$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft File: JfnbYAet9vV-xO_3piv01C2nXsU.mft (raw, json) Hash identifier: R5OHtK3vbUyNywaJdn74VImFn7erOsJlkqzZab94JEk= Subject key identifier: C7:37:15:4A:14:B6:47:32:D1:60:6C:ED:3C:29:2A:01:CF:25:F5:2E Authority key identifier: 25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 Certificate issuer: /CN=A91D3F79/serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft Manifest number: 0178 Signing time: Sun 19 Oct 2025 06:25:43 +0000 Manifest this update: Sun 19 Oct 2025 06:25:42 +0000 Manifest next update: Sun 26 Oct 2025 06:25:42 +0000 Files and hashes: 1: JfnbYAet9vV-xO_3piv01C2nXsU.crl (hash: RgL6FNDqOtEeYH44ZGOXDG4RsHgrzFKg3UH4SBo4m2A=) 2: F4CDCE666F1C11EE8CA3F26AC4F9AE02.roa (hash: mEWfsTcA2IvJ08SERafVpG79nAxQN7WQ08fS/psaf1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3F79, serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Validity Not Before: Oct 19 06:25:42 2025 GMT Not After : Oct 26 06:25:42 2025 GMT Subject: CN=68f48466-5e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b8:56:7d:c7:18:f2:75:cc:5e:74:2f:4e:f5: db:3a:3e:3e:91:ed:04:ea:50:ae:0b:2b:08:94:2b: a1:34:62:17:6c:91:be:19:34:82:b7:96:57:e9:81: 0a:40:e1:cc:75:94:f4:ae:8b:a8:3e:ed:7e:21:b0: e0:ac:71:65:a6:f6:56:e7:04:b9:ef:82:52:c2:e6: 47:e7:ed:bc:35:21:3f:22:5a:df:33:7c:63:d5:a1: db:28:2c:ec:ca:e6:1f:28:82:65:b9:89:79:b4:26: d8:63:75:ea:8e:31:9b:41:07:87:49:a4:95:61:2d: f4:bf:29:8c:af:34:af:60:a2:79:5f:37:f4:53:8d: da:bf:4d:47:52:bf:1f:b2:79:d1:da:c1:88:13:53: 85:45:5f:b9:7c:8a:e1:13:90:00:a9:a9:02:f4:5c: b0:12:4e:59:bf:d3:d4:a6:ce:f2:f2:7d:22:ef:a9: 69:72:e7:94:57:aa:ba:c7:63:dd:87:60:81:64:13: c9:e2:52:87:93:73:ca:91:e3:9b:95:e8:54:6b:f2: fb:7b:48:17:a9:3e:8e:80:7f:2a:6a:69:15:d6:2e: 47:7e:f6:ca:04:40:86:b0:00:da:16:7b:89:9c:67: 20:44:02:1f:20:44:62:aa:21:ba:21:31:3f:51:1b: 41:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:37:15:4A:14:B6:47:32:D1:60:6C:ED:3C:29:2A:01:CF:25:F5:2E X509v3 Authority Key Identifier: keyid:25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4a:74:0f:7e:df:f4:a5:34:aa:2d:f7:ff:56:0e:e7:6e:a0: fe:12:a7:03:04:90:93:d3:cd:89:39:a0:f6:81:b4:cf:0e:b6: 79:7a:26:3d:f5:69:06:d0:89:87:50:d7:8e:eb:7f:07:7c:aa: 6d:27:c7:d9:96:09:23:ae:64:27:40:ab:8f:44:fb:b9:a5:31: 83:35:8b:9c:41:3f:f5:91:b1:e2:22:6d:fe:02:56:33:5b:e6: 09:30:a3:da:47:eb:da:5c:f4:66:38:f5:1d:15:df:d8:bd:f3: f3:5a:5e:e9:62:87:fa:09:79:58:52:73:5d:bc:2d:7a:f1:12: c9:d9:fb:89:82:ff:82:c3:52:91:b2:1e:d5:aa:c1:4c:bf:74: 40:86:8a:98:2f:c0:a6:ac:ef:04:22:bc:16:04:89:9b:2e:fe: 70:51:5f:06:b4:24:89:2b:5d:7b:a8:a0:9c:3f:1f:81:0d:b9: 30:0f:e7:7e:aa:a2:ab:93:66:a1:ab:75:c3:63:c1:fa:f4:52: a9:72:fa:f6:89:30:79:f3:79:1c:99:05:11:23:d8:8f:d2:e5: 3e:40:27:5c:1b:b7:f3:66:4e:63:15:7e:cf:e7:8e:ed:3f:44: 3f:b7:64:14:07:0a:32:17:fd:2e:dc:1d:0a:88:97:74:f5:0c: ed:90:59:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNGNzkxMTAvBgNVBAUTKDI1RjlEQjYwMDdBREY2RjU3RUM0RUZGN0E2MkJGNEQ0 MkRBNzVFQzUwHhcNMjUxMDE5MDYyNTQyWhcNMjUxMDI2MDYyNTQyWjAYMRYwFAYD VQQDEw02OGY0ODQ2Ni01ZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbhWfccY8nXMXnQvTvXbOj4+ke0E6lCuCysIlCuhNGIXbJG+GTSCt5ZX6YEK QOHMdZT0rouoPu1+IbDgrHFlpvZW5wS574JSwuZH5+28NSE/IlrfM3xj1aHbKCzs yuYfKIJluYl5tCbYY3XqjjGbQQeHSaSVYS30vymMrzSvYKJ5Xzf0U43av01HUr8f snnR2sGIE1OFRV+5fIrhE5AAqakC9FywEk5Zv9PUps7y8n0i76lpcueUV6q6x2Pd h2CBZBPJ4lKHk3PKkeOblehUa/L7e0gXqT6OgH8qamkV1i5HfvbKBECGsADaFnuJ nGcgRAIfIERiqiG6ITE/URtBZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMc3FUoU tkcy0WBs7TwpKgHPJfUuMB8GA1UdIwQYMBaAFCX522AHrfb1fsTv96Yr9NQtp17F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Y3OS9GQTMxQTJCMjZG MUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2Vi14T18zcGl2MDFDMm5Y c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pmbmJZQWV0OXZWLXhPXzNwaXYwMUMyblhzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Y3OS9GQTMxQTJCMjZGMUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2 Vi14T18zcGl2MDFDMm5Yc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhSnQPft/0pTSqLff/Vg7nbqD+EqcDBJCT082JOaD2gbTPDrZ5eiY9 9WkG0ImHUNeO638HfKptJ8fZlgkjrmQnQKuPRPu5pTGDNYucQT/1kbHiIm3+AlYz W+YJMKPaR+vaXPRmOPUdFd/YvfPzWl7pYof6CXlYUnNdvC168RLJ2fuJgv+Cw1KR sh7VqsFMv3RAhoqYL8CmrO8EIrwWBImbLv5wUV8GtCSJK117qKCcPx+BDbkwD+d+ qqKrk2ahq3XDY8H69FKpcvr2iTB583kcmQURI9iP0uU+QCdcG7fzZk5jFX7P547t P0Q/t2QUBwoyF/0u3B0KiJd09QztkFkg -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:21 2025 by rpki-client