$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft File: jNGQoUOqLh5IcwOxPcBT7Re86x4.mft (raw, json) Hash identifier: I+oTtcTLiyVI3bTd5QuQoV2ZQH6EEMlawnXTqin/7M0= Subject key identifier: D4:06:65:56:00:66:AE:91:D1:6A:54:09:05:CD:2D:87:51:D0:67:0B Authority key identifier: 8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E Certificate issuer: /CN=A91BDF2B/serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft Manifest number: 49 Signing time: Sun 19 Oct 2025 10:48:34 +0000 Manifest this update: Sun 19 Oct 2025 10:48:33 +0000 Manifest next update: Sun 26 Oct 2025 10:48:33 +0000 Files and hashes: 1: jNGQoUOqLh5IcwOxPcBT7Re86x4.crl (hash: mcOrfQ48Fsl6w4mP1Y7UGXQqpALVJatume+7MzjCTAo=) 2: 653C22F441C311F0999A9935C4F9AE02.roa (hash: Lf3alCeyUDstgnP7x5+oblCm0tv/uJ2YmuuNF6Xn0z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDF2B, serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Validity Not Before: Oct 19 10:48:33 2025 GMT Not After : Oct 26 10:48:33 2025 GMT Subject: CN=68f4c201-522d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f1:62:85:fc:41:58:bc:3e:6c:dd:e0:d9:ea: ad:38:fd:f3:27:d9:a4:67:aa:81:aa:c5:08:7f:94: 5d:8b:5b:0d:c3:ba:a6:d5:43:ea:12:e9:ae:4f:ad: 01:82:76:3a:75:d2:db:41:b2:4f:61:98:15:2d:af: 25:66:ca:76:f7:cb:04:3e:34:54:73:ee:23:e3:b6: db:66:91:b9:3b:6f:27:b9:6f:b1:70:95:25:d0:43: c4:68:ae:ed:7e:6b:df:94:9e:7d:5b:82:7c:df:c2: c2:00:33:cf:af:63:87:30:03:50:2f:2d:b2:23:f1: c8:a9:82:fd:0b:b8:f4:db:4a:f9:7d:7e:4f:0f:06: 80:64:7d:89:3d:26:f5:a0:51:0f:db:b8:6c:4d:59: 64:c8:39:ab:a2:70:2c:31:4b:70:ab:47:31:87:85: e5:d4:51:bd:f0:7d:15:28:2d:b6:a2:69:8b:aa:1e: 92:5f:cb:32:c2:bd:69:92:47:14:fb:d7:73:b9:49: d1:b7:9b:51:27:49:8f:09:ae:b9:2c:20:60:96:1b: 3b:8a:74:e5:90:a1:00:25:fa:49:80:91:44:5e:1b: 5e:45:cd:5e:44:ca:98:6b:21:cf:93:42:4b:45:fe: 66:63:dc:e7:04:40:72:53:5f:30:76:48:78:90:7b: 19:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:06:65:56:00:66:AE:91:D1:6A:54:09:05:CD:2D:87:51:D0:67:0B X509v3 Authority Key Identifier: keyid:8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:e9:a4:3d:64:19:c1:77:56:40:93:c1:06:3c:19:05:8e:b2: eb:37:63:e7:4a:ed:8b:60:5e:b1:87:5e:4c:52:7c:2a:ab:6b: d5:58:09:d3:43:39:45:2b:f1:c9:81:98:69:8f:e7:46:e2:4a: e2:46:90:67:de:45:f4:e5:60:6f:e3:fc:75:d2:2e:40:9c:89: 73:de:6b:f1:d3:40:20:fd:fd:73:80:eb:e6:72:6a:05:6f:0f: 3b:3d:23:fd:ae:ab:6f:5e:ad:ba:4f:84:f0:51:84:a7:e0:bc: 6b:89:97:ca:2c:52:67:aa:99:6e:60:68:dd:88:b1:06:eb:eb: b3:21:bc:8e:3c:e8:bc:4f:0d:2f:92:83:3b:d8:58:42:11:76: 14:91:34:ce:fb:0e:b8:34:7e:35:3f:15:f9:52:2e:d2:b2:4c: 59:75:11:96:b0:6e:c4:a2:4c:fc:f3:4d:82:f1:98:a9:09:ef: ca:a4:2b:22:eb:45:1f:a7:7f:1b:23:0f:3c:24:e1:22:c9:91: 69:1c:d2:22:ef:b2:76:1a:88:b3:e1:ea:b3:f5:cc:ce:c0:0b: 50:b1:2f:8d:ad:00:59:b3:8c:e8:da:5f:fa:f5:c5:d7:56:32: 1f:33:77:90:2c:7f:e6:4f:32:b0:08:7e:08:ed:3f:bf:b5:bd: 89:33:99:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REYyQjExMC8GA1UEBRMoOENEMTkwQTE0M0FBMkUxRTQ4NzMwM0IxM0RDMDUzRUQx N0JDRUIxRTAeFw0yNTEwMTkxMDQ4MzNaFw0yNTEwMjYxMDQ4MzNaMBgxFjAUBgNV BAMTDTY4ZjRjMjAxLTUyMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP8WKF/EFYvD5s3eDZ6q04/fMn2aRnqoGqxQh/lF2LWw3DuqbVQ+oS6a5PrQGC djp10ttBsk9hmBUtryVmynb3ywQ+NFRz7iPjtttmkbk7bye5b7FwlSXQQ8Roru1+ a9+Unn1bgnzfwsIAM8+vY4cwA1AvLbIj8cipgv0LuPTbSvl9fk8PBoBkfYk9JvWg UQ/buGxNWWTIOauicCwxS3CrRzGHheXUUb3wfRUoLbaiaYuqHpJfyzLCvWmSRxT7 13O5SdG3m1EnSY8JrrksIGCWGzuKdOWQoQAl+kmAkUReG15FzV5EyphrIc+TQktF /mZj3OcEQHJTXzB2SHiQexkjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1AZlVgBm rpHRalQJBc0th1HQZwswHwYDVR0jBBgwFoAUjNGQoUOqLh5IcwOxPcBT7Re86x4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERjJCLzZDMkI3QjFDNDFC QjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1SWN3T3hQY0JUN1JlODZ4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvak5HUW9VT3FMaDVJY3dPeFBjQlQ3UmU4Nng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE RjJCLzZDMkI3QjFDNDFCQjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1 SWN3T3hQY0JUN1JlODZ4NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABfppD1kGcF3VkCTwQY8GQWOsus3Y+dK7YtgXrGHXkxSfCqra9VYCdND OUUr8cmBmGmP50biSuJGkGfeRfTlYG/j/HXSLkCciXPea/HTQCD9/XOA6+ZyagVv Dzs9I/2uq29erbpPhPBRhKfgvGuJl8osUmeqmW5gaN2IsQbr67MhvI486LxPDS+S gzvYWEIRdhSRNM77Drg0fjU/FflSLtKyTFl1EZawbsSiTPzzTYLxmKkJ78qkKyLr RR+nfxsjDzwk4SLJkWkc0iLvsnYaiLPh6rP1zM7AC1CxL42tAFmzjOjaX/r1xddW Mh8zd5Asf+ZPMrAIfgjtP7+1vYkzmWQ= -----END CERTIFICATE-----Generated at Mon Oct 20 23:11:59 2025 by rpki-client