$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: UwWJYpdF51+13fs33qGgPMpqiD5kxKcR7GK27jIOay0= Subject key identifier: AC:79:C3:00:6D:6F:C5:3E:F0:49:30:06:D0:4A:B2:EA:50:65:BB:71 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 71 Signing time: Mon 27 Oct 2025 09:20:47 +0000 Manifest this update: Mon 27 Oct 2025 09:20:46 +0000 Manifest next update: Mon 03 Nov 2025 09:20:46 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: Nr63oiSr4LKghjTv8A8Qh659eP9/q2iq1vRwlSnz+kI=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 09:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Oct 27 09:20:46 2025 GMT Not After : Nov 3 09:20:46 2025 GMT Subject: CN=68ff396e-a067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ed:00:f6:db:72:11:2a:33:a9:9b:84:05:cd: fb:1e:e9:5c:ea:14:88:20:fd:75:d6:7a:2c:35:8b: 8d:0d:8d:bf:4a:eb:e8:fe:32:4f:fb:ee:51:ee:45: 1e:4c:f4:04:64:7f:18:0c:60:c6:29:a9:dd:08:f9: 6a:8e:27:55:5e:56:e8:07:09:e4:d4:ce:1e:57:6e: 4a:d5:f8:18:81:28:5c:ef:cd:cc:ec:46:08:50:bb: 05:72:97:f9:50:a1:2d:c0:7a:2d:76:d1:01:3c:bf: b7:5d:7f:f4:b5:1e:dc:10:1f:5d:87:61:68:7e:ae: 8e:b9:a1:47:91:78:f5:c3:fe:0c:d0:f3:1f:18:6d: c0:17:d0:a3:ca:87:a9:25:b9:12:60:c9:bd:37:d6: e7:f1:d2:79:37:7f:e5:a1:73:24:64:6b:9d:30:3a: 1e:b6:b6:5e:5c:ed:a4:b6:01:28:0b:3a:73:b1:1e: f4:97:82:e3:d9:3b:20:a3:33:58:09:07:b2:92:5e: 99:f0:e5:8d:30:41:b8:35:0d:3c:b7:d4:c9:2a:e5: fb:73:1c:f0:1f:3b:5c:0a:69:2d:71:f4:8e:41:9b: 57:84:27:95:17:27:5b:db:8c:fc:08:e8:1e:69:7a: 82:bc:7a:a7:bf:67:49:59:70:d0:f7:b2:90:ae:a1: 3c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:79:C3:00:6D:6F:C5:3E:F0:49:30:06:D0:4A:B2:EA:50:65:BB:71 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6a:28:77:9a:90:8f:c8:2e:50:33:8f:ad:eb:2d:36:84:50: 6a:b8:97:17:58:87:8a:25:f7:e0:41:df:57:1e:03:fc:13:c4: 2e:4d:fd:a7:64:49:5d:61:bd:b2:84:42:20:72:f9:04:79:df: 29:a0:e4:ae:b9:e2:f6:2c:23:88:fd:06:36:72:3d:c0:83:a6: 3e:92:ff:b8:b8:27:a3:9c:65:40:a4:a3:a4:e2:ce:1a:f0:bd: af:6a:f6:bc:34:6e:53:79:22:61:84:9d:e6:18:69:8d:3c:b9: 67:65:c9:bc:07:6f:fd:bc:b3:13:ae:b3:25:96:a9:69:41:c6: e4:29:94:c8:74:a5:83:12:e1:33:30:dd:ed:7e:3d:6c:46:e4: c3:71:83:83:91:bb:95:d3:c1:76:70:5b:29:95:1f:dd:63:67: 8a:19:5d:90:89:43:04:1a:01:33:87:f9:ce:1f:cf:bb:92:ed: b9:73:48:cb:53:36:11:0e:6d:09:6f:75:25:d9:d5:92:d8:1b: 43:d3:49:be:a8:1e:e1:e5:d6:0f:a3:0e:0c:d5:5e:71:28:63: 3a:1e:81:19:4d:47:cd:ba:b7:7b:c7:6b:0b:7e:9b:fd:10:65: 5a:5e:f6:1d:41:11:9a:03:02:67:75:f4:f1:f9:b8:62:d5:d1: 4b:21:fa:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTEwMjcwOTIwNDZaFw0yNTExMDMwOTIwNDZaMBgxFjAUBgNV BAMTDTY4ZmYzOTZlLWEwNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR7QD223IRKjOpm4QFzfse6VzqFIgg/XXWeiw1i40Njb9K6+j+Mk/77lHuRR5M 9ARkfxgMYMYpqd0I+WqOJ1VeVugHCeTUzh5XbkrV+BiBKFzvzczsRghQuwVyl/lQ oS3Aei120QE8v7ddf/S1HtwQH12HYWh+ro65oUeRePXD/gzQ8x8YbcAX0KPKh6kl uRJgyb031ufx0nk3f+WhcyRka50wOh62tl5c7aS2ASgLOnOxHvSXguPZOyCjM1gJ B7KSXpnw5Y0wQbg1DTy31Mkq5ftzHPAfO1wKaS1x9I5Bm1eEJ5UXJ1vbjPwI6B5p eoK8eqe/Z0lZcND3spCuoTzTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrHnDAG1v xT7wSTAG0Eqy6lBlu3EwHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdM SHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADNqKHeakI/ILlAzj63rLTaEUGq4lxdYh4ol9+BB31ceA/wTxC5N/adk SV1hvbKEQiBy+QR53ymg5K654vYsI4j9BjZyPcCDpj6S/7i4J6OcZUCko6Tizhrw va9q9rw0blN5ImGEneYYaY08uWdlybwHb/28sxOusyWWqWlBxuQplMh0pYMS4TMw 3e1+PWxG5MNxg4ORu5XTwXZwWymVH91jZ4oZXZCJQwQaATOH+c4fz7uS7blzSMtT NhEObQlvdSXZ1ZLYG0PTSb6oHuHl1g+jDgzVXnEoYzoegRlNR826t3vHawt+m/0Q ZVpe9h1BEZoDAmd19PH5uGLV0Ush+jU= -----END CERTIFICATE-----Generated at Tue Oct 28 12:37:00 2025 by rpki-client