$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: 5tQJuog/KQDKgykH2UIZ4ZsJOsSKBZ7D+97KHXvJ7i0= Subject key identifier: 9A:B3:52:5A:9A:56:68:B0:4E:66:8C:E1:6B:D4:EC:5D:DB:26:97:37 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: 012E Signing time: Thu 23 Oct 2025 06:29:39 +0000 Manifest this update: Thu 23 Oct 2025 06:29:38 +0000 Manifest next update: Thu 30 Oct 2025 06:29:38 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: oPD8bHTgdCCULtytg9LBAki+4w+FReTsPdhK1jXYhTQ=) 2: 263EBED2A76111F0BF85DF10C4F9AE02.roa (hash: KsEE78D9bYQHmSLXBCwNxmVaB7h9ibLa7GP3POywlYU=) 3: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Oct 23 06:29:38 2025 GMT Not After : Oct 30 06:29:38 2025 GMT Subject: CN=68f9cb52-446b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:d4:a0:5c:33:a3:29:7e:23:d8:e1:9b:c9: 54:4e:4c:fe:ff:e0:5f:47:dc:a0:21:01:3f:f9:b1: a7:63:3f:9a:7b:c2:c0:99:e0:3d:c7:43:1c:92:90: fa:67:9d:56:10:80:76:23:29:07:79:f3:5f:27:70: bb:f6:6b:9f:df:f8:23:4f:f1:66:3a:3d:d0:59:1e: 5e:61:7d:e3:d4:e8:c0:3d:05:64:c3:92:5b:be:9e: 59:a6:ac:ef:3b:41:d6:29:b1:39:d4:4e:63:3d:8d: 4e:7d:8b:d3:a2:fc:67:65:e1:e5:ce:c2:c9:69:74: 0b:b3:99:49:0b:3a:72:d8:11:0f:cf:17:44:36:b9: 06:1e:26:0d:c9:5f:2b:5a:fd:70:dc:ff:07:5e:bc: 9c:fe:96:63:91:00:e8:73:08:de:54:d9:34:9c:9a: 37:cb:b6:ab:ec:af:bd:52:9c:7d:e1:9a:82:74:30: c6:32:54:4a:bf:32:4f:67:04:40:56:fa:31:a0:6d: dc:a8:a0:a6:e8:25:4a:6a:7d:38:64:e9:14:c2:29: 0a:7e:7d:91:2b:9c:3d:12:e0:60:13:e7:ce:50:e4: aa:61:91:d0:f9:24:f9:e7:fe:4a:e1:e0:a5:8e:5e: 01:b2:db:23:5d:06:43:d8:5f:4a:c7:b8:4a:8b:27: 0c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B3:52:5A:9A:56:68:B0:4E:66:8C:E1:6B:D4:EC:5D:DB:26:97:37 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:b3:2f:4f:36:32:5f:2e:8d:35:fa:3f:11:48:ef:ac:d0:7a: 30:76:be:88:b7:33:58:69:72:2a:52:19:80:da:69:96:4e:ec: 92:3f:c0:a8:f8:82:15:83:3f:88:c7:af:4a:75:10:6b:89:4c: aa:72:38:a7:61:6c:4b:c3:9f:68:f0:2a:61:2d:14:dd:b0:7f: e2:fe:dc:44:67:9e:8d:0a:4f:46:8f:94:52:a6:46:56:34:00: 62:be:6d:25:ca:f7:38:4e:ae:d3:0f:1f:d3:25:b4:bd:fc:f8: 81:5f:78:da:d2:9b:44:6d:80:8e:4b:0c:83:47:58:75:3a:83: 4c:1a:a1:f1:c9:d5:1f:db:e3:78:9b:ce:0a:38:b4:88:98:a5: 48:62:81:26:6e:b1:67:a4:d7:74:9d:bd:8e:8d:15:0b:ff:4c: e6:d6:db:15:94:37:3d:8a:67:54:e6:ce:b8:d6:3d:4b:cd:db: b7:60:57:d1:4d:30:70:4c:17:d0:55:2d:fa:1d:78:2a:4d:a1: 3e:33:04:45:b9:9c:a8:80:07:b8:91:25:69:1a:77:30:4a:6b: 11:27:5e:89:72:ae:ab:c4:6d:99:cc:9c:bb:9a:e8:ab:c1:4c: c9:16:e9:c4:05:0e:db:98:2a:2d:9a:09:71:f4:07:df:65:ec: f9:7c:4b:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUxMDIzMDYyOTM4WhcNMjUxMDMwMDYyOTM4WjAYMRYwFAYD VQQDEw02OGY5Y2I1Mi00NDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPrUoFwzoyl+I9jhm8lUTkz+/+BfR9ygIQE/+bGnYz+ae8LAmeA9x0MckpD6 Z51WEIB2IykHefNfJ3C79muf3/gjT/FmOj3QWR5eYX3j1OjAPQVkw5Jbvp5Zpqzv O0HWKbE51E5jPY1OfYvTovxnZeHlzsLJaXQLs5lJCzpy2BEPzxdENrkGHiYNyV8r Wv1w3P8HXryc/pZjkQDocwjeVNk0nJo3y7ar7K+9Upx94ZqCdDDGMlRKvzJPZwRA VvoxoG3cqKCm6CVKan04ZOkUwikKfn2RK5w9EuBgE+fOUOSqYZHQ+ST55/5K4eCl jl4BstsjXQZD2F9Kx7hKiycMBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqzUlqa VmiwTmaM4WvU7F3bJpc3MB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEsy9PNjJfLo01+j8RSO+s0Howdr6ItzNYaXIqUhmA2mmWTuySP8Co +IIVgz+Ix69KdRBriUyqcjinYWxLw59o8CphLRTdsH/i/txEZ56NCk9Gj5RSpkZW NABivm0lyvc4Tq7TDx/TJbS9/PiBX3ja0ptEbYCOSwyDR1h1OoNMGqHxydUf2+N4 m84KOLSImKVIYoEmbrFnpNd0nb2OjRUL/0zm1tsVlDc9imdU5s641j1Lzdu3YFfR TTBwTBfQVS36HXgqTaE+MwRFuZyogAe4kSVpGncwSmsRJ16Jcq6rxG2ZzJy7muir wUzJFunEBQ7bmCotmglx9AffZez5fEvT -----END CERTIFICATE-----Generated at Fri Oct 24 20:50:25 2025 by rpki-client