$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: jSmk7I5cz1R7Ui4TLXcEczckWSBfig4i5Aos8/qtgME= Subject key identifier: 7D:6F:1D:0A:FC:1B:76:0C:93:00:13:30:4E:4C:FF:54:D7:4D:9C:4E Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D74 Signing time: Sun 02 Nov 2025 16:08:15 +0000 Manifest this update: Sun 02 Nov 2025 16:08:14 +0000 Manifest next update: Sun 09 Nov 2025 16:08:14 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: eThlCQnq3Ox1XNAxjQqk9yFj6gyrxqGkQA0qOo2ryVc=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: ptNgrWHvzJHQ4AbkataHwe2RnXoFWeh5k6roCCdUJ6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7555 (0x1d83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Nov 2 16:08:14 2025 GMT Not After : Nov 9 16:08:14 2025 GMT Subject: CN=690781ef-ec7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:21:6d:85:f7:59:9b:43:73:55:25:f8:3d:db: 6b:1b:16:28:85:8d:52:22:80:8b:ad:3a:c0:be:37: 8c:8e:95:37:de:a5:71:67:27:3d:67:a8:fd:8b:c7: a2:49:3c:6a:27:02:9c:e4:f7:c1:67:1c:dc:16:2d: ea:2f:d6:39:cd:bc:d6:d3:2b:46:52:ad:22:7d:c2: f0:42:3d:ee:c7:a4:48:4b:48:68:dd:af:e7:73:d3: a7:79:b3:b4:2e:ae:57:b2:1c:12:22:90:6b:35:a8: af:04:b4:50:94:8c:10:4b:cd:99:89:c0:04:e4:43: e4:d2:be:17:91:f5:22:13:71:0b:4f:36:69:3e:7c: fd:4c:24:96:8f:da:52:62:a1:79:13:f3:84:b8:4f: 4e:48:84:56:73:33:63:d7:11:c9:38:ab:3c:a2:85: a9:ea:14:58:fc:0c:ec:0f:11:c9:9a:bb:0c:f8:eb: 20:72:b9:22:d7:d1:33:c8:8a:c5:b0:d2:a1:5a:cd: 5c:be:c7:17:1f:34:8d:72:3b:0a:d8:b1:a6:c7:20: 9e:c2:f5:4f:14:34:b4:f2:14:ed:29:3c:ba:64:7a: 06:69:a4:15:b0:be:2f:bb:39:61:a6:58:9b:8d:f4: 0b:14:68:89:ec:16:2d:4a:2a:df:a2:4b:f6:fb:ae: 98:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:6F:1D:0A:FC:1B:76:0C:93:00:13:30:4E:4C:FF:54:D7:4D:9C:4E X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:8d:12:09:e4:17:b1:79:0b:92:b0:88:c9:a9:bb:91:b6:f7: f5:6b:eb:6c:e8:ca:33:e3:54:99:7d:96:76:b4:b7:ba:e8:9d: 50:1f:2c:c7:ed:21:3e:c4:94:1b:73:62:07:56:84:68:60:39: 2d:6f:6d:28:3c:f0:9d:96:1a:2b:ca:f8:b1:1a:96:e7:f1:3e: cd:4b:01:f5:81:9b:04:53:b6:fb:d9:8e:4c:87:c5:bd:b7:ee: 4f:5d:54:d7:0f:91:7d:3a:e3:cc:fe:7c:43:b7:c3:d5:6d:2b: d9:51:18:62:aa:3a:b2:6a:29:c8:2c:27:f5:4b:ed:e8:bb:e9: bf:6f:7f:74:ae:bd:b3:1c:f4:33:67:3d:0e:82:e9:d1:f5:98: 6d:c5:a5:c7:f5:44:63:5c:72:57:30:ba:4c:53:fb:54:34:4e: 04:5d:3a:46:0c:a2:c5:3f:87:c2:9a:f9:c7:93:be:74:91:31: 78:12:0a:27:b9:87:8e:fc:85:3f:ba:f2:3c:bd:71:25:bd:e3: 18:79:3f:31:1b:bc:c3:c5:7e:9b:49:6f:19:b1:71:ee:0a:d4: 86:30:e3:1d:2c:62:39:83:7e:ef:8d:b7:8e:14:3a:d7:ba:2c: 65:71:ce:fa:5e:8d:6a:09:c3:46:1d:55:18:91:95:c4:83:19: ba:ba:56:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUxMTAyMTYwODE0WhcNMjUxMTA5MTYwODE0WjAYMRYwFAYD VQQDEw02OTA3ODFlZi1lYzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCFthfdZm0NzVSX4PdtrGxYohY1SIoCLrTrAvjeMjpU33qVxZyc9Z6j9i8ei STxqJwKc5PfBZxzcFi3qL9Y5zbzW0ytGUq0ifcLwQj3ux6RIS0ho3a/nc9OnebO0 Lq5XshwSIpBrNaivBLRQlIwQS82ZicAE5EPk0r4XkfUiE3ELTzZpPnz9TCSWj9pS YqF5E/OEuE9OSIRWczNj1xHJOKs8ooWp6hRY/AzsDxHJmrsM+Osgcrki19EzyIrF sNKhWs1cvscXHzSNcjsK2LGmxyCewvVPFDS08hTtKTy6ZHoGaaQVsL4vuzlhplib jfQLFGiJ7BYtSirfokv2+66YWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1vHQr8 G3YMkwATME5M/1TXTZxOMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkjRIJ5BexeQuSsIjJqbuRtvf1a+ts6Moz41SZfZZ2tLe66J1QHyzH 7SE+xJQbc2IHVoRoYDktb20oPPCdlhoryvixGpbn8T7NSwH1gZsEU7b72Y5Mh8W9 t+5PXVTXD5F9OuPM/nxDt8PVbSvZURhiqjqyainILCf1S+3ou+m/b390rr2zHPQz Zz0OgunR9ZhtxaXH9URjXHJXMLpMU/tUNE4EXTpGDKLFP4fCmvnHk750kTF4Egon uYeO/IU/uvI8vXElveMYeT8xG7zDxX6bSW8ZsXHuCtSGMOMdLGI5g37vjbeOFDrX uixlcc76Xo1qCcNGHVUYkZXEgxm6ulYh -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:48 2025 by rpki-client