$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft File: JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft (raw, json) Hash identifier: qQVFhY9XmWw43FOdwLXDht3jINXb7mBcHTkxwVhBI5A= Subject key identifier: 80:6F:FA:9B:01:7D:01:75:DA:61:2E:1A:86:A8:C8:D4:FE:F1:52:9D Authority key identifier: 24:5F:F4:5C:28:65:2B:F7:15:65:85:A3:FD:9A:79:74:E5:37:5D:03 Certificate issuer: /CN=A91B8A86/serialNumber=245FF45C28652BF7156585A3FD9A7974E5375D03 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft Manifest number: 41 Signing time: Sun 19 Oct 2025 10:53:26 +0000 Manifest this update: Sun 19 Oct 2025 10:53:25 +0000 Manifest next update: Sun 26 Oct 2025 10:53:25 +0000 Files and hashes: 1: JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl (hash: DrzN8/6yE2iz7AUwMQZiQ2h831iymbKvccI4XsSY2hQ=) 2: E879D5BC4B1911F08F30867AC4F9AE02.roa (hash: OZHK+au5UwVImKpl7QVZcEGwIUNhlUMC18l25bqrmZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8A86, serialNumber=245FF45C28652BF7156585A3FD9A7974E5375D03 Validity Not Before: Oct 19 10:53:25 2025 GMT Not After : Oct 26 10:53:25 2025 GMT Subject: CN=68f4c325-0b01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6a:50:9f:9d:82:23:00:9f:77:91:02:33:62: 09:fe:3a:57:3e:64:32:f6:2b:4f:64:14:97:24:0b: 52:4a:08:73:9b:a5:d9:5b:0b:5f:a7:9b:9e:d2:84: e3:71:f4:06:64:a9:32:74:03:22:7c:c8:ac:3c:5e: c1:f7:a2:54:85:ba:61:9d:e8:eb:8e:eb:42:3a:df: 35:70:37:7b:e5:4e:35:47:96:f1:0e:cc:38:94:47: 94:9a:a5:c2:bc:a4:b4:9a:64:26:24:42:32:f9:0b: 83:ad:77:60:08:7e:74:48:c6:65:d5:f1:34:0a:3a: a1:d6:55:f8:8b:42:a5:09:2a:24:49:17:c9:87:3e: c8:02:5a:37:c1:04:77:29:f9:3f:34:ca:62:3c:87: c8:dd:4a:69:61:8d:e1:86:32:38:a8:41:fb:57:e0: b4:c1:c2:35:b4:b6:9d:14:cf:3c:bb:75:bd:2c:3a: a6:0b:95:00:1b:0e:b8:25:2f:b2:cb:b7:4d:b2:cf: 7e:a0:51:e8:1e:30:d5:41:f1:e2:fb:a0:fe:6a:7e: 53:a5:f6:1c:71:e4:44:41:3d:07:70:e7:12:09:bd: fe:e0:c7:ad:d5:67:2d:70:14:75:f7:93:d0:97:01: e2:a6:ae:9f:41:09:8d:29:65:1b:e8:a7:61:01:40: 97:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:6F:FA:9B:01:7D:01:75:DA:61:2E:1A:86:A8:C8:D4:FE:F1:52:9D X509v3 Authority Key Identifier: keyid:24:5F:F4:5C:28:65:2B:F7:15:65:85:A3:FD:9A:79:74:E5:37:5D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JF_0XChlK_cVZYWj_Zp5dOU3XQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8A86/B63F31AE4B1511F0AC3AA248C4F9AE02/JF_0XChlK_cVZYWj_Zp5dOU3XQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:43:07:10:23:b2:bd:be:c5:17:01:c5:8e:25:43:f3:ea:b6: 8e:f7:aa:c4:e4:88:47:55:6d:29:57:6e:6f:e3:21:51:ea:7c: 5a:d3:47:74:55:13:f1:76:6a:12:bf:88:ae:9e:3f:ab:94:fb: 3d:a2:e0:99:98:2b:91:99:24:aa:28:db:43:1b:9d:b2:3a:d8: e8:e0:4d:01:14:80:2b:30:97:ff:c9:d3:4c:ae:7d:7b:8b:94: ff:ca:f7:c1:68:5e:74:46:ea:9f:9a:4c:59:5a:c1:18:d7:11: 7d:20:c6:00:55:d8:06:e8:98:87:a1:1d:bf:d2:5c:01:4d:6d: b7:43:f4:fc:7b:a1:24:ed:8e:db:82:76:b6:e1:5c:83:1b:23: df:c6:18:cd:e3:d5:62:39:ef:6b:b1:52:d3:17:cb:e5:2a:2d: 1b:3a:7e:94:5e:cc:dc:c1:35:01:11:e9:1d:65:06:39:4d:e0: a3:e9:4a:db:ba:88:c0:78:10:2f:8e:a2:84:1d:2a:38:42:5b: 4a:41:6f:b7:2f:91:47:7f:d0:13:bb:2f:fd:fe:31:9f:d8:d1: 78:09:2a:71:80:3e:b3:07:c5:20:e3:a0:18:94:97:7e:3d:0c: 29:7c:ad:3d:50:a8:d5:03:9c:b6:4f:56:ab:98:85:4f:47:48: 19:70:9c:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEE4NjExMC8GA1UEBRMoMjQ1RkY0NUMyODY1MkJGNzE1NjU4NUEzRkQ5QTc5NzRF NTM3NUQwMzAeFw0yNTEwMTkxMDUzMjVaFw0yNTEwMjYxMDUzMjVaMBgxFjAUBgNV BAMTDTY4ZjRjMzI1LTBiMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/alCfnYIjAJ93kQIzYgn+Olc+ZDL2K09kFJckC1JKCHObpdlbC1+nm57ShONx 9AZkqTJ0AyJ8yKw8XsH3olSFumGd6OuO60I63zVwN3vlTjVHlvEOzDiUR5SapcK8 pLSaZCYkQjL5C4Otd2AIfnRIxmXV8TQKOqHWVfiLQqUJKiRJF8mHPsgCWjfBBHcp +T80ymI8h8jdSmlhjeGGMjioQftX4LTBwjW0tp0Uzzy7db0sOqYLlQAbDrglL7LL t02yz36gUegeMNVB8eL7oP5qflOl9hxx5ERBPQdw5xIJvf7gx63VZy1wFHX3k9CX AeKmrp9BCY0pZRvop2EBQJfXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgG/6mwF9 AXXaYS4ahqjI1P7xUp0wHwYDVR0jBBgwFoAUJF/0XChlK/cVZYWj/Zp5dOU3XQMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QTg2L0I2M0YzMUFFNEIx NTExRjBBQzNBQTI0OEM0RjlBRTAyL0pGXzBYQ2hsS19jVlpZV2pfWnA1ZE9VM1hR TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkZfMFhDaGxLX2NWWllXal9acDVkT1UzWFFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 QTg2L0I2M0YzMUFFNEIxNTExRjBBQzNBQTI0OEM0RjlBRTAyL0pGXzBYQ2hsS19j VlpZV2pfWnA1ZE9VM1hRTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACdDBxAjsr2+xRcBxY4lQ/Pqto73qsTkiEdVbSlXbm/jIVHqfFrTR3RV E/F2ahK/iK6eP6uU+z2i4JmYK5GZJKoo20MbnbI62OjgTQEUgCswl//J00yufXuL lP/K98FoXnRG6p+aTFlawRjXEX0gxgBV2AbomIehHb/SXAFNbbdD9Px7oSTtjtuC drbhXIMbI9/GGM3j1WI572uxUtMXy+UqLRs6fpRezNzBNQER6R1lBjlN4KPpStu6 iMB4EC+OooQdKjhCW0pBb7cvkUd/0BO7L/3+MZ/Y0XgJKnGAPrMHxSDjoBiUl349 DCl8rT1QqNUDnLZPVquYhU9HSBlwnMA= -----END CERTIFICATE-----Generated at Mon Oct 20 04:48:49 2025 by rpki-client