$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft File: JTgA7RbtD_M39wQNDj3xFBwWFhw.mft (raw, json) Hash identifier: LqdlmiDEIRaIsPkpSkUgrtImOXuSdg+t0rMi1VU0jQc= Subject key identifier: F1:33:FF:B3:E4:96:C8:C1:7A:8F:0D:23:A0:41:34:0E:61:AB:77:9D Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Certificate serial: 024C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft Manifest number: 0240 Signing time: Wed 05 Nov 2025 02:00:00 +0000 Manifest this update: Wed 05 Nov 2025 01:59:59 +0000 Manifest next update: Wed 12 Nov 2025 01:59:59 +0000 Files and hashes: 1: JTgA7RbtD_M39wQNDj3xFBwWFhw.crl (hash: tB0U9zgHUptijqjDSgZvli3zfhxmT4IGWnpHZ0HCzFg=) 2: 2D215B32584111EDBE50107CC4F9AE02.roa (hash: up6WHjnsfS0bIxQesxTATm4WYD2tutF7YiezZwJi2Bc=) 3: ED685B8CDFA511EF8CC2890BC4F9AE02.roa (hash: NqrZmcVp/US1PncX6fEsquuB9U+PwjdNaQFtiMmKje0=) 4: D45117DEEBF311EEAECC405FC4F9AE02.roa (hash: L3m+NQNaRyXNu/ZiemkthKYLeI1gIGN4M/qfSkh3IEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C9, serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Validity Not Before: Nov 5 01:59:59 2025 GMT Not After : Nov 12 01:59:59 2025 GMT Subject: CN=690aafa0-cc9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b9:98:56:11:dd:79:ca:5d:eb:28:dc:aa:38: 6f:f2:f7:f3:4c:1b:a4:ff:c8:10:7d:07:69:95:7f: 6b:d3:ef:98:43:af:0e:5f:c7:4d:f6:f2:f7:85:f4: f6:60:64:50:e5:95:a4:f0:58:31:22:97:9f:81:d7: a8:1e:68:99:fb:32:92:4d:0a:ad:9f:de:5b:fe:a0: 93:93:d4:5d:22:ba:6c:1f:e6:43:ff:5f:0a:b8:02: f1:e7:52:d2:8d:a1:5d:65:0b:9c:f7:88:e4:35:b7: d6:b7:16:0f:8e:76:6e:2d:0f:21:f9:4f:fb:6c:29: ac:40:34:77:b8:f7:ff:e5:7b:00:c4:e8:a9:af:fe: 84:71:af:17:8a:f1:5c:63:ea:d0:df:23:fb:07:8f: 70:95:50:a1:11:95:4f:70:63:36:7d:f0:ef:61:86: 0f:bf:6e:d4:72:7a:97:8e:c8:9f:fc:aa:e0:2e:82: e7:2d:2a:06:76:73:00:cf:c2:3d:e2:ff:b4:56:24: 90:6e:f1:14:10:6e:4b:a8:c8:19:a4:de:76:ac:5d: ec:7f:2d:7c:db:a5:42:46:a7:4b:01:90:32:24:12: 70:1b:dc:62:a7:94:6e:ef:83:bd:e8:91:35:58:b7: 8f:f1:83:69:11:fd:3e:2f:8b:db:ce:2e:a3:45:09: 4f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:33:FF:B3:E4:96:C8:C1:7A:8F:0D:23:A0:41:34:0E:61:AB:77:9D X509v3 Authority Key Identifier: keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:cd:de:c0:ec:ac:77:a8:fb:32:37:b4:1b:0a:4a:0b:d7:90: 1e:8a:f1:49:3c:7a:b9:5a:52:61:97:c8:2f:60:b3:a6:8a:d7: df:2e:5d:6a:75:19:a3:54:4f:53:a9:27:94:1d:db:13:20:d5: c7:42:c9:e1:a4:41:b3:fa:47:b2:45:03:5c:47:5a:42:cc:92: f3:96:b4:b2:92:7c:52:9b:22:06:16:aa:23:66:4b:72:11:e3: 1c:10:b4:cf:f2:e2:22:c0:1e:55:fe:03:38:a7:cf:e7:b1:fe: 49:d5:b0:f3:7d:d3:b0:c7:a4:ae:b9:84:67:53:97:1e:45:12: d8:28:8f:fa:2d:1f:f2:41:41:a7:cf:04:62:02:2d:16:b7:33: 2b:0d:30:5f:d5:45:6c:5e:86:ca:e0:c8:94:37:56:a2:1a:64: 89:67:4c:97:f0:bd:2b:f4:d4:b9:8b:a8:10:1b:84:94:4f:81: 91:c6:3c:dc:46:32:db:0c:e2:53:45:cc:cd:2f:e4:9e:eb:9f: 6b:c8:d4:ce:fa:b4:4b:2d:13:dc:8c:6d:b4:11:4b:4d:8e:64: 00:4d:4c:cc:cc:24:db:ad:ac:08:f0:3f:87:af:32:0f:78:56: 25:b6:0a:a5:d1:d4:8b:e9:ce:2c:a7:b4:43:71:25:42:3b:33: 69:bb:84:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzkxMTAvBgNVBAUTKDI1MzgwMEVEMTZFRDBGRjMzN0Y3MDQwRDBFM0RGMTE0 MUMxNjE2MUMwHhcNMjUxMTA1MDE1OTU5WhcNMjUxMTEyMDE1OTU5WjAYMRYwFAYD VQQDEw02OTBhYWZhMC1jYzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbmYVhHdecpd6yjcqjhv8vfzTBuk/8gQfQdplX9r0++YQ68OX8dN9vL3hfT2 YGRQ5ZWk8FgxIpefgdeoHmiZ+zKSTQqtn95b/qCTk9RdIrpsH+ZD/18KuALx51LS jaFdZQuc94jkNbfWtxYPjnZuLQ8h+U/7bCmsQDR3uPf/5XsAxOipr/6Eca8XivFc Y+rQ3yP7B49wlVChEZVPcGM2ffDvYYYPv27UcnqXjsif/KrgLoLnLSoGdnMAz8I9 4v+0ViSQbvEUEG5LqMgZpN52rF3sfy1826VCRqdLAZAyJBJwG9xip5Ru74O96JE1 WLeP8YNpEf0+L4vbzi6jRQlPOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEz/7Pk lsjBeo8NI6BBNA5hq3edMB8GA1UdIwQYMBaAFCU4AO0W7Q/zN/cEDQ498RQcFhYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOS8yMTk3QjA5MjU4 M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERfTTM5d1FORGozeEZCd1dG aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pUZ0E3UmJ0RF9NMzl3UU5EajN4RkJ3V0Zody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjhDOS8yMTk3QjA5MjU4M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERf TTM5d1FORGozeEZCd1dGaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSzd7A7Kx3qPsyN7QbCkoL15AeivFJPHq5WlJhl8gvYLOmitffLl1q dRmjVE9TqSeUHdsTINXHQsnhpEGz+keyRQNcR1pCzJLzlrSyknxSmyIGFqojZkty EeMcELTP8uIiwB5V/gM4p8/nsf5J1bDzfdOwx6SuuYRnU5ceRRLYKI/6LR/yQUGn zwRiAi0WtzMrDTBf1UVsXobK4MiUN1aiGmSJZ0yX8L0r9NS5i6gQG4SUT4GRxjzc RjLbDOJTRczNL+Se659ryNTO+rRLLRPcjG20EUtNjmQATUzMzCTbrawI8D+HrzIP eFYltgql0dSL6c4sp7RDcSVCOzNpu4QH -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:21 2025 by rpki-client