$ rpki-client -vvf rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft File: jhRqR_5i0JoyZs4IOlecrROlgGY.mft (raw, json) Hash identifier: 7ajLAChVbTsehflMCkjzQJBUKuYgxuGyn1vFWd9e8cI= Subject key identifier: 36:CA:4B:87:ED:B6:7C:E3:86:B1:65:87:10:6D:95:52:B7:C6:73:7F Authority key identifier: 8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 Certificate issuer: /CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft Manifest number: 01CB Signing time: Wed 05 Nov 2025 02:59:54 +0000 Manifest this update: Wed 05 Nov 2025 02:59:54 +0000 Manifest next update: Wed 12 Nov 2025 02:59:54 +0000 Files and hashes: 1: jhRqR_5i0JoyZs4IOlecrROlgGY.crl (hash: NSDfHc6id3mHTrZ2R4B06u3/6owhaGl7+LZMLxaBhaA=) 2: DFFEC4ECFA2B11ED89B90A2FC4F9AE02.roa (hash: yNzSo18Zr+VZZ8+QcBD6VKrhKtuzioN93vYAY/qtNGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91570C9, serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Validity Not Before: Nov 5 02:59:54 2025 GMT Not After : Nov 12 02:59:54 2025 GMT Subject: CN=690abdaa-88c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ff:c1:62:a1:50:c0:8c:78:e9:2d:76:87:c9: 16:f1:7b:c9:96:c5:f0:0d:c4:b5:af:51:68:5c:be: ee:f2:23:37:a6:6b:a4:69:97:b9:4a:43:e6:31:90: 69:95:60:d9:bb:0e:7c:29:5b:82:ce:f2:cb:fc:d5: b9:9b:5b:eb:df:77:fe:9b:5e:6f:f8:d3:5f:cc:cb: 32:9f:67:83:51:d5:40:19:1d:2b:c1:af:2d:77:14: 43:1c:35:fc:8e:86:49:a9:07:1a:96:a3:13:9a:cc: b3:5e:0b:48:dd:a6:54:e9:76:c2:a6:5e:ad:a2:a8: ac:ca:c3:74:bc:fe:3f:39:1c:7a:cc:49:b1:7e:29: 6a:c8:67:6f:45:32:88:f7:d9:4b:a4:ea:52:1e:49: 55:1f:75:55:ba:2c:eb:61:5c:98:89:ac:1a:1b:09: bd:2b:8b:af:ab:ab:09:7c:b7:6e:11:ba:2d:39:13: 44:49:11:cf:c2:66:fe:05:13:00:7d:9d:bd:6a:2c: 43:32:21:fc:95:39:b7:f4:7c:15:e9:a3:34:75:67: ef:13:61:95:cd:61:18:6e:65:3b:b8:ec:15:e6:8c: 80:c8:96:41:01:b1:d5:82:8b:15:cf:af:26:7f:b1: 23:f8:c3:51:b5:37:20:e2:e9:c3:d5:4b:b7:e9:36: 3e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:CA:4B:87:ED:B6:7C:E3:86:B1:65:87:10:6D:95:52:B7:C6:73:7F X509v3 Authority Key Identifier: keyid:8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:51:6f:e9:de:c5:7b:3d:d8:e0:47:b6:ac:eb:09:9a:29:93: 8c:82:a4:a1:66:05:e0:3d:af:37:0f:da:30:73:56:06:f7:70: e8:4e:5c:a8:1d:32:fa:47:dd:42:64:38:3a:4f:bf:27:30:c4: 3e:c7:bc:c9:9f:1d:9f:1d:39:72:bd:38:cc:d1:09:53:7a:ef: 20:03:e6:29:1b:28:16:e7:32:e4:8c:1a:a3:4e:89:d1:5f:50: e3:7b:58:eb:2c:8d:21:22:29:7a:4e:81:0f:bb:82:2f:ec:00: 77:cc:d4:ab:e9:7c:42:f4:b3:01:3d:29:07:91:79:75:f3:8d: 57:c8:b9:6d:1c:47:8c:12:b3:53:44:b0:ca:cd:de:2b:ca:74: 59:bc:e1:e6:16:b4:8f:91:8c:e7:a2:35:62:18:ec:92:29:9b: 17:a1:90:d7:b7:01:f7:51:3a:f7:25:5e:c5:0e:fc:0a:47:48: bf:1b:cd:dc:bc:fc:78:2e:11:8b:f5:42:ae:04:83:eb:06:74: ae:9d:50:e6:d3:87:cf:0d:49:5b:63:61:6d:56:8f:1d:45:4e: 17:2f:21:0c:a0:5e:92:1b:a6:b0:d0:cd:dc:00:b9:f5:c9:28: 8f:b4:1d:93:ff:4a:0d:e0:73:c1:ee:3f:78:4c:46:38:96:7a: 30:27:af:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwQzkxMTAvBgNVBAUTKDhFMTQ2QTQ3RkU2MkQwOUEzMjY2Q0UwODNBNTc5Q0FE MTNBNTgwNjYwHhcNMjUxMTA1MDI1OTU0WhcNMjUxMTEyMDI1OTU0WjAYMRYwFAYD VQQDEw02OTBhYmRhYS04OGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApv/BYqFQwIx46S12h8kW8XvJlsXwDcS1r1FoXL7u8iM3pmukaZe5SkPmMZBp lWDZuw58KVuCzvLL/NW5m1vr33f+m15v+NNfzMsyn2eDUdVAGR0rwa8tdxRDHDX8 joZJqQcalqMTmsyzXgtI3aZU6XbCpl6toqisysN0vP4/ORx6zEmxfilqyGdvRTKI 99lLpOpSHklVH3VVuizrYVyYiawaGwm9K4uvq6sJfLduEbotORNESRHPwmb+BRMA fZ29aixDMiH8lTm39HwV6aM0dWfvE2GVzWEYbmU7uOwV5oyAyJZBAbHVgosVz68m f7Ej+MNRtTcg4unD1Uu36TY+4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbKS4ft tnzjhrFlhxBtlVK3xnN/MB8GA1UdIwQYMBaAFI4Uakf+YtCaMmbOCDpXnK0TpYBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzBDOS8wMjI3QjlBRUZB MjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBKb3laczRJT2xlY3JST2xn R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poUnFSXzVpMEpveVpzNElPbGVjclJPbGdHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzBDOS8wMjI3QjlBRUZBMjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBK b3laczRJT2xlY3JST2xnR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwUW/p3sV7PdjgR7as6wmaKZOMgqShZgXgPa83D9owc1YG93DoTlyo HTL6R91CZDg6T78nMMQ+x7zJnx2fHTlyvTjM0QlTeu8gA+YpGygW5zLkjBqjTonR X1Dje1jrLI0hIil6ToEPu4Iv7AB3zNSr6XxC9LMBPSkHkXl1841XyLltHEeMErNT RLDKzd4rynRZvOHmFrSPkYznojViGOySKZsXoZDXtwH3UTr3JV7FDvwKR0i/G83c vPx4LhGL9UKuBIPrBnSunVDm04fPDUlbY2FtVo8dRU4XLyEMoF6SG6aw0M3cALn1 ySiPtB2T/0oN4HPB7j94TEY4lnowJ69t -----END CERTIFICATE-----Generated at Wed Nov 5 10:30:06 2025 by rpki-client