$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft File: JSnIA8s451HjaWq3li2CMUX81lk.mft (raw, json) Hash identifier: 3TzWwn4tusofCXCxj2mKdAEHAy5yLeXxsNEiYNikRbM= Subject key identifier: 8D:5C:9B:44:35:82:28:45:EA:E0:0C:84:45:ED:D0:97:D2:02:CE:33 Authority key identifier: 25:29:C8:03:CB:38:E7:51:E3:69:6A:B7:96:2D:82:31:45:FC:D6:59 Certificate issuer: /CN=A91B6CE4/serialNumber=2529C803CB38E751E3696AB7962D823145FCD659 Certificate serial: 1315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft Manifest number: 1307 Signing time: Sat 18 Oct 2025 17:31:24 +0000 Manifest this update: Sat 18 Oct 2025 17:31:23 +0000 Manifest next update: Sat 25 Oct 2025 17:31:23 +0000 Files and hashes: 1: JSnIA8s451HjaWq3li2CMUX81lk.crl (hash: vQXF2sBLRsUiB3bB5Ci17l7f60AKZA/XTuD9l01RJWo=) 2: B3D4AEB8BFC011E8A7F4204CC4F9AE02.roa (hash: 6hOTp4SmpuhM6odO1i0HOQXN93az6Qa4OUEoe22Ijvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.crl rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4885 (0x1315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6CE4, serialNumber=2529C803CB38E751E3696AB7962D823145FCD659 Validity Not Before: Oct 18 17:31:23 2025 GMT Not After : Oct 25 17:31:23 2025 GMT Subject: CN=68f3ceec-0b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b6:8f:1c:33:a3:7c:67:86:ee:82:2b:09:93: 6b:07:de:73:ce:f7:95:38:5e:82:f8:df:4e:2a:f4: b6:87:ae:8c:cc:b1:f5:7c:06:ee:18:7e:e8:e0:a1: 58:95:9e:d0:41:77:78:6e:25:b7:7a:db:cb:a7:7d: 67:bf:2f:97:32:42:63:90:38:57:c2:02:71:8c:ce: 63:c7:2e:a8:4f:6e:ad:fb:ce:a5:c0:00:5c:84:65: 7c:9d:00:99:12:7a:16:61:61:92:fe:22:bc:06:36: 23:90:63:ab:12:dc:3f:00:e4:06:4d:b4:36:8e:c8: 18:7c:bf:0b:66:f9:17:03:c0:be:8a:64:9e:0f:be: 5a:a8:f6:ef:ac:aa:ac:61:70:9c:df:52:d8:11:04: 62:af:4e:89:0a:fd:3e:8f:db:de:d5:b0:d7:f5:0c: 4b:de:de:59:4b:f5:5a:f1:5a:3f:3b:47:8c:c9:27: a1:a0:fa:a7:48:c6:19:ae:81:d4:17:37:9c:06:89: 29:3a:d4:ec:f3:cf:8f:ae:50:c1:3a:f6:51:26:02: c3:8d:4e:51:80:b2:f5:6a:5e:76:bf:39:bd:90:c7: 2d:63:a4:d8:13:2d:cc:c8:8b:ee:00:50:72:1c:0a: 45:d2:e0:3d:3f:9d:d6:71:5d:ee:9a:92:76:ce:9a: 00:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:5C:9B:44:35:82:28:45:EA:E0:0C:84:45:ED:D0:97:D2:02:CE:33 X509v3 Authority Key Identifier: keyid:25:29:C8:03:CB:38:E7:51:E3:69:6A:B7:96:2D:82:31:45:FC:D6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:49:00:40:83:2a:ee:1d:95:b9:da:ad:95:a3:2f:be:03:b5: bf:00:88:9f:8a:6b:4d:12:44:5b:0d:df:61:a0:e3:10:3d:73: 31:35:09:98:65:8c:73:05:90:43:96:2a:96:7a:70:58:2d:4b: a9:a4:a3:f8:0a:7d:14:4b:70:31:12:c2:d6:b7:d8:90:3f:25: 3c:02:cd:2a:34:9f:08:44:56:5f:53:e7:0e:98:b4:fa:4f:74: 1c:3a:f2:3d:d4:7c:ac:8e:18:d0:8e:6f:18:0b:cf:cd:d5:e4: 75:43:70:05:d4:31:14:ec:1a:b4:b7:b7:bb:95:cb:0d:fb:eb: 33:b5:69:63:9b:cf:2a:bf:b9:7b:7a:0a:10:52:74:72:7d:38: 90:d8:d0:45:da:d8:0a:25:db:57:85:93:35:72:0f:1d:60:7e: 3f:6b:74:9a:5d:b2:ca:d5:ed:03:1e:ed:9b:19:cc:48:4d:24: cb:79:54:65:68:c6:8c:af:8e:90:1c:78:10:99:8b:f0:1e:32: b5:b2:1d:be:3d:e2:8f:c6:c4:4e:d3:e1:80:70:04:7a:e2:56: e8:22:ea:a2:11:63:bf:75:cd:0e:4a:fb:03:36:37:6a:d2:bc: 86:9b:ed:31:9d:71:42:59:58:40:12:e6:c2:cf:55:41:0f:e4: 86:83:39:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDRTQxMTAvBgNVBAUTKDI1MjlDODAzQ0IzOEU3NTFFMzY5NkFCNzk2MkQ4MjMx NDVGQ0Q2NTkwHhcNMjUxMDE4MTczMTIzWhcNMjUxMDI1MTczMTIzWjAYMRYwFAYD VQQDEw02OGYzY2VlYy0wYjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLaPHDOjfGeG7oIrCZNrB95zzveVOF6C+N9OKvS2h66MzLH1fAbuGH7o4KFY lZ7QQXd4biW3etvLp31nvy+XMkJjkDhXwgJxjM5jxy6oT26t+86lwABchGV8nQCZ EnoWYWGS/iK8BjYjkGOrEtw/AOQGTbQ2jsgYfL8LZvkXA8C+imSeD75aqPbvrKqs YXCc31LYEQRir06JCv0+j9ve1bDX9QxL3t5ZS/Va8Vo/O0eMySehoPqnSMYZroHU FzecBokpOtTs88+PrlDBOvZRJgLDjU5RgLL1al52vzm9kMctY6TYEy3MyIvuAFBy HApF0uA9P53WcV3umpJ2zpoA4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1cm0Q1 gihF6uAMhEXt0JfSAs4zMB8GA1UdIwQYMBaAFCUpyAPLOOdR42lqt5YtgjFF/NZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkNFNC8wOEVEMTc4OEJG QzAxMUU4QTZBODU1NEJDNEY5QUUwMi9KU25JQThzNDUxSGphV3EzbGkyQ01VWDgx bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTbklBOHM0NTFIamFXcTNsaTJDTVVYODFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkNFNC8wOEVEMTc4OEJGQzAxMUU4QTZBODU1NEJDNEY5QUUwMi9KU25JQThzNDUx SGphV3EzbGkyQ01VWDgxbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXSQBAgyruHZW52q2Voy++A7W/AIifimtNEkRbDd9hoOMQPXMxNQmY ZYxzBZBDliqWenBYLUuppKP4Cn0US3AxEsLWt9iQPyU8As0qNJ8IRFZfU+cOmLT6 T3QcOvI91HysjhjQjm8YC8/N1eR1Q3AF1DEU7Bq0t7e7lcsN++sztWljm88qv7l7 egoQUnRyfTiQ2NBF2tgKJdtXhZM1cg8dYH4/a3SaXbLK1e0DHu2bGcxITSTLeVRl aMaMr46QHHgQmYvwHjK1sh2+PeKPxsRO0+GAcAR64lboIuqiEWO/dc0OSvsDNjdq 0ryGm+0xnXFCWVhAEubCz1VBD+SGgzmC -----END CERTIFICATE-----Generated at Mon Oct 20 04:11:33 2025 by rpki-client