$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: U4sUh0y+ajtZ4kOfn+UjmsRnQw3fZ11Qb3/kOQdDna8= Subject key identifier: 64:69:B8:C2:F4:EE:6C:A2:16:AD:D1:08:27:AD:DC:53:73:08:E1:92 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 02D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 02CF Signing time: Wed 05 Nov 2025 01:27:24 +0000 Manifest this update: Wed 05 Nov 2025 01:27:23 +0000 Manifest next update: Wed 12 Nov 2025 01:27:23 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: 7mO2r3Qzph2itw7z4rKVxjpGm1C9A0vMQw1UdRqWPbQ=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: hJkxXQfC6FPhKQvUl8F7nqWwJZPrWQsil7QshGWSWw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7, serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: Nov 5 01:27:23 2025 GMT Not After : Nov 12 01:27:23 2025 GMT Subject: CN=690aa7fc-a236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ce:5b:ab:aa:5e:37:ae:36:10:30:27:85:13: 5d:b2:6d:29:b8:2d:72:b1:fe:ff:87:13:a5:20:6b: 0b:56:58:59:74:0a:e0:a5:b1:46:8a:ee:1e:92:bc: 70:1e:f2:8f:10:67:69:0a:1c:e3:44:5b:78:3c:e0: 46:12:14:69:52:40:2d:09:87:a8:e9:91:97:ee:a0: a1:4c:d2:49:63:c7:cb:b6:69:2b:9c:c2:d0:c9:59: f9:f1:96:9a:74:cb:de:59:0d:a2:81:35:3c:93:4a: 59:4b:bd:7a:64:f5:36:9d:c9:69:f4:de:62:76:18: 90:a4:28:f3:3f:9d:75:3c:68:ac:bb:4b:b1:cd:d7: 1f:5f:d0:4e:93:e0:ed:ab:5b:34:1b:98:e2:eb:26: 6f:11:57:29:eb:0c:72:a6:45:33:a5:76:20:d0:ea: 39:ba:55:b1:3e:df:61:ee:bd:98:e1:79:5b:9f:29: 56:b4:01:bb:cf:30:d1:35:0e:68:cc:c2:53:88:a3: 04:84:51:b4:9e:7c:01:b5:68:75:8b:c8:a0:fc:5f: 50:a0:0b:5f:cc:8c:b8:94:8a:a6:aa:f9:1a:a9:c5: 3b:c7:3d:99:ef:10:fd:da:1d:00:22:b2:c5:30:4d: c1:15:f2:9f:25:c6:db:da:77:9a:73:3f:4c:04:57: ad:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:69:B8:C2:F4:EE:6C:A2:16:AD:D1:08:27:AD:DC:53:73:08:E1:92 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:94:23:54:32:6a:69:2f:5b:1e:d0:14:0f:3a:a3:ee:e5:35: f0:f2:eb:0c:76:b3:a9:bf:5e:31:fd:7a:d9:71:87:cd:d6:7e: ba:36:7a:3f:0d:55:33:cb:cf:d4:9b:e8:cc:96:5a:3b:b7:ed: 50:53:ca:b8:f6:ac:40:ec:36:de:e7:d2:46:21:5f:f2:e1:1d: dd:4d:08:cb:b4:41:a1:16:d1:df:be:ed:ef:cf:33:62:f0:a8: 6c:41:3b:08:95:da:bd:60:93:2a:30:ca:7b:80:8f:db:eb:7c: 73:15:db:57:f1:ca:7f:53:44:58:eb:5d:a1:f0:b2:5f:51:0b: 75:2d:45:e3:8d:39:ee:10:82:5d:f3:0d:bb:16:69:d1:f9:70: 2f:ff:67:bb:bc:cd:17:85:84:d4:80:1b:a9:6e:2f:1f:a8:5b: 5a:74:a9:15:09:bb:c4:02:e6:6c:79:c4:93:40:d9:75:9e:f3: cd:f5:86:23:40:65:69:1d:04:01:be:f6:00:08:d0:ac:80:2a: 8a:ab:c3:b0:5b:4d:0b:92:6f:93:f3:74:db:b6:0c:e7:ee:be: 37:2f:27:12:31:57:53:1c:90:fa:5a:5e:c3:93:73:23:b5:dd: fe:6b:46:09:80:08:90:11:78:97:1a:94:7f:a3:f9:69:71:37: 7f:21:41:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjUxMTA1MDEyNzIzWhcNMjUxMTEyMDEyNzIzWjAYMRYwFAYD VQQDEw02OTBhYTdmYy1hMjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAms5bq6peN642EDAnhRNdsm0puC1ysf7/hxOlIGsLVlhZdArgpbFGiu4ekrxw HvKPEGdpChzjRFt4POBGEhRpUkAtCYeo6ZGX7qChTNJJY8fLtmkrnMLQyVn58Zaa dMveWQ2igTU8k0pZS716ZPU2nclp9N5idhiQpCjzP511PGisu0uxzdcfX9BOk+Dt q1s0G5ji6yZvEVcp6wxypkUzpXYg0Oo5ulWxPt9h7r2Y4XlbnylWtAG7zzDRNQ5o zMJTiKMEhFG0nnwBtWh1i8ig/F9QoAtfzIy4lIqmqvkaqcU7xz2Z7xD92h0AIrLF ME3BFfKfJcbb2neacz9MBFetFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRpuML0 7myiFq3RCCet3FNzCOGSMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPlCNUMmppL1se0BQPOqPu5TXw8usMdrOpv14x/XrZcYfN1n66Nno/ DVUzy8/Um+jMllo7t+1QU8q49qxA7Dbe59JGIV/y4R3dTQjLtEGhFtHfvu3vzzNi 8KhsQTsIldq9YJMqMMp7gI/b63xzFdtX8cp/U0RY612h8LJfUQt1LUXjjTnuEIJd 8w27FmnR+XAv/2e7vM0XhYTUgBupbi8fqFtadKkVCbvEAuZsecSTQNl1nvPN9YYj QGVpHQQBvvYACNCsgCqKq8OwW00Lkm+T83Tbtgzn7r43LycSMVdTHJD6Wl7Dk3Mj td3+a0YJgAiQEXiXGpR/o/lpcTd/IUG0 -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:08 2025 by rpki-client