$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: M1BXcAQxR+ZKHsQOPWwOM+4mYfJNOpTv96Y9UB+urwI= Subject key identifier: 64:0B:E7:9A:C1:71:D6:E4:AF:62:DE:DB:02:1C:20:0D:8B:F9:46:46 Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0C86 Signing time: Thu 18 Sep 2025 18:36:28 +0000 Manifest this update: Thu 18 Sep 2025 18:36:27 +0000 Manifest next update: Thu 25 Sep 2025 18:36:27 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: 3zMCXRaUMqSAqzXwkPadOZkqCEJSKXOlpo+LBFFt6ho=) 2: 2CF214DC93A611F0B9B44571C4F9AE02.roa (hash: gDTlO8JdKBOhrYpdJ9YbTAbJbDClxcUd9QV6sNxI620=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Sep 18 18:36:27 2025 GMT Not After : Sep 25 18:36:27 2025 GMT Subject: CN=68cc512b-9429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0a:d8:6a:e0:54:c8:74:cf:6a:30:aa:2f:b2: 82:e9:c0:ea:c5:74:0d:3a:f2:16:94:da:d7:dc:d9: 23:3d:df:8e:50:d6:61:5f:51:5c:b8:98:a7:ac:3b: e1:af:66:91:d4:88:24:87:3d:79:e3:3e:a3:78:98: 70:22:cb:c8:c4:5c:9f:7c:ea:9a:0d:0d:ad:ef:e5: ed:c0:b4:81:6e:f7:22:ee:e5:38:9d:23:b5:11:c8: a4:26:76:27:41:21:7e:ce:a2:52:59:c3:e6:0c:33: 11:e8:b0:bf:72:fa:57:01:d3:9e:c8:29:75:2c:27: b9:42:6d:bd:8f:c1:af:33:6a:1b:70:8f:86:49:d8: 16:05:fb:11:6b:4e:7f:e9:49:9c:c5:e6:20:63:e5: 68:1a:13:6b:0e:f3:cb:01:89:c1:65:11:fd:d3:3b: e8:2f:6a:8e:03:3c:5c:10:83:15:ac:e0:79:12:59: 9f:e6:44:ef:bc:89:b0:1d:c9:b9:c3:64:7d:01:a8: e3:3c:f6:48:1e:43:b7:ae:31:2a:92:4c:bf:f0:37: 71:97:cc:c5:2d:8c:6b:4f:96:99:24:03:f0:a7:fb: 3c:47:72:58:2f:8a:8b:70:28:1f:df:53:1f:46:7f: f4:26:04:40:cd:76:0c:ad:64:45:71:c9:47:19:7f: 05:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0B:E7:9A:C1:71:D6:E4:AF:62:DE:DB:02:1C:20:0D:8B:F9:46:46 X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:2a:8b:7f:4a:57:24:22:17:99:a3:be:3c:55:af:e7:7b:53: 72:5c:37:0e:2b:fd:34:d8:29:19:67:be:85:6f:e5:17:e5:3d: 6c:7c:35:da:89:2c:50:c8:41:53:95:1a:5f:ba:bc:ab:d2:18: 5e:ce:e5:3f:83:49:a8:31:ba:86:00:dd:fb:50:79:a6:33:4b: d2:fc:31:5c:63:66:ec:c6:22:ee:4f:0e:e7:5e:2b:52:00:e2: 0a:96:3e:76:54:39:62:f8:e7:2e:2e:47:93:d4:ff:f7:9c:48: de:d7:16:8c:13:2f:02:5a:e7:ba:dd:42:a9:58:db:f0:56:eb: 10:37:19:98:c5:6b:7a:8f:f5:fd:63:6e:23:96:77:82:f9:d7: 16:10:c4:4d:da:6f:18:89:04:4b:c3:d2:d9:49:97:b6:ab:87: 73:9a:40:80:e1:29:04:2e:18:a7:26:c8:f2:09:a6:48:64:82: 74:87:72:13:57:d5:bd:c5:82:95:8c:69:a1:e2:f1:1c:3f:a3: 67:72:d6:e5:82:cc:9e:6c:1a:23:1f:6e:bf:10:00:62:53:1a: 14:0a:5b:3a:88:ef:16:1b:e2:5f:a9:dd:1b:c9:d9:c1:02:5a: 36:c8:a4:81:96:cd:64:f5:1e:2a:9a:55:00:82:79:81:ae:e8: 76:ff:91:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjUwOTE4MTgzNjI3WhcNMjUwOTI1MTgzNjI3WjAYMRYwFAYD VQQDEw02OGNjNTEyYi05NDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5grYauBUyHTPajCqL7KC6cDqxXQNOvIWlNrX3NkjPd+OUNZhX1FcuJinrDvh r2aR1Igkhz154z6jeJhwIsvIxFyffOqaDQ2t7+XtwLSBbvci7uU4nSO1EcikJnYn QSF+zqJSWcPmDDMR6LC/cvpXAdOeyCl1LCe5Qm29j8GvM2obcI+GSdgWBfsRa05/ 6UmcxeYgY+VoGhNrDvPLAYnBZRH90zvoL2qOAzxcEIMVrOB5Elmf5kTvvImwHcm5 w2R9AajjPPZIHkO3rjEqkky/8Ddxl8zFLYxrT5aZJAPwp/s8R3JYL4qLcCgf31Mf Rn/0JgRAzXYMrWRFcclHGX8F5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQL55rB cdbkr2Le2wIcIA2L+UZGMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJKot/SlckIheZo748Va/ne1NyXDcOK/002CkZZ76Fb+UX5T1sfDXa iSxQyEFTlRpfuryr0hhezuU/g0moMbqGAN37UHmmM0vS/DFcY2bsxiLuTw7nXitS AOIKlj52VDli+OcuLkeT1P/3nEje1xaMEy8CWue63UKpWNvwVusQNxmYxWt6j/X9 Y24jlneC+dcWEMRN2m8YiQRLw9LZSZe2q4dzmkCA4SkELhinJsjyCaZIZIJ0h3IT V9W9xYKVjGmh4vEcP6NnctblgsyebBojH26/EABiUxoUCls6iO8WG+Jfqd0bydnB Alo2yKSBls1k9R4qmlUAgnmBruh2/5Ex -----END CERTIFICATE-----Generated at Thu Sep 18 20:34:50 2025 by rpki-client