$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft File: jdQUSFkXzUyAFnvaGdcklkawZyU.mft (raw, json) Hash identifier: bDt3deYXxRtx5ANI0LJrbHksbbWOYhZ0AvIibzHsQh4= Subject key identifier: 5F:FC:84:80:E2:63:5D:09:2E:E4:03:0D:4D:39:2E:A5:FC:4C:44:CC Authority key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 Certificate issuer: /CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft Manifest number: D7 Signing time: Mon 03 Nov 2025 05:39:07 +0000 Manifest this update: Mon 03 Nov 2025 05:39:07 +0000 Manifest next update: Mon 10 Nov 2025 05:39:07 +0000 Files and hashes: 1: jdQUSFkXzUyAFnvaGdcklkawZyU.crl (hash: g2aRirB7jqpVOiNptKzb4QV8Uvs30ZslJFoDMwY7xew=) 2: FF3D553675B711EF83FAAE42C4F9AE02.roa (hash: 2GAN4cx4QTuzJoHXcS0SxuhQPJxWZFMWGY3rZM3hC3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Validity Not Before: Nov 3 05:39:07 2025 GMT Not After : Nov 10 05:39:07 2025 GMT Subject: CN=69083ffb-f05c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:54:04:f4:ad:76:8f:41:e6:1f:bc:2a:1e:2c: dd:2d:e8:45:b2:9f:af:f1:de:75:ba:dc:d3:3c:ea: ac:a6:5c:5c:f1:2b:a3:b4:aa:1a:09:80:b4:84:b3: 42:90:9b:ee:5a:b2:6e:9d:a3:a1:15:08:4a:8b:4c: 62:85:9a:50:78:bf:9a:02:be:2b:a0:93:86:fc:a1: 3e:cb:98:b6:c9:31:d0:05:f0:e8:32:a0:63:2a:e4: 94:11:f4:0a:77:ab:65:83:9a:1a:e0:91:83:0b:75: 33:8c:6a:2d:b9:3b:e4:a8:08:e2:48:10:1b:ec:71: a8:d8:36:ea:8e:81:a7:68:d9:06:84:3b:d4:4b:24: d5:9c:10:f6:6a:22:6c:4b:ae:b0:bf:bd:29:e3:29: 78:75:bd:cf:69:2b:ca:c0:1a:be:11:99:73:40:67: a1:6e:4b:f5:e4:5f:1e:2c:4a:64:ad:a3:34:7d:01: 18:eb:a5:30:11:0f:60:f3:67:37:79:d0:e0:bb:c4: b7:a4:74:f4:c9:f9:9a:63:71:87:12:b1:13:23:49: 59:47:df:b6:58:4b:8f:de:81:53:49:28:dd:19:ac: 50:19:51:d8:6f:b6:a9:a2:1a:be:a4:2d:1a:2d:88: bc:8c:92:1b:ac:ae:d5:4d:73:80:17:d8:64:fa:49: 8a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:FC:84:80:E2:63:5D:09:2E:E4:03:0D:4D:39:2E:A5:FC:4C:44:CC X509v3 Authority Key Identifier: keyid:8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:cf:12:ef:8c:28:a5:8d:92:71:06:88:18:cc:f8:32:2c:1a: 22:c2:7e:bd:13:43:87:e3:cc:5d:7d:d9:72:e2:a9:de:3b:e8: b0:70:ff:98:cf:74:61:98:ca:13:79:2c:73:b5:ea:60:41:d2: b8:a4:22:5f:62:89:4e:d8:c7:7c:03:7b:db:cf:93:64:c3:9f: e2:ef:99:6f:19:ae:7d:d0:4d:3e:da:0c:74:43:3c:e0:3a:30: ab:46:11:3a:4e:91:e7:52:28:cd:c2:b3:0a:1d:d2:58:31:54: 0c:c1:24:a9:19:23:76:b6:77:1a:b6:cf:be:8c:32:2c:40:46: c3:e5:ab:6f:b1:7e:cf:e5:2e:d1:e3:fa:51:53:24:36:ef:95: 64:6d:86:81:69:92:7b:7c:13:4e:85:69:18:27:7b:14:ea:c1: 2a:98:c6:34:47:ac:d4:2f:b7:d7:4e:85:67:40:24:82:f5:2e: d9:f7:d2:6b:98:d9:3c:11:d2:5e:2e:c8:1b:7c:61:88:85:6b: 93:51:ae:db:b8:7b:fd:45:c3:08:d9:60:53:36:7e:db:da:48: 76:95:48:9f:6c:6f:cf:60:28:eb:30:dc:be:7e:3a:41:f1:c3: 5d:ed:ca:0e:e0:82:d2:8e:d8:e6:a4:c2:0a:a0:8e:7e:7f:9c: cd:5d:42:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDhERDQxNDQ4NTkxN0NENEM4MDE2N0JEQTE5RDcyNDk2 NDZCMDY3MjUwHhcNMjUxMTAzMDUzOTA3WhcNMjUxMTEwMDUzOTA3WjAYMRYwFAYD VQQDEw02OTA4M2ZmYi1mMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lQE9K12j0HmH7wqHizdLehFsp+v8d51utzTPOqsplxc8SujtKoaCYC0hLNC kJvuWrJunaOhFQhKi0xihZpQeL+aAr4roJOG/KE+y5i2yTHQBfDoMqBjKuSUEfQK d6tlg5oa4JGDC3UzjGotuTvkqAjiSBAb7HGo2DbqjoGnaNkGhDvUSyTVnBD2aiJs S66wv70p4yl4db3PaSvKwBq+EZlzQGehbkv15F8eLEpkraM0fQEY66UwEQ9g82c3 edDgu8S3pHT0yfmaY3GHErETI0lZR9+2WEuP3oFTSSjdGaxQGVHYb7apohq+pC0a LYi8jJIbrK7VTXOAF9hk+kmKMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/8hIDi Y10JLuQDDU05LqX8TETMMB8GA1UdIwQYMBaAFI3UFEhZF81MgBZ72hnXJJZGsGcl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EMjdDOTE1Qzc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpVeUFGbnZhR2Rja2xrYXda eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pkUVVTRmtYelV5QUZudmFHZGNrbGthd1p5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EMjdDOTE1Qzc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpV eUFGbnZhR2Rja2xrYXdaeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7zxLvjCiljZJxBogYzPgyLBoiwn69E0OH48xdfdly4qneO+iwcP+Y z3RhmMoTeSxztepgQdK4pCJfYolO2Md8A3vbz5Nkw5/i75lvGa590E0+2gx0Qzzg OjCrRhE6TpHnUijNwrMKHdJYMVQMwSSpGSN2tncats++jDIsQEbD5atvsX7P5S7R 4/pRUyQ275VkbYaBaZJ7fBNOhWkYJ3sU6sEqmMY0R6zUL7fXToVnQCSC9S7Z99Jr mNk8EdJeLsgbfGGIhWuTUa7buHv9RcMI2WBTNn7b2kh2lUifbG/PYCjrMNy+fjpB 8cNd7coO4ILSjtjmpMIKoI5+f5zNXUL9 -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:44 2025 by rpki-client