$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: 5PZuRAGS2PmSD+Fo8iH+N+C64HdE3ME8ta6/lg4y53Q= Subject key identifier: 80:D5:1B:FE:3D:67:9A:E4:0C:FE:05:54:7B:F1:18:5E:69:88:00:9B Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0E4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0E40 Signing time: Thu 18 Sep 2025 17:57:01 +0000 Manifest this update: Thu 18 Sep 2025 17:57:00 +0000 Manifest next update: Thu 25 Sep 2025 17:57:00 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: ElqNRTCtV3LjIrZmeioBm00JNc55ZsdS0bkJhfEGD8M=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3659 (0xe4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Sep 18 17:57:00 2025 GMT Not After : Sep 25 17:57:00 2025 GMT Subject: CN=68cc47ec-256c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:51:61:18:7a:fa:29:d4:a4:d5:f2:44:0d:8b: d3:48:19:48:99:84:48:fb:8b:ac:e2:fa:b3:06:a3: 1c:9e:66:47:0b:b4:48:04:47:d3:e1:96:f8:aa:09: 25:eb:0a:f6:0f:93:f9:16:ef:2c:fe:e4:24:16:e9: 1a:c4:18:5f:a7:d2:14:11:13:89:38:7d:a0:00:d5: d9:fc:23:9a:e6:62:a8:45:f8:fe:61:67:c4:a6:df: fc:81:51:bd:63:1c:42:2f:cb:13:78:98:98:02:82: 4d:8a:77:54:ac:59:ed:59:f9:3a:dc:39:aa:26:4c: 49:a0:ae:e5:7a:a2:07:aa:f0:88:d5:e9:f5:16:8f: ac:d7:35:cc:e2:6e:81:59:fc:94:c1:ce:ee:3d:0a: 46:f5:5f:9f:1d:c5:7b:59:0e:0e:b1:6c:09:ee:cb: e2:f7:46:25:91:c2:a5:58:d4:de:a9:93:17:0c:c8: 72:de:4f:60:f5:1a:fd:24:5b:72:bc:e3:08:66:44: 75:a4:93:41:ef:bf:df:39:64:0d:49:9f:9a:4a:9f: 94:8e:79:f2:0b:86:63:10:37:5c:ea:e3:02:e4:54: 68:1a:38:f7:09:ed:7a:d8:ff:e5:a3:0d:25:2f:7e: 98:cd:b1:54:37:33:70:25:3a:fd:38:13:13:3d:4a: 95:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D5:1B:FE:3D:67:9A:E4:0C:FE:05:54:7B:F1:18:5E:69:88:00:9B X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:ff:84:99:bd:9f:d1:d5:9c:f1:f1:1b:7c:31:b6:a0:16:02: f7:5d:ba:50:35:da:3f:0c:23:ba:08:1e:8a:b5:a1:f3:59:1a: 20:68:85:31:67:da:45:95:e0:9b:49:b8:f1:da:66:f4:07:b8: ce:7f:b3:dd:81:15:1e:7c:2a:f3:b2:46:da:fa:46:b2:0c:0d: e7:f7:c8:24:ef:02:32:f6:f6:d4:a6:fb:80:3e:c7:38:8c:d0: 55:f6:73:d9:d9:6d:11:88:7b:cc:0b:b9:4e:39:4c:92:ec:e9: 1d:6d:06:87:0c:bf:3f:b8:73:b8:b7:11:73:89:78:ad:fd:30: db:e7:f9:11:bc:3e:e8:bc:9c:ac:01:a5:27:b7:13:2b:85:6e: 45:ba:e8:36:20:80:18:ce:58:f4:3b:ec:e7:dc:9d:ab:b7:b6: 23:aa:a5:da:2e:2b:79:c0:08:8d:eb:0d:90:7f:54:2b:1a:95: 22:7a:81:d8:1f:c9:85:58:d3:97:d9:89:00:f6:a5:b2:19:9e: 1e:47:f8:39:58:01:d7:fc:d4:2c:b7:38:2d:86:8b:33:65:f2: cf:f0:25:6c:0b:ec:67:95:73:4b:d0:44:44:5c:e9:26:bf:92: f6:a5:5b:cb:ae:bb:3c:a0:82:46:4e:7c:a5:fd:15:ef:e9:56: 3d:c4:fa:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUwOTE4MTc1NzAwWhcNMjUwOTI1MTc1NzAwWjAYMRYwFAYD VQQDEw02OGNjNDdlYy0yNTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51FhGHr6KdSk1fJEDYvTSBlImYRI+4us4vqzBqMcnmZHC7RIBEfT4Zb4qgkl 6wr2D5P5Fu8s/uQkFukaxBhfp9IUEROJOH2gANXZ/COa5mKoRfj+YWfEpt/8gVG9 YxxCL8sTeJiYAoJNindUrFntWfk63DmqJkxJoK7leqIHqvCI1en1Fo+s1zXM4m6B WfyUwc7uPQpG9V+fHcV7WQ4OsWwJ7svi90YlkcKlWNTeqZMXDMhy3k9g9Rr9JFty vOMIZkR1pJNB77/fOWQNSZ+aSp+UjnnyC4ZjEDdc6uMC5FRoGjj3Ce162P/low0l L36YzbFUNzNwJTr9OBMTPUqVVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDVG/49 Z5rkDP4FVHvxGF5piACbMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk/4SZvZ/R1Zzx8Rt8MbagFgL3XbpQNdo/DCO6CB6KtaHzWRogaIUx Z9pFleCbSbjx2mb0B7jOf7PdgRUefCrzskba+kayDA3n98gk7wIy9vbUpvuAPsc4 jNBV9nPZ2W0RiHvMC7lOOUyS7OkdbQaHDL8/uHO4txFziXit/TDb5/kRvD7ovJys AaUntxMrhW5Fuug2IIAYzlj0O+zn3J2rt7YjqqXaLit5wAiN6w2Qf1QrGpUieoHY H8mFWNOX2YkA9qWyGZ4eR/g5WAHX/NQstzgthoszZfLP8CVsC+xnlXNL0EREXOkm v5L2pVvLrrs8oIJGTnyl/RXv6VY9xPoI -----END CERTIFICATE-----Generated at Fri Sep 19 07:11:02 2025 by rpki-client