$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft File: jiZ6MV35Dplf9M1LLPj8TDMksts.mft (raw, json) Hash identifier: +FhH3ivzDXzcPvdALJB4+te8HGOerSVHYAE4yjmrJxg= Subject key identifier: A0:DC:30:41:48:D0:EC:BC:FB:CF:33:AE:AD:BF:68:B4:48:59:29:75 Authority key identifier: 8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB Certificate issuer: /CN=A91B35DF/serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft Manifest number: 8D Signing time: Sun 19 Oct 2025 09:50:46 +0000 Manifest this update: Sun 19 Oct 2025 09:50:45 +0000 Manifest next update: Sun 26 Oct 2025 09:50:45 +0000 Files and hashes: 1: jiZ6MV35Dplf9M1LLPj8TDMksts.crl (hash: dIkTLYNmL91BCeQuK8Q8jpKq0vG05gXJHFfc8NR6xUM=) 2: EF714C70D89F11EFA1D2E672C4F9AE02.roa (hash: TZSTn/V1Hb26UcW7zXgR6yK/030+S0LlzJiALzOU8GU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:50:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35DF, serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Validity Not Before: Oct 19 09:50:45 2025 GMT Not After : Oct 26 09:50:45 2025 GMT Subject: CN=68f4b476-ea64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5b:67:ef:a8:dc:c5:04:bf:85:07:7b:fc:41: 8f:5f:bb:dc:90:a0:88:ba:7b:72:fa:e5:3a:ee:ce: a2:ec:c9:05:87:aa:47:bb:77:ca:95:ef:fc:03:e2: 73:ad:87:8d:f3:68:74:55:b6:a8:42:66:7d:9e:a2: c3:c3:ad:ce:d0:31:98:95:42:73:fb:63:20:90:75: 42:9d:eb:e0:e8:c6:31:34:20:fb:19:fd:cf:5f:ac: 53:a9:36:83:11:b9:6d:f9:f3:18:86:a0:59:52:60: 09:f2:29:c4:a9:00:28:1d:56:48:81:ac:e3:7b:1f: 1d:6b:2c:b3:43:80:c8:e9:13:15:a2:59:4a:5e:74: 0d:03:ac:47:4f:af:64:70:c6:e4:68:d0:6b:f8:5c: 9f:7c:f3:5c:cd:53:b4:5b:8b:ea:ca:fd:61:30:20: 4c:fa:e1:33:de:f1:dd:bb:bc:da:f5:4c:a3:26:7c: c7:3b:40:a1:06:6d:bd:bd:33:9a:3c:02:ae:37:08: bd:67:e6:12:80:4f:86:1b:bc:04:51:02:24:b9:a6: 83:18:72:e6:77:9e:81:96:76:8c:fa:e1:dc:0d:9c: a6:9f:d6:94:7b:a0:c7:76:99:cd:d6:64:7e:3e:57: 0b:d0:99:79:e4:aa:d6:3b:9c:d9:f9:f2:bc:ab:57: 57:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:DC:30:41:48:D0:EC:BC:FB:CF:33:AE:AD:BF:68:B4:48:59:29:75 X509v3 Authority Key Identifier: keyid:8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:de:b5:74:61:8c:33:ce:cb:03:d0:58:11:e8:7e:f1:f1:6c: 68:0a:f9:cc:ab:1e:69:e4:d9:ce:70:53:ed:37:8e:0e:64:77: d0:86:c5:4f:d2:0b:15:46:16:00:d5:26:37:fb:b3:69:35:d9: 8d:fd:8f:7e:c3:fa:72:b7:10:8c:b5:33:b1:80:bb:56:32:55: 45:4e:f9:7b:2e:9c:c2:8a:f8:34:ce:cc:8d:3e:8f:91:60:f0: 35:41:13:98:dd:35:9f:8a:2a:9a:32:25:38:aa:e7:8c:46:71: 7d:c9:dc:9d:07:52:d2:ed:df:5d:35:ef:70:ff:27:85:da:db: bc:1d:8d:52:86:cb:f2:31:4f:76:a1:5e:27:a1:cc:4e:17:14: 58:18:24:2b:cb:94:f3:43:ec:37:f2:4a:57:e6:c0:5f:7e:3e: a6:75:76:42:e0:43:5d:e5:f2:58:e1:d4:e1:7a:a6:4f:8a:ad: 0f:2b:b4:a3:75:75:9b:7e:c1:5b:3c:1b:3b:95:7f:ba:08:08: db:ed:81:04:dd:4d:27:9b:41:b2:ed:a6:4a:ab:c7:43:33:42: 13:8e:c8:19:21:b9:31:1f:ea:49:aa:3f:ce:25:2c:3f:30:2d: d1:81:da:64:76:bf:73:e7:51:4d:6f:c4:ed:89:1a:9d:e3:fc: f7:96:6c:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1REYxMTAvBgNVBAUTKDhFMjY3QTMxNURGOTBFOTk1RkY0Q0Q0QjJDRjhGQzRD MzMyNEIyREIwHhcNMjUxMDE5MDk1MDQ1WhcNMjUxMDI2MDk1MDQ1WjAYMRYwFAYD VQQDEw02OGY0YjQ3Ni1lYTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVtn76jcxQS/hQd7/EGPX7vckKCIunty+uU67s6i7MkFh6pHu3fKle/8A+Jz rYeN82h0VbaoQmZ9nqLDw63O0DGYlUJz+2MgkHVCnevg6MYxNCD7Gf3PX6xTqTaD Eblt+fMYhqBZUmAJ8inEqQAoHVZIgazjex8dayyzQ4DI6RMVollKXnQNA6xHT69k cMbkaNBr+FyffPNczVO0W4vqyv1hMCBM+uEz3vHdu7za9UyjJnzHO0ChBm29vTOa PAKuNwi9Z+YSgE+GG7wEUQIkuaaDGHLmd56BlnaM+uHcDZymn9aUe6DHdpnN1mR+ PlcL0Jl55KrWO5zZ+fK8q1dXgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDcMEFI 0Oy8+88zrq2/aLRIWSl1MB8GA1UdIwQYMBaAFI4mejFd+Q6ZX/TNSyz4/EwzJLLb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVERi8xRUEwMTk5Q0Q4 OUUxMUVGQjQyMTJDNTZDNEY5QUUwMi9qaVo2TVYzNURwbGY5TTFMTFBqOFRETWtz dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ppWjZNVjM1RHBsZjlNMUxMUGo4VERNa3N0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzVERi8xRUEwMTk5Q0Q4OUUxMUVGQjQyMTJDNTZDNEY5QUUwMi9qaVo2TVYzNURw bGY5TTFMTFBqOFRETWtzdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs3rV0YYwzzssD0FgR6H7x8WxoCvnMqx5p5NnOcFPtN44OZHfQhsVP 0gsVRhYA1SY3+7NpNdmN/Y9+w/pytxCMtTOxgLtWMlVFTvl7LpzCivg0zsyNPo+R YPA1QROY3TWfiiqaMiU4queMRnF9ydydB1LS7d9dNe9w/yeF2tu8HY1ShsvyMU92 oV4nocxOFxRYGCQry5TzQ+w38kpX5sBffj6mdXZC4ENd5fJY4dTheqZPiq0PK7Sj dXWbfsFbPBs7lX+6CAjb7YEE3U0nm0Gy7aZKq8dDM0ITjsgZIbkxH+pJqj/OJSw/ MC3Rgdpkdr9z51FNb8TtiRqd4/z3lmwZ -----END CERTIFICATE-----Generated at Mon Oct 20 16:15:33 2025 by rpki-client