$ rpki-client -vvf rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft File: jBwU3BZ027aLSUMBWHs9L5jtcBs.mft (raw, json) Hash identifier: NR42x4L1napEZGsWNki2zUPMKuBdHHVUUJuKh1Z6NqA= Subject key identifier: 07:4B:AE:35:9A:6E:01:8B:7B:2A:FA:F3:FD:33:52:B2:F9:1D:84:60 Authority key identifier: 8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B Certificate issuer: /CN=A912ECA4/serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft Manifest number: 0137 Signing time: Mon 03 Nov 2025 04:29:06 +0000 Manifest this update: Mon 03 Nov 2025 04:29:05 +0000 Manifest next update: Mon 10 Nov 2025 04:29:05 +0000 Files and hashes: 1: jBwU3BZ027aLSUMBWHs9L5jtcBs.crl (hash: uMBA8CCPUtiNF49u3tQ6PPZzrfLV+rJas03bJA+prYQ=) 2: 24241410E2A211EEBFC9412EC4F9AE02.roa (hash: /HUgZFHQdOKqVGsoyIo8SC7cdtj7Z66CHfzRpJ6gBOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ECA4, serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Validity Not Before: Nov 3 04:29:05 2025 GMT Not After : Nov 10 04:29:05 2025 GMT Subject: CN=69082f92-95b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:63:32:64:e1:f5:14:55:bb:8b:c0:40:e5: 3a:82:65:ec:2b:4c:51:45:a7:10:87:8a:b1:72:ba: 40:d8:68:9d:f5:80:be:98:19:9c:0f:b6:9e:6a:13: 54:e8:a2:87:30:e6:0e:63:b8:ab:6c:a0:63:13:48: 96:76:74:8b:08:10:68:b3:3e:ff:1e:31:40:47:53: 98:bd:25:4e:da:fb:45:84:76:df:fb:0e:66:d8:f5: 8a:49:a4:68:84:78:0a:95:5f:73:53:b8:2f:e7:5f: b1:06:79:e4:23:3d:e9:d0:94:42:7a:e6:04:f5:a4: ae:8d:39:5e:a2:d1:66:61:59:12:66:01:19:3d:51: cf:c6:d9:00:84:e7:c3:41:46:06:be:9d:db:15:57: b4:12:6e:54:eb:8c:7c:50:5f:05:a4:10:74:9d:78: d4:8f:df:8b:d8:34:58:a5:5d:48:c4:b9:fd:d0:fb: 5d:21:56:62:9f:fb:0e:ad:55:c1:68:e5:06:78:f1: 79:73:f7:92:0a:62:ea:8d:c6:44:bf:b8:7c:07:9e: d7:f6:c9:14:0f:19:05:9c:a5:74:88:14:32:3c:a5: f1:ea:b3:0e:9b:37:3e:ec:f6:69:1b:16:17:51:6c: 93:5b:09:a2:ce:21:8b:c5:2f:3b:d0:20:fd:1e:fb: 75:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:4B:AE:35:9A:6E:01:8B:7B:2A:FA:F3:FD:33:52:B2:F9:1D:84:60 X509v3 Authority Key Identifier: keyid:8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:35:f5:46:2e:9c:24:01:4d:53:e8:bc:92:8e:53:e3:6d:80: df:ed:3b:c1:b2:0f:38:a0:08:ce:41:1a:4b:19:a1:fd:85:a6: d2:e0:1c:54:86:62:22:c8:a3:83:48:42:07:88:01:95:66:d0: e3:f3:d6:52:47:0b:38:e5:40:1b:6f:ba:e7:11:4f:f0:d2:3b: ef:10:f7:57:0f:89:31:dd:1f:66:74:6b:60:84:b2:4c:fd:a1: a5:c5:dc:f8:66:85:38:a1:46:49:a8:5c:95:12:27:8e:ad:77: 12:83:16:40:f9:1d:47:86:48:d9:67:7c:01:99:67:a7:92:bb: 30:14:3a:89:3c:fc:86:ec:bd:e1:10:61:ab:54:97:1b:6a:f9: 94:a2:3a:5b:58:49:ac:34:95:31:37:29:65:3b:f5:42:8f:78: cd:1d:30:b1:8e:0e:10:c5:ce:77:fa:46:75:0c:61:b0:5d:9a: f5:12:8f:43:fd:8b:78:8c:75:ad:70:c8:5d:44:4d:5a:66:f6: 1f:a0:04:b2:0a:d4:1c:89:29:ab:2c:5f:c2:70:41:13:6d:65: 55:b8:30:7b:0b:31:37:4e:fe:7f:cf:84:92:72:4d:25:80:c8: 2d:f5:85:98:14:5a:6a:3f:7a:5d:ba:55:84:69:1a:e1:5d:fb: c9:e0:1c:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVDQTQxMTAvBgNVBAUTKDhDMUMxNERDMTY3NERCQjY4QjQ5NDMwMTU4N0IzRDJG OThFRDcwMUIwHhcNMjUxMTAzMDQyOTA1WhcNMjUxMTEwMDQyOTA1WjAYMRYwFAYD VQQDEw02OTA4MmY5Mi05NWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNRjMmTh9RRVu4vAQOU6gmXsK0xRRacQh4qxcrpA2Gid9YC+mBmcD7aeahNU 6KKHMOYOY7irbKBjE0iWdnSLCBBosz7/HjFAR1OYvSVO2vtFhHbf+w5m2PWKSaRo hHgKlV9zU7gv51+xBnnkIz3p0JRCeuYE9aSujTleotFmYVkSZgEZPVHPxtkAhOfD QUYGvp3bFVe0Em5U64x8UF8FpBB0nXjUj9+L2DRYpV1IxLn90PtdIVZin/sOrVXB aOUGePF5c/eSCmLqjcZEv7h8B57X9skUDxkFnKV0iBQyPKXx6rMOmzc+7PZpGxYX UWyTWwmiziGLxS870CD9Hvt1VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdLrjWa bgGLeyr68/0zUrL5HYRgMB8GA1UdIwQYMBaAFIwcFNwWdNu2i0lDAVh7PS+Y7XAb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUNBNC80ODVGMzM2QURD RUQxMUVFQkJCRjQwMkZDNEY5QUUwMi9qQndVM0JaMDI3YUxTVU1CV0hzOUw1anRj QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pCd1UzQlowMjdhTFNVTUJXSHM5TDVqdGNCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RUNBNC80ODVGMzM2QURDRUQxMUVFQkJCRjQwMkZDNEY5QUUwMi9qQndVM0JaMDI3 YUxTVU1CV0hzOUw1anRjQnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+NfVGLpwkAU1T6LySjlPjbYDf7TvBsg84oAjOQRpLGaH9habS4BxU hmIiyKODSEIHiAGVZtDj89ZSRws45UAbb7rnEU/w0jvvEPdXD4kx3R9mdGtghLJM /aGlxdz4ZoU4oUZJqFyVEieOrXcSgxZA+R1HhkjZZ3wBmWenkrswFDqJPPyG7L3h EGGrVJcbavmUojpbWEmsNJUxNyllO/VCj3jNHTCxjg4Qxc53+kZ1DGGwXZr1Eo9D /Yt4jHWtcMhdRE1aZvYfoASyCtQciSmrLF/CcEETbWVVuDB7CzE3Tv5/z4SSck0l gMgt9YWYFFpqP3pdulWEaRrhXfvJ4Bzm -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:05 2025 by rpki-client