$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: jmhjduac2LQJLj+xHd30sDlmNT3sgb0OPdJLNFd/2Tc= Subject key identifier: 4D:A1:43:8C:6E:E3:4B:D1:AE:C0:9E:F1:30:DB:9C:81:F3:0B:1F:D3 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: 76 Signing time: Wed 05 Nov 2025 07:05:54 +0000 Manifest this update: Wed 05 Nov 2025 07:05:53 +0000 Manifest next update: Wed 12 Nov 2025 07:05:53 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: gyyNUDJoNeaIzbHeOhIkGls8aoJ43YKGsMeee4Pa64g=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Nov 5 07:05:53 2025 GMT Not After : Nov 12 07:05:53 2025 GMT Subject: CN=690af751-063e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cb:e1:1f:bf:4f:fc:f8:5d:76:07:b1:43:96: b3:70:0a:03:57:b5:2a:78:07:e7:14:d7:d5:0b:c3: 65:54:fd:8f:e8:8d:ff:4c:b3:d7:50:50:81:3f:5d: 02:ed:f6:11:d4:d8:ed:c0:5c:0e:76:09:36:3f:e0: 63:52:4b:68:ae:72:b5:1b:7e:7a:18:ae:ba:bb:e5: ec:6a:20:ff:a2:76:df:31:f3:fe:b7:cb:41:cf:61: f2:da:db:7a:cc:8e:bb:fc:c4:c9:35:63:22:f6:62: 61:37:d5:05:1f:88:77:41:22:70:69:59:d9:c0:f4: 0b:81:d8:e9:a9:f7:a0:b1:c5:fb:77:59:10:97:31: e8:0b:31:0e:1f:f7:5b:c5:b0:01:83:11:db:e3:ab: 32:08:98:df:d6:96:56:41:2a:ca:9a:6c:de:bd:c6: 09:56:0a:71:de:fa:88:63:47:0c:56:87:07:93:a9: a4:85:5a:ea:c0:09:eb:30:0d:21:cc:23:22:7d:4d: ba:a9:54:be:08:ab:5d:a9:d8:c2:15:d4:1f:8d:5c: db:8b:8b:5b:b2:5f:12:85:e0:b4:f5:86:97:75:4f: c2:56:4f:c6:e2:4e:5b:2a:e3:2c:bb:ca:6a:b5:b8: c5:3e:b8:0c:5f:da:29:e6:00:29:0a:63:cb:51:d2: bf:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A1:43:8C:6E:E3:4B:D1:AE:C0:9E:F1:30:DB:9C:81:F3:0B:1F:D3 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d3:b1:70:8a:fb:27:7e:0a:0f:ec:0a:19:2b:d9:ca:72:f6: 7f:43:12:18:4a:36:54:bf:28:7b:7f:0c:bf:32:d7:3c:0d:fe: 19:cd:1c:77:ea:83:54:41:8b:b2:74:4f:f5:9b:01:d2:5d:3b: f3:92:01:39:20:a2:04:03:c8:9c:ce:36:01:98:a0:8a:7f:2f: a5:8c:09:e0:50:af:cf:9c:df:10:97:e7:34:10:7d:34:78:4b: 06:58:9b:f4:3c:c5:a9:af:5d:b7:d9:16:e1:24:df:f0:d7:f7: 02:53:2c:f1:47:9a:e6:ed:b4:ad:43:29:b4:bb:44:7f:9a:f7: 69:f2:92:48:c5:d5:a2:b0:70:44:c3:5d:9c:77:4d:71:6f:bf: 08:db:e5:4b:16:52:a3:00:c1:d3:4b:c7:09:1c:79:9d:7b:52: 52:bd:69:db:73:cd:7c:6c:a5:51:e2:28:03:f7:fb:f4:f3:96: c8:b6:24:3d:6c:ea:43:03:68:fa:e3:d4:87:40:39:97:21:77: be:d5:47:0a:80:55:28:50:d1:b2:da:e7:c9:5c:1a:53:f6:fd: b1:95:e1:2e:39:85:d6:b9:0c:40:43:d9:a6:57:53:d5:03:7c: 3f:4f:c6:ba:e8:d7:91:17:12:a4:8a:45:02:f1:b4:8d:10:4d: 49:62:cd:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTExMDUwNzA1NTNaFw0yNTExMTIwNzA1NTNaMBgxFjAUBgNV BAMTDTY5MGFmNzUxLTA2M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiy+Efv0/8+F12B7FDlrNwCgNXtSp4B+cU19ULw2VU/Y/ojf9Ms9dQUIE/XQLt 9hHU2O3AXA52CTY/4GNSS2iucrUbfnoYrrq75exqIP+idt8x8/63y0HPYfLa23rM jrv8xMk1YyL2YmE31QUfiHdBInBpWdnA9AuB2Omp96Cxxft3WRCXMegLMQ4f91vF sAGDEdvjqzIImN/WllZBKsqabN69xglWCnHe+ohjRwxWhweTqaSFWurACeswDSHM IyJ9TbqpVL4Iq12p2MIV1B+NXNuLi1uyXxKF4LT1hpd1T8JWT8biTlsq4yy7ymq1 uMU+uAxf2inmACkKY8tR0r+9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTaFDjG7j S9GuwJ7xMNucgfMLH9MwHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdM SHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAbTsXCK+yd+Cg/sChkr2cpy9n9DEhhKNlS/KHt/DL8y1zwN/hnNHHfq g1RBi7J0T/WbAdJdO/OSATkgogQDyJzONgGYoIp/L6WMCeBQr8+c3xCX5zQQfTR4 SwZYm/Q8xamvXbfZFuEk3/DX9wJTLPFHmubttK1DKbS7RH+a92nykkjF1aKwcETD XZx3TXFvvwjb5UsWUqMAwdNLxwkceZ17UlK9adtzzXxspVHiKAP3+/Tzlsi2JD1s 6kMDaPrj1IdAOZchd77VRwqAVShQ0bLa58lcGlP2/bGV4S45hda5DEBD2aZXU9UD fD9Pxrro15EXEqSKRQLxtI0QTUlizVA= -----END CERTIFICATE-----Generated at Wed Nov 5 17:05:37 2025 by rpki-client