$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: VeQ0qfBm/bw+0TdM1Lkau2Yvdcjw2mKJVJoTP8zBPUI= Subject key identifier: 95:CD:B7:C5:56:4D:EA:23:7C:01:7B:43:BD:8A:69:21:62:F8:05:4F Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 06B4 Signing time: Tue 04 Nov 2025 22:14:15 +0000 Manifest this update: Tue 04 Nov 2025 22:14:14 +0000 Manifest next update: Tue 11 Nov 2025 22:14:14 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: SXiZAG+oMQV14fO7fI9NeDrIm5a5YgkxOMlg49IOqD8=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: ukg+6KCGHkrsTy11bBIK1xYhpVPUVwZenM7mxd/8rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: Nov 4 22:14:14 2025 GMT Not After : Nov 11 22:14:14 2025 GMT Subject: CN=690a7ab7-e74a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2c:30:27:d5:e3:13:05:ff:b7:1d:f4:21:e5: 10:9f:16:d9:a4:09:ca:cb:e5:40:8b:fe:d9:e3:f5: a5:44:67:e7:a3:b0:9f:a3:5e:ad:6a:bf:d2:a3:0b: 98:64:91:b3:6b:bd:10:af:17:fa:a3:42:3b:9b:9b: 6d:1d:3f:31:a3:10:88:ef:3e:93:22:20:c0:c9:23: 3b:6b:6e:f8:13:0e:66:b4:15:1b:b9:3b:b3:a3:45: 4d:2f:7c:9b:57:66:c8:c2:1c:6e:44:e2:b4:44:d1: 2a:83:ba:9d:03:55:03:c5:97:d3:60:2f:14:be:00: 3a:68:dd:35:6a:1b:33:03:fa:d2:5a:c5:59:0c:b3: 58:71:92:06:17:c9:1a:84:ad:3a:2d:14:e1:19:8f: 01:6d:ef:14:07:5c:e7:99:25:e7:f4:c0:9f:04:0c: 73:a3:26:69:fb:db:58:a2:06:40:67:6c:a7:fa:46: 46:ba:03:2c:ce:95:cc:c7:4c:6f:b0:8a:f1:8c:66: b8:a8:6f:be:0e:2e:53:37:47:9e:86:c1:e3:37:ec: a7:11:13:88:18:8b:5c:27:d5:43:db:66:bc:29:ad: c4:ac:47:0a:fd:d5:b9:a9:04:bb:1a:02:8e:95:09: c5:60:f2:82:d3:1f:3f:a8:f0:7c:13:29:1e:33:c9: 44:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:CD:B7:C5:56:4D:EA:23:7C:01:7B:43:BD:8A:69:21:62:F8:05:4F X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7c:e5:4b:fe:25:20:5e:bb:58:14:7b:dd:c7:92:45:a8:b6: 61:b2:45:44:a1:1a:3b:e8:5f:23:ad:c5:f1:93:d7:18:c9:b9: e5:43:b9:83:a3:49:bb:19:ee:5d:3e:5e:02:0d:e7:41:6f:4f: bc:31:90:8c:79:fa:f9:73:41:c3:ac:b4:4e:14:c2:59:03:b5: 94:2d:be:83:45:7e:68:52:45:19:47:0f:f0:6d:fe:57:6c:38: 9e:76:45:08:c7:ba:32:33:ac:f7:ef:b6:d6:3a:47:f1:74:59: c1:b9:83:6e:43:07:ee:a3:5a:a1:de:24:bf:f1:96:58:37:80: d4:a3:30:2f:25:dc:7e:48:8f:aa:d4:86:30:a0:5f:c1:ab:83: fc:bd:20:d9:c3:c6:b5:59:d2:c4:aa:88:a8:80:c2:bb:1e:7e: 86:64:f8:34:f1:29:90:e2:f4:58:45:62:7a:c6:fb:fa:b3:47: c4:d2:46:c3:af:2f:0c:9e:9c:6a:4c:9d:c8:0a:4b:93:15:f6: e1:26:77:39:07:3f:e0:20:96:ef:dd:14:6e:ee:63:2b:82:87: ad:27:2d:ab:0e:7b:ce:35:c5:06:54:69:1c:a5:d0:7f:3e:7c: ca:6a:6b:c9:17:8e:f4:ec:fd:22:c3:05:0b:8a:26:7e:ef:c1: 72:6d:13:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjUxMTA0MjIxNDE0WhcNMjUxMTExMjIxNDE0WjAYMRYwFAYD VQQDEw02OTBhN2FiNy1lNzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSwwJ9XjEwX/tx30IeUQnxbZpAnKy+VAi/7Z4/WlRGfno7Cfo16tar/SowuY ZJGza70Qrxf6o0I7m5ttHT8xoxCI7z6TIiDAySM7a274Ew5mtBUbuTuzo0VNL3yb V2bIwhxuROK0RNEqg7qdA1UDxZfTYC8UvgA6aN01ahszA/rSWsVZDLNYcZIGF8ka hK06LRThGY8Bbe8UB1znmSXn9MCfBAxzoyZp+9tYogZAZ2yn+kZGugMszpXMx0xv sIrxjGa4qG++Di5TN0eehsHjN+ynEROIGItcJ9VD22a8Ka3ErEcK/dW5qQS7GgKO lQnFYPKC0x8/qPB8EykeM8lETwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXNt8VW TeojfAF7Q72KaSFi+AVPMB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCafOVL/iUgXrtYFHvdx5JFqLZhskVEoRo76F8jrcXxk9cYybnlQ7mD o0m7Ge5dPl4CDedBb0+8MZCMefr5c0HDrLROFMJZA7WULb6DRX5oUkUZRw/wbf5X bDiedkUIx7oyM6z377bWOkfxdFnBuYNuQwfuo1qh3iS/8ZZYN4DUozAvJdx+SI+q 1IYwoF/Bq4P8vSDZw8a1WdLEqoiogMK7Hn6GZPg08SmQ4vRYRWJ6xvv6s0fE0kbD ry8MnpxqTJ3ICkuTFfbhJnc5Bz/gIJbv3RRu7mMrgoetJy2rDnvONcUGVGkcpdB/ PnzKamvJF4707P0iwwULiiZ+78FybRM1 -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:22 2025 by rpki-client