$ rpki-client -vvf rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft File: jLK71ktqd04WwQ_cplCnrcWzjXg.mft (raw, json) Hash identifier: vDLrHz1deO1TSTiyMWn7SaBks49s/B+/xNSDa2tn4JM= Subject key identifier: EC:AD:59:07:40:4C:47:E1:29:EB:0C:41:59:EB:96:8F:87:18:1D:35 Authority key identifier: 8C:B2:BB:D6:4B:6A:77:4E:16:C1:0F:DC:A6:50:A7:AD:C5:B3:8D:78 Certificate issuer: /CN=A914749C/serialNumber=8CB2BBD64B6A774E16C10FDCA650A7ADC5B38D78 Certificate serial: 1C67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft Manifest number: 1C4E Signing time: Tue 04 Nov 2025 16:17:23 +0000 Manifest this update: Tue 04 Nov 2025 16:17:23 +0000 Manifest next update: Tue 11 Nov 2025 16:17:23 +0000 Files and hashes: 1: jLK71ktqd04WwQ_cplCnrcWzjXg.crl (hash: oaoRXfloWdjTuUZvAMd55UoVsdDhH67pZEpp0x9hfKQ=) 2: 433FBBECF1A511E6BE0A844EC4F9AE02.roa (hash: jNQlV+fi0gh3TqmAhHo6u4WfK9ctt6IakWF/8kDkdDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.crl rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7271 (0x1c67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914749C, serialNumber=8CB2BBD64B6A774E16C10FDCA650A7ADC5B38D78 Validity Not Before: Nov 4 16:17:23 2025 GMT Not After : Nov 11 16:17:23 2025 GMT Subject: CN=690a2713-888c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b2:ec:59:95:74:c2:8d:7d:60:7e:1b:22:58: 65:e8:63:ba:a8:14:c5:a9:ac:12:30:bb:a6:84:93: 56:9e:19:bb:c1:e0:29:72:91:d3:8d:f3:b0:52:2e: d4:0c:02:0c:3c:eb:59:c4:c3:71:7e:20:19:80:1e: fd:1a:fd:a6:3e:ba:a0:a2:bd:50:74:7c:13:ef:f2: cb:45:05:3e:07:54:41:d0:61:c2:aa:62:74:67:ca: 3c:27:02:63:57:12:d3:bc:ac:07:d4:6d:c2:a3:02: ce:48:fe:9a:94:82:74:85:da:89:41:54:89:cf:af: a0:5d:dc:42:43:17:cc:eb:7e:ca:0e:06:90:88:06: 37:5a:a5:d7:34:55:e5:44:23:36:3a:54:74:55:df: 9e:3c:b1:08:39:be:88:98:60:46:55:63:f4:3b:37: 1f:86:8f:4c:d9:2f:4a:07:1d:c7:b5:4c:11:0e:0a: 3c:64:46:8e:f7:9c:2b:0a:d2:6a:ad:50:30:f7:a4: da:bd:06:2d:8a:19:1c:ba:e2:7f:e1:5d:2f:5e:b6: 02:48:e3:19:d9:2d:7a:22:f0:f9:b0:02:e9:7b:42: 2a:6a:e7:20:f1:f9:ce:cd:8f:c0:52:e6:3e:26:b9: 10:20:12:f1:6c:7b:d3:92:d6:6a:44:ff:36:9e:32: a4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AD:59:07:40:4C:47:E1:29:EB:0C:41:59:EB:96:8F:87:18:1D:35 X509v3 Authority Key Identifier: keyid:8C:B2:BB:D6:4B:6A:77:4E:16:C1:0F:DC:A6:50:A7:AD:C5:B3:8D:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:6a:6e:8d:39:fe:47:ee:b3:ad:84:ac:b6:ce:ba:8e:10:5f: 95:21:0e:e1:a6:c0:96:02:71:b8:d5:28:38:2a:31:46:eb:bf: 3b:87:01:c2:c9:11:ab:68:28:70:18:ef:d4:48:b4:0f:21:65: f1:6f:9b:14:53:e4:f5:b8:15:6a:69:a9:b3:6e:6b:bd:3e:de: 48:73:5f:00:65:95:d1:97:01:68:d3:9c:54:b5:da:12:b5:cf: 89:c0:b2:d2:a9:19:c2:0f:92:6a:3c:ac:35:20:c2:0f:e7:52: 3b:60:c3:a8:6e:3d:88:b3:e9:66:e7:2c:3a:7b:43:de:93:80: bf:80:a2:75:02:91:8f:64:20:bd:02:cc:48:49:35:2a:41:83: 42:e1:c1:04:00:e6:95:9f:cb:0d:06:d8:92:85:e2:b4:fa:39: e5:11:d5:ae:90:fa:b6:09:e8:67:fe:34:97:98:38:22:89:d9: e5:a6:ae:95:7f:df:d1:61:27:19:ef:86:35:ab:2c:18:2f:1f: 00:26:62:56:f7:13:ec:14:f1:be:26:5a:f4:de:6d:34:98:d7: 95:2e:e3:d6:05:79:47:e2:2f:5a:40:ef:81:e9:a8:50:7c:c6: 86:27:94:d7:89:8d:f4:bc:05:44:6e:d3:e6:4f:35:f1:31:33: a2:6a:ef:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0OUMxMTAvBgNVBAUTKDhDQjJCQkQ2NEI2QTc3NEUxNkMxMEZEQ0E2NTBBN0FE QzVCMzhENzgwHhcNMjUxMTA0MTYxNzIzWhcNMjUxMTExMTYxNzIzWjAYMRYwFAYD VQQDEw02OTBhMjcxMy04ODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7LsWZV0wo19YH4bIlhl6GO6qBTFqawSMLumhJNWnhm7weApcpHTjfOwUi7U DAIMPOtZxMNxfiAZgB79Gv2mPrqgor1QdHwT7/LLRQU+B1RB0GHCqmJ0Z8o8JwJj VxLTvKwH1G3CowLOSP6alIJ0hdqJQVSJz6+gXdxCQxfM637KDgaQiAY3WqXXNFXl RCM2OlR0Vd+ePLEIOb6ImGBGVWP0Ozcfho9M2S9KBx3HtUwRDgo8ZEaO95wrCtJq rVAw96TavQYtihkcuuJ/4V0vXrYCSOMZ2S16IvD5sALpe0Iqaucg8fnOzY/AUuY+ JrkQIBLxbHvTktZqRP82njKk3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOytWQdA TEfhKesMQVnrlo+HGB01MB8GA1UdIwQYMBaAFIyyu9ZLandOFsEP3KZQp63Fs414 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzQ5Qy84RDc4RTU3RUYx QTIxMUU2OTQyMUI1NDVDNEY5QUUwMi9qTEs3MWt0cWQwNFd3UV9jcGxDbnJjV3pq WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pMSzcxa3RxZDA0V3dRX2NwbENucmNXempYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzQ5Qy84RDc4RTU3RUYxQTIxMUU2OTQyMUI1NDVDNEY5QUUwMi9qTEs3MWt0cWQw NFd3UV9jcGxDbnJjV3pqWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFam6NOf5H7rOthKy2zrqOEF+VIQ7hpsCWAnG41Sg4KjFG6787hwHC yRGraChwGO/USLQPIWXxb5sUU+T1uBVqaamzbmu9Pt5Ic18AZZXRlwFo05xUtdoS tc+JwLLSqRnCD5JqPKw1IMIP51I7YMOobj2Is+lm5yw6e0Pek4C/gKJ1ApGPZCC9 AsxISTUqQYNC4cEEAOaVn8sNBtiSheK0+jnlEdWukPq2Cehn/jSXmDgiidnlpq6V f9/RYScZ74Y1qywYLx8AJmJW9xPsFPG+Jlr03m00mNeVLuPWBXlH4i9aQO+B6ahQ fMaGJ5TXiY30vAVEbtPmTzXxMTOiau93 -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:41 2025 by rpki-client