$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft File: CJx_ANge3WTbq20DcSKyoh8NO-Y.mft (raw, json) Hash identifier: 8qyIV2V72QOf3pGuw1Q4clF1y96GjqzI/QA/wc3ryXw= Subject key identifier: 6B:65:7B:81:29:45:69:9E:64:FC:D8:A0:4D:57:24:FE:26:45:2C:68 Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft Manifest number: 023A Signing time: Sun 19 Oct 2025 04:02:58 +0000 Manifest this update: Sun 19 Oct 2025 04:02:58 +0000 Manifest next update: Sun 26 Oct 2025 04:02:58 +0000 Files and hashes: 1: CJx_ANge3WTbq20DcSKyoh8NO-Y.crl (hash: 3wTYpxemrp1ze/GzPem7K9CS2swl/3mRSiWFYJi/7Zk=) 2: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (hash: BP/glgq2z1dVEQeJ08W20vuLvcBOY54eQXp8HeomvRk=) 3: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (hash: FNYorUcrDZxaoz80iDO589JZkm4kbfGRGurVB7ty8DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Oct 19 04:02:58 2025 GMT Not After : Oct 26 04:02:58 2025 GMT Subject: CN=68f462f2-5050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d2:e3:13:db:32:f4:d3:ee:24:3d:8f:f3:28: a8:1c:a8:7f:97:8e:1b:1e:89:6b:42:9b:ed:14:74: 13:92:8d:97:72:f2:de:2a:17:2b:0d:f2:48:cd:fc: 33:26:51:14:b1:20:51:c6:be:39:09:29:f8:16:7a: 2b:db:aa:30:ea:c1:ab:e3:07:63:12:89:39:b9:ed: e8:4b:1c:02:39:e5:13:ba:0c:6c:72:79:ce:41:8e: f3:ae:9b:a6:90:f8:a8:e2:90:ac:3b:15:80:b1:aa: 76:a6:ac:08:db:da:98:1c:bb:32:07:df:ff:e5:a9: 52:b9:22:6e:ce:05:98:ab:2d:f9:39:8b:ad:ed:7f: 3b:d4:e3:df:37:47:10:53:a9:70:17:a1:63:5c:a7: 2a:59:4c:77:da:a3:be:98:0a:97:4c:86:70:1b:3e: a8:3e:26:79:9e:e6:03:e1:4e:8d:bb:47:6c:f1:d6: ac:0d:3f:03:a1:d3:e1:52:13:4f:0e:9e:bc:bd:c2: b8:95:f8:fd:17:81:70:7f:21:67:0e:05:61:64:7a: ae:98:09:ae:8a:eb:a2:e8:69:80:6e:5b:a6:9f:80: 94:53:98:1a:4e:e2:42:b4:9d:95:43:5c:58:7f:cc: b9:ed:65:2d:ef:33:18:a2:0f:e6:4b:42:c5:4f:9a: c3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:65:7B:81:29:45:69:9E:64:FC:D8:A0:4D:57:24:FE:26:45:2C:68 X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:45:f7:d4:af:9d:59:57:2f:4e:96:f1:7a:57:14:56:a3:af: 39:09:0a:f1:fb:dc:ec:78:4c:1f:c8:97:5f:e9:7c:07:0a:7f: 94:65:1c:76:92:ce:bc:a5:82:79:d3:4b:7e:d2:cc:55:20:e2: 2a:9d:66:bd:6e:9c:1b:28:fb:88:f8:eb:d9:69:5e:d7:49:85: 24:92:dd:51:98:c4:03:ac:e0:f7:50:f3:33:8e:a2:f1:4a:db: 46:c0:12:15:ac:74:a8:27:6b:54:a8:22:de:80:40:c9:68:00: fd:b4:fa:f0:dd:20:93:51:e2:ee:5e:30:1e:fe:c4:0f:41:86: f4:37:bf:04:61:f3:66:a4:b2:3f:9a:96:41:d9:6d:e1:4f:d6: f4:ec:c2:fa:75:5a:94:b8:8d:98:d6:f9:c0:6b:55:97:a1:47: 98:65:8e:ee:56:c7:ec:ba:8e:95:e2:24:81:74:79:9e:2a:21: be:92:18:f3:f7:e0:62:27:0e:4a:61:c4:43:f1:c7:74:c8:50: a8:14:df:03:85:fb:78:85:15:41:43:f7:f3:58:4f:4c:d0:02: 02:5a:e0:18:f8:29:ae:1d:e0:b1:c9:e2:b4:13:73:46:07:51: 50:2c:12:7c:3b:4f:f3:d6:1b:f8:07:46:6f:1b:b0:8b:e2:a2: 3e:23:0f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjUxMDE5MDQwMjU4WhcNMjUxMDI2MDQwMjU4WjAYMRYwFAYD VQQDEw02OGY0NjJmMi01MDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NLjE9sy9NPuJD2P8yioHKh/l44bHolrQpvtFHQTko2XcvLeKhcrDfJIzfwz JlEUsSBRxr45CSn4Fnor26ow6sGr4wdjEok5ue3oSxwCOeUTugxscnnOQY7zrpum kPio4pCsOxWAsap2pqwI29qYHLsyB9//5alSuSJuzgWYqy35OYut7X871OPfN0cQ U6lwF6FjXKcqWUx32qO+mAqXTIZwGz6oPiZ5nuYD4U6Nu0ds8dasDT8DodPhUhNP Dp68vcK4lfj9F4FwfyFnDgVhZHqumAmuiuui6GmAblumn4CUU5gaTuJCtJ2VQ1xY f8y57WUt7zMYog/mS0LFT5rDKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtle4Ep RWmeZPzYoE1XJP4mRSxoMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjVGMi80QUVFRDkxQzQzQjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNX VGJxMjBEY1NLeW9oOE5PLVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7RffUr51ZVy9OlvF6VxRWo685CQrx+9zseEwfyJdf6XwHCn+UZRx2 ks68pYJ500t+0sxVIOIqnWa9bpwbKPuI+OvZaV7XSYUkkt1RmMQDrOD3UPMzjqLx SttGwBIVrHSoJ2tUqCLegEDJaAD9tPrw3SCTUeLuXjAe/sQPQYb0N78EYfNmpLI/ mpZB2W3hT9b07ML6dVqUuI2Y1vnAa1WXoUeYZY7uVsfsuo6V4iSBdHmeKiG+khjz 9+BiJw5KYcRD8cd0yFCoFN8Dhft4hRVBQ/fzWE9M0AICWuAY+CmuHeCxyeK0E3NG B1FQLBJ8O0/z1hv4B0ZvG7CL4qI+Iw82 -----END CERTIFICATE-----Generated at Mon Oct 20 19:13:34 2025 by rpki-client