$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: aTzMjgDQjBmeD0jzpYEwL1drTDWMFuHSoEFKK3tQeNI= Subject key identifier: 3A:6A:E8:B9:67:47:6D:7A:FF:1C:7E:56:3B:0E:E6:D4:56:FE:14:D0 Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1ACF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 1AC8 Signing time: Wed 22 Oct 2025 15:53:08 +0000 Manifest this update: Wed 22 Oct 2025 15:53:08 +0000 Manifest next update: Wed 29 Oct 2025 15:53:08 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: d15SNytAzdyGgjau/Sm5t4DgvHeBvw8sXt8hmKzLoPY=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6863 (0x1acf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Oct 22 15:53:08 2025 GMT Not After : Oct 29 15:53:08 2025 GMT Subject: CN=68f8fde4-0d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:04:a9:21:b3:82:2d:7c:11:5c:8c:5d:c7:d4: 7b:f1:4d:b7:f0:6b:ea:07:8a:77:dc:ec:31:aa:eb: 74:b0:3a:ad:89:bc:6a:98:fa:7b:4f:d0:04:a7:d2: 05:9b:73:a9:18:14:38:46:a0:a0:94:9e:e5:08:23: 3f:1c:b4:56:1b:c8:e5:97:ea:9a:51:12:c3:2a:cc: 89:aa:ec:75:b7:04:e8:ed:f2:4d:4c:9e:e3:2a:8c: 29:71:9b:41:28:53:6e:12:19:1c:35:4f:7e:a1:c9: 2e:ef:25:b9:a7:d7:c9:30:93:72:89:21:d0:56:87: 9c:37:73:c9:5c:f6:68:b6:ec:61:cc:5f:17:8f:26: 7e:97:b8:ed:b4:4b:ed:88:4a:dc:a4:ba:77:af:a8: ee:9f:b7:49:93:14:41:9c:4f:ac:de:c2:76:ca:79: a5:66:bb:72:0f:d9:95:05:a4:db:9e:fc:46:06:b1: 0d:2a:0e:03:68:5a:ad:2f:b6:74:8e:16:58:d9:9f: 39:c8:31:12:c3:82:5b:7c:27:bc:bc:46:58:c0:bf: 34:42:fa:2e:15:7f:6b:ab:2e:05:99:54:ae:f0:28: 5a:91:bf:bd:9c:39:65:aa:95:2c:40:72:b5:84:65: 93:33:77:f9:28:d4:4c:7a:ad:c5:17:ed:dc:18:dd: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6A:E8:B9:67:47:6D:7A:FF:1C:7E:56:3B:0E:E6:D4:56:FE:14:D0 X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:b7:de:96:28:34:77:5a:0d:79:ad:21:56:be:87:b6:5c:33: 50:88:22:f5:08:fc:5a:ba:d6:dc:41:bd:f5:0d:85:3f:3b:1c: 70:ab:c1:f1:d7:73:6c:5c:b0:9e:e5:37:bd:e8:ae:f9:4d:d2: 28:32:69:c0:97:46:6a:2a:d4:c4:e2:94:a0:b6:21:90:0c:a4: e6:4d:a1:66:17:6f:88:e0:56:1f:53:de:c6:3d:ca:fb:46:03: b0:f5:a4:9e:2c:e6:76:89:bd:2e:e4:10:60:b7:78:e8:cd:21: 5b:7e:66:0d:e9:58:2d:7b:f4:5a:98:2b:00:83:d0:f0:da:20: 9c:8b:5d:fe:4d:77:29:bf:95:1e:c6:e9:ef:aa:dd:7c:30:e4: cf:f1:30:df:69:bc:89:8f:20:00:27:83:f7:39:28:57:03:eb: 6e:b0:f3:df:29:7f:69:83:78:b8:6d:6f:53:e4:52:22:45:d0: a0:3e:71:1f:9b:1b:9a:ed:73:36:d1:19:1a:29:11:f8:42:e2: 23:67:20:78:e1:e2:12:57:3c:16:32:ab:df:2e:9c:9e:c3:35: 6d:47:90:74:a2:ff:b9:bd:02:c5:31:2d:9c:61:77:df:d4:d6: 3c:ee:20:8a:a8:34:46:c0:4b:9f:1d:1f:05:40:d7:b6:87:44: 57:b3:cb:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjUxMDIyMTU1MzA4WhcNMjUxMDI5MTU1MzA4WjAYMRYwFAYD VQQDEw02OGY4ZmRlNC0wZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QSpIbOCLXwRXIxdx9R78U238GvqB4p33Owxqut0sDqtibxqmPp7T9AEp9IF m3OpGBQ4RqCglJ7lCCM/HLRWG8jll+qaURLDKsyJqux1twTo7fJNTJ7jKowpcZtB KFNuEhkcNU9+ocku7yW5p9fJMJNyiSHQVoecN3PJXPZotuxhzF8XjyZ+l7jttEvt iErcpLp3r6jun7dJkxRBnE+s3sJ2ynmlZrtyD9mVBaTbnvxGBrENKg4DaFqtL7Z0 jhZY2Z85yDESw4JbfCe8vEZYwL80QvouFX9rqy4FmVSu8Chakb+9nDllqpUsQHK1 hGWTM3f5KNRMeq3FF+3cGN3UmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpq6Lln R216/xx+VjsO5tRW/hTQMB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/t96WKDR3Wg15rSFWvoe2XDNQiCL1CPxautbcQb31DYU/Oxxwq8Hx 13NsXLCe5Te96K75TdIoMmnAl0ZqKtTE4pSgtiGQDKTmTaFmF2+I4FYfU97GPcr7 RgOw9aSeLOZ2ib0u5BBgt3jozSFbfmYN6Vgte/RamCsAg9Dw2iCci13+TXcpv5Ue xunvqt18MOTP8TDfabyJjyAAJ4P3OShXA+tusPPfKX9pg3i4bW9T5FIiRdCgPnEf mxua7XM20RkaKRH4QuIjZyB44eISVzwWMqvfLpyewzVtR5B0ov+5vQLFMS2cYXff 1NY87iCKqDRGwEufHR8FQNe2h0RXs8s7 -----END CERTIFICATE-----Generated at Thu Oct 23 13:04:25 2025 by rpki-client