$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: RfYEiVCB/9hCkUZncOqReNxlL7qG+dwVW8epGbj9P84= Subject key identifier: 58:AF:48:E7:FE:7D:45:6E:2D:69:47:60:03:17:73:76:E0:26:05:39 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0CF0 Signing time: Sun 02 Nov 2025 18:07:59 +0000 Manifest this update: Sun 02 Nov 2025 18:07:58 +0000 Manifest next update: Sun 09 Nov 2025 18:07:58 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: MtwXJ2hQulBGXUx2djd+zF286fc1jw811ogTwKJqGuU=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: bJm8x/jB8mtzKPQKI3Nnf1xFyPp1oMwYrBpRRhfwUbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3336 (0xd08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Nov 2 18:07:58 2025 GMT Not After : Nov 9 18:07:58 2025 GMT Subject: CN=69079dfe-1b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:87:2f:7f:ed:bf:b0:09:ca:e9:62:a7:9a:65: 04:97:ae:9d:fb:36:1a:7c:6a:ff:e2:95:69:05:ed: 81:e4:60:ae:5f:8d:ff:94:64:dc:69:91:f4:ba:9b: 3c:0e:6d:8e:8e:e2:4c:53:c5:d9:97:e7:56:1b:03: 6c:77:c9:7a:b6:1d:4b:8b:e0:1a:76:9c:88:d4:3f: 26:b3:57:34:11:bb:7b:27:76:e2:fe:50:95:5a:fc: 3f:ad:1a:19:ef:1f:fc:92:30:15:3b:0d:eb:01:02: 6c:b6:22:a4:92:63:58:c4:b3:b1:c5:5c:c4:71:45: 1e:54:d8:6e:8a:2d:80:29:30:0c:bb:50:bc:18:8a: ce:81:f4:99:d0:45:9b:57:01:af:6b:03:7f:90:e2: a3:80:e4:3a:ae:47:f7:22:3b:39:bf:79:2e:7c:79: 17:12:c3:55:b3:ef:13:61:c3:92:63:23:93:b7:96: 76:2a:bb:77:82:21:0e:9a:5a:5d:43:db:5e:a0:7c: 01:de:0e:94:13:c5:15:c5:b5:b0:80:07:74:b9:31: b9:00:70:0b:ee:03:d6:2c:1f:ae:09:d5:65:37:93: a7:f8:46:b4:ef:ab:b6:7f:ae:b5:99:94:46:7b:c5: 29:08:4b:52:2f:06:99:09:ca:b5:28:9f:43:be:da: e7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:AF:48:E7:FE:7D:45:6E:2D:69:47:60:03:17:73:76:E0:26:05:39 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:62:01:a3:63:9b:3d:f8:7b:f5:da:1f:0c:eb:c0:3c:37:dd: 3f:dc:45:dd:23:51:0a:14:72:86:d1:b2:8b:c1:bf:30:b6:e5: 8e:48:40:0e:1e:ae:30:fd:55:5f:4a:ca:27:34:f0:69:f5:57: ec:87:44:24:3c:4b:da:e2:0c:7e:7a:69:a2:2d:36:4b:72:cb: 69:ee:66:fe:b0:fd:a4:91:91:9e:76:3b:54:b0:12:8a:d9:91: 67:82:ad:23:ee:b0:79:43:9e:4c:0e:a8:50:64:22:f2:bd:06: df:98:e1:bc:5b:79:09:4c:f6:8d:dc:ca:de:32:3c:b7:02:4f: 20:93:2f:7a:89:6a:4f:eb:e9:72:e7:de:03:03:50:3d:0b:66: f9:ed:a7:f8:7a:e9:ce:00:d0:54:a0:60:e5:be:3c:64:61:e6: 4e:94:08:35:e2:67:e0:90:66:23:22:54:cd:ef:27:cc:41:5c: b7:60:5f:6d:de:46:4c:be:56:2f:07:ec:82:01:f7:e9:61:5f: eb:e1:01:64:8b:ca:85:13:ff:0d:43:83:ea:d9:73:06:c1:53: 70:a3:3f:80:fd:e1:16:9b:4e:99:67:5c:5b:8d:d0:c6:17:4c: ad:dc:e8:9e:cc:63:22:ab:ee:d4:6f:49:f6:cd:c1:e3:47:12: 0c:10:b7:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUxMTAyMTgwNzU4WhcNMjUxMTA5MTgwNzU4WjAYMRYwFAYD VQQDEw02OTA3OWRmZS0xYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYcvf+2/sAnK6WKnmmUEl66d+zYafGr/4pVpBe2B5GCuX43/lGTcaZH0ups8 Dm2OjuJMU8XZl+dWGwNsd8l6th1Li+AadpyI1D8ms1c0Ebt7J3bi/lCVWvw/rRoZ 7x/8kjAVOw3rAQJstiKkkmNYxLOxxVzEcUUeVNhuii2AKTAMu1C8GIrOgfSZ0EWb VwGvawN/kOKjgOQ6rkf3Ijs5v3kufHkXEsNVs+8TYcOSYyOTt5Z2Krt3giEOmlpd Q9teoHwB3g6UE8UVxbWwgAd0uTG5AHAL7gPWLB+uCdVlN5On+Ea076u2f661mZRG e8UpCEtSLwaZCcq1KJ9DvtrnFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFivSOf+ fUVuLWlHYAMXc3bgJgU5MB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaYgGjY5s9+Hv12h8M68A8N90/3EXdI1EKFHKG0bKLwb8wtuWOSEAO Hq4w/VVfSsonNPBp9Vfsh0QkPEva4gx+emmiLTZLcstp7mb+sP2kkZGedjtUsBKK 2ZFngq0j7rB5Q55MDqhQZCLyvQbfmOG8W3kJTPaN3MreMjy3Ak8gky96iWpP6+ly 594DA1A9C2b57af4eunOANBUoGDlvjxkYeZOlAg14mfgkGYjIlTN7yfMQVy3YF9t 3kZMvlYvB+yCAffpYV/r4QFki8qFE/8NQ4Pq2XMGwVNwoz+A/eEWm06ZZ1xbjdDG F0yt3OiezGMiq+7Ub0n2zcHjRxIMELdN -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:14 2025 by rpki-client