$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: r5Ku+rM4eVjt1s+R9OTUQQG90lx4fJdoXM6meeZ9rVg= Subject key identifier: 0E:68:BC:7A:55:C5:B9:11:DD:15:1D:5C:B9:69:04:E5:E1:F5:6B:06 Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 171B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 16F8 Signing time: Wed 22 Oct 2025 16:58:37 +0000 Manifest this update: Wed 22 Oct 2025 16:58:36 +0000 Manifest next update: Wed 29 Oct 2025 16:58:36 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: 7VP9y95X6rOkh1ME6sExEG06SS87o6qNVRNFw8aYFl0=) 2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: i/Bdlwtsw60KlWyTtnZoHMYWyMWkX8rBZXwz4SUYdDY=) 3: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: x5fSlx3nNKz6ifMgnnFr+DL48Yd9QT9h8VtP+zrrY4c=) 4: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: 9PGVW+39KLlj0WI9eJ5OovuG1UvnRDi3eMzS7oZFC4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 16:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5915 (0x171b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Oct 22 16:58:36 2025 GMT Not After : Oct 29 16:58:36 2025 GMT Subject: CN=68f90d3c-b536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:74:de:88:d6:18:72:5c:29:f9:31:4f:39:0b: 83:88:d4:50:b3:2f:67:02:59:c6:95:27:16:84:1d: bb:33:8e:03:ff:74:92:c4:ee:4e:cc:2b:3e:1a:23: 74:09:34:94:ca:99:55:32:82:97:f3:dd:24:2f:c2: 96:bd:ea:76:f6:24:82:18:8b:81:e4:31:77:fc:17: 7f:60:d2:a5:81:a4:2a:43:63:f4:ae:c5:f3:e2:73: 7a:16:b5:20:90:35:be:e7:67:ef:22:c6:49:ee:4d: dd:db:08:39:63:6e:09:4f:f1:88:90:cb:fd:fd:0d: 1c:2e:88:9a:58:4a:f4:fa:c7:1a:98:dd:b1:3a:5a: e0:ec:a3:f4:6c:65:2b:5d:94:8f:8a:d2:53:a3:cc: 1a:91:65:01:5e:d8:57:1c:a5:e0:fc:bd:1d:2c:45: 05:93:22:de:3c:c4:3f:67:03:21:f2:32:61:8c:ed: 91:10:80:c0:d4:4e:d6:88:9f:c8:b5:26:fb:7f:ae: cd:c5:96:4c:25:84:28:c8:f6:bf:66:f7:41:3b:ce: af:c6:5d:b3:86:f2:d4:5a:6d:fc:cd:a8:b2:7f:2c: 35:6d:d7:95:2c:0f:99:22:46:94:f6:37:92:1c:47: dd:0c:fb:36:46:a9:c5:e1:32:96:8e:c8:37:84:df: 12:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:68:BC:7A:55:C5:B9:11:DD:15:1D:5C:B9:69:04:E5:E1:F5:6B:06 X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:1e:ce:30:3b:6d:f4:5b:74:d5:e2:79:8a:ad:d5:25:f9:b8: bc:cf:66:b3:44:1b:bb:24:4c:cb:38:d2:50:8b:80:a0:84:56: 38:bb:3d:b6:70:29:40:45:36:65:0f:56:c0:38:82:1a:77:9f: 92:6a:5a:b8:f4:e9:83:af:3c:4c:7e:04:8e:57:06:30:56:c2: 62:e4:88:61:0a:00:9c:b6:92:35:7b:6e:2e:32:43:97:3d:43: 47:3b:e9:55:70:02:30:54:81:25:96:ed:03:d8:0a:7f:9d:0d: fb:3a:3b:39:43:96:22:ab:5b:76:fe:6a:75:7e:69:ba:d3:01: bd:bf:2c:4c:5f:92:1c:80:18:03:ca:aa:bb:77:d0:fa:38:ef: 7e:13:3f:4b:2d:1e:d8:72:39:6b:3d:f1:78:23:bb:a8:83:29: 3c:e6:7a:e2:a4:00:0d:f0:1e:a4:4a:86:00:1f:39:84:be:cd: 58:72:3d:8f:03:23:b5:74:62:19:6a:30:21:9d:0a:2a:e3:9a: 53:5a:06:51:e2:f4:62:1c:ed:dd:32:12:39:4a:03:31:01:3f: 2b:29:82:5f:5b:76:c6:34:28:56:02:96:d3:4b:5b:f5:83:10: 19:22:a9:cb:78:e3:f5:ab:57:cc:1b:27:79:f9:dc:e6:6c:fb: fa:0c:5e:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjUxMDIyMTY1ODM2WhcNMjUxMDI5MTY1ODM2WjAYMRYwFAYD VQQDEw02OGY5MGQzYy1iNTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HTeiNYYclwp+TFPOQuDiNRQsy9nAlnGlScWhB27M44D/3SSxO5OzCs+GiN0 CTSUyplVMoKX890kL8KWvep29iSCGIuB5DF3/Bd/YNKlgaQqQ2P0rsXz4nN6FrUg kDW+52fvIsZJ7k3d2wg5Y24JT/GIkMv9/Q0cLoiaWEr0+scamN2xOlrg7KP0bGUr XZSPitJTo8wakWUBXthXHKXg/L0dLEUFkyLePMQ/ZwMh8jJhjO2REIDA1E7WiJ/I tSb7f67NxZZMJYQoyPa/ZvdBO86vxl2zhvLUWm38zaiyfyw1bdeVLA+ZIkaU9jeS HEfdDPs2RqnF4TKWjsg3hN8SgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5ovHpV xbkR3RUdXLlpBOXh9WsGMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7Hs4wO230W3TV4nmKrdUl+bi8z2azRBu7JEzLONJQi4CghFY4uz22 cClARTZlD1bAOIIad5+Salq49OmDrzxMfgSOVwYwVsJi5IhhCgCctpI1e24uMkOX PUNHO+lVcAIwVIEllu0D2Ap/nQ37Ojs5Q5Yiq1t2/mp1fmm60wG9vyxMX5IcgBgD yqq7d9D6OO9+Ez9LLR7YcjlrPfF4I7uogyk85nripAAN8B6kSoYAHzmEvs1Ycj2P AyO1dGIZajAhnQoq45pTWgZR4vRiHO3dMhI5SgMxAT8rKYJfW3bGNChWApbTS1v1 gxAZIqnLeOP1q1fMGyd5+dzmbPv6DF72 -----END CERTIFICATE-----Generated at Thu Oct 23 05:59:56 2025 by rpki-client