$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft File: jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft (raw, json) Hash identifier: jFg+sbycEDB7KfHz0CRrizZXpovsHabHCMj4hf+jAD0= Subject key identifier: A1:79:C7:A0:91:CB:43:BE:97:E5:A1:2D:DA:74:01:9D:64:00:CE:03 Authority key identifier: 8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 Certificate issuer: /CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Certificate serial: 0441 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft Manifest number: 0436 Signing time: Wed 29 Oct 2025 00:03:56 +0000 Manifest this update: Wed 29 Oct 2025 00:03:56 +0000 Manifest next update: Wed 05 Nov 2025 00:03:56 +0000 Files and hashes: 1: jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl (hash: Z7RMqKpyglbwMpTq9uhDxMb0XYqX+6navv/luhJ5VCw=) 2: D9470BFE7DC811ECB84BD174C4F9AE02.roa (hash: wmK7x3Sk5UopVQwNMRtsiduu1nPhJgBS/7n4gUWasIc=) 3: 84F58DCA7DCB11EC99806E25C4F9AE02.roa (hash: Gd7JCr1281wWWtBPVf/kwPfiC4gERpM54Kx0s/D+laI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 00:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8265, serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Validity Not Before: Oct 29 00:03:56 2025 GMT Not After : Nov 5 00:03:56 2025 GMT Subject: CN=690159ec-ffaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9f:bf:81:83:2e:46:50:f5:6e:35:0a:4c:1d: f8:a4:bd:32:0e:52:03:83:2f:2f:99:5c:ec:c8:f2: 9d:a8:e4:39:bd:62:5f:4d:74:65:e9:86:49:3a:4a: d8:79:71:49:bd:e3:26:70:52:3f:41:29:ab:5b:23: cd:f9:35:0c:64:0e:e8:34:ff:c3:a8:b1:6a:00:5d: 81:04:cc:f6:e3:9e:14:4e:aa:12:d7:60:c6:3d:e3: 7d:18:d1:64:6e:2b:3b:ed:34:bf:36:02:5f:64:b1: 6a:b7:7a:90:3d:42:10:1b:69:bf:e3:bf:33:b1:17: 28:c2:55:e6:99:96:24:b6:36:68:6e:dd:c1:3c:28: 27:78:b7:a4:17:1f:02:d4:a0:2c:8e:d5:5f:1e:f1: 44:b1:c1:0e:1a:13:96:e4:44:e5:a5:fd:77:0e:01: 1f:a2:0c:77:89:a3:a5:bc:b3:fe:e0:eb:2a:1d:5d: 96:7b:0b:5e:2e:1c:5e:4f:34:87:72:50:ae:b8:6c: 6a:48:88:5b:a5:0e:93:ae:58:c3:3a:73:eb:6c:5f: 1d:b3:5f:06:33:60:00:4f:e4:20:b1:8a:41:22:80: ab:ef:80:5d:32:0e:14:c8:06:51:bd:2b:1b:5a:e8: 03:9a:e8:8b:86:96:17:fa:25:3a:0a:20:68:4f:e3: 88:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:79:C7:A0:91:CB:43:BE:97:E5:A1:2D:DA:74:01:9D:64:00:CE:03 X509v3 Authority Key Identifier: keyid:8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:6a:50:ad:17:00:6c:80:5e:18:ff:01:e8:1a:85:cb:0b:e2: fd:b7:be:c5:36:2c:9d:40:c3:58:e4:96:b7:d2:ab:97:e6:e0: 0a:17:bf:71:80:71:6c:fb:57:d8:b2:3f:4e:3d:1c:81:96:9f: 60:ab:5a:f9:75:a0:1b:76:5c:28:a7:05:bf:bc:ca:0e:58:5b: 29:94:e9:ee:53:03:9c:d7:5f:39:ed:a3:3d:35:8d:19:5b:de: cc:3a:4f:46:3f:0b:77:03:30:f0:e5:26:92:9e:31:1f:c5:ca: 54:56:a1:c9:88:0d:65:0a:7d:31:6e:b0:7e:bd:db:f2:5f:7d: 56:e5:bb:11:68:5a:17:45:71:45:b3:44:da:87:46:3a:6d:4c: db:38:4e:56:3e:12:0a:47:b2:52:26:8b:2d:bd:37:ca:c4:bb: 0b:3a:6c:67:8f:71:25:12:b3:ce:2b:fb:e8:e3:fb:32:0a:55: c4:42:45:da:ce:96:b0:ce:ef:5a:b5:87:9f:06:78:a5:d2:02: a1:4f:15:c6:a9:9a:8c:72:e9:d9:f0:1f:2e:cf:20:8d:69:e1: 07:ad:78:c0:b6:b5:3c:07:f7:8b:24:a1:85:38:7c:5f:db:07: b8:45:18:68:b5:38:87:bb:dc:84:4a:56:a0:0c:63:25:18:e8: 38:1e:33:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyNjUxMTAvBgNVBAUTKDhGMTFDNDdFMkZFQTE5OUMyNzI3Qzg2QjQ5OTBGM0JG QUU4MjAxNjIwHhcNMjUxMDI5MDAwMzU2WhcNMjUxMTA1MDAwMzU2WjAYMRYwFAYD VQQDEw02OTAxNTllYy1mZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJ+/gYMuRlD1bjUKTB34pL0yDlIDgy8vmVzsyPKdqOQ5vWJfTXRl6YZJOkrY eXFJveMmcFI/QSmrWyPN+TUMZA7oNP/DqLFqAF2BBMz2454UTqoS12DGPeN9GNFk bis77TS/NgJfZLFqt3qQPUIQG2m/478zsRcowlXmmZYktjZobt3BPCgneLekFx8C 1KAsjtVfHvFEscEOGhOW5ETlpf13DgEfogx3iaOlvLP+4OsqHV2WewteLhxeTzSH clCuuGxqSIhbpQ6TrljDOnPrbF8ds18GM2AAT+QgsYpBIoCr74BdMg4UyAZRvSsb WugDmuiLhpYX+iU6CiBoT+OIoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKF5x6CR y0O+l+WhLdp0AZ1kAM4DMB8GA1UdIwQYMBaAFI8RxH4v6hmcJyfIa0mQ87+uggFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI2NS80Q0Q1RkUwRTdE QzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUdad25KOGhyU1pEenY2NkNB V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p4SEVmaV9xR1p3bko4aHJTWkR6djY2Q0FXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI2NS80Q0Q1RkUwRTdEQzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUda d25KOGhyU1pEenY2NkNBV0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzalCtFwBsgF4Y/wHoGoXLC+L9t77FNiydQMNY5Ja30quX5uAKF79x gHFs+1fYsj9OPRyBlp9gq1r5daAbdlwopwW/vMoOWFsplOnuUwOc11857aM9NY0Z W97MOk9GPwt3AzDw5SaSnjEfxcpUVqHJiA1lCn0xbrB+vdvyX31W5bsRaFoXRXFF s0Tah0Y6bUzbOE5WPhIKR7JSJostvTfKxLsLOmxnj3ElErPOK/vo4/syClXEQkXa zpawzu9atYefBnil0gKhTxXGqZqMcunZ8B8uzyCNaeEHrXjAtrU8B/eLJKGFOHxf 2we4RRhotTiHu9yESlagDGMlGOg4HjOO -----END CERTIFICATE-----Generated at Wed Oct 29 10:20:09 2025 by rpki-client