$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0022/94E7CAF833AE11EBA1FFBF63C4F9AE02/JtUcwUoj0KiCO18cogDnCGrJqWk.mft File: JtUcwUoj0KiCO18cogDnCGrJqWk.mft (raw, json) Hash identifier: ZSBA467jXAGyXOCjGRLCeYhfMHvo1n5QTWog1VvyHAI= Subject key identifier: FF:D9:6F:FA:7D:24:3E:F6:79:38:9D:6E:50:ED:53:E4:A3:A3:73:EC Authority key identifier: 26:D5:1C:C1:4A:23:D0:A8:82:3B:5F:1C:A2:00:E7:08:6A:C9:A9:69 Certificate issuer: /CN=A91B0022/serialNumber=26D51CC14A23D0A8823B5F1CA200E7086AC9A969 Certificate serial: 077D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JtUcwUoj0KiCO18cogDnCGrJqWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0022/94E7CAF833AE11EBA1FFBF63C4F9AE02/JtUcwUoj0KiCO18cogDnCGrJqWk.mft Manifest number: 0778 Signing time: Tue 04 Nov 2025 21:39:36 +0000 Manifest this update: Tue 04 Nov 2025 21:39:36 +0000 Manifest next update: Tue 11 Nov 2025 21:39:35 +0000 Files and hashes: 1: JtUcwUoj0KiCO18cogDnCGrJqWk.crl (hash: evQmcOa1pWcJW95dxM00fU7624BPu4JJFVw1uWWKmGI=) 2: 736BC8B433B011EBB38B4E68C4F9AE02.roa (hash: FBuNSRl7XnXjjg9AlzEceanFZnpfOYLenTTWUna+f+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0022/94E7CAF833AE11EBA1FFBF63C4F9AE02/JtUcwUoj0KiCO18cogDnCGrJqWk.crl rsync://rpki.apnic.net/member_repository/A91B0022/94E7CAF833AE11EBA1FFBF63C4F9AE02/JtUcwUoj0KiCO18cogDnCGrJqWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JtUcwUoj0KiCO18cogDnCGrJqWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0022, serialNumber=26D51CC14A23D0A8823B5F1CA200E7086AC9A969 Validity Not Before: Nov 4 21:39:36 2025 GMT Not After : Nov 11 21:39:35 2025 GMT Subject: CN=690a7298-f3c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dc:9d:b5:07:dc:db:59:15:a6:a7:07:a1:04: 00:ec:42:b2:a4:61:05:c0:50:e2:b4:34:09:ff:fe: 93:e8:e9:e0:ba:fd:f8:2a:2c:aa:50:b2:2e:b4:cb: 29:0c:53:5e:46:a7:fb:77:e1:1a:47:e4:9c:4d:fd: bb:11:e1:0a:42:1f:30:47:b9:56:d2:43:37:b3:5c: 16:86:43:c9:74:78:0b:a3:bb:30:68:b3:f5:46:90: 23:4f:0f:42:b7:e6:fa:11:fa:e2:fe:ee:65:12:e0: 89:8f:4b:76:8d:d4:95:33:df:92:e7:88:87:49:33: 99:cd:6f:c6:f1:ab:6a:56:29:64:6d:c0:83:33:bc: 57:71:1b:81:70:a4:d2:93:8b:1e:ab:b6:53:37:35: f3:fe:1a:54:e2:57:7a:20:2f:63:cb:71:50:5c:6c: b6:26:23:50:8e:40:23:35:97:07:e4:c6:c6:62:bf: 07:00:17:2f:46:d9:a5:56:ac:1b:de:5b:4c:7f:4f: 5a:cf:93:09:14:3e:c1:42:8c:36:98:6f:d6:6f:d0: 20:fc:54:8d:0f:44:18:fd:7a:4d:d8:88:22:a6:90: af:0b:6b:98:f6:e3:29:aa:53:2c:b5:f7:af:93:b5: ea:65:5d:2d:5b:80:4f:71:7a:3d:03:79:9e:c4:ed: bd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D9:6F:FA:7D:24:3E:F6:79:38:9D:6E:50:ED:53:E4:A3:A3:73:EC X509v3 Authority Key Identifier: keyid:26:D5:1C:C1:4A:23:D0:A8:82:3B:5F:1C:A2:00:E7:08:6A:C9:A9:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0022/94E7CAF833AE11EBA1FFBF63C4F9AE02/JtUcwUoj0KiCO18cogDnCGrJqWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JtUcwUoj0KiCO18cogDnCGrJqWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0022/94E7CAF833AE11EBA1FFBF63C4F9AE02/JtUcwUoj0KiCO18cogDnCGrJqWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:07:80:92:07:e1:c0:c7:93:ff:0a:bd:4a:2e:a7:78:7a:d0: 79:e3:6d:70:52:48:ec:8b:03:51:a1:20:8b:d8:cc:56:62:8b: 1f:e2:33:8a:75:e9:db:59:b7:e6:21:f8:26:38:76:27:9c:15: 54:46:65:9a:a4:3b:74:1f:8e:61:94:3b:2a:35:26:f7:cf:88: cc:57:93:00:91:e8:cd:20:b2:f6:c5:1e:9a:1c:ba:31:14:54: f6:69:df:2a:8a:a9:da:58:2e:96:db:56:a4:5a:81:11:be:1b: 55:bc:7e:45:0d:30:e5:a4:ba:ca:04:12:b7:c4:7c:fd:73:1e: 2d:a2:88:2b:fb:f7:50:0a:3a:76:5e:8b:d3:4a:70:dc:79:88: 11:b5:fb:2b:b6:ec:25:33:b3:78:7b:90:4f:ea:5d:62:51:70: f4:22:d1:c7:06:40:ea:59:e2:9d:86:d6:33:9d:f6:d4:50:c7: eb:1a:0e:ba:b0:25:1f:35:9e:ab:f7:c4:cd:4d:d2:df:fe:40: 7b:1f:56:e1:b5:ad:90:fb:1a:87:74:2a:18:58:7e:ee:b3:d3: 1f:66:4e:7c:48:a4:fd:64:19:65:f6:ee:af:8c:2a:02:d4:a2: 01:7e:68:15:12:7f:25:75:32:be:49:e5:53:0a:87:3c:a1:da: f3:a1:a7:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwMjIxMTAvBgNVBAUTKDI2RDUxQ0MxNEEyM0QwQTg4MjNCNUYxQ0EyMDBFNzA4 NkFDOUE5NjkwHhcNMjUxMTA0MjEzOTM2WhcNMjUxMTExMjEzOTM1WjAYMRYwFAYD VQQDEw02OTBhNzI5OC1mM2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNydtQfc21kVpqcHoQQA7EKypGEFwFDitDQJ//6T6Onguv34KiyqULIutMsp DFNeRqf7d+EaR+ScTf27EeEKQh8wR7lW0kM3s1wWhkPJdHgLo7swaLP1RpAjTw9C t+b6Efri/u5lEuCJj0t2jdSVM9+S54iHSTOZzW/G8atqVilkbcCDM7xXcRuBcKTS k4seq7ZTNzXz/hpU4ld6IC9jy3FQXGy2JiNQjkAjNZcH5MbGYr8HABcvRtmlVqwb 3ltMf09az5MJFD7BQow2mG/Wb9Ag/FSND0QY/XpN2IgippCvC2uY9uMpqlMstfev k7XqZV0tW4BPcXo9A3mexO29IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/Zb/p9 JD72eTidblDtU+Sjo3PsMB8GA1UdIwQYMBaAFCbVHMFKI9CogjtfHKIA5whqyalp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDAyMi85NEU3Q0FGODMz QUUxMUVCQTFGRkJGNjNDNEY5QUUwMi9KdFVjd1VvajBLaUNPMThjb2dEbkNHckpx V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p0VWN3VW9qMEtpQ08xOGNvZ0RuQ0dySnFXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDAyMi85NEU3Q0FGODMzQUUxMUVCQTFGRkJGNjNDNEY5QUUwMi9KdFVjd1VvajBL aUNPMThjb2dEbkNHckpxV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1B4CSB+HAx5P/Cr1KLqd4etB5421wUkjsiwNRoSCL2MxWYosf4jOK denbWbfmIfgmOHYnnBVURmWapDt0H45hlDsqNSb3z4jMV5MAkejNILL2xR6aHLox FFT2ad8qiqnaWC6W21akWoERvhtVvH5FDTDlpLrKBBK3xHz9cx4toogr+/dQCjp2 XovTSnDceYgRtfsrtuwlM7N4e5BP6l1iUXD0ItHHBkDqWeKdhtYznfbUUMfrGg66 sCUfNZ6r98TNTdLf/kB7H1bhta2Q+xqHdCoYWH7us9MfZk58SKT9ZBll9u6vjCoC 1KIBfmgVEn8ldTK+SeVTCoc8odrzoadt -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:15 2025 by rpki-client