$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft File: JXqeaRTVinRbDuar5UjNvgIEiNQ.mft (raw, json) Hash identifier: xokD1GsHA2OSgYvvv/jOKDeWoAiD9hR7GnjGZFJoADQ= Subject key identifier: A6:E6:57:01:B2:13:5C:26:57:53:13:00:13:65:7C:38:5E:FF:B2:F8 Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Certificate serial: 02D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft Manifest number: 0289 Signing time: Mon 03 Nov 2025 02:03:57 +0000 Manifest this update: Mon 03 Nov 2025 02:03:56 +0000 Manifest next update: Mon 10 Nov 2025 02:03:56 +0000 Files and hashes: 1: JXqeaRTVinRbDuar5UjNvgIEiNQ.crl (hash: Nx3Ns34Ox1Maf3wrm07mQkYxbK4McimhdJ9JrvrO7uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E015D, serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Validity Not Before: Nov 3 02:03:56 2025 GMT Not After : Nov 10 02:03:56 2025 GMT Subject: CN=69080d8c-3186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:50:63:16:f5:d1:1b:a4:50:45:bd:b0:70:7b: f5:6a:0e:99:28:c4:d0:0c:95:0a:34:cf:55:6e:22: 06:29:39:5c:c4:99:8e:48:0b:0e:1c:b0:51:89:66: 9b:e8:4c:da:0d:ca:13:fc:e4:82:ff:7f:75:3b:c3: a8:63:04:3c:00:18:09:69:ab:a9:e1:0b:f3:3c:33: 71:03:36:b4:7e:dd:a4:18:a9:c7:57:61:bc:50:79: d5:25:a3:43:d5:54:57:58:d5:30:7d:46:9c:04:1a: e5:43:0f:6b:62:ce:bd:fb:b9:6f:3f:19:18:58:90: 8c:c7:19:e6:ff:51:16:49:00:ae:0a:4b:5a:58:65: 5e:f3:16:26:ed:52:4a:53:b2:09:dd:1c:1b:69:64: d4:48:0b:df:d0:c3:51:28:d5:0f:89:58:73:c7:b4: 22:f3:d3:ad:5e:4e:a9:2d:fe:57:9c:10:f1:8d:24: b4:32:28:eb:91:1c:73:2b:ee:e0:55:04:77:91:4e: f2:17:f0:ab:af:64:a0:f3:16:ea:3a:2e:da:71:30: c7:5a:f3:16:eb:6f:f6:af:5f:c8:54:c6:db:a2:00: 5e:74:58:58:06:eb:06:ca:22:24:cb:f9:28:af:39: 12:8a:e2:25:41:31:06:77:a7:8b:1a:b9:ae:fd:8a: a7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E6:57:01:B2:13:5C:26:57:53:13:00:13:65:7C:38:5E:FF:B2:F8 X509v3 Authority Key Identifier: keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:37:50:33:d1:4a:9d:f3:74:d9:e6:35:cf:2d:90:7a:2e:5f: 78:43:dc:a1:da:5d:6d:08:9b:5e:c8:c8:d9:3a:97:a5:50:b3: 2e:7c:80:d9:9f:cb:47:a1:43:51:9b:79:fe:ca:22:b8:f7:2d: 81:96:d4:9c:5d:2c:74:1a:93:78:47:b4:1e:03:b4:d2:f9:18: 0b:1a:c4:8b:59:29:70:23:05:cc:be:f9:2f:5f:c9:7f:e1:7b: ab:92:11:3e:aa:10:83:de:44:d2:3b:82:e0:15:88:86:f4:ee: 87:d2:4a:8f:f7:ca:23:45:54:e1:59:60:33:62:50:48:a3:6c: 76:47:9d:ac:f4:4e:82:5e:a2:61:06:1e:86:c3:f1:af:d4:45: d9:ce:c5:31:17:74:88:69:2a:79:11:bb:13:24:e1:89:d8:fe: 2d:67:be:2f:7b:7b:09:51:85:59:95:83:aa:bf:dd:78:27:d1: 53:19:40:9a:d4:55:a0:95:92:66:8e:7f:e9:ed:91:43:f6:59: 35:a2:e7:d0:9d:6a:eb:9a:61:0e:1b:f5:0b:57:48:40:81:35: bd:61:41:4b:a1:9b:a9:2b:f7:f2:61:2a:08:fd:07:9a:cd:bc: 00:d6:ee:f2:66:b7:de:d2:32:22:2f:dc:26:12:29:5b:da:8d: aa:d2:01:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxNUQxMTAvBgNVBAUTKDI1N0E5RTY5MTRENThBNzQ1QjBFRTZBQkU1NDhDREJF MDIwNDg4RDQwHhcNMjUxMTAzMDIwMzU2WhcNMjUxMTEwMDIwMzU2WjAYMRYwFAYD VQQDEw02OTA4MGQ4Yy0zMTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FBjFvXRG6RQRb2wcHv1ag6ZKMTQDJUKNM9VbiIGKTlcxJmOSAsOHLBRiWab 6EzaDcoT/OSC/391O8OoYwQ8ABgJaaup4QvzPDNxAza0ft2kGKnHV2G8UHnVJaND 1VRXWNUwfUacBBrlQw9rYs69+7lvPxkYWJCMxxnm/1EWSQCuCktaWGVe8xYm7VJK U7IJ3RwbaWTUSAvf0MNRKNUPiVhzx7Qi89OtXk6pLf5XnBDxjSS0MijrkRxzK+7g VQR3kU7yF/Crr2Sg8xbqOi7acTDHWvMW62/2r1/IVMbbogBedFhYBusGyiIky/ko rzkSiuIlQTEGd6eLGrmu/YqnZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbmVwGy E1wmV1MTABNlfDhe/7L4MB8GA1UdIwQYMBaAFCV6nmkU1Yp0Ww7mq+VIzb4CBIjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDE1RC82QzQ3NDkyMDcz MTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmluUmJEdWFyNVVqTnZnSUVp TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pYcWVhUlRWaW5SYkR1YXI1VWpOdmdJRWlOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDE1RC82QzQ3NDkyMDczMTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmlu UmJEdWFyNVVqTnZnSUVpTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcN1Az0Uqd83TZ5jXPLZB6Ll94Q9yh2l1tCJteyMjZOpelULMufIDZ n8tHoUNRm3n+yiK49y2BltScXSx0GpN4R7QeA7TS+RgLGsSLWSlwIwXMvvkvX8l/ 4XurkhE+qhCD3kTSO4LgFYiG9O6H0kqP98ojRVThWWAzYlBIo2x2R52s9E6CXqJh Bh6Gw/Gv1EXZzsUxF3SIaSp5EbsTJOGJ2P4tZ74ve3sJUYVZlYOqv914J9FTGUCa 1FWglZJmjn/p7ZFD9lk1oufQnWrrmmEOG/ULV0hAgTW9YUFLoZupK/fyYSoI/Qea zbwA1u7yZrfe0jIiL9wmEilb2o2q0gEx -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:29 2025 by rpki-client