$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft File: mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft (raw, json) Hash identifier: AfRB66+PnSm4la4Ic6dn6ukNdW8MsXqFdfBkPXAPWiE= Subject key identifier: 4E:C6:09:BF:B0:98:68:33:40:0C:E2:65:E1:86:81:C2:17:D3:92:52 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0AD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft Manifest number: 0AA7 Signing time: Mon 20 Oct 2025 20:20:06 +0000 Manifest this update: Mon 20 Oct 2025 20:20:05 +0000 Manifest next update: Mon 27 Oct 2025 20:20:05 +0000 Files and hashes: 1: mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl (hash: Mav9HE3PWhBSN0/r7n/0pBx3+xKuQmh17r0+8TMIukc=) 2: 0FD2DB3A109C11F08D6B6B19C4F9AE02.roa (hash: b0jHLruEtRzyhGWKnuBBIEAeyGPvSkQqNURAHY7x5fE=) 3: 07CD68A213AD11EFADED003DC4F9AE02.roa (hash: gbSrDMCrPI8A3+3d0sfCicNLcWdleMd0w7YOfrmP/TI=) 4: DB701E584E6311EEBED9743CC4F9AE02.roa (hash: Zd7NoechSfahxSRsj2v3JsOwSTFCMebH21LUprHvV20=) 5: 011CBE6CDF8911ED942E2A67C4F9AE02.roa (hash: SFbvxZ2XG8g69o3YZw4mocDKsXgtaeblyR+TN86Ur60=) 6: 8D864528E26911EFB89A9142C4F9AE02.roa (hash: y31kJqG82XvEmO9/QRkcWiRFKFh5zoKjaSnnJfP7MyE=) 7: DC4A492A4E6311EEBED9743CC4F9AE02.roa (hash: GMZ//QDkBiynojhpbrl7EytSa00iqEIB/AB0/Z7GlXI=) 8: 66E400CACB4C11EE8E404546C4F9AE02.roa (hash: mvVRFtNTY10bq4ZO+LKEMEdrzCb/tsvmp6na5wzt45Q=) 9: 01D6C542776C11EF9A0CEA56C4F9AE02.roa (hash: yd/SOlvp9mrxaUSwn8FcZ74+WiXfNeapwvKAhRJ4Sx8=) 10: 8A916FDC83D711EAAA5AEC56C4F9AE02.roa (hash: 4HveBCpHvV1swaBGF9e6bY77B+cKbG0JrVqTZsmASrs=) 11: BACC498C9EFC11EC856FCB09C4F9AE02.roa (hash: 2GC7KAVMhvV+YXc4GAZ/vzQonWiNlY6zwWOHBpULon8=) 12: 8C0868D0C9DC11EE8B24C55EC4F9AE02.roa (hash: Mm2/BkteGaDDz+jKCOQ2/1mPEBu0lMlfQI/ZFwneEPA=) 13: 8B083190C9DC11EE8B24C55EC4F9AE02.roa (hash: MEzvVgdoK3WuLUFmv9SwilQrCS7SZE01USmJAX6/Oss=) 14: 8B8856F4C9DC11EE8B24C55EC4F9AE02.roa (hash: 9pxxuNY/fuCdOuU7dA3COe6L1OGNmS3muKknh0X0O9M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Oct 20 20:20:05 2025 GMT Not After : Oct 27 20:20:05 2025 GMT Subject: CN=68f69976-a01d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:40:6e:5d:1b:80:e6:eb:28:aa:5e:82:34:95: c2:11:2a:c0:91:18:e6:c8:81:74:ad:b4:61:1a:9b: 0d:a6:cf:89:ad:92:57:96:98:7d:29:bd:f5:b8:09: 1a:7f:a4:35:40:c4:58:b7:63:dd:30:44:d2:46:ad: 36:42:34:9e:c2:1e:5e:7a:ac:af:89:76:d3:be:3b: 2e:f9:6a:e9:a6:e2:fe:5d:3e:5c:0e:3b:77:d2:fc: bf:9f:32:5c:09:34:6f:90:f7:fc:a9:a2:a6:8b:62: 92:2f:df:9a:40:2b:f0:1e:1d:b4:a1:4e:05:23:13: cd:10:d2:d6:7a:cb:d9:23:44:47:d4:41:bc:6a:6c: a2:a9:62:cc:0f:ab:6b:3b:2a:59:e3:92:01:63:59: f4:fa:5b:fb:93:d4:03:aa:29:2c:87:48:e1:96:59: af:61:38:17:73:c7:f7:ef:19:2a:62:8a:2b:99:1e: 1d:b0:03:f2:5a:34:2b:cd:4e:23:53:71:76:05:c0: b7:cc:4c:e7:a7:f1:d0:b7:d1:ba:3d:20:72:15:3e: ee:5b:77:d4:a2:70:6f:85:09:a1:ea:f6:2f:a5:fc: d2:4d:eb:75:93:bf:f7:19:9b:20:e9:af:3e:91:22: 0d:3d:15:31:96:65:47:26:ed:23:17:37:a4:8d:36: 35:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C6:09:BF:B0:98:68:33:40:0C:E2:65:E1:86:81:C2:17:D3:92:52 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:26:f4:94:aa:cc:f1:9d:ba:14:42:da:d1:8e:b0:73:83:37: 07:67:d8:ee:d8:90:31:3a:b4:87:f8:d5:08:e8:b6:26:c0:59: ea:96:26:8e:26:7e:7b:2a:3f:0e:7f:d1:6d:5b:65:b9:98:c4: bb:ff:75:f9:51:99:20:56:b9:e2:b8:c9:b4:e8:c2:57:f7:fd: a7:92:a3:4f:e3:ee:1d:89:9e:a1:0f:40:38:50:10:7d:60:b1: 20:5a:f5:8a:50:08:e6:e1:f8:cc:a2:09:a7:a6:03:e1:a2:62: d9:d1:9b:94:7f:a8:f3:b4:29:dc:be:b7:f6:73:91:d8:96:0e: d2:a6:04:16:09:9b:34:04:65:bf:a5:0b:be:0c:88:a6:b1:2d: 05:b2:0d:9b:a9:19:61:a0:ae:82:74:0d:36:d4:07:c1:7e:2d: 9f:0d:ea:23:8f:f8:77:7d:82:55:ed:47:0e:68:f1:ca:d0:86: db:98:97:ce:85:7c:77:bd:a2:ee:e7:f8:3e:f4:e0:7d:03:70: 6d:8c:69:80:f6:12:c7:83:9f:11:f7:fe:3f:59:e1:fd:63:7d: c6:cb:1a:40:f9:30:4b:32:c5:aa:48:33:8b:76:eb:af:5b:8f: af:b8:8c:61:5e:89:81:95:15:00:ff:22:f3:a5:50:f5:1f:08: 99:1e:4f:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUxMDIwMjAyMDA1WhcNMjUxMDI3MjAyMDA1WjAYMRYwFAYD VQQDEw02OGY2OTk3Ni1hMDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkBuXRuA5usoql6CNJXCESrAkRjmyIF0rbRhGpsNps+JrZJXlph9Kb31uAka f6Q1QMRYt2PdMETSRq02QjSewh5eeqyviXbTvjsu+WrppuL+XT5cDjt30vy/nzJc CTRvkPf8qaKmi2KSL9+aQCvwHh20oU4FIxPNENLWesvZI0RH1EG8amyiqWLMD6tr OypZ45IBY1n0+lv7k9QDqiksh0jhllmvYTgXc8f37xkqYoormR4dsAPyWjQrzU4j U3F2BcC3zEznp/HQt9G6PSByFT7uW3fUonBvhQmh6vYvpfzSTet1k7/3GZsg6a8+ kSINPRUxlmVHJu0jFzekjTY1mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7GCb+w mGgzQAziZeGGgcIX05JSMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5My81RkNBQjY3MjY4RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENX MC0zWWdHRHRUWkdEeS1HR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOJvSUqszxnboUQtrRjrBzgzcHZ9ju2JAxOrSH+NUI6LYmwFnqliaO Jn57Kj8Of9FtW2W5mMS7/3X5UZkgVrniuMm06MJX9/2nkqNP4+4diZ6hD0A4UBB9 YLEgWvWKUAjm4fjMogmnpgPhomLZ0ZuUf6jztCncvrf2c5HYlg7SpgQWCZs0BGW/ pQu+DIimsS0Fsg2bqRlhoK6CdA021AfBfi2fDeojj/h3fYJV7UcOaPHK0IbbmJfO hXx3vaLu5/g+9OB9A3BtjGmA9hLHg58R9/4/WeH9Y33GyxpA+TBLMsWqSDOLduuv W4+vuIxhXomBlRUA/yLzpVD1HwiZHk8V -----END CERTIFICATE-----Generated at Wed Oct 22 10:31:40 2025 by rpki-client