$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: w2ZEkw3kQEjpI3O0Sb29fuRgVKZZozf96h9TqXPsvU8= Subject key identifier: E8:74:04:5A:94:DF:37:98:88:B8:CB:9B:2C:0E:96:D2:E1:40:4E:DD Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D6C Signing time: Sat 18 Oct 2025 16:26:06 +0000 Manifest this update: Sat 18 Oct 2025 16:26:05 +0000 Manifest next update: Sat 25 Oct 2025 16:26:05 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: uUuW9gn2hKgww3SxOLKX5SXXjhLySSzJ6pzaB7sKOxo=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: ptNgrWHvzJHQ4AbkataHwe2RnXoFWeh5k6roCCdUJ6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7547 (0x1d7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Oct 18 16:26:05 2025 GMT Not After : Oct 25 16:26:05 2025 GMT Subject: CN=68f3bf9e-7aef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:49:ae:65:64:5f:2a:2f:e5:f0:d1:8f:d8: 0f:1c:30:3d:67:bc:cb:67:d0:fa:ef:a7:51:3c:f3: ad:48:0e:af:11:d0:8a:3e:3c:22:49:da:df:cd:19: 13:8b:80:b0:37:4b:5e:cb:26:70:f4:9e:5a:98:2d: 34:7e:e3:f4:37:2e:43:ef:de:e5:9a:73:d0:53:e3: 00:79:36:45:96:ff:af:65:fe:33:3c:61:74:3f:33: 1f:aa:6b:a9:10:9a:0a:62:de:5b:fa:2b:82:08:eb: 29:b6:b5:13:4b:06:e2:d2:b5:39:68:64:ef:71:2e: cf:3d:87:25:d2:60:e4:c4:26:76:05:93:25:47:80: 3b:73:b7:e8:d1:bc:b0:05:cd:44:92:a6:e8:89:68: a6:d2:07:f7:c0:6f:72:82:7c:68:ec:8b:a6:aa:ab: 81:af:90:9c:d3:cd:91:c6:a5:62:73:39:0d:d1:0b: 42:07:b2:49:92:5d:b1:ff:ca:9a:b4:40:5a:ea:d2: 75:47:b8:31:74:e6:4a:43:c4:67:f9:8b:b8:fc:45: 90:33:6d:61:27:13:41:d2:8b:71:cd:a9:6f:00:7d: fc:96:02:73:3d:8a:78:01:d0:fb:bd:a2:f8:bd:54: 19:6d:c1:27:21:3f:90:e1:cd:8b:d8:4a:30:25:fe: 2b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:74:04:5A:94:DF:37:98:88:B8:CB:9B:2C:0E:96:D2:E1:40:4E:DD X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:b8:4a:ab:40:bd:6d:05:7b:67:a6:aa:74:5f:89:88:17:5b: cf:f0:46:74:30:65:39:ea:1e:3d:ba:dd:b8:43:68:41:e0:81: 13:21:a2:71:ae:34:3d:6d:9b:a9:55:e3:ad:f4:8e:64:a9:28: 5f:90:8b:16:47:0c:bd:4a:5a:57:e1:89:4d:99:8f:20:fe:e7: 9d:8d:e0:93:69:a4:03:ca:e9:a8:52:f2:b9:59:d2:f2:4d:29: 81:a8:cf:be:53:d5:f1:03:1f:d2:12:af:d9:ed:ee:db:49:fd: dd:4a:50:b0:ac:42:08:e8:22:46:67:2c:4c:7f:6e:ee:e0:e0: c1:85:48:6c:e7:3c:4e:f7:d5:12:ba:94:ac:09:96:28:a9:f4: 14:97:f6:f3:06:6d:0f:f8:0f:80:d3:f0:24:93:97:cf:15:4f: 3c:ee:32:b4:65:6d:93:1e:b9:9a:22:01:8d:61:91:2c:97:87: 2e:96:9f:1a:6d:19:06:d2:9e:e4:d2:b2:a1:ad:3c:78:93:3d: 20:6b:f0:64:92:4d:d7:ea:05:16:d0:5a:e8:9b:b7:52:01:e9: 18:5c:1e:d7:85:97:c3:62:98:ea:dc:68:62:9b:31:96:fa:2d: 4e:b1:97:f6:e3:f0:78:fa:db:1e:08:b7:73:41:80:a7:bb:ee: d2:c9:7c:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUxMDE4MTYyNjA1WhcNMjUxMDI1MTYyNjA1WjAYMRYwFAYD VQQDEw02OGYzYmY5ZS03YWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz9JrmVkXyov5fDRj9gPHDA9Z7zLZ9D676dRPPOtSA6vEdCKPjwiSdrfzRkT i4CwN0teyyZw9J5amC00fuP0Ny5D797lmnPQU+MAeTZFlv+vZf4zPGF0PzMfqmup EJoKYt5b+iuCCOsptrUTSwbi0rU5aGTvcS7PPYcl0mDkxCZ2BZMlR4A7c7fo0byw Bc1EkqboiWim0gf3wG9ygnxo7IumqquBr5Cc082RxqViczkN0QtCB7JJkl2x/8qa tEBa6tJ1R7gxdOZKQ8Rn+Yu4/EWQM21hJxNB0otxzalvAH38lgJzPYp4AdD7vaL4 vVQZbcEnIT+Q4c2L2EowJf4rMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOh0BFqU 3zeYiLjLmywOltLhQE7dMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAuEqrQL1tBXtnpqp0X4mIF1vP8EZ0MGU56h49ut24Q2hB4IETIaJx rjQ9bZupVeOt9I5kqShfkIsWRwy9SlpX4YlNmY8g/uedjeCTaaQDyumoUvK5WdLy TSmBqM++U9XxAx/SEq/Z7e7bSf3dSlCwrEII6CJGZyxMf27u4ODBhUhs5zxO99US upSsCZYoqfQUl/bzBm0P+A+A0/Akk5fPFU887jK0ZW2THrmaIgGNYZEsl4culp8a bRkG0p7k0rKhrTx4kz0ga/Bkkk3X6gUW0From7dSAekYXB7XhZfDYpjq3GhimzGW +i1OsZf24/B4+tseCLdzQYCnu+7SyXzq -----END CERTIFICATE-----Generated at Mon Oct 20 06:49:32 2025 by rpki-client