$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: b50NO5EI3HSYKb/CMmQVdwhi5LCh16pwolu3icSpt8M= Subject key identifier: 3B:75:AC:E7:A8:DB:4E:E8:3B:3F:6E:4F:5F:B6:47:56:A5:39:64:FF Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 02BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 02A0 Signing time: Wed 29 Oct 2025 01:19:41 +0000 Manifest this update: Wed 29 Oct 2025 01:19:40 +0000 Manifest next update: Wed 05 Nov 2025 01:19:40 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: 4Moohgsw2lTlL6KmdFOOEV6DeGni9N1LChcVLZluyoI=) 2: E1870478616C11F0A254E10BC4F9AE02.roa (hash: PUky37fAI8Ys1qLflElYkqRy1kwJKllU0o6ewDp0S2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 01:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Oct 29 01:19:40 2025 GMT Not After : Nov 5 01:19:40 2025 GMT Subject: CN=69016bac-5124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:12:54:bc:0d:e1:63:a7:98:e1:18:16:2d:60: 1f:c6:a4:bd:a6:3f:52:fd:f9:ed:77:0d:38:06:4e: 24:3a:69:64:7f:37:01:b6:3f:9b:ff:60:b9:48:c9: 83:76:82:d1:64:5b:23:cd:74:f5:75:41:2e:4a:94: 5b:bb:a7:bc:08:91:b9:dd:f7:75:0e:69:ea:6a:fe: 12:82:af:2a:8b:7b:23:77:5a:e8:35:00:1f:d5:91: 7a:31:4d:9f:a6:51:09:6a:22:ff:c6:9c:d0:be:21: c8:97:f5:be:d7:eb:cc:ad:ed:d7:fc:d2:f6:60:1a: 6e:ba:a0:f7:fe:b4:95:5f:2c:a1:d8:b1:4d:97:d2: 9a:f5:fb:4c:d3:94:d7:69:8f:f6:82:10:90:b8:d9: ec:c8:b5:fb:0f:21:44:82:4c:4e:73:84:67:f1:d7: 40:d1:ed:84:43:a9:81:14:e8:72:2f:02:52:d4:ca: b6:cd:6b:48:3f:bd:92:22:3c:44:7e:f9:b8:f4:9a: 99:38:c2:3e:75:53:d2:81:5f:8d:1c:5f:24:dd:25: 9b:0b:6b:87:8c:8b:29:93:54:61:af:af:c3:dc:77: 34:97:3d:60:85:f1:e9:d0:6c:aa:a4:2c:58:ad:fc: 52:6a:39:c7:08:27:16:b9:c5:9d:c9:52:e4:ac:d0: ca:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:75:AC:E7:A8:DB:4E:E8:3B:3F:6E:4F:5F:B6:47:56:A5:39:64:FF X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:5a:d9:eb:2e:57:58:72:ea:70:a7:30:01:30:b3:48:c6:5a: 77:c3:a3:5e:76:c7:2a:aa:44:db:d3:4b:58:5a:46:2d:e8:08: 62:14:2d:82:19:25:2a:38:bb:5f:ad:6a:9b:25:04:77:9d:bc: ee:d2:47:c8:90:71:7f:aa:7e:5f:aa:ef:b2:cd:6c:e8:52:2c: 6b:75:93:bd:e5:9e:d4:2d:d5:d6:71:1f:f7:1f:b9:ea:53:e3: f5:25:e2:75:59:c3:09:ac:4a:57:37:43:a0:61:b1:66:40:ad: b8:24:da:eb:36:40:ed:88:ed:46:27:d6:91:e4:cb:01:97:54: 55:da:d9:7f:0f:5b:14:ad:66:79:4e:7e:d8:32:d1:64:d5:59: fc:63:ba:bd:e0:fe:c9:b5:b1:95:94:d7:8d:ab:1d:2a:f7:fb: af:51:0a:55:a0:23:cf:90:89:7c:99:45:4f:5c:b9:0e:9a:55: fc:e7:d3:e8:73:01:2b:bf:49:1e:b8:b6:46:e2:fc:9d:55:7c: 57:63:32:59:3f:6c:ad:9b:28:a8:e5:87:00:ce:62:1b:d6:47: ec:cd:fa:84:9e:67:23:63:df:8b:cb:1c:e0:59:8a:cf:dd:3f: c8:c3:40:3b:d2:53:2e:76:36:72:3c:e7:94:35:8d:5b:3e:7e: 87:11:20:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjUxMDI5MDExOTQwWhcNMjUxMTA1MDExOTQwWjAYMRYwFAYD VQQDEw02OTAxNmJhYy01MTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBJUvA3hY6eY4RgWLWAfxqS9pj9S/fntdw04Bk4kOmlkfzcBtj+b/2C5SMmD doLRZFsjzXT1dUEuSpRbu6e8CJG53fd1Dmnqav4Sgq8qi3sjd1roNQAf1ZF6MU2f plEJaiL/xpzQviHIl/W+1+vMre3X/NL2YBpuuqD3/rSVXyyh2LFNl9Ka9ftM05TX aY/2ghCQuNnsyLX7DyFEgkxOc4Rn8ddA0e2EQ6mBFOhyLwJS1Mq2zWtIP72SIjxE fvm49JqZOMI+dVPSgV+NHF8k3SWbC2uHjIspk1Rhr6/D3Hc0lz1ghfHp0GyqpCxY rfxSajnHCCcWucWdyVLkrNDKEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDt1rOeo 207oOz9uT1+2R1alOWT/MB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8WtnrLldYcupwpzABMLNIxlp3w6NedscqqkTb00tYWkYt6AhiFC2C GSUqOLtfrWqbJQR3nbzu0kfIkHF/qn5fqu+yzWzoUixrdZO95Z7ULdXWcR/3H7nq U+P1JeJ1WcMJrEpXN0OgYbFmQK24JNrrNkDtiO1GJ9aR5MsBl1RV2tl/D1sUrWZ5 Tn7YMtFk1Vn8Y7q94P7JtbGVlNeNqx0q9/uvUQpVoCPPkIl8mUVPXLkOmlX859Po cwErv0keuLZG4vydVXxXYzJZP2ytmyio5YcAzmIb1kfszfqEnmcjY9+LyxzgWYrP 3T/Iw0A70lMudjZyPOeUNY1bPn6HESA/ -----END CERTIFICATE-----Generated at Thu Oct 30 06:37:18 2025 by rpki-client