$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: FMqfFDLGrl3Tt5JrseOLJOOS5CMixtjxZJiO8qVewyE= Subject key identifier: C1:A2:2D:45:BF:6D:F8:6F:80:63:C2:34:F2:52:5D:2E:36:FC:79:47 Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 02BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 02A4 Signing time: Wed 05 Nov 2025 01:40:36 +0000 Manifest this update: Wed 05 Nov 2025 01:40:35 +0000 Manifest next update: Wed 12 Nov 2025 01:40:35 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: jXLte2JJCMJjpgTX3U1dDIAFQP81TvbdN+uDoVa8chE=) 2: E1870478616C11F0A254E10BC4F9AE02.roa (hash: PUky37fAI8Ys1qLflElYkqRy1kwJKllU0o6ewDp0S2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 702 (0x2be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Nov 5 01:40:35 2025 GMT Not After : Nov 12 01:40:35 2025 GMT Subject: CN=690aab14-6ef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d5:b2:86:f2:c0:96:2e:3a:ae:b1:dc:6c:87: b0:5f:43:e3:20:ce:e6:2a:74:ff:09:8a:f0:f4:9f: 06:8d:11:52:61:ef:56:4a:28:31:ac:b5:b5:ea:8b: 38:29:a6:7d:46:bd:f7:d0:5b:0c:3d:74:55:40:3c: 8f:67:4b:28:14:0a:17:67:96:96:09:be:5f:33:b7: 63:cc:2f:dc:11:ad:7e:6a:95:ca:95:70:d4:d3:1e: 63:2d:b6:69:e9:02:74:97:8f:d9:35:6c:62:22:50: ec:6b:3a:07:d8:aa:0a:04:03:8b:50:8c:57:19:60: e0:bb:58:29:33:a7:69:08:b5:9b:15:44:7a:86:a0: 35:c8:1f:c1:22:60:4e:3e:33:c5:76:b9:f6:61:cb: ee:d3:83:f2:be:63:8f:8d:8f:87:a7:c1:38:ac:5d: b7:c0:5b:64:fd:cb:9c:82:58:b3:8d:41:54:51:32: 53:cf:3f:a9:6f:3a:7a:d6:94:90:e0:08:3e:58:35: bb:d9:ae:84:4a:f1:dd:a3:fd:0a:12:b9:f1:f0:dc: 55:0c:af:1d:59:6d:26:ca:02:42:ae:41:38:46:12: 99:f1:ca:0e:45:37:8a:0e:0f:8b:13:71:39:b3:86: 9d:dc:81:b0:90:2a:05:3d:12:0d:fc:c9:93:21:0f: 11:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A2:2D:45:BF:6D:F8:6F:80:63:C2:34:F2:52:5D:2E:36:FC:79:47 X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:81:40:ae:cd:bb:75:b2:57:1e:fd:e2:82:93:ee:e1:08:88: 03:98:d6:94:f9:dd:54:b9:2e:94:ec:c6:87:df:83:fd:aa:6b: 1b:7e:2e:ae:ad:0d:92:55:29:39:e6:15:0e:d7:42:8b:ae:61: 65:d6:76:e7:fd:90:fb:76:e1:13:e3:53:f2:88:d9:79:3c:68: cb:94:81:6f:ed:db:f4:32:95:d2:34:cb:b1:c1:17:8e:29:2d: 58:74:ff:00:b7:b8:f2:cf:63:e3:e9:47:bc:66:e8:9a:c0:06: c8:87:6e:aa:6f:dd:51:88:53:3f:02:30:8a:f0:b8:3f:38:f3: f9:b8:07:b2:c1:bd:8a:30:19:a0:b3:9b:d3:0d:94:94:a2:be: 8a:3a:e5:6d:69:86:8d:1d:24:2f:e7:4b:d1:ac:8a:30:39:3b: f1:a2:2f:0f:5a:f2:ac:37:31:c1:0f:76:d9:19:b4:a5:03:9a: dc:96:89:ba:73:8b:b2:75:7e:fd:67:bf:9f:91:c8:09:5c:62: ad:64:30:e5:20:09:31:9c:49:e5:ad:72:50:7e:de:45:55:95: 77:7f:f8:b9:c5:d1:3d:2d:f0:e8:94:3a:1c:ea:da:e9:ed:22: d3:8d:35:0e:27:49:3d:8e:3d:71:4b:75:9e:b3:76:1b:c9:46: 13:a7:f0:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjUxMTA1MDE0MDM1WhcNMjUxMTEyMDE0MDM1WjAYMRYwFAYD VQQDEw02OTBhYWIxNC02ZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNWyhvLAli46rrHcbIewX0PjIM7mKnT/CYrw9J8GjRFSYe9WSigxrLW16os4 KaZ9Rr330FsMPXRVQDyPZ0soFAoXZ5aWCb5fM7djzC/cEa1+apXKlXDU0x5jLbZp 6QJ0l4/ZNWxiIlDsazoH2KoKBAOLUIxXGWDgu1gpM6dpCLWbFUR6hqA1yB/BImBO PjPFdrn2Ycvu04PyvmOPjY+Hp8E4rF23wFtk/cucglizjUFUUTJTzz+pbzp61pSQ 4Ag+WDW72a6ESvHdo/0KErnx8NxVDK8dWW0mygJCrkE4RhKZ8coORTeKDg+LE3E5 s4ad3IGwkCoFPRIN/MmTIQ8RSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGiLUW/ bfhvgGPCNPJSXS42/HlHMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3gUCuzbt1slce/eKCk+7hCIgDmNaU+d1UuS6U7MaH34P9qmsbfi6u rQ2SVSk55hUO10KLrmFl1nbn/ZD7duET41PyiNl5PGjLlIFv7dv0MpXSNMuxwReO KS1YdP8At7jyz2Pj6Ue8ZuiawAbIh26qb91RiFM/AjCK8Lg/OPP5uAeywb2KMBmg s5vTDZSUor6KOuVtaYaNHSQv50vRrIowOTvxoi8PWvKsNzHBD3bZGbSlA5rclom6 c4uydX79Z7+fkcgJXGKtZDDlIAkxnEnlrXJQft5FVZV3f/i5xdE9LfDolDoc6trp 7SLTjTUOJ0k9jj1xS3Wes3YbyUYTp/Cs -----END CERTIFICATE-----Generated at Wed Nov 5 09:33:45 2025 by rpki-client