$ rpki-client -vvf rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft File: jNZeQOKuy7xVttozRr8czjg1wnc.mft (raw, json) Hash identifier: 1qAlHT0Sw55c2LHozKYuOIW8SnRcB44/1tHVMQiM7wQ= Subject key identifier: 83:2A:43:25:14:FB:A8:48:08:42:C9:FD:D1:E7:3F:7F:84:DF:74:AA Authority key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 Certificate issuer: /CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft Manifest number: 01BE Signing time: Mon 03 Nov 2025 02:58:12 +0000 Manifest this update: Mon 03 Nov 2025 02:58:12 +0000 Manifest next update: Mon 10 Nov 2025 02:58:12 +0000 Files and hashes: 1: jNZeQOKuy7xVttozRr8czjg1wnc.crl (hash: VTwd52nCFqHi47yR4D6ZNCAE+CVuMNtt8M+nCcWXXt0=) 2: 4CEE00EC0A8811EEA788A750C4F9AE02.roa (hash: TJboroWTjSH5MHMWjJ273LEWmOXtmootlWn74QKDiMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:58:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A6EB, serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Validity Not Before: Nov 3 02:58:12 2025 GMT Not After : Nov 10 02:58:12 2025 GMT Subject: CN=69081a44-fcce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:66:39:9d:08:f5:ba:2a:c3:63:ee:f7:68: a1:24:4b:8a:41:fd:63:c8:e3:b2:7f:ce:4e:a3:75: fb:b0:c8:64:b0:a7:14:26:bb:19:f4:98:be:22:6c: 96:33:6e:d0:b5:29:7f:f8:98:72:57:f6:17:7d:0f: 93:c1:26:c5:0c:39:a5:34:69:90:5c:03:c5:89:27: b6:81:d6:36:f4:d7:f3:e4:0d:1e:5d:3f:e6:dd:85: 06:36:4b:50:6c:d6:37:6a:63:ef:8c:b7:0d:aa:2d: 9a:97:1b:50:b7:23:8a:55:42:04:0b:72:1a:23:e5: 73:56:25:90:9a:fc:d8:2f:e9:23:66:16:7a:2b:7c: 5a:c9:0c:03:96:04:8f:c8:83:8d:a0:76:37:c7:81: f7:55:ed:4e:ec:1f:b0:31:b0:5b:87:73:63:7d:5f: e9:8d:9f:f1:d2:4d:2a:5c:4f:9c:f4:87:cd:32:c6: 5b:95:3e:77:2a:b0:8e:6a:5b:4c:8d:ba:7f:1c:e8: 6c:8f:f7:31:c2:4c:07:31:1e:56:ad:9c:ac:5b:34: f3:5e:2f:50:10:45:ec:98:78:72:3b:5b:df:3c:72: ba:9c:0b:23:3f:6c:5e:f9:82:36:a5:f1:8e:26:33: ff:4f:89:a7:69:49:b4:db:73:48:4d:ea:75:22:26: 94:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2A:43:25:14:FB:A8:48:08:42:C9:FD:D1:E7:3F:7F:84:DF:74:AA X509v3 Authority Key Identifier: keyid:8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d7:41:b0:45:4d:56:6f:a5:03:e8:f3:b3:1f:74:9b:fc:0c: 64:a5:4a:f0:bf:3d:76:8e:68:d9:9f:b8:0f:d9:0a:9d:0d:8b: af:cd:23:65:58:0e:08:3c:90:93:1a:b7:a8:35:b8:78:df:a7: 4c:bb:01:47:07:c3:1d:78:2f:e4:9f:a6:d9:5b:32:66:ed:a0: 4a:5d:b1:39:7f:78:78:a5:ab:93:0b:df:16:12:d2:a8:e2:e8: 3e:30:53:43:82:ac:4a:e8:ea:67:36:19:36:9a:e4:c1:ac:52: 2f:87:31:04:dd:4a:19:42:97:ac:59:43:64:1b:c7:03:99:38: 1b:ef:d0:4b:3a:bf:1c:82:b3:d9:20:b2:3c:7d:b9:97:26:04: 07:77:26:f1:6d:a5:77:df:46:08:de:7a:b2:cb:39:72:62:20: 5a:9a:0f:25:bc:49:8e:c3:b8:37:8b:8f:c5:81:a8:2a:30:73: 7b:9d:1d:f5:23:65:f1:a4:2f:01:77:d8:88:af:9d:eb:29:7f: 70:10:65:a5:26:40:e9:79:31:5a:6f:65:90:36:89:25:a2:c2: c8:76:49:06:a1:09:b4:7e:bf:70:53:3d:90:b4:84:4c:d6:f2: 98:55:1f:67:d2:c4:f5:b3:da:f3:63:16:2a:7b:91:8f:fd:30: 0e:ae:77:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEzMzQ2QkYxQ0NF MzgzNUMyNzcwHhcNMjUxMTAzMDI1ODEyWhcNMjUxMTEwMDI1ODEyWjAYMRYwFAYD VQQDEw02OTA4MWE0NC1mY2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRlmOZ0I9boqw2Pu92ihJEuKQf1jyOOyf85Oo3X7sMhksKcUJrsZ9Ji+ImyW M27QtSl/+JhyV/YXfQ+TwSbFDDmlNGmQXAPFiSe2gdY29Nfz5A0eXT/m3YUGNktQ bNY3amPvjLcNqi2alxtQtyOKVUIEC3IaI+VzViWQmvzYL+kjZhZ6K3xayQwDlgSP yIONoHY3x4H3Ve1O7B+wMbBbh3NjfV/pjZ/x0k0qXE+c9IfNMsZblT53KrCOaltM jbp/HOhsj/cxwkwHMR5WrZysWzTzXi9QEEXsmHhyO1vfPHK6nAsjP2xe+YI2pfGO JjP/T4mnaUm023NITep1IiaUOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMqQyUU +6hICELJ/dHnP3+E33SqMB8GA1UdIwQYMBaAFIzWXkDirsu8VbbaM0a/HM44NcJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTZFQi9ERDRDMUIyQTBB NUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3eFZ0dG96UnI4Y3pqZzF3 bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOWmVRT0t1eTd4VnR0b3pScjhjempnMXduYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3 eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB10GwRU1Wb6UD6POzH3Sb/AxkpUrwvz12jmjZn7gP2QqdDYuvzSNl WA4IPJCTGreoNbh436dMuwFHB8MdeC/kn6bZWzJm7aBKXbE5f3h4pauTC98WEtKo 4ug+MFNDgqxK6OpnNhk2muTBrFIvhzEE3UoZQpesWUNkG8cDmTgb79BLOr8cgrPZ ILI8fbmXJgQHdybxbaV330YI3nqyyzlyYiBamg8lvEmOw7g3i4/FgagqMHN7nR31 I2XxpC8Bd9iIr53rKX9wEGWlJkDpeTFab2WQNoklosLIdkkGoQm0fr9wUz2QtIRM 1vKYVR9n0sT1s9rzYxYqe5GP/TAOrnfu -----END CERTIFICATE-----Generated at Tue Nov 4 17:35:08 2025 by rpki-client