$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft File: JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft (raw, json) Hash identifier: 6udSCDMe8Fsee5wUG9IDG5d6N6yawDlPttXNfCF+slE= Subject key identifier: 0A:A9:D8:12:21:C1:A0:F8:05:B7:04:5F:74:94:FA:20:EB:0E:71:C7 Authority key identifier: 26:19:9C:5F:61:89:E0:2E:C5:16:85:39:19:E1:5B:A6:01:D7:C8:5F Certificate issuer: /CN=A91275FB/serialNumber=26199C5F6189E02EC516853919E15BA601D7C85F Certificate serial: 185A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft Manifest number: 183D Signing time: Sun 02 Nov 2025 16:32:10 +0000 Manifest this update: Sun 02 Nov 2025 16:32:09 +0000 Manifest next update: Sun 09 Nov 2025 16:32:09 +0000 Files and hashes: 1: JhmcX2GJ4C7FFoU5GeFbpgHXyF8.crl (hash: j+Xx95j1QurUmHMsp4ZqwVp/IUc+ONaz3W8vCMf8ZOg=) 2: 1E76B980C4BA11E78E05EE70C4F9AE02.roa (hash: kY7WrwiPhs1fDNCyRkQ41kcloEeYNo1b3npHenwsZo8=) 3: FCD95792C21111E792F4785EC4F9AE02.roa (hash: vQNKqM+IPJTV8w/FcMbZHdV0h0wCR5wUymZdMLOlrMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.crl rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6234 (0x185a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FB, serialNumber=26199C5F6189E02EC516853919E15BA601D7C85F Validity Not Before: Nov 2 16:32:09 2025 GMT Not After : Nov 9 16:32:09 2025 GMT Subject: CN=6907878a-1650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:fe:78:13:f9:d1:19:e7:4f:fb:cf:8c:94:e8: ea:3f:ce:7f:b0:59:b5:3b:0f:17:46:35:3e:95:c7: 52:ed:29:12:50:60:30:98:9b:a6:c4:0f:8d:b8:54: 7e:ae:ee:9e:2a:aa:a1:67:1c:28:3d:39:37:75:9e: 75:06:ab:9b:6d:8c:a3:a7:fa:a2:cc:86:9e:14:68: 0a:1a:53:90:55:d9:6d:d9:ba:6b:f7:ec:1c:49:7d: cd:52:2f:56:2d:dd:d3:b2:c3:64:04:9a:63:95:fa: 2b:25:f9:99:e8:24:91:c9:9c:66:a8:b7:4a:86:ae: a7:7c:e9:be:cb:ae:bf:e9:f2:a9:bb:dd:21:2b:61: e2:66:a2:16:03:6f:06:62:60:c6:30:55:3f:1f:6c: 3b:0a:3e:09:ad:76:78:b0:cc:13:63:e1:67:5e:1e: 65:75:fe:87:d3:6c:39:ee:d9:b0:9a:32:59:14:71: d0:e4:06:bd:82:11:79:48:57:10:9b:d4:3f:43:30: 85:36:05:56:dc:e2:01:d2:bd:d5:97:e9:9e:eb:1f: 93:75:36:66:7e:c5:db:c4:cb:ee:99:75:d6:65:09: a5:17:0c:70:ed:53:fc:c5:52:cf:80:e5:d9:5c:76: 20:17:be:74:bc:72:a3:f9:d2:7c:8c:c8:9d:de:49: 03:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A9:D8:12:21:C1:A0:F8:05:B7:04:5F:74:94:FA:20:EB:0E:71:C7 X509v3 Authority Key Identifier: keyid:26:19:9C:5F:61:89:E0:2E:C5:16:85:39:19:E1:5B:A6:01:D7:C8:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:a7:00:b3:fd:f6:61:a2:79:1e:13:92:f4:36:e7:90:a2:43: fa:d0:e2:3e:63:8e:98:cb:c3:16:89:18:8d:28:14:e0:99:9b: 81:55:e9:ab:5c:67:fd:e2:a4:e3:f6:6b:7f:15:8b:80:e1:84: b8:8f:71:ac:4c:e2:78:70:bb:b0:95:86:85:eb:24:d6:2a:7a: c3:7a:70:6d:8e:bd:5c:6d:eb:75:88:4b:f5:1f:a0:97:45:eb: 65:15:28:a5:80:d4:24:57:8f:69:0b:c0:73:82:48:fe:24:43: f3:a3:7b:8a:75:9f:b8:ef:66:3d:08:4d:48:74:fa:22:bb:4e: 49:8c:44:58:97:57:b8:5e:21:ee:53:3e:df:98:c6:b8:17:bb: dd:a2:cf:91:c4:21:71:63:52:aa:ea:f1:92:67:6d:d1:21:9b: 09:8a:84:4e:66:17:47:00:7e:f7:cf:28:f2:c2:ec:83:fa:e8: 4d:6c:0e:8e:cf:c5:1f:4a:3f:69:dc:e1:b0:2b:b3:86:20:2e: 6d:78:01:77:0c:e8:9f:95:38:a4:a7:b6:e1:b0:2c:b3:06:72: 55:eb:e9:db:a6:ae:f4:22:a0:16:dd:58:b5:dd:b1:ec:e8:27: 21:3c:5d:ba:ce:18:d5:91:a5:b8:39:89:36:4f:c6:39:7b:d3: b0:92:c8:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkIxMTAvBgNVBAUTKDI2MTk5QzVGNjE4OUUwMkVDNTE2ODUzOTE5RTE1QkE2 MDFEN0M4NUYwHhcNMjUxMTAyMTYzMjA5WhcNMjUxMTA5MTYzMjA5WjAYMRYwFAYD VQQDEw02OTA3ODc4YS0xNjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzf54E/nRGedP+8+MlOjqP85/sFm1Ow8XRjU+lcdS7SkSUGAwmJumxA+NuFR+ ru6eKqqhZxwoPTk3dZ51BqubbYyjp/qizIaeFGgKGlOQVdlt2bpr9+wcSX3NUi9W Ld3TssNkBJpjlforJfmZ6CSRyZxmqLdKhq6nfOm+y66/6fKpu90hK2HiZqIWA28G YmDGMFU/H2w7Cj4JrXZ4sMwTY+FnXh5ldf6H02w57tmwmjJZFHHQ5Aa9ghF5SFcQ m9Q/QzCFNgVW3OIB0r3Vl+me6x+TdTZmfsXbxMvumXXWZQmlFwxw7VP8xVLPgOXZ XHYgF750vHKj+dJ8jMid3kkDtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqp2BIh waD4BbcEX3SU+iDrDnHHMB8GA1UdIwQYMBaAFCYZnF9hieAuxRaFORnhW6YB18hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGQi9GRERCODhEQ0My MTAxMUU3OTIwQTk1NURDNEY5QUUwMi9KaG1jWDJHSjRDN0ZGb1U1R2VGYnBnSFh5 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pobWNYMkdKNEM3RkZvVTVHZUZicGdIWHlGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzVGQi9GRERCODhEQ0MyMTAxMUU3OTIwQTk1NURDNEY5QUUwMi9KaG1jWDJHSjRD N0ZGb1U1R2VGYnBnSFh5RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDpwCz/fZhonkeE5L0NueQokP60OI+Y46Yy8MWiRiNKBTgmZuBVemr XGf94qTj9mt/FYuA4YS4j3GsTOJ4cLuwlYaF6yTWKnrDenBtjr1cbet1iEv1H6CX RetlFSilgNQkV49pC8Bzgkj+JEPzo3uKdZ+472Y9CE1IdPoiu05JjERYl1e4XiHu Uz7fmMa4F7vdos+RxCFxY1Kq6vGSZ23RIZsJioROZhdHAH73zyjywuyD+uhNbA6O z8UfSj9p3OGwK7OGIC5teAF3DOiflTikp7bhsCyzBnJV6+nbpq70IqAW3Vi13bHs 6CchPF26zhjVkaW4OYk2T8Y5e9OwksjR -----END CERTIFICATE-----Generated at Tue Nov 4 12:38:57 2025 by rpki-client