$ rpki-client -vvf rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft File: jMU6mSl_HMCgv73r8k4TKw2EHHY.mft (raw, json) Hash identifier: Tt9oBcWG8UdoPkC8aytV3fcAGc0RU07u6FJjTanQ1N8= Subject key identifier: D7:EB:BA:2A:E7:D5:04:E7:48:FF:30:93:1A:C7:07:F1:DF:05:B4:46 Authority key identifier: 8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 Certificate issuer: /CN=A9139D93/serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft Manifest number: 013B Signing time: Wed 05 Nov 2025 04:36:44 +0000 Manifest this update: Wed 05 Nov 2025 04:36:43 +0000 Manifest next update: Wed 12 Nov 2025 04:36:43 +0000 Files and hashes: 1: jMU6mSl_HMCgv73r8k4TKw2EHHY.crl (hash: d9g3OspGJKIypf0tAZw1UgRETXeJM4YZsy5gc0N07Jc=) 2: E614FEEED6AF11EEAB03B528C4F9AE02.roa (hash: G17ALsZLxeT9rUtyM+i2zf7iC28VSeb9B4i0ScAYOoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139D93, serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Validity Not Before: Nov 5 04:36:43 2025 GMT Not After : Nov 12 04:36:43 2025 GMT Subject: CN=690ad45c-d542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2f:5d:04:64:13:87:22:7b:4f:3d:6c:4d:05: 7a:d3:48:33:39:f9:28:e2:01:d7:86:1f:e7:6d:e9: f5:80:cb:dd:07:f7:e4:42:d6:7d:93:b6:d4:7d:e0: 99:de:41:52:43:4c:8a:93:e6:e1:41:a8:b4:57:a7: ff:12:a4:ba:d2:b2:67:48:0c:c9:65:fa:52:58:10: 92:7c:28:b6:06:5c:76:ac:c1:f3:98:73:41:4b:f7: 3d:b3:e6:71:c8:84:0a:46:30:a5:39:72:1f:84:18: 30:52:c5:40:9d:2c:32:81:f7:17:75:d9:50:53:b6: d9:36:32:43:59:fe:21:87:a1:f9:4d:5e:a5:3e:20: dc:dc:84:5a:cc:32:a0:35:51:b1:bc:66:81:f3:72: 4b:28:05:ee:41:e2:e9:e5:a0:24:86:a2:78:ee:27: 7d:06:7a:8b:56:8d:42:49:16:78:7e:15:a7:40:99: 90:c1:3a:84:18:36:5b:f7:b5:c8:4e:03:f2:83:57: 6b:17:45:73:e0:bd:67:14:d9:d7:37:d1:0f:98:1c: 19:c3:3d:d2:6c:2c:11:40:9d:0e:26:40:88:57:7e: 77:d1:5e:c5:bf:7a:d5:c5:32:6f:ee:1a:46:0c:d2: 6a:0c:66:19:d1:56:6f:77:a5:90:20:dd:c5:66:7c: 07:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:EB:BA:2A:E7:D5:04:E7:48:FF:30:93:1A:C7:07:F1:DF:05:B4:46 X509v3 Authority Key Identifier: keyid:8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:a0:c6:ef:2f:22:00:28:29:33:21:f5:a4:76:5c:fa:52:59: dd:f6:95:34:57:a9:9f:d2:f7:95:ef:56:f6:10:08:2a:4e:85: e9:53:4b:9d:2a:84:22:73:d3:6e:8a:0a:48:27:00:f5:77:3e: b7:30:a5:16:d3:fe:f3:43:61:96:aa:6d:f2:fa:b2:0a:5a:8f: 9c:b7:5d:fa:a0:4f:11:ed:4f:a5:2b:e1:bc:bb:58:92:8a:c5: 86:62:d5:ce:89:4e:16:10:6d:88:1c:dc:23:96:6b:e1:3b:51: fb:30:17:93:dc:ba:3a:57:a4:5a:0e:7e:21:9c:c5:67:c1:0c: 4c:ae:97:2a:e8:bf:fa:e5:7b:85:b8:9f:98:af:dd:63:ea:5a: 76:27:5a:32:cc:49:78:f4:a4:ee:e3:30:72:0c:8e:7c:2f:ee: 53:23:a1:e7:73:48:f0:fd:65:90:dc:07:cf:a2:a6:e0:26:c2: f4:ca:be:9f:31:92:55:55:55:e1:59:b8:62:6a:e7:ec:94:3d: 73:20:8d:81:26:8f:c5:01:08:4f:85:00:6b:37:b7:59:d5:8e: e5:fb:63:b3:92:44:fa:1b:be:7c:01:c2:b0:a3:2c:26:8f:63: f2:96:d5:5a:0a:ab:00:3c:c6:a1:b7:de:6c:78:64:55:53:5c: e9:ed:02:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlEOTMxMTAvBgNVBAUTKDhDQzUzQTk5Mjk3RjFDQzBBMEJGQkRFQkYyNEUxMzJC MEQ4NDFDNzYwHhcNMjUxMTA1MDQzNjQzWhcNMjUxMTEyMDQzNjQzWjAYMRYwFAYD VQQDEw02OTBhZDQ1Yy1kNTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAti9dBGQThyJ7Tz1sTQV600gzOfko4gHXhh/nben1gMvdB/fkQtZ9k7bUfeCZ 3kFSQ0yKk+bhQai0V6f/EqS60rJnSAzJZfpSWBCSfCi2Blx2rMHzmHNBS/c9s+Zx yIQKRjClOXIfhBgwUsVAnSwygfcXddlQU7bZNjJDWf4hh6H5TV6lPiDc3IRazDKg NVGxvGaB83JLKAXuQeLp5aAkhqJ47id9BnqLVo1CSRZ4fhWnQJmQwTqEGDZb97XI TgPyg1drF0Vz4L1nFNnXN9EPmBwZwz3SbCwRQJ0OJkCIV3530V7Fv3rVxTJv7hpG DNJqDGYZ0VZvd6WQIN3FZnwH3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfruirn 1QTnSP8wkxrHB/HfBbRGMB8GA1UdIwQYMBaAFIzFOpkpfxzAoL+96/JOEysNhBx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUQ5My9DQ0JBQUFEQUQ2 QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hNQ2d2NzNyOGs0VEt3MkVI SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNVTZtU2xfSE1DZ3Y3M3I4azRUS3cyRUhIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OUQ5My9DQ0JBQUFEQUQ2QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hN Q2d2NzNyOGs0VEt3MkVISFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJoMbvLyIAKCkzIfWkdlz6Ulnd9pU0V6mf0veV71b2EAgqToXpU0ud KoQic9NuigpIJwD1dz63MKUW0/7zQ2GWqm3y+rIKWo+ct136oE8R7U+lK+G8u1iS isWGYtXOiU4WEG2IHNwjlmvhO1H7MBeT3Lo6V6RaDn4hnMVnwQxMrpcq6L/65XuF uJ+Yr91j6lp2J1oyzEl49KTu4zByDI58L+5TI6Hnc0jw/WWQ3AfPoqbgJsL0yr6f MZJVVVXhWbhiaufslD1zII2BJo/FAQhPhQBrN7dZ1Y7l+2OzkkT6G758AcKwoywm j2PyltVaCqsAPMaht95seGRVU1zp7QLw -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:19 2025 by rpki-client