$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft File: JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft (raw, json) Hash identifier: pk5qIXmLoRYi7KdvvnBQeYrNJSxJss+CV40kd3b1jZY= Subject key identifier: 1C:98:92:1A:F6:05:E2:51:E4:7B:46:A0:05:93:DB:B9:C3:7B:E2:F6 Authority key identifier: 24:52:18:1C:B1:08:AF:11:F4:62:87:37:1B:04:13:FF:5F:82:E8:2E Certificate issuer: /CN=A91D8392/serialNumber=2452181CB108AF11F46287371B0413FF5F82E82E Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft Manifest number: 0680 Signing time: Sat 18 Oct 2025 23:58:55 +0000 Manifest this update: Sat 18 Oct 2025 23:58:53 +0000 Manifest next update: Sat 25 Oct 2025 23:58:53 +0000 Files and hashes: 1: JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl (hash: qdkig1gaJ6gIWncVsqXuJk9Q63s/2WeJKt/KlMO/SLI=) 2: 7510FBA2928911EBB0B38272C4F9AE02.roa (hash: vY9vDu953Z8A1LvSP1j7BcrWJjcpDb2f8NtmWuSIPts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8392, serialNumber=2452181CB108AF11F46287371B0413FF5F82E82E Validity Not Before: Oct 18 23:58:53 2025 GMT Not After : Oct 25 23:58:53 2025 GMT Subject: CN=68f429be-3dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a2:97:7d:e3:a2:e9:f5:9b:27:7c:8d:4c:85: 29:35:90:1e:2b:4b:18:f9:80:14:c5:e0:da:1b:43: f6:49:da:5b:2c:e9:12:3e:62:e7:31:83:00:40:cf: 13:fa:8c:51:68:68:e8:de:22:5e:1f:5c:4c:5d:ea: d1:cf:3a:89:bf:84:4a:28:b9:db:79:34:f8:a2:91: 0d:ad:53:50:b4:06:41:c5:8c:6a:c0:ff:54:a0:95: 84:1a:8e:f8:dc:25:95:e3:05:04:66:3c:eb:3b:12: eb:81:53:69:d2:46:64:12:0d:a3:ed:cc:0f:cd:ca: 68:46:06:b7:6e:37:6e:b9:c0:7d:32:f9:8f:f9:65: 0f:7f:dd:ab:ad:51:d2:62:1a:60:4c:2d:a8:b0:74: 2a:0b:22:6c:71:b8:53:47:b1:e0:5b:8c:81:04:13: 56:dd:21:d6:57:2e:75:e8:f6:b6:c9:3b:4d:2c:d9: 76:5b:71:68:f8:65:c4:60:02:be:6d:16:0a:d9:4b: ed:64:7a:90:01:38:e8:6d:fc:2c:63:ca:4f:11:d5: 4d:61:b6:32:db:50:d7:97:07:c3:71:26:99:6e:03: 7c:ef:e8:3c:3e:cc:f4:6c:13:46:d3:83:7c:e2:46: 4a:26:a6:3f:e1:5a:ca:73:1a:b4:c7:00:af:7f:e8: f7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:98:92:1A:F6:05:E2:51:E4:7B:46:A0:05:93:DB:B9:C3:7B:E2:F6 X509v3 Authority Key Identifier: keyid:24:52:18:1C:B1:08:AF:11:F4:62:87:37:1B:04:13:FF:5F:82:E8:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8392/14D9E38A928811EBBBD45671C4F9AE02/JFIYHLEIrxH0Yoc3GwQT_1-C6C4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:41:78:c5:2c:71:87:64:38:a5:f8:89:67:04:4e:99:ce:e8: 37:4f:3b:4b:5a:e5:a8:4e:35:48:b7:4d:7b:72:91:c1:30:4c: 63:3c:d5:28:b6:7b:5f:7d:38:fe:52:d9:97:4f:71:12:81:54: 6f:a5:ef:08:96:cd:86:b7:1f:d7:8b:b4:61:04:44:ee:b1:cf: a9:d5:ab:de:2c:f6:89:44:78:0b:e7:0c:8f:ce:f5:a4:bb:54: dd:6b:7a:8b:27:08:b2:80:89:de:83:c6:d0:b2:db:70:ba:61: 82:fd:0d:a7:9d:d3:38:37:36:a3:08:d7:7c:3c:d0:33:ba:72: 64:7c:5e:29:d4:fa:fc:27:6a:11:55:af:71:f3:bd:16:c8:fa: 96:b0:a0:16:13:71:a3:2a:93:a6:06:f4:1d:50:a7:82:c0:ad: 78:50:42:ed:fb:1b:b9:79:81:1e:85:85:62:25:0b:e8:f5:20: a7:c7:ae:3d:cc:12:83:0d:36:10:ca:d8:32:25:17:db:7f:6c: 5e:9d:79:0e:8e:a2:b0:c6:78:43:94:1d:5b:80:13:19:fe:d7: 53:f9:07:b2:1c:b4:7d:47:1e:3f:ed:b3:6b:d7:fb:16:b9:f5: f7:1e:8d:55:dd:c9:58:e2:79:32:f9:24:0d:d2:8b:67:16:9a: 30:44:f3:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzOTIxMTAvBgNVBAUTKDI0NTIxODFDQjEwOEFGMTFGNDYyODczNzFCMDQxM0ZG NUY4MkU4MkUwHhcNMjUxMDE4MjM1ODUzWhcNMjUxMDI1MjM1ODUzWjAYMRYwFAYD VQQDEw02OGY0MjliZS0zZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6KKXfeOi6fWbJ3yNTIUpNZAeK0sY+YAUxeDaG0P2SdpbLOkSPmLnMYMAQM8T +oxRaGjo3iJeH1xMXerRzzqJv4RKKLnbeTT4opENrVNQtAZBxYxqwP9UoJWEGo74 3CWV4wUEZjzrOxLrgVNp0kZkEg2j7cwPzcpoRga3bjduucB9MvmP+WUPf92rrVHS YhpgTC2osHQqCyJscbhTR7HgW4yBBBNW3SHWVy516Pa2yTtNLNl2W3Fo+GXEYAK+ bRYK2UvtZHqQATjobfwsY8pPEdVNYbYy21DXlwfDcSaZbgN87+g8Psz0bBNG04N8 4kZKJqY/4VrKcxq0xwCvf+j3rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByYkhr2 BeJR5HtGoAWT27nDe+L2MB8GA1UdIwQYMBaAFCRSGByxCK8R9GKHNxsEE/9fgugu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM5Mi8xNEQ5RTM4QTky ODgxMUVCQkJENDU2NzFDNEY5QUUwMi9KRklZSExFSXJ4SDBZb2MzR3dRVF8xLUM2 QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pGSVlITEVJcnhIMFlvYzNHd1FUXzEtQzZDNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM5Mi8xNEQ5RTM4QTkyODgxMUVCQkJENDU2NzFDNEY5QUUwMi9KRklZSExFSXJ4 SDBZb2MzR3dRVF8xLUM2QzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrQXjFLHGHZDil+IlnBE6Zzug3TztLWuWoTjVIt017cpHBMExjPNUo tntffTj+UtmXT3ESgVRvpe8Ils2Gtx/Xi7RhBETusc+p1aveLPaJRHgL5wyPzvWk u1Tda3qLJwiygIneg8bQsttwumGC/Q2nndM4NzajCNd8PNAzunJkfF4p1Pr8J2oR Va9x870WyPqWsKAWE3GjKpOmBvQdUKeCwK14UELt+xu5eYEehYViJQvo9SCnx649 zBKDDTYQytgyJRfbf2xenXkOjqKwxnhDlB1bgBMZ/tdT+QeyHLR9Rx4/7bNr1/sW ufX3Ho1V3clY4nky+SQN0otnFpowRPNF -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:27 2025 by rpki-client