$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: am0pv6CVKYvlS/OUv088SHtDDawh3d/OISBiBVGMieo= Subject key identifier: 3E:6A:9A:4A:8E:3C:31:42:87:45:0C:A8:01:DC:FB:BF:4F:85:82:09 Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0E63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0E58 Signing time: Tue 04 Nov 2025 17:50:34 +0000 Manifest this update: Tue 04 Nov 2025 17:50:34 +0000 Manifest next update: Tue 11 Nov 2025 17:50:34 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: siHnM4sZyG78V4h5aRHEjvPhwqWbyxKeKbd3czSDpzE=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3683 (0xe63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Nov 4 17:50:34 2025 GMT Not After : Nov 11 17:50:34 2025 GMT Subject: CN=690a3cea-3be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:da:59:18:b4:a1:ab:53:3a:80:f9:f3:59:5f: 4f:75:2f:cc:a6:b9:9a:26:39:e4:7c:31:e7:07:bb: cf:4f:46:13:e2:27:60:16:c8:7f:f2:95:ab:e1:53: 86:65:15:6e:ce:e1:50:09:f9:38:1b:de:b3:9b:16: a5:b5:e7:d3:61:1a:ae:ff:34:f6:e2:cf:b0:c1:1b: c7:5a:a6:ba:52:21:ec:a9:56:ab:4c:5a:a9:ed:8b: e7:11:7b:e4:72:6f:84:f7:0c:77:cb:ed:89:84:60: 5f:50:aa:ab:4c:71:20:ec:6e:c1:b0:0e:eb:4b:c4: c7:ad:ca:37:e0:85:42:41:32:02:ad:e4:09:0d:f2: 24:41:b2:d5:2c:33:58:c1:7c:f1:1f:d9:56:05:8c: da:be:df:06:3c:93:7a:cc:dc:ca:0d:15:24:c6:0e: b6:84:d3:1b:d7:8b:a6:ec:c1:04:c2:43:46:5d:84: 02:ac:0b:57:9b:98:dd:27:91:90:46:23:25:0f:13: e7:70:0e:18:f4:49:47:1a:27:b7:7d:6d:1d:0b:5f: 7f:fc:57:9c:80:05:2c:93:1e:c7:4b:7f:92:db:65: a6:0c:03:af:32:7b:2a:19:b3:6d:3f:59:60:c0:5b: b8:c0:6b:f1:a7:c1:ed:1d:41:3b:90:44:83:87:95: 2f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:6A:9A:4A:8E:3C:31:42:87:45:0C:A8:01:DC:FB:BF:4F:85:82:09 X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:71:d2:c2:f9:08:db:64:a0:7e:70:6e:a8:8d:2e:4f:9c:4e: 80:a3:09:ba:9d:c8:00:58:af:3f:53:91:8b:4c:1b:b4:9e:4b: 6a:26:74:4b:b1:6f:ae:91:1d:ef:e7:46:d1:f1:2b:6d:b0:9d: 61:1a:14:c5:0b:92:2f:48:60:13:09:7e:b5:66:26:78:bc:0c: 69:0d:8c:5a:0a:5b:bd:71:96:de:58:af:da:ca:20:1c:4a:52: 81:47:bf:af:36:76:57:8a:cb:7d:24:a6:49:32:a8:99:81:df: 47:13:55:0e:49:26:53:d5:84:5d:9c:18:cb:5e:cd:fa:02:25: 7d:4f:2c:7e:a1:8f:e8:4d:e6:97:ee:8d:df:7e:31:77:a9:17: 39:43:fb:43:4e:43:31:8a:43:8e:4c:88:ba:c3:58:d9:dc:f7: 9a:6d:bd:6f:70:23:5d:2a:f7:dd:c1:5a:ff:2f:0a:6c:3d:e9: 0e:86:14:1e:97:af:cc:bb:ac:09:42:3e:dd:01:0a:6c:d1:b2: 26:e7:a9:dd:6e:c9:b1:c7:7d:8b:9d:0e:6e:9b:36:30:25:32: 6a:8d:98:b7:56:32:75:4b:16:a3:c2:6e:32:6d:e7:95:28:8a: 34:7b:f6:50:8c:2f:82:15:ad:eb:55:57:1e:58:20:cf:d9:ab: 42:2e:3c:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUxMTA0MTc1MDM0WhcNMjUxMTExMTc1MDM0WjAYMRYwFAYD VQQDEw02OTBhM2NlYS0zYmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NpZGLShq1M6gPnzWV9PdS/MprmaJjnkfDHnB7vPT0YT4idgFsh/8pWr4VOG ZRVuzuFQCfk4G96zmxaltefTYRqu/zT24s+wwRvHWqa6UiHsqVarTFqp7YvnEXvk cm+E9wx3y+2JhGBfUKqrTHEg7G7BsA7rS8THrco34IVCQTICreQJDfIkQbLVLDNY wXzxH9lWBYzavt8GPJN6zNzKDRUkxg62hNMb14um7MEEwkNGXYQCrAtXm5jdJ5GQ RiMlDxPncA4Y9ElHGie3fW0dC19//FecgAUskx7HS3+S22WmDAOvMnsqGbNtP1lg wFu4wGvxp8HtHUE7kESDh5UvQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5qmkqO PDFCh0UMqAHc+79PhYIJMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvcdLC+QjbZKB+cG6ojS5PnE6Aowm6ncgAWK8/U5GLTBu0nktqJnRL sW+ukR3v50bR8SttsJ1hGhTFC5IvSGATCX61ZiZ4vAxpDYxaClu9cZbeWK/ayiAc SlKBR7+vNnZXist9JKZJMqiZgd9HE1UOSSZT1YRdnBjLXs36AiV9Tyx+oY/oTeaX 7o3ffjF3qRc5Q/tDTkMxikOOTIi6w1jZ3Peabb1vcCNdKvfdwVr/LwpsPekOhhQe l6/Mu6wJQj7dAQps0bIm56ndbsmxx32LnQ5umzYwJTJqjZi3VjJ1Sxajwm4ybeeV KIo0e/ZQjC+CFa3rVVceWCDP2atCLjxI -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:34 2025 by rpki-client