$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft File: jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json) Hash identifier: unG3Nj8QOhlE4b2RsTTFFU7+PmVP1aKrrjz0HGhSUnQ= Subject key identifier: 17:20:0E:CE:EF:13:B2:B4:DE:5B:09:98:0C:5C:7B:26:AA:9E:B0:C7 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft Manifest number: DC Signing time: Wed 05 Nov 2025 05:43:49 +0000 Manifest this update: Wed 05 Nov 2025 05:43:48 +0000 Manifest next update: Wed 12 Nov 2025 05:43:48 +0000 Files and hashes: 1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: 4PUu3+Hia2Uq7MvDVBurVIiVyQokWXk51EeRkr4A92A=) 2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: nmEnbvndCOPx7Zg9DPw4GfdobQFjMPgfia0K9GlVUWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Nov 5 05:43:48 2025 GMT Not After : Nov 12 05:43:48 2025 GMT Subject: CN=690ae415-d13d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:63:6a:6d:36:fb:aa:fd:d0:bd:15:98:18:37: 10:d8:0d:23:ff:2b:45:97:eb:0a:5e:49:8d:ad:e6: 86:1b:c9:e8:fa:1d:48:a3:cb:69:a1:c7:38:45:5d: ce:1a:d5:f8:4d:bd:7c:a6:d9:aa:0f:0c:84:be:13: 2b:ed:99:97:ea:66:28:cc:a5:98:5d:ee:9f:58:b6: bb:bb:ea:08:8b:12:be:ef:28:97:63:59:b2:02:12: 53:3f:1b:25:d7:4a:44:24:56:8a:57:c7:d9:25:04: 49:68:e4:74:49:63:9a:c8:47:b5:01:f8:c6:f6:06: 36:97:9f:3c:7a:43:80:ef:6d:f3:f2:04:4e:56:25: ab:49:6f:e5:88:80:ab:ec:fb:4b:3b:8e:cb:5e:ad: b2:51:34:dc:5c:a1:9d:7a:ec:01:97:ca:e2:4e:0e: 0c:24:6b:08:ec:28:54:40:16:bd:94:2f:1d:d6:32: 13:9d:49:2e:99:00:00:d9:e0:f5:98:e0:d5:25:ea: 13:02:38:c7:ff:08:27:1c:4c:bd:db:e4:0c:95:47: 6e:7e:48:cb:7d:7b:d9:72:84:3a:68:56:c3:bd:64: 66:f2:a0:9c:7f:3a:14:70:4e:7f:7e:8c:ab:a0:17: b0:bf:dc:7f:5d:fa:6b:cd:cb:78:1f:26:95:46:1a: ee:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:20:0E:CE:EF:13:B2:B4:DE:5B:09:98:0C:5C:7B:26:AA:9E:B0:C7 X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:81:ef:bc:9e:a3:9c:6d:ae:36:29:15:43:2e:41:82:12:3b: fc:11:24:ad:88:43:c4:ac:d3:22:3f:9b:ba:d1:ef:bc:3d:2d: f1:1a:a9:91:77:0c:47:00:99:f8:54:2e:b6:8c:14:39:7e:3f: 18:21:c8:b0:c5:38:71:68:94:3e:83:e6:bd:49:a3:4b:92:88: 13:53:c9:cb:7a:52:18:9f:84:35:24:a0:8e:0e:76:7c:40:ff: a2:e5:26:9a:7d:a5:99:8a:8c:a0:8e:f5:eb:7d:bc:17:ef:3f: d1:19:8d:fc:8d:4c:6d:e9:b2:1b:7e:9b:2d:e5:f5:3e:73:47: 3a:6e:40:64:7c:11:ca:a8:5d:84:94:c4:34:7b:45:b3:7c:c8: 1c:5b:08:e7:65:d3:8b:e2:d5:10:3e:c5:0f:16:a4:1b:bb:40: 82:8d:dc:fc:68:da:75:1e:12:78:c4:92:f2:d6:c6:c3:67:f5: 4f:1f:0a:b8:69:2a:c6:5f:90:87:78:bc:ed:36:7c:8a:a6:66: b0:58:b5:5b:13:5d:44:05:5a:7e:4b:6a:34:12:42:97:d1:1b: 9f:09:9b:a9:5b:ab:a8:11:5f:04:18:24:79:08:c3:56:e7:4e: c4:e6:13:b4:2c:38:e7:b3:68:5a:f4:40:2e:16:9c:ce:23:25: 4a:04:00:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBERTAxMTAvBgNVBAUTKDhFQTVCOTU2MzIyN0MyRTU4RDQzOEJDMTdCQTgyMjUw NzU0MjQ0M0IwHhcNMjUxMTA1MDU0MzQ4WhcNMjUxMTEyMDU0MzQ4WjAYMRYwFAYD VQQDEw02OTBhZTQxNS1kMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22NqbTb7qv3QvRWYGDcQ2A0j/ytFl+sKXkmNreaGG8no+h1Io8tpocc4RV3O GtX4Tb18ptmqDwyEvhMr7ZmX6mYozKWYXe6fWLa7u+oIixK+7yiXY1myAhJTPxsl 10pEJFaKV8fZJQRJaOR0SWOayEe1AfjG9gY2l588ekOA723z8gROViWrSW/liICr 7PtLO47LXq2yUTTcXKGdeuwBl8riTg4MJGsI7ChUQBa9lC8d1jITnUkumQAA2eD1 mODVJeoTAjjH/wgnHEy92+QMlUdufkjLfXvZcoQ6aFbDvWRm8qCcfzoUcE5/foyr oBewv9x/Xfprzct4HyaVRhru+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcgDs7v E7K03lsJmAxceyaqnrDHMB8GA1UdIwQYMBaAFI6luVYyJ8LljUOLwXuoIlB1QkQ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMERFMC83MDQwQThFODZB ODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1V05RNHZCZTZnaVVIVkNS RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MERFMC83MDQwQThFODZBODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1 V05RNHZCZTZnaVVIVkNSRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtge+8nqOcba42KRVDLkGCEjv8ESStiEPErNMiP5u60e+8PS3xGqmR dwxHAJn4VC62jBQ5fj8YIciwxThxaJQ+g+a9SaNLkogTU8nLelIYn4Q1JKCODnZ8 QP+i5SaafaWZioygjvXrfbwX7z/RGY38jUxt6bIbfpst5fU+c0c6bkBkfBHKqF2E lMQ0e0WzfMgcWwjnZdOL4tUQPsUPFqQbu0CCjdz8aNp1HhJ4xJLy1sbDZ/VPHwq4 aSrGX5CHeLztNnyKpmawWLVbE11EBVp+S2o0EkKX0RufCZupW6uoEV8EGCR5CMNW 507E5hO0LDjns2ha9EAuFpzOIyVKBAB+ -----END CERTIFICATE-----Generated at Wed Nov 5 16:27:13 2025 by rpki-client