICATE-----Generated at Tue Oct 21 07:17:35 2025 by rpki-client