$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft File: jZIwmM1n9tG_JM--LD3KC2Zau4w.mft (raw, json) Hash identifier: QOb3DAH38UzPgq9bme1eTSUVQXScolw5KiRIbW5jm+g= Subject key identifier: 74:CD:CC:43:8D:71:4D:DE:2A:2C:54:A0:94:24:19:C1:0F:D6:E5:EC Authority key identifier: 8D:92:30:98:CD:67:F6:D1:BF:24:CF:BE:2C:3D:CA:0B:66:5A:BB:8C Certificate issuer: /CN=A9148B17/serialNumber=8D923098CD67F6D1BF24CFBE2C3DCA0B665ABB8C Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft Manifest number: 018C Signing time: Wed 05 Nov 2025 03:47:05 +0000 Manifest this update: Wed 05 Nov 2025 03:47:05 +0000 Manifest next update: Wed 12 Nov 2025 03:47:05 +0000 Files and hashes: 1: jZIwmM1n9tG_JM--LD3KC2Zau4w.crl (hash: CFNA4RoppbwToGtfunNgEpO926vCogc9a6NXDRm+UkM=) 2: 4495F306772E11EEB7DE544FC4F9AE02.roa (hash: ccDaM+xIQE3p2Y5zhdqiVD5sdxLAr7SXV+gu36JLnEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.crl rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B17, serialNumber=8D923098CD67F6D1BF24CFBE2C3DCA0B665ABB8C Validity Not Before: Nov 5 03:47:05 2025 GMT Not After : Nov 12 03:47:05 2025 GMT Subject: CN=690ac8b9-2da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:36:95:6c:3d:90:a1:fc:91:19:0e:4e:9c:b2: 24:a9:6f:b1:b6:aa:bc:e0:cd:4f:0a:1a:b2:b2:aa: 81:8a:92:b8:da:29:5d:bc:25:50:19:2c:5e:73:af: 28:55:3d:18:56:2b:6b:88:c1:7d:62:fb:89:75:fb: cf:da:65:51:03:fc:3c:22:7c:06:31:a1:0c:a7:db: 92:88:03:bb:0f:6b:d8:9d:aa:54:59:c0:4e:7f:63: 84:be:8f:cc:6d:80:c2:26:e7:67:ca:fc:fe:ff:90: bc:eb:94:26:91:79:7f:88:98:d0:d2:40:0e:96:99: ae:0b:e6:3e:06:f2:d5:0a:d2:bc:ff:02:98:a5:0b: 3f:9c:f0:b6:af:1d:74:e3:26:56:32:4d:c6:01:c1: de:16:5a:6b:a6:e7:a3:0b:0d:3c:03:61:63:0f:6e: 4d:11:ec:5a:28:b9:5c:53:b3:7a:b4:34:a1:b8:94: c0:3c:bd:47:43:22:b2:bc:a0:60:11:84:c7:94:24: 6e:dd:dc:c7:b1:32:37:27:3b:a6:3d:6a:3b:69:56: 5b:5a:e4:3c:81:8a:14:4f:93:7c:93:e9:f0:a6:a0: 98:a0:e3:2a:50:52:02:cf:8a:27:a9:1c:98:5d:4a: 32:85:9f:7b:82:25:8b:fa:7c:92:74:e2:38:66:58: 1c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:CD:CC:43:8D:71:4D:DE:2A:2C:54:A0:94:24:19:C1:0F:D6:E5:EC X509v3 Authority Key Identifier: keyid:8D:92:30:98:CD:67:F6:D1:BF:24:CF:BE:2C:3D:CA:0B:66:5A:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:0c:8c:e7:71:8e:5c:86:8b:f9:94:6d:c5:08:d5:0e:32:9b: 06:d3:89:9b:f4:fa:0d:40:d5:80:73:3b:8c:ff:ca:6b:ee:c6: 88:f4:68:12:89:48:02:e0:7d:90:db:56:ef:aa:70:e5:59:d3: f1:a0:25:58:be:b6:90:5f:a5:70:ff:1d:08:85:ad:2a:7f:0a: 13:60:09:b4:d3:8b:ed:06:12:6e:c3:42:4f:69:0f:84:3c:c0: dc:f3:6f:40:f6:4c:cf:cb:fc:95:a5:74:f0:18:37:77:ce:da: 06:0a:96:34:84:a6:a9:9e:3c:d5:20:64:a8:f0:3f:92:6e:e9: c6:fb:f5:06:07:54:75:3e:75:4f:ae:62:5b:63:0c:da:ea:bc: 35:ba:c2:00:26:99:3c:01:4d:38:97:8b:c6:06:10:2f:6d:c2: 77:a0:58:7d:62:93:36:4d:0b:dd:fb:83:0a:96:91:89:54:7c: 8f:52:7c:4b:d6:a7:66:97:33:1d:4b:bc:63:f2:f7:21:2b:4d: 4a:e7:4f:51:71:9d:29:9f:e6:be:60:ae:43:57:cd:3a:8a:4c: 67:80:b0:51:26:5d:94:bc:00:ff:18:c8:3b:93:dc:02:73:9d: e8:40:56:04:cb:b9:ce:8d:16:df:73:9b:37:15:aa:e7:66:c1: cc:e5:01:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCMTcxMTAvBgNVBAUTKDhEOTIzMDk4Q0Q2N0Y2RDFCRjI0Q0ZCRTJDM0RDQTBC NjY1QUJCOEMwHhcNMjUxMTA1MDM0NzA1WhcNMjUxMTEyMDM0NzA1WjAYMRYwFAYD VQQDEw02OTBhYzhiOS0yZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zaVbD2QofyRGQ5OnLIkqW+xtqq84M1PChqysqqBipK42ildvCVQGSxec68o VT0YVitriMF9YvuJdfvP2mVRA/w8InwGMaEMp9uSiAO7D2vYnapUWcBOf2OEvo/M bYDCJudnyvz+/5C865QmkXl/iJjQ0kAOlpmuC+Y+BvLVCtK8/wKYpQs/nPC2rx10 4yZWMk3GAcHeFlprpuejCw08A2FjD25NEexaKLlcU7N6tDShuJTAPL1HQyKyvKBg EYTHlCRu3dzHsTI3JzumPWo7aVZbWuQ8gYoUT5N8k+nwpqCYoOMqUFICz4onqRyY XUoyhZ97giWL+nySdOI4Zlgc2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTNzEON cU3eKixUoJQkGcEP1uXsMB8GA1UdIwQYMBaAFI2SMJjNZ/bRvyTPviw9ygtmWruM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEIxNy9FQTRCMTY1RTY4 RUQxMUVFQjRCNUQzNjJDNEY5QUUwMi9qWkl3bU0xbjl0R19KTS0tTEQzS0MyWmF1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2paSXdtTTFuOXRHX0pNLS1MRDNLQzJaYXU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEIxNy9FQTRCMTY1RTY4RUQxMUVFQjRCNUQzNjJDNEY5QUUwMi9qWkl3bU0xbjl0 R19KTS0tTEQzS0MyWmF1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4DIzncY5chov5lG3FCNUOMpsG04mb9PoNQNWAczuM/8pr7saI9GgS iUgC4H2Q21bvqnDlWdPxoCVYvraQX6Vw/x0Iha0qfwoTYAm004vtBhJuw0JPaQ+E PMDc829A9kzPy/yVpXTwGDd3ztoGCpY0hKapnjzVIGSo8D+SbunG+/UGB1R1PnVP rmJbYwza6rw1usIAJpk8AU04l4vGBhAvbcJ3oFh9YpM2TQvd+4MKlpGJVHyPUnxL 1qdmlzMdS7xj8vchK01K509RcZ0pn+a+YK5DV806ikxngLBRJl2UvAD/GMg7k9wC c53oQFYEy7nOjRbfc5s3FarnZsHM5QHw -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:41 2025 by rpki-client