$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft File: jnhDSe8t33hXX9VMx47YxFyXbL8.mft (raw, json) Hash identifier: U6E+xyGtSuSU1HBvL9wvx2j+nJm/PEs8p6P6nnHaQfk= Subject key identifier: A8:45:48:D7:89:13:7B:58:46:09:E8:56:95:0B:D1:37:A5:DC:0E:FB Authority key identifier: 8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF Certificate issuer: /CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Certificate serial: 0961 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft Manifest number: 094E Signing time: Sat 06 Sep 2025 20:24:06 +0000 Manifest this update: Sat 06 Sep 2025 20:24:06 +0000 Manifest next update: Sat 13 Sep 2025 20:24:06 +0000 Files and hashes: 1: jnhDSe8t33hXX9VMx47YxFyXbL8.crl (hash: y+x9dREJ+gJ3Krr5kgT07GTtRQvCD8X66ybb7j2Cgf8=) 2: A84D830AA54511EAA942C683C4F9AE02.roa (hash: LRUqK0HbwhlophByZnm497LSzITbbBMeAuaK57/ofL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2401 (0x961) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Validity Not Before: Sep 6 20:24:06 2025 GMT Not After : Sep 13 20:24:06 2025 GMT Subject: CN=68bc9866-4328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f3:7b:ab:0a:05:ea:4f:12:34:e7:27:e7:e7: ac:56:e5:ca:98:36:59:73:51:de:26:5f:89:b3:ff: 9b:57:da:fd:6b:2e:4c:f0:45:da:2b:f9:23:14:f7: aa:54:1d:52:88:5d:2a:e3:2a:8c:91:7e:31:3d:96: b0:84:94:83:2c:52:fe:46:df:69:ea:e8:35:53:67: 46:4b:23:7d:ee:c1:1d:3e:66:52:6e:46:f1:3a:4e: 40:c4:6e:c4:2a:9d:76:9a:cd:3b:3a:70:7f:11:c2: 88:c0:81:d8:ac:e6:fe:32:63:fb:33:b4:77:1d:0f: 9e:f5:5b:b8:d8:77:17:85:d1:1d:a5:1d:5c:d7:53: 24:5e:75:02:15:58:47:0d:06:bf:72:e1:06:60:8b: 69:99:60:04:1e:29:6f:07:22:8b:b4:88:74:0a:19: b2:fc:d5:74:3d:ca:59:24:f8:2c:e5:b3:e5:99:1c: 80:06:fa:29:34:11:4d:e8:0f:f7:2d:b3:76:79:46: 5c:54:b0:5c:4e:31:50:97:28:c6:29:ab:ca:03:2d: 5b:54:09:fc:80:74:15:4e:c9:76:5d:c5:c6:a3:52: 9b:24:9f:01:2e:83:ed:d4:28:78:3a:c2:64:5d:54: bf:29:12:ac:4d:4e:a0:bb:01:57:f8:0c:5b:b0:70: 3e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:45:48:D7:89:13:7B:58:46:09:E8:56:95:0B:D1:37:A5:DC:0E:FB X509v3 Authority Key Identifier: keyid:8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a9:16:eb:db:83:0c:8d:e2:ff:c0:a7:fc:89:7b:ae:54:96: 6b:48:26:ab:82:4a:72:aa:07:8c:07:c3:85:94:b4:59:72:24: c2:0c:78:3c:96:3e:a1:26:fe:6f:3a:87:e7:8b:f2:32:05:4f: ab:b2:f7:ff:b8:12:a8:86:6f:49:2b:76:79:b5:1a:5a:70:b7: c7:fe:f3:15:14:d8:57:91:0c:df:45:70:f4:fa:ef:98:40:af: e5:e6:c6:c0:be:5f:6e:ac:6c:ef:89:ba:fe:b4:a6:ae:34:29: e1:d2:ee:1d:53:15:67:19:30:d2:27:c9:27:12:74:2b:b6:06: 1d:fd:45:e4:2e:22:d3:65:10:78:99:5f:ad:5e:f7:78:e7:f5: 96:e1:31:1c:a1:5b:a3:35:1a:84:4e:93:da:50:25:87:ae:bb: e2:13:94:de:e4:ad:18:80:a2:58:a5:85:59:83:03:8e:e8:44: 33:03:62:e3:e3:86:8d:7e:46:0b:86:34:33:ae:89:b0:0f:58: 7b:e0:63:cb:3d:b4:0e:b9:c4:de:f0:26:76:94:f4:f9:65:97: 69:62:6a:4d:08:57:bb:b0:d8:47:fa:c2:c6:47:7d:0c:5c:67: a3:95:bc:cc:6d:29:e9:d1:ec:67:43:73:08:fa:66:4a:34:76: 6b:31:2e:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDhFNzg0MzQ5RUYyRERGNzg1NzVGRDU0Q0M3OEVEOEM0 NUM5NzZDQkYwHhcNMjUwOTA2MjAyNDA2WhcNMjUwOTEzMjAyNDA2WjAYMRYwFAYD VQQDEw02OGJjOTg2Ni00MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvN7qwoF6k8SNOcn5+esVuXKmDZZc1HeJl+Js/+bV9r9ay5M8EXaK/kjFPeq VB1SiF0q4yqMkX4xPZawhJSDLFL+Rt9p6ug1U2dGSyN97sEdPmZSbkbxOk5AxG7E Kp12ms07OnB/EcKIwIHYrOb+MmP7M7R3HQ+e9Vu42HcXhdEdpR1c11MkXnUCFVhH DQa/cuEGYItpmWAEHilvByKLtIh0Chmy/NV0PcpZJPgs5bPlmRyABvopNBFN6A/3 LbN2eUZcVLBcTjFQlyjGKavKAy1bVAn8gHQVTsl2XcXGo1KbJJ8BLoPt1Ch4OsJk XVS/KRKsTU6guwFX+AxbsHA+aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhFSNeJ E3tYRgnoVpUL0Tel3A77MB8GA1UdIwQYMBaAFI54Q0nvLd94V1/VTMeO2MRcl2y/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi9DQThFN0Y3RUE1 NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMzaFhYOVZNeDQ3WXhGeVhi TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puaERTZTh0MzNoWFg5Vk14NDdZeEZ5WGJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi9DQThFN0Y3RUE1NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMz aFhYOVZNeDQ3WXhGeVhiTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbqRbr24MMjeL/wKf8iXuuVJZrSCargkpyqgeMB8OFlLRZciTCDHg8 lj6hJv5vOofni/IyBU+rsvf/uBKohm9JK3Z5tRpacLfH/vMVFNhXkQzfRXD0+u+Y QK/l5sbAvl9urGzvibr+tKauNCnh0u4dUxVnGTDSJ8knEnQrtgYd/UXkLiLTZRB4 mV+tXvd45/WW4TEcoVujNRqETpPaUCWHrrviE5Te5K0YgKJYpYVZgwOO6EQzA2Lj 44aNfkYLhjQzromwD1h74GPLPbQOucTe8CZ2lPT5ZZdpYmpNCFe7sNhH+sLGR30M XGejlbzMbSnp0exnQ3MI+mZKNHZrMS5R -----END CERTIFICATE-----Generated at Mon Sep 8 16:16:33 2025 by rpki-client