$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json) Hash identifier: +ZiwF+/xKqrC8xfz1LFRmdb/klUDIEEGAWksqxQdTAc= Subject key identifier: E8:DA:16:F6:DD:9A:03:C7:87:3B:78:02:E5:CB:7A:BA:A5:D3:E7:8D Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft Manifest number: DC Signing time: Fri 07 Nov 2025 01:08:59 +0000 Manifest this update: Fri 07 Nov 2025 01:08:59 +0000 Manifest next update: Fri 14 Nov 2025 01:08:59 +0000 Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: X4m5FlO6iS82s9Kt8ea535uK32xkLJ8sxzir1r42wQk=) 2: 00E00D025BC711F0886C5B59C4F9AE02.roa (hash: 4/6lX4NZ27z+xN3FhA2YCKR5609eVbF1fWeCrdQJGAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Nov 2025 01:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D6C1, serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Validity Not Before: Nov 7 01:08:59 2025 GMT Not After : Nov 14 01:08:59 2025 GMT Subject: CN=690d46ab-acc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bf:f8:40:15:5b:05:7b:91:a9:8f:03:5e:20: 3f:53:c1:df:ba:c2:1b:d4:3e:f6:c0:14:66:df:ac: 33:a4:04:20:80:a7:d4:ca:77:a0:d8:a7:77:8d:7e: 17:8c:30:39:85:ab:ab:92:f5:74:5c:89:47:23:62: 8d:3d:b4:6e:d7:2f:7b:b0:ef:eb:ff:37:14:0f:04: 97:3f:26:57:71:c8:30:c0:d2:eb:9b:c2:32:8b:2d: 36:c9:a0:57:00:18:b4:2b:84:96:f3:7c:2b:a7:6b: cd:ed:50:14:2d:9e:2b:10:4f:2d:81:35:07:43:39: 78:36:7d:b8:3e:56:f8:12:58:c2:4f:53:42:27:8e: 1d:ea:a3:12:37:54:67:2e:11:21:00:cf:0c:e0:3b: 9d:fc:65:77:5b:97:a7:4d:ae:9a:60:67:3d:cb:f0: b4:84:a9:97:bf:d3:19:ed:e2:71:9a:fd:b8:ba:6e: 05:eb:dc:85:4c:b5:9c:09:1e:5a:34:33:80:03:ad: 37:2b:e6:d8:aa:7d:e4:c3:e0:34:ac:eb:f1:35:1a: 04:a7:bc:b1:ed:95:ed:c9:04:92:73:3d:d0:7a:36: 21:6e:43:f0:dc:d8:85:4a:0e:41:ed:ef:0e:9f:16: 93:2b:2b:da:6d:7e:74:15:dd:65:8f:f4:27:95:a8: 58:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DA:16:F6:DD:9A:03:C7:87:3B:78:02:E5:CB:7A:BA:A5:D3:E7:8D X509v3 Authority Key Identifier: keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b0:44:42:5a:76:4e:77:5a:6b:34:12:1c:b0:a9:8d:3d:f4: d0:fb:7f:67:d9:02:84:c6:aa:0d:f1:1d:1d:a0:6b:02:f5:35: f0:a1:27:ea:6c:bd:f6:28:d8:84:e9:ea:c1:26:8c:da:38:6e: 90:ec:61:6c:82:1f:3a:9f:83:5b:e0:df:0e:91:0f:9d:39:22: f5:76:c7:c6:a4:2f:2c:96:37:70:15:ae:b7:a9:02:c6:fa:86: fa:5f:bc:45:10:de:8b:d8:f9:c0:6a:ce:1a:10:b5:5c:06:43: 51:1b:12:5d:ac:92:c5:69:86:39:8a:a5:73:06:ae:5a:58:15: 26:9f:0e:61:c3:df:ff:de:37:1b:ee:15:97:2d:26:18:56:b2: 6c:07:77:5b:58:86:ef:a9:7b:ba:48:fc:ba:d8:d6:6b:07:45: 9b:b0:11:f2:89:70:8b:bf:3c:3d:92:33:a2:01:35:84:5d:fc: 07:03:9c:4e:3b:7f:41:49:5d:e0:c9:c9:32:30:b7:35:ff:98: 1f:86:a6:f3:ff:b3:df:12:e5:1c:15:cb:cc:ae:3e:2e:11:32: 29:19:c5:95:a4:fc:20:0e:e8:e3:8b:df:8b:31:07:b4:66:f1: d3:24:f2:da:65:0b:75:45:5f:d8:56:f5:82:45:a2:d4:a2:10: b5:a6:54:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2QzExMTAvBgNVBAUTKDI2RDg2NDVFRThFRTNBNUQxRUIxRDJERjk3OUI4NTQ5 Qjg3NjFFMkEwHhcNMjUxMTA3MDEwODU5WhcNMjUxMTE0MDEwODU5WjAYMRYwFAYD VQQDEw02OTBkNDZhYi1hY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvb/4QBVbBXuRqY8DXiA/U8HfusIb1D72wBRm36wzpAQggKfUyneg2Kd3jX4X jDA5haurkvV0XIlHI2KNPbRu1y97sO/r/zcUDwSXPyZXccgwwNLrm8Iyiy02yaBX ABi0K4SW83wrp2vN7VAULZ4rEE8tgTUHQzl4Nn24Plb4EljCT1NCJ44d6qMSN1Rn LhEhAM8M4Dud/GV3W5enTa6aYGc9y/C0hKmXv9MZ7eJxmv24um4F69yFTLWcCR5a NDOAA603K+bYqn3kw+A0rOvxNRoEp7yx7ZXtyQSScz3QejYhbkPw3NiFSg5B7e8O nxaTKyvabX50Fd1lj/QnlahYKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjaFvbd mgPHhzt4AuXLerql0+eNMB8GA1UdIwQYMBaAFCbYZF7o7jpdHrHS35ebhUm4dh4q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDZDMS9EQjcwNDRFMjdB MjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9sMGVzZExmbDV1RlNiaDJI aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p0aGtYdWp1T2wwZXNkTGZsNXVGU2JoMkhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDZDMS9EQjcwNDRFMjdBMjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9s MGVzZExmbDV1RlNiaDJIaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDsERCWnZOd1prNBIcsKmNPfTQ+39n2QKExqoN8R0doGsC9TXwoSfq bL32KNiE6erBJozaOG6Q7GFsgh86n4Nb4N8OkQ+dOSL1dsfGpC8sljdwFa63qQLG +ob6X7xFEN6L2PnAas4aELVcBkNRGxJdrJLFaYY5iqVzBq5aWBUmnw5hw9//3jcb 7hWXLSYYVrJsB3dbWIbvqXu6SPy62NZrB0WbsBHyiXCLvzw9kjOiATWEXfwHA5xO O39BSV3gyckyMLc1/5gfhqbz/7PfEuUcFcvMrj4uETIpGcWVpPwgDujji9+LMQe0 ZvHTJPLaZQt1RV/YVvWCRaLUohC1plTt -----END CERTIFICATE-----Generated at Fri Nov 7 12:41:40 2025 by rpki-client