$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: 1/r8VKVHzuDOkg1RaGFIu1UCzVnh3o4g2omUSW+Zo60= Subject key identifier: B6:88:BD:EE:64:84:2B:1B:8F:06:35:6F:BD:9F:41:91:A1:5E:DD:3F Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: 86 Signing time: Sat 25 Oct 2025 10:34:35 +0000 Manifest this update: Sat 25 Oct 2025 10:34:35 +0000 Manifest next update: Sat 01 Nov 2025 10:34:35 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: shpWPsBSQv/BHnA8qftCGCN/0oiq6xWe1gabeLt18+0=) 2: 92B377C82CB011F0A2E86B16C4F9AE02.roa (hash: FoDHZvXeH5e/XFJzf3AymBW0SIuGnIL2DXJhgfsRixg=) 3: 7F639A182CB011F08B722116C4F9AE02.roa (hash: 8SOJ6SdOtJ/q3NwLkWGRY6LjHM44wHGZjzKG2cwDOuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 10:34:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E, serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Validity Not Before: Oct 25 10:34:35 2025 GMT Not After : Nov 1 10:34:35 2025 GMT Subject: CN=68fca7bb-6e14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c0:b0:33:d6:aa:97:8c:0c:8f:24:e9:f7:f1: 54:60:1b:f5:cb:2e:a0:b4:94:69:c8:7d:af:f3:dc: cf:46:09:5d:51:00:03:66:cc:13:52:9c:18:3e:12: 35:a3:fe:58:a2:48:6d:5d:08:b0:3c:dc:2a:ef:0e: 36:9d:14:e7:57:b7:9e:60:cb:e8:cf:f6:45:f0:4d: 68:81:34:8b:9d:5c:81:85:c5:92:99:ea:ee:90:5b: 16:31:3f:9b:9c:0e:a2:21:d3:00:63:7b:3a:aa:8b: ef:d4:24:6c:2a:e3:c6:5c:58:eb:3a:c6:eb:4d:25: 12:fa:56:ee:fe:70:27:e4:b1:34:a3:2d:b7:35:eb: 5c:5f:94:0c:91:5b:f9:8a:98:58:50:17:f1:f1:2b: 58:4f:6e:ab:d2:9b:aa:47:12:a2:13:c6:90:00:d1: f8:d9:fd:f7:ca:03:ee:e2:16:28:7d:b2:be:27:54: 7b:6e:eb:ad:50:44:28:75:ac:ff:e7:bf:f6:e3:c0: bf:6b:5d:a8:ff:70:01:63:49:f1:3c:70:7f:5a:5c: 48:f9:04:a9:84:c2:bf:6d:63:6c:88:4c:d3:cf:c5: fc:1c:62:56:b3:ac:80:12:bd:53:c3:45:c5:d8:cd: 79:14:59:f0:89:df:4b:99:e5:c8:3f:8d:7e:96:95: e6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:88:BD:EE:64:84:2B:1B:8F:06:35:6F:BD:9F:41:91:A1:5E:DD:3F X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:56:36:f9:51:27:8b:c2:59:1d:05:ce:58:af:65:15:74:48: 76:96:eb:df:85:19:2c:13:01:c9:68:eb:09:81:02:26:d7:20: 22:63:67:61:c0:e9:34:b4:ec:f8:d5:e2:0f:68:0b:af:b3:7f: 48:21:f2:32:cd:7e:56:9a:8e:10:bd:95:bd:22:f9:fe:e3:b0: 5c:12:53:bd:f3:1a:68:84:80:66:42:80:be:b0:98:6b:a6:6d: 62:50:f3:2b:fe:5e:b2:eb:d9:94:6d:e3:10:a3:97:a6:78:1d: 85:9f:bb:a1:5c:af:aa:da:42:08:d5:b5:06:43:c0:bb:3a:3e: 00:0b:b3:82:18:09:11:95:04:26:44:7c:c5:b6:75:d3:1f:4f: 15:dd:41:33:54:b1:bc:70:f1:bc:ac:f3:be:b8:24:bd:8a:f7: 83:47:e1:dc:7a:d0:d0:52:18:1b:15:89:48:1f:3c:7d:4b:03: b1:8a:10:4f:a1:fc:12:86:1f:c6:72:f0:13:1d:3f:ab:64:3b: aa:71:74:0e:2a:08:7a:4b:f0:2c:b1:e2:42:17:5d:0b:49:88: 6d:18:b0:b5:e0:18:a6:39:ab:f6:37:c3:75:54:60:c5:33:c0: f0:cf:fb:f7:07:a1:95:21:fe:92:af:54:58:04:e6:8d:d8:6d: 11:8c:15:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5NkUxMTAvBgNVBAUTKDI0MjlBM0VFNTA4OEYzRDQ1MzcyQThFM0IzNjgzNEM3 NUVBRTZEMjkwHhcNMjUxMDI1MTAzNDM1WhcNMjUxMTAxMTAzNDM1WjAYMRYwFAYD VQQDEw02OGZjYTdiYi02ZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcCwM9aql4wMjyTp9/FUYBv1yy6gtJRpyH2v89zPRgldUQADZswTUpwYPhI1 o/5YokhtXQiwPNwq7w42nRTnV7eeYMvoz/ZF8E1ogTSLnVyBhcWSmerukFsWMT+b nA6iIdMAY3s6qovv1CRsKuPGXFjrOsbrTSUS+lbu/nAn5LE0oy23NetcX5QMkVv5 iphYUBfx8StYT26r0puqRxKiE8aQANH42f33ygPu4hYofbK+J1R7buutUEQodaz/ 57/248C/a12o/3ABY0nxPHB/WlxI+QSphMK/bWNsiEzTz8X8HGJWs6yAEr1Tw0XF 2M15FFnwid9LmeXIP41+lpXmNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaIve5k hCsbjwY1b72fQZGhXt0/MB8GA1UdIwQYMBaAFCQpo+5QiPPUU3Ko47NoNMderm0p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTk2RS8yM0QyRjE2RUVD MjExMUVGQTM1NTYwNUZDNEY5QUUwMi9KQ21qN2xDSTg5UlRjcWpqczJnMHgxNnVi U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTk2RS8yM0QyRjE2RUVDMjExMUVGQTM1NTYwNUZDNEY5QUUwMi9KQ21qN2xDSTg5 UlRjcWpqczJnMHgxNnViU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnVjb5USeLwlkdBc5Yr2UVdEh2luvfhRksEwHJaOsJgQIm1yAiY2dh wOk0tOz41eIPaAuvs39IIfIyzX5Wmo4QvZW9Ivn+47BcElO98xpohIBmQoC+sJhr pm1iUPMr/l6y69mUbeMQo5emeB2Fn7uhXK+q2kII1bUGQ8C7Oj4AC7OCGAkRlQQm RHzFtnXTH08V3UEzVLG8cPG8rPO+uCS9iveDR+HcetDQUhgbFYlIHzx9SwOxihBP ofwShh/GcvATHT+rZDuqcXQOKgh6S/AsseJCF10LSYhtGLC14BimOav2N8N1VGDF M8Dwz/v3B6GVIf6Sr1RYBOaN2G0RjBX1 -----END CERTIFICATE-----Generated at Mon Oct 27 07:19:21 2025 by rpki-client