$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: Cfx3DyYye3dhof1YYpi8kGZORHI8YeG2hLv1TAUtTLk= Subject key identifier: 29:D6:81:DC:7D:FE:06:CF:46:81:56:3B:47:F0:F5:40:F9:D1:F8:E3 Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: 9E Signing time: Tue 04 Nov 2025 16:13:14 +0000 Manifest this update: Tue 04 Nov 2025 16:13:13 +0000 Manifest next update: Tue 11 Nov 2025 16:13:13 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: 4zaCQW8KmL+lCTE3TA8dvYcf287yP6enhVdVjyF19o8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Nov 4 16:13:13 2025 GMT Not After : Nov 11 16:13:13 2025 GMT Subject: CN=690a261a-3c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bd:df:cc:cb:4a:3a:69:58:22:ba:c6:bd:a1: de:a9:e9:55:e7:5f:5f:97:08:59:ae:21:3a:12:c6: ac:77:fd:9a:93:0d:7f:9f:35:7d:a3:ff:7b:a6:65: d0:aa:3c:81:7d:27:df:54:93:a4:c2:7b:f6:5c:a6: 5f:65:38:2f:79:a7:c3:f6:82:19:a1:66:41:6f:37: 81:43:54:c2:ca:15:3f:bd:6e:88:8b:a2:b4:83:e0: f4:e5:31:2d:75:6b:78:dc:6c:a7:ad:22:1f:15:83: e2:15:2a:61:40:ba:9e:42:6c:b3:a3:87:ef:92:0a: ac:b6:3e:51:6f:3c:20:11:2b:ca:d8:c3:c9:ac:b4: fc:af:a1:07:e1:c0:67:53:20:f0:4b:2b:b8:fc:fb: 98:ab:67:a7:e4:dc:c1:0e:07:51:e1:90:0c:2f:29: d7:79:d6:c8:61:86:35:4e:4c:3b:99:47:5e:6e:1b: fd:6d:18:ec:2d:6d:d0:27:dd:3a:49:7f:e0:5c:6d: 09:85:b7:47:45:8f:4e:12:26:b2:2c:af:77:b8:a1: b4:be:4b:05:fd:99:68:aa:9f:74:38:c7:b3:e3:98: 59:a3:61:a7:75:e1:f9:7b:93:16:ba:59:28:70:0a: bf:ac:e4:3d:35:40:0f:d4:18:e3:55:90:0f:50:0d: f4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D6:81:DC:7D:FE:06:CF:46:81:56:3B:47:F0:F5:40:F9:D1:F8:E3 X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:8a:50:1b:39:d5:2b:cc:2d:82:96:f6:08:c8:24:d2:7f:b1: 5c:63:1f:b8:ff:6c:ff:25:d1:0b:c4:d9:95:a1:d3:b1:6e:4a: ac:a2:e9:34:32:ba:ab:cb:37:9a:de:f3:c5:36:1f:5c:f7:7d: 14:fb:01:69:a0:03:49:c0:57:f9:63:e1:3f:f5:7b:b5:57:f4: 7c:f2:56:aa:bd:0c:ef:91:1a:9f:cc:b2:3c:c0:12:de:20:e2: 7c:2a:49:fe:34:bf:28:c7:bb:60:bb:09:5a:2c:71:e4:71:95: a9:51:b3:f1:f7:08:fe:2c:35:55:77:7f:f6:25:48:05:0d:a7: 2d:92:99:ac:d2:7f:a3:8b:56:47:22:80:9d:17:79:a4:e6:b2: cb:e8:61:87:f4:b6:6c:10:21:30:e1:b1:7e:62:1d:d6:e9:31: b8:27:3a:44:42:f7:f7:8c:9f:48:7e:ae:39:8c:7f:38:16:c9: 1f:fb:ee:d5:a8:cb:e6:43:28:bb:b2:9c:ce:2a:b7:d2:e4:52: 77:ae:94:97:4a:ce:50:12:16:62:7d:1e:d3:48:a4:3e:a9:01: a8:77:9c:41:11:ef:40:41:1f:76:21:81:10:28:4e:0a:c6:0d: 41:b0:df:77:3b:d9:41:d9:5b:e3:a9:72:41:15:23:d5:aa:07: de:ab:d8:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDQ0OTUxNzNCRDJDMjkzOERFMzA2NzdDRkRERTczQ0Qz MUI4QTI2NzYwHhcNMjUxMTA0MTYxMzEzWhcNMjUxMTExMTYxMzEzWjAYMRYwFAYD VQQDEw02OTBhMjYxYS0zYzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA373fzMtKOmlYIrrGvaHeqelV519flwhZriE6Esasd/2akw1/nzV9o/97pmXQ qjyBfSffVJOkwnv2XKZfZTgveafD9oIZoWZBbzeBQ1TCyhU/vW6Ii6K0g+D05TEt dWt43GynrSIfFYPiFSphQLqeQmyzo4fvkgqstj5RbzwgESvK2MPJrLT8r6EH4cBn UyDwSyu4/PuYq2en5NzBDgdR4ZAMLynXedbIYYY1Tkw7mUdebhv9bRjsLW3QJ906 SX/gXG0JhbdHRY9OEiayLK93uKG0vksF/Zloqp90OMez45hZo2GndeH5e5MWulko cAq/rOQ9NUAP1BjjVZAPUA30mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnWgdx9 /gbPRoFWO0fw9UD50fjjMB8GA1UdIwQYMBaAFESVFzvSwpON4wZ3z93nPNMbiiZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC8yMjBCMTcyOENC QzIxMUVGQTMyNDY1NzNDNEY5QUUwMi9SSlVYTzlMQ2s0M2pCbmZQM2VjODB4dUtK blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTA5OC8yMjBCMTcyOENCQzIxMUVGQTMyNDY1NzNDNEY5QUUwMi9SSlVYTzlMQ2s0 M2pCbmZQM2VjODB4dUtKblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ilAbOdUrzC2ClvYIyCTSf7FcYx+4/2z/JdELxNmVodOxbkqsouk0 Mrqryzea3vPFNh9c930U+wFpoANJwFf5Y+E/9Xu1V/R88laqvQzvkRqfzLI8wBLe IOJ8Kkn+NL8ox7tguwlaLHHkcZWpUbPx9wj+LDVVd3/2JUgFDactkpms0n+ji1ZH IoCdF3mk5rLL6GGH9LZsECEw4bF+Yh3W6TG4JzpEQvf3jJ9Ifq45jH84Fskf++7V qMvmQyi7spzOKrfS5FJ3rpSXSs5QEhZifR7TSKQ+qQGod5xBEe9AQR92IYEQKE4K xg1BsN93O9lB2VvjqXJBFSPVqgfeq9hP -----END CERTIFICATE-----Generated at Wed Nov 5 22:15:47 2025 by rpki-client