$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: npR3QgOyOHqMhYIx1eywBQGDU+669xU7pT43MEyplSw= Subject key identifier: 24:B8:65:3E:06:8D:F6:0A:10:3E:99:B3:6E:16:C2:DC:AF:CA:4A:D0 Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0D56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0D4A Signing time: Sun 02 Nov 2025 18:00:47 +0000 Manifest this update: Sun 02 Nov 2025 18:00:47 +0000 Manifest next update: Sun 09 Nov 2025 18:00:47 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: hhb03n1FZ+wKa5PNllZzKH42Kc7MXMnCoea/CQBWo4g=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: hbFGbb4fXsbz6F3BPhzZvLmW3bUeWq5CqpJ6o7pIq8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3414 (0xd56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Nov 2 18:00:47 2025 GMT Not After : Nov 9 18:00:47 2025 GMT Subject: CN=69079c4f-2d9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:de:8c:e7:e4:0b:ed:c1:8c:a0:2c:89:42:10: 25:4d:09:1e:d0:93:ef:8b:cf:c5:f8:72:dc:a7:3d: d9:04:2b:26:5a:1d:58:09:5c:d8:02:97:b0:ea:42: 4c:c5:68:12:12:13:d4:9d:e8:48:d0:74:9b:ae:e2: 0e:e2:5d:19:58:41:9c:39:f4:b1:10:4a:4a:af:2a: 9d:6c:93:4f:68:b4:27:3b:aa:d0:61:0b:1c:fc:55: bc:07:e0:7f:20:9a:0b:27:be:d1:18:1d:96:23:41: ed:8c:a6:82:9d:be:55:cf:81:1b:1a:33:7b:db:bb: e8:1f:35:91:18:2f:99:97:47:42:82:f7:78:0a:bd: 0a:23:04:cf:71:bc:f8:e0:7b:90:f3:3a:98:bc:18: 8f:21:a4:02:80:a3:eb:14:8b:17:d8:f9:09:2b:06: c0:aa:b4:06:ea:30:27:5f:a1:ae:34:51:88:04:65: 7c:0a:87:b7:4b:d2:34:50:cc:fd:d8:9d:42:1f:16: b1:fe:f5:fa:7f:f4:2a:df:bb:63:87:57:83:98:c2: 2d:ca:33:e5:44:68:a7:c2:66:6d:e1:52:bb:57:f7: 71:66:63:fa:80:a4:3e:f4:bd:8e:99:4e:1c:46:ae: 02:9e:3f:61:32:2c:3d:e1:cf:14:8c:09:da:87:cf: 6f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B8:65:3E:06:8D:F6:0A:10:3E:99:B3:6E:16:C2:DC:AF:CA:4A:D0 X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:22:a9:12:f2:89:38:84:7a:92:03:1c:c9:c7:e8:08:d4:88: 66:48:0d:74:bf:9d:d7:08:12:6d:cc:29:69:03:c4:a8:1d:9a: 10:b7:54:5b:95:75:14:bc:dd:85:e2:71:f6:4c:28:0b:82:30: 38:9e:3f:80:63:24:c6:db:a4:0d:cf:dd:a8:5b:34:46:f9:5e: e6:0e:a9:5c:23:31:a8:a6:d4:9d:d8:ec:d6:40:31:1c:24:4b: c8:5a:88:c5:86:af:58:ad:08:31:68:81:93:66:2b:3f:f4:ec: 02:12:81:d8:5b:5e:7c:4b:2f:47:9d:2c:94:07:05:74:ca:97: 50:c4:49:19:40:29:c6:e3:1b:0b:44:9d:d8:2a:96:35:10:ef: 61:73:b5:cd:e9:65:cb:17:15:64:55:68:11:f5:5e:21:f8:ca: 20:97:b0:45:26:21:1f:f9:9e:d1:94:52:33:30:64:81:9e:2f: 89:31:2c:57:0b:00:1f:db:ea:9e:01:81:15:83:e7:21:06:3c: 0c:03:ba:bd:04:0b:45:a8:de:08:53:a6:c1:d8:5f:25:ba:da: eb:94:a8:f0:5f:10:d4:43:d7:ac:d0:a6:b9:dd:8e:35:28:23: 2f:13:75:0b:40:4d:9a:3e:d7:1b:07:b6:04:dd:31:6b:b8:72: e4:55:18:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUxMTAyMTgwMDQ3WhcNMjUxMTA5MTgwMDQ3WjAYMRYwFAYD VQQDEw02OTA3OWM0Zi0yZDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAot6M5+QL7cGMoCyJQhAlTQke0JPvi8/F+HLcpz3ZBCsmWh1YCVzYApew6kJM xWgSEhPUnehI0HSbruIO4l0ZWEGcOfSxEEpKryqdbJNPaLQnO6rQYQsc/FW8B+B/ IJoLJ77RGB2WI0HtjKaCnb5Vz4EbGjN727voHzWRGC+Zl0dCgvd4Cr0KIwTPcbz4 4HuQ8zqYvBiPIaQCgKPrFIsX2PkJKwbAqrQG6jAnX6GuNFGIBGV8Coe3S9I0UMz9 2J1CHxax/vX6f/Qq37tjh1eDmMItyjPlRGinwmZt4VK7V/dxZmP6gKQ+9L2OmU4c Rq4Cnj9hMiw94c8UjAnah89vpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCS4ZT4G jfYKED6Zs24WwtyvykrQMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASIqkS8ok4hHqSAxzJx+gI1IhmSA10v53XCBJtzClpA8SoHZoQt1Rb lXUUvN2F4nH2TCgLgjA4nj+AYyTG26QNz92oWzRG+V7mDqlcIzGoptSd2OzWQDEc JEvIWojFhq9YrQgxaIGTZis/9OwCEoHYW158Sy9HnSyUBwV0ypdQxEkZQCnG4xsL RJ3YKpY1EO9hc7XN6WXLFxVkVWgR9V4h+Mogl7BFJiEf+Z7RlFIzMGSBni+JMSxX CwAf2+qeAYEVg+chBjwMA7q9BAtFqN4IU6bB2F8lutrrlKjwXxDUQ9es0Ka53Y41 KCMvE3ULQE2aPtcbB7YE3TFruHLkVRha -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:59 2025 by rpki-client