$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft File: jnhDSe8t33hXX9VMx47YxFyXbL8.mft (raw, json) Hash identifier: Ioab+2TbrFfCTENHu5zTdtcRs3kDvVvVzAqUJqkAGmk= Subject key identifier: AB:57:E9:FD:B7:52:33:5B:92:C0:06:D7:14:AF:0A:E4:1B:B2:60:42 Authority key identifier: 8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF Certificate issuer: /CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Certificate serial: 097E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft Manifest number: 096B Signing time: Sun 02 Nov 2025 20:05:23 +0000 Manifest this update: Sun 02 Nov 2025 20:05:23 +0000 Manifest next update: Sun 09 Nov 2025 20:05:23 +0000 Files and hashes: 1: jnhDSe8t33hXX9VMx47YxFyXbL8.crl (hash: xoStTOfsiHnGXLXknJ7fgSS+BwSiCwSDqCswoK0ocXk=) 2: A84D830AA54511EAA942C683C4F9AE02.roa (hash: LRUqK0HbwhlophByZnm497LSzITbbBMeAuaK57/ofL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2430 (0x97e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Validity Not Before: Nov 2 20:05:23 2025 GMT Not After : Nov 9 20:05:23 2025 GMT Subject: CN=6907b983-c53f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a2:4b:00:7c:48:0e:20:de:e7:2c:ec:86:cc: 85:81:50:1c:d9:b6:9f:fc:55:f6:fc:ca:69:2c:d8: df:a8:e2:66:c3:52:b3:15:82:67:ec:0d:12:72:69: 3b:b3:8d:a4:0f:8d:c1:e8:4c:de:3d:d3:18:d1:27: 10:6c:b4:1e:fb:56:2e:ab:0a:5b:28:5c:db:01:97: 2d:58:45:e3:58:15:b8:5c:6d:f2:f2:17:7b:fa:5d: 1f:9c:a6:27:c9:56:8a:4d:e1:e2:58:83:36:b7:31: c0:86:66:57:65:6f:84:cd:93:d5:ac:13:1b:7c:23: 60:5f:1c:bf:22:2e:d5:12:a1:e1:d5:8f:17:4b:5c: 4a:0b:77:81:ff:2d:a9:85:e0:0b:50:97:69:43:f0: b8:be:c6:4e:73:21:57:52:95:3f:61:b3:c1:55:bc: d7:d6:98:89:41:eb:0c:54:dd:76:d5:63:f1:a5:c4: 75:2c:dd:72:6b:0a:5f:48:90:25:69:cd:7b:ea:20: c3:e3:6d:60:4d:02:aa:7e:70:d6:ff:a5:c1:ac:36: 0c:28:76:17:41:97:40:de:ae:97:1b:c6:9c:c9:96: 07:84:6a:20:1f:c1:e9:3e:01:ad:71:77:5c:25:94: f0:dc:c1:f6:0c:4e:0a:66:a7:ae:a5:ac:d2:37:69: 48:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:57:E9:FD:B7:52:33:5B:92:C0:06:D7:14:AF:0A:E4:1B:B2:60:42 X509v3 Authority Key Identifier: keyid:8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:5e:56:1f:89:55:6f:5a:2e:08:2d:02:c8:ec:64:07:8f:ef: b5:ac:ab:bb:e9:a5:c5:74:da:98:c8:1d:8c:ce:d7:2f:a3:90: c9:04:7e:3d:d7:64:a9:71:cc:ea:bb:57:f2:6f:4c:63:1f:98: bf:74:ff:2d:3f:25:75:ec:6a:11:98:72:3d:8d:c0:7d:ee:43: af:72:93:e7:72:7f:ca:10:97:44:e6:cf:c6:3f:a5:2f:66:84: 8c:c7:65:19:e7:b8:bb:b2:0f:e2:3c:50:1b:29:06:aa:f4:c7: d2:67:90:81:a8:54:a0:17:b9:63:92:12:48:51:76:ec:68:8c: f7:54:78:60:2f:b8:a8:47:e5:0c:35:79:a4:95:63:bc:70:7a: 33:11:0d:19:0b:66:65:7c:3d:24:7f:6f:7e:8e:cf:ae:a1:39: 5d:03:1f:46:3b:fb:52:51:61:ba:b0:d6:7b:d2:4e:16:6b:10: 7a:e6:03:65:19:69:c7:24:bc:35:0d:0a:1a:01:12:e3:52:87: 67:d3:cc:80:18:7f:98:41:20:87:86:56:4b:fa:2c:2c:7c:20: 2b:03:20:8b:f8:cb:ee:cc:7e:2a:99:33:e2:7b:91:5e:97:99: 6a:e9:a9:7e:fb:16:e4:5f:89:25:16:4d:df:e0:71:80:4a:19: 9b:02:9c:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDhFNzg0MzQ5RUYyRERGNzg1NzVGRDU0Q0M3OEVEOEM0 NUM5NzZDQkYwHhcNMjUxMTAyMjAwNTIzWhcNMjUxMTA5MjAwNTIzWjAYMRYwFAYD VQQDEw02OTA3Yjk4My1jNTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qJLAHxIDiDe5yzshsyFgVAc2baf/FX2/MppLNjfqOJmw1KzFYJn7A0Scmk7 s42kD43B6EzePdMY0ScQbLQe+1YuqwpbKFzbAZctWEXjWBW4XG3y8hd7+l0fnKYn yVaKTeHiWIM2tzHAhmZXZW+EzZPVrBMbfCNgXxy/Ii7VEqHh1Y8XS1xKC3eB/y2p heALUJdpQ/C4vsZOcyFXUpU/YbPBVbzX1piJQesMVN121WPxpcR1LN1yawpfSJAl ac176iDD421gTQKqfnDW/6XBrDYMKHYXQZdA3q6XG8acyZYHhGogH8HpPgGtcXdc JZTw3MH2DE4KZqeupazSN2lITwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtX6f23 UjNbksAG1xSvCuQbsmBCMB8GA1UdIwQYMBaAFI54Q0nvLd94V1/VTMeO2MRcl2y/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi9DQThFN0Y3RUE1 NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMzaFhYOVZNeDQ3WXhGeVhi TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puaERTZTh0MzNoWFg5Vk14NDdZeEZ5WGJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi9DQThFN0Y3RUE1NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMz aFhYOVZNeDQ3WXhGeVhiTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYXlYfiVVvWi4ILQLI7GQHj++1rKu76aXFdNqYyB2Mztcvo5DJBH49 12Spcczqu1fyb0xjH5i/dP8tPyV17GoRmHI9jcB97kOvcpPncn/KEJdE5s/GP6Uv ZoSMx2UZ57i7sg/iPFAbKQaq9MfSZ5CBqFSgF7ljkhJIUXbsaIz3VHhgL7ioR+UM NXmklWO8cHozEQ0ZC2ZlfD0kf29+js+uoTldAx9GO/tSUWG6sNZ70k4WaxB65gNl GWnHJLw1DQoaARLjUodn08yAGH+YQSCHhlZL+iwsfCArAyCL+MvuzH4qmTPie5Fe l5lq6al++xbkX4klFk3f4HGAShmbApzH -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:27 2025 by rpki-client