$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft File: jIdTtwqo02LsUz6Sfxlv62mbGF0.mft (raw, json) Hash identifier: 3zlW2xxmij28/zfhW44An+0FRsiHrE1SVLtF1PSKIXs= Subject key identifier: FD:8A:6E:0E:73:0E:25:68:5A:B4:66:24:60:47:88:29:D0:07:52:07 Authority key identifier: 8C:87:53:B7:0A:A8:D3:62:EC:53:3E:92:7F:19:6F:EB:69:9B:18:5D Certificate issuer: /CN=A91E7BD5/serialNumber=8C8753B70AA8D362EC533E927F196FEB699B185D Certificate serial: 02DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft Manifest number: 02D8 Signing time: Sun 19 Oct 2025 03:27:29 +0000 Manifest this update: Sun 19 Oct 2025 03:27:28 +0000 Manifest next update: Sun 26 Oct 2025 03:27:28 +0000 Files and hashes: 1: jIdTtwqo02LsUz6Sfxlv62mbGF0.crl (hash: ljf76v/GU8/+qv7qoElraU2J+w4KcOjqBrUxj203kz8=) 2: 15920FC8380111F08B5A444DC4F9AE02.roa (hash: WX9fSmheEn5QBIt6zU+cPsLP/6wAMEA0uz4xAo14R5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.crl rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD5, serialNumber=8C8753B70AA8D362EC533E927F196FEB699B185D Validity Not Before: Oct 19 03:27:28 2025 GMT Not After : Oct 26 03:27:28 2025 GMT Subject: CN=68f45aa1-6174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:65:48:5a:88:40:a6:b7:04:36:2f:6f:26:7c: dd:e8:52:0c:61:2f:48:5d:3e:0b:d8:79:59:1f:54: 7d:59:ca:ea:c9:ce:1c:96:f4:e1:ab:f4:13:f8:92: 90:05:c3:8d:52:ab:64:5a:52:31:8d:4a:b3:1c:47: 4d:f4:a7:6b:04:f5:da:89:37:39:c1:9d:44:66:36: 2e:db:94:17:84:37:c7:1c:d3:83:9b:f1:8e:64:d1: 57:ff:52:a7:53:32:24:11:b6:6b:49:d0:3c:e0:6d: c2:95:d1:79:ad:3e:cf:2e:02:d6:76:4d:0e:eb:0b: 7e:5b:10:97:07:25:ca:ad:60:e9:62:62:8a:64:49: 34:4b:f5:8b:ba:3e:d7:16:09:13:3e:18:4b:15:7c: e2:fc:05:6d:cd:d4:4e:d0:17:7e:34:1b:e9:77:85: 54:b7:5a:87:2d:07:a5:69:87:d7:b2:cf:bc:17:be: 35:52:67:8a:e2:03:7e:2a:be:de:10:9e:6b:1b:18: de:69:b8:82:ca:73:7c:76:eb:b7:2b:4f:98:9b:b7: 77:18:f8:a9:29:94:40:9a:c2:5f:16:84:8b:ae:87: 94:bd:d1:2a:c5:03:63:99:a9:c9:35:93:44:06:94: 14:f3:12:6d:62:15:29:4b:3c:c7:98:49:c6:4c:e9: 9c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:8A:6E:0E:73:0E:25:68:5A:B4:66:24:60:47:88:29:D0:07:52:07 X509v3 Authority Key Identifier: keyid:8C:87:53:B7:0A:A8:D3:62:EC:53:3E:92:7F:19:6F:EB:69:9B:18:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIdTtwqo02LsUz6Sfxlv62mbGF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD5/201EB43405A811ED83FD7484C4F9AE02/jIdTtwqo02LsUz6Sfxlv62mbGF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:2e:f5:f7:7c:47:f2:0a:e8:d5:84:e3:b5:ee:53:f9:15:da: ac:47:74:f8:65:16:bc:9c:5d:34:37:b6:dd:a7:bb:6c:4b:f6: af:3b:94:08:39:f5:77:a8:05:f2:bc:73:bf:9f:0d:7e:7b:ee: 13:c9:a8:c7:c7:eb:29:2a:69:20:25:d6:66:ca:57:94:61:e9: a8:02:3b:22:09:f7:61:1d:81:fc:4e:f5:02:d6:d9:5a:ff:e1: 3b:cd:be:8a:f2:ca:6c:68:63:69:0b:8f:06:7d:4a:0d:2e:9b: 0e:62:8b:96:2f:88:34:a7:02:00:a5:78:e2:c3:73:86:de:aa: 4d:c4:4b:da:3f:53:75:8b:ed:ed:4a:85:4c:0f:79:9a:c9:51: 24:25:ca:d0:8a:03:b6:14:18:2f:1e:7e:35:3f:9a:bc:4d:94: 7d:26:c3:b9:0f:06:e3:7c:aa:39:1c:98:97:4f:19:f4:92:13: 74:fd:47:f5:a7:d5:d4:27:f3:b3:63:53:4f:06:21:2b:10:5f: 7f:30:53:d0:59:1f:fa:4a:bb:02:35:03:48:0d:ba:15:10:07: 3e:89:66:f5:3c:e9:a5:fb:d1:dc:3e:1f:21:72:5a:89:a7:d2: fc:e3:e2:06:aa:ea:1a:d7:9b:47:ad:5e:d3:d1:5e:c2:85:79: 36:34:0d:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDUxMTAvBgNVBAUTKDhDODc1M0I3MEFBOEQzNjJFQzUzM0U5MjdGMTk2RkVC Njk5QjE4NUQwHhcNMjUxMDE5MDMyNzI4WhcNMjUxMDI2MDMyNzI4WjAYMRYwFAYD VQQDEw02OGY0NWFhMS02MTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GVIWohAprcENi9vJnzd6FIMYS9IXT4L2HlZH1R9Wcrqyc4clvThq/QT+JKQ BcONUqtkWlIxjUqzHEdN9KdrBPXaiTc5wZ1EZjYu25QXhDfHHNODm/GOZNFX/1Kn UzIkEbZrSdA84G3CldF5rT7PLgLWdk0O6wt+WxCXByXKrWDpYmKKZEk0S/WLuj7X FgkTPhhLFXzi/AVtzdRO0Bd+NBvpd4VUt1qHLQelaYfXss+8F741UmeK4gN+Kr7e EJ5rGxjeabiCynN8duu3K0+Ym7d3GPipKZRAmsJfFoSLroeUvdEqxQNjmanJNZNE BpQU8xJtYhUpSzzHmEnGTOmcBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2Kbg5z DiVoWrRmJGBHiCnQB1IHMB8GA1UdIwQYMBaAFIyHU7cKqNNi7FM+kn8Zb+tpmxhd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENS8yMDFFQjQzNDA1 QTgxMUVEODNGRDc0ODRDNEY5QUUwMi9qSWRUdHdxbzAyTHNVejZTZnhsdjYybWJH RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pJZFR0d3FvMDJMc1V6NlNmeGx2NjJtYkdGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENS8yMDFFQjQzNDA1QTgxMUVEODNGRDc0ODRDNEY5QUUwMi9qSWRUdHdxbzAy THNVejZTZnhsdjYybWJHRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwLvX3fEfyCujVhOO17lP5FdqsR3T4ZRa8nF00N7bdp7tsS/avO5QI OfV3qAXyvHO/nw1+e+4TyajHx+spKmkgJdZmyleUYemoAjsiCfdhHYH8TvUC1tla /+E7zb6K8spsaGNpC48GfUoNLpsOYouWL4g0pwIApXjiw3OG3qpNxEvaP1N1i+3t SoVMD3mayVEkJcrQigO2FBgvHn41P5q8TZR9JsO5DwbjfKo5HJiXTxn0khN0/Uf1 p9XUJ/OzY1NPBiErEF9/MFPQWR/6SrsCNQNIDboVEAc+iWb1POml+9HcPh8hclqJ p9L84+IGquoa15tHrV7T0V7ChXk2NA1/ -----END CERTIFICATE-----Generated at Mon Oct 20 04:07:43 2025 by rpki-client