$ rpki-client -vvf rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft File: jFWTypaApeo4eDP9NEAjS56AINA.mft (raw, json) Hash identifier: SnGEqLzJSyiAfQ2CyD7Z/luqNyNpEUSufsN4v48gjI0= Subject key identifier: 98:1B:2C:AA:50:FD:2E:01:C9:AB:CB:E9:88:4D:B3:47:25:59:1B:4C Authority key identifier: 8C:55:93:CA:96:80:A5:EA:38:78:33:FD:34:40:23:4B:9E:80:20:D0 Certificate issuer: /CN=A91D78FD/serialNumber=8C5593CA9680A5EA387833FD3440234B9E8020D0 Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft Manifest number: 0676 Signing time: Sun 19 Oct 2025 00:05:39 +0000 Manifest this update: Sun 19 Oct 2025 00:05:39 +0000 Manifest next update: Sun 26 Oct 2025 00:05:39 +0000 Files and hashes: 1: jFWTypaApeo4eDP9NEAjS56AINA.crl (hash: BeRxt/08Nsn3M8Z1Mi3Ru/Vhq6TIDTeI1+g//gkyHik=) 2: F603D584E99611EDB0837738C4F9AE02.roa (hash: Okhu1FQgQA+Kf0eFI37SSlIwutQLAOMIG0YXzuCGyrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.crl rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D78FD, serialNumber=8C5593CA9680A5EA387833FD3440234B9E8020D0 Validity Not Before: Oct 19 00:05:39 2025 GMT Not After : Oct 26 00:05:39 2025 GMT Subject: CN=68f42b53-c22d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3b:72:16:a5:10:50:13:43:ac:33:df:ff:98: 80:fd:9e:0e:96:da:32:29:9f:f8:44:bb:1b:70:93: 55:94:67:a2:62:75:32:9d:cf:2f:71:de:82:5e:6a: f4:9f:27:eb:64:c1:e1:e6:9a:09:af:d4:35:4e:10: a3:35:72:14:4e:1a:dc:77:70:2c:c1:e3:ca:55:fc: 7e:95:d2:36:95:7d:a8:12:c1:ed:0f:70:8c:48:73: dd:5c:b6:a2:e4:1d:0b:eb:44:e1:ae:cc:8b:ff:4c: 87:4c:08:7e:60:9e:ad:a2:07:f9:fc:c9:c4:f3:ab: 46:43:98:64:05:22:df:09:eb:63:55:9f:1a:46:e1: 60:d2:b0:0d:a3:b9:f1:cd:94:4c:b6:16:05:49:6a: ca:0d:5d:23:87:e7:e5:39:78:69:95:15:ee:ec:1a: 0e:55:af:37:e9:3c:13:97:3d:43:fa:db:2e:43:50: 80:f1:e6:bd:22:34:d8:6f:87:05:7f:78:94:dd:c4: c8:08:7c:51:15:ef:0f:3d:40:c8:9b:6a:1f:a7:61: 52:34:a2:b6:22:5c:85:49:57:0c:5a:86:8e:41:7d: 18:bc:de:88:dc:a7:78:07:fb:38:33:40:72:2c:76: 8c:8f:25:05:1c:ad:7f:50:dd:32:2e:66:48:3b:ab: eb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:1B:2C:AA:50:FD:2E:01:C9:AB:CB:E9:88:4D:B3:47:25:59:1B:4C X509v3 Authority Key Identifier: keyid:8C:55:93:CA:96:80:A5:EA:38:78:33:FD:34:40:23:4B:9E:80:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFWTypaApeo4eDP9NEAjS56AINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D78FD/C80F6F909B6D11EB82FA033EC4F9AE02/jFWTypaApeo4eDP9NEAjS56AINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ec:3c:15:55:15:7a:c4:52:5d:e8:c2:7f:90:69:2d:6c:3a: 21:8a:c6:27:96:2c:ae:74:87:1b:35:3d:7c:95:d7:4a:0a:22: 3a:24:91:99:29:a8:cb:48:f3:fc:a2:28:ce:3f:84:f3:d0:c6: 99:ce:47:1d:f5:6e:e7:b3:82:2d:a2:ba:f7:7c:e4:96:0f:17: 00:3b:d7:6e:0f:db:2f:a5:8d:54:b2:d6:67:ac:33:b1:03:38: 5f:58:66:ac:e1:76:f1:49:7a:8e:bb:8a:45:ca:f3:04:ce:58: 6a:cc:70:54:26:9c:56:a5:a8:6b:57:c1:e5:8d:c5:92:a6:08: ad:80:98:e7:bd:53:ff:49:38:b6:3b:67:a5:ae:71:0a:a3:cc: 56:97:09:1b:0b:7d:eb:bc:05:af:e1:69:3c:30:9b:8d:7b:d6: 9b:bf:8f:a2:2d:1f:57:22:18:2e:83:0c:92:a7:58:ee:d4:cd: 6f:2b:27:8b:bd:a5:cc:3a:d4:57:ca:bc:ee:70:81:64:98:7a: 0b:81:84:70:db:45:a8:6e:7c:45:32:c6:38:4d:ec:e2:05:7b: b2:79:9a:97:21:8f:97:18:1a:eb:cb:b8:cd:e2:2a:8c:d4:db: 96:1c:a4:fa:f4:be:3f:a1:1b:e1:e9:16:7b:56:c7:6e:7d:3c: c9:b2:be:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc4RkQxMTAvBgNVBAUTKDhDNTU5M0NBOTY4MEE1RUEzODc4MzNGRDM0NDAyMzRC OUU4MDIwRDAwHhcNMjUxMDE5MDAwNTM5WhcNMjUxMDI2MDAwNTM5WjAYMRYwFAYD VQQDEw02OGY0MmI1My1jMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DtyFqUQUBNDrDPf/5iA/Z4OltoyKZ/4RLsbcJNVlGeiYnUync8vcd6CXmr0 nyfrZMHh5poJr9Q1ThCjNXIUThrcd3AswePKVfx+ldI2lX2oEsHtD3CMSHPdXLai 5B0L60ThrsyL/0yHTAh+YJ6togf5/MnE86tGQ5hkBSLfCetjVZ8aRuFg0rANo7nx zZRMthYFSWrKDV0jh+flOXhplRXu7BoOVa836TwTlz1D+tsuQ1CA8ea9IjTYb4cF f3iU3cTICHxRFe8PPUDIm2ofp2FSNKK2IlyFSVcMWoaOQX0YvN6I3Kd4B/s4M0By LHaMjyUFHK1/UN0yLmZIO6vrKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgbLKpQ /S4ByavL6YhNs0clWRtMMB8GA1UdIwQYMBaAFIxVk8qWgKXqOHgz/TRAI0uegCDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzhGRC9DODBGNkY5MDlC NkQxMUVCODJGQTAzM0VDNEY5QUUwMi9qRldUeXBhQXBlbzRlRFA5TkVBalM1NkFJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGV1R5cGFBcGVvNGVEUDlORUFqUzU2QUlOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzhGRC9DODBGNkY5MDlCNkQxMUVCODJGQTAzM0VDNEY5QUUwMi9qRldUeXBhQXBl bzRlRFA5TkVBalM1NkFJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB7DwVVRV6xFJd6MJ/kGktbDohisYnliyudIcbNT18lddKCiI6JJGZ KajLSPP8oijOP4Tz0MaZzkcd9W7ns4Itorr3fOSWDxcAO9duD9svpY1UstZnrDOx AzhfWGas4XbxSXqOu4pFyvMEzlhqzHBUJpxWpahrV8HljcWSpgitgJjnvVP/STi2 O2elrnEKo8xWlwkbC33rvAWv4Wk8MJuNe9abv4+iLR9XIhgugwySp1ju1M1vKyeL vaXMOtRXyrzucIFkmHoLgYRw20WobnxFMsY4TeziBXuyeZqXIY+XGBrry7jN4iqM 1NuWHKT69L4/oRvh6RZ7VsdufTzJsr7c -----END CERTIFICATE-----Generated at Mon Oct 20 04:11:52 2025 by rpki-client