$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft File: JL-jY1L4TxqPpGnesOg26ANa5GY.mft (raw, json) Hash identifier: mOkPpN2NaBMrOM+uVHZsZz82hrFX3RZjO6OBvp3Obnc= Subject key identifier: 6B:19:B7:8B:5B:44:40:CA:29:7A:88:78:E2:15:48:9C:87:A9:3E:29 Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 088F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft Manifest number: 087D Signing time: Sun 02 Nov 2025 20:34:37 +0000 Manifest this update: Sun 02 Nov 2025 20:34:36 +0000 Manifest next update: Sun 09 Nov 2025 20:34:36 +0000 Files and hashes: 1: JL-jY1L4TxqPpGnesOg26ANa5GY.crl (hash: L4nciTbCIAL+tFgxhjZw9wFbeLhcL2MWpGvvGldhV1g=) 2: 72603CD6D28811EAB7D79A47C4F9AE02.roa (hash: iVfJEeg3Wgdof0gIfzSRbq9faDNqlEFVPNcvpNlnmRA=) 3: 71DBA2E6D28811EAB7D79A47C4F9AE02.roa (hash: w4WjZepte0rY+jWEuTZEQB8JcDFa63LXhrBQUJaEGlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2191 (0x88f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Nov 2 20:34:36 2025 GMT Not After : Nov 9 20:34:36 2025 GMT Subject: CN=6907c05d-f6c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a9:fd:e4:a9:68:96:07:42:86:97:1a:d3:71: da:21:57:46:45:77:a5:39:e2:61:0d:46:cd:c4:0d: 99:95:9f:ed:dc:c5:55:bd:7d:6a:2c:49:1f:61:33: 6c:fe:f2:e0:83:15:63:de:bc:f1:9a:38:59:85:5d: 6f:44:61:b4:aa:5b:d4:04:33:bd:58:8d:c0:93:11: c3:3c:7f:e4:35:08:44:8b:f9:45:fd:03:b3:bb:bc: 08:61:41:13:dd:90:d9:ca:5b:bd:a2:37:8d:f0:ba: fc:ad:b2:4b:04:19:75:4c:29:da:ee:7a:b6:14:01: 61:54:f6:83:9a:28:79:a8:9d:cc:e5:a0:6b:d1:01: a3:73:e5:55:61:96:25:e3:7c:59:a6:0e:e4:eb:8f: fa:3d:50:b6:98:5e:ba:84:5d:68:7b:fc:1a:f1:cf: 68:37:05:27:a1:7f:39:3d:88:3f:ff:19:d5:9e:e1: 1e:a0:61:be:ec:62:30:db:17:fb:df:88:2e:82:bb: 6b:b4:18:a9:d8:af:ac:c4:06:d3:09:a9:b0:24:50: fa:19:82:49:d1:20:7c:49:70:11:ce:fe:72:d3:e0: 7f:09:dd:54:99:4d:ed:ae:80:35:a1:2b:52:91:e2: 66:1e:c5:29:2d:81:8e:1e:ee:12:65:1f:d7:72:2d: 07:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:19:B7:8B:5B:44:40:CA:29:7A:88:78:E2:15:48:9C:87:A9:3E:29 X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:3d:8d:52:ab:00:7e:aa:ef:57:af:f1:21:65:56:70:0b:a6: 14:e0:4e:9f:80:b9:d4:5b:38:aa:6f:8b:18:a6:e1:5a:a7:90: 37:aa:78:97:aa:08:aa:37:d7:61:c6:5f:37:d3:a7:40:c0:60: 94:6a:a8:cf:1c:b0:5c:b2:be:e3:ea:c6:8b:fa:66:80:69:8a: a3:e3:07:0c:1b:0a:2f:1c:dc:7c:37:3a:9b:0c:ed:4f:60:6b: da:6e:56:d3:ea:de:61:09:7c:c0:13:ed:f0:74:e6:d6:42:6a: 19:d4:f9:fe:fc:e5:de:86:7a:fc:0f:88:ad:76:6b:0a:3d:de: 8a:6a:53:13:2f:61:61:df:c7:54:77:c0:a9:db:5a:b5:d3:97: c7:21:09:3d:79:6d:e9:fe:2b:d2:cf:2e:f4:49:25:79:03:96: 30:b9:c1:53:33:e4:e6:d0:0a:b7:cc:a0:f8:ad:0c:7b:0f:8b: 57:32:e7:e2:67:a0:d0:48:0b:d8:ce:f8:b0:ef:06:2b:39:b1: b3:3d:c2:98:90:70:ab:f5:89:22:e3:c9:c2:bd:08:96:58:0c: 06:dc:f8:ff:a7:c5:28:d5:27:ca:6a:88:51:37:29:5b:2c:98: 96:e6:a3:d2:2c:21:16:0f:be:32:81:e3:df:a8:41:97:0b:6e: 66:e4:9a:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjUxMTAyMjAzNDM2WhcNMjUxMTA5MjAzNDM2WjAYMRYwFAYD VQQDEw02OTA3YzA1ZC1mNmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqn95KlolgdChpca03HaIVdGRXelOeJhDUbNxA2ZlZ/t3MVVvX1qLEkfYTNs /vLggxVj3rzxmjhZhV1vRGG0qlvUBDO9WI3AkxHDPH/kNQhEi/lF/QOzu7wIYUET 3ZDZylu9ojeN8Lr8rbJLBBl1TCna7nq2FAFhVPaDmih5qJ3M5aBr0QGjc+VVYZYl 43xZpg7k64/6PVC2mF66hF1oe/wa8c9oNwUnoX85PYg//xnVnuEeoGG+7GIw2xf7 34gugrtrtBip2K+sxAbTCamwJFD6GYJJ0SB8SXARzv5y0+B/Cd1UmU3troA1oStS keJmHsUpLYGOHu4SZR/Xci0HIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsZt4tb REDKKXqIeOIVSJyHqT4pMB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDNFOC8zRjFGMEREQUQyODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4 cVBwR25lc09nMjZBTmE1R1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkPY1SqwB+qu9Xr/EhZVZwC6YU4E6fgLnUWziqb4sYpuFap5A3qniX qgiqN9dhxl8306dAwGCUaqjPHLBcsr7j6saL+maAaYqj4wcMGwovHNx8NzqbDO1P YGvablbT6t5hCXzAE+3wdObWQmoZ1Pn+/OXehnr8D4itdmsKPd6KalMTL2Fh38dU d8Cp21q105fHIQk9eW3p/ivSzy70SSV5A5YwucFTM+Tm0Aq3zKD4rQx7D4tXMufi Z6DQSAvYzviw7wYrObGzPcKYkHCr9Yki48nCvQiWWAwG3Pj/p8Uo1SfKaohRNylb LJiW5qPSLCEWD74ygePfqEGXC25m5Jo3 -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:29 2025 by rpki-client