$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft File: CNJW1CbKIXH86BfGRSP4MqNpF70.mft (raw, json) Hash identifier: Hh8PWAPwfwQL1lFCI1lRn6WSuJbIi8KK2d8ubSZPUEc= Subject key identifier: 69:9D:5A:D7:15:3A:CC:F8:39:F3:93:3D:41:79:1A:84:3D:3A:58:96 Authority key identifier: 08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD Certificate issuer: /CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Certificate serial: 0AA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft Manifest number: 0A81 Signing time: Tue 04 Nov 2025 19:44:00 +0000 Manifest this update: Tue 04 Nov 2025 19:43:59 +0000 Manifest next update: Tue 11 Nov 2025 19:43:59 +0000 Files and hashes: 1: CNJW1CbKIXH86BfGRSP4MqNpF70.crl (hash: YfS0Tv98IXAQAJxpKAg54JjOMiA3io5d8iTgWsdC1y0=) 2: F15AD62031FA11EE96640F3EC4F9AE02.roa (hash: WTs+9o9qNNM6mr7pnkWN7ajLcOyi6E/nvXwiULfR9Fc=) 3: 54098620A37B11EFAC4F8E3CC4F9AE02.roa (hash: FXrJzxpIMY/mjFWppW9CWCLKoy10/on9Vdnxt1X4PXY=) 4: 8F12C9C8391F11EFB455E565C4F9AE02.roa (hash: EvThvFOZKz48161MvTnVXiDNJ6HNF5HAel5hAOJCG+c=) 5: C6671418A37A11EFBED1AE3BC4F9AE02.roa (hash: RtmiTTWdzbSA6sjEHPl66WT8irnWI6qg0r7cthFL2r8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2725 (0xaa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FCC, serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Validity Not Before: Nov 4 19:43:59 2025 GMT Not After : Nov 11 19:43:59 2025 GMT Subject: CN=690a577f-e22d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:60:28:b6:c1:fe:bf:8a:c4:09:29:d4:80: fd:c3:f7:c3:66:ca:73:7f:a3:e8:a4:86:72:3b:21: a1:a0:a8:6b:7c:ee:42:50:7a:74:a4:72:f4:5a:1a: 8a:54:0c:0c:23:b5:3e:34:8e:da:9e:ae:9b:0b:62: 7c:3d:02:af:98:98:98:08:7c:6e:f7:7d:c4:bb:28: 38:a9:31:54:bf:6f:28:d0:22:fd:33:5b:3c:29:69: d1:71:04:8f:b2:aa:78:de:78:7a:13:a7:86:05:40: 84:83:91:06:14:a4:ce:2d:55:63:8e:1e:8a:bf:62: c3:9d:55:93:6a:ef:90:10:8c:fa:ee:57:c8:cc:a0: 8a:c6:ea:da:45:71:5d:6b:68:f1:3d:d5:09:7f:ff: 84:83:20:1a:80:59:f5:10:1a:80:2f:09:f2:ba:d4: 36:8c:d8:7d:49:24:ef:c9:1c:a3:69:79:6b:6c:51: e9:49:8a:fc:8e:58:51:1c:f4:64:36:51:ca:58:18: 99:b1:20:e3:e6:6e:54:e9:11:0c:43:77:56:ae:17: a9:00:5b:76:33:60:a1:0d:1c:52:91:30:ac:79:aa: 3a:b9:ab:4d:6a:f4:8b:97:bb:f3:e5:cc:61:35:92: a9:e4:31:2b:b1:ca:3a:1e:fd:e7:24:6c:c0:72:ad: b2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9D:5A:D7:15:3A:CC:F8:39:F3:93:3D:41:79:1A:84:3D:3A:58:96 X509v3 Authority Key Identifier: keyid:08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:91:da:9a:91:60:f5:8f:52:d1:4b:8e:cc:e0:7d:ab:ec:9d: 2a:41:89:f8:d6:58:b0:3c:5c:d0:6b:60:c5:e6:46:b9:32:67: ea:57:a5:57:26:11:49:f5:7c:04:1b:d5:f1:d2:ea:93:47:52: d4:8c:2a:44:90:8e:28:dc:f9:5f:37:66:04:f5:a6:8e:d7:2a: 1a:c8:ff:5e:70:39:7e:62:6a:ea:01:e8:31:9d:df:82:7a:89: da:a4:e1:27:f1:97:3d:b6:ba:e6:94:22:cc:9a:c2:55:f4:00: a9:65:a9:22:39:6e:e0:66:d5:78:14:75:f2:21:22:a7:81:65: b4:06:cc:19:a2:43:8c:43:a0:24:2c:de:10:52:93:7d:69:16: 4d:c9:d4:9e:54:c0:e4:bd:f5:21:4b:19:7e:d5:7c:e7:c0:6c: 9c:68:ab:4d:46:6a:90:19:36:c7:e7:54:fb:21:79:00:ee:0b: 83:f9:3a:aa:2b:b7:d3:d1:cf:a7:27:47:63:6b:63:8d:9c:79: 04:3f:7d:cd:61:dc:20:ee:c6:09:67:74:9f:00:4d:40:b6:a0: ec:52:48:55:78:9a:b6:25:6f:98:b1:5b:c8:4e:a8:e7:8b:ba: 91:e5:f9:0c:43:76:53:c5:c0:d4:d2:0a:57:0c:8a:4a:09:19: f4:b3:d6:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQ0MxMTAvBgNVBAUTKDA4RDI1NkQ0MjZDQTIxNzFGQ0U4MTdDNjQ1MjNGODMy QTM2OTE3QkQwHhcNMjUxMTA0MTk0MzU5WhcNMjUxMTExMTk0MzU5WjAYMRYwFAYD VQQDEw02OTBhNTc3Zi1lMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLJgKLbB/r+KxAkp1ID9w/fDZspzf6PopIZyOyGhoKhrfO5CUHp0pHL0WhqK VAwMI7U+NI7anq6bC2J8PQKvmJiYCHxu933Euyg4qTFUv28o0CL9M1s8KWnRcQSP sqp43nh6E6eGBUCEg5EGFKTOLVVjjh6Kv2LDnVWTau+QEIz67lfIzKCKxuraRXFd a2jxPdUJf/+EgyAagFn1EBqALwnyutQ2jNh9SSTvyRyjaXlrbFHpSYr8jlhRHPRk NlHKWBiZsSDj5m5U6REMQ3dWrhepAFt2M2ChDRxSkTCseao6uatNavSLl7vz5cxh NZKp5DErsco6Hv3nJGzAcq2yywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmdWtcV Osz4OfOTPUF5GoQ9OliWMB8GA1UdIwQYMBaAFAjSVtQmyiFx/OgXxkUj+DKjaRe9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZDQy9DREJDNTk4Njcz MDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lYSDg2QmZHUlNQNE1xTnBG NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOSlcxQ2JLSVhIODZCZkdSU1A0TXFOcEY3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZDQy9DREJDNTk4NjczMDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lY SDg2QmZHUlNQNE1xTnBGNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAekdqakWD1j1LRS47M4H2r7J0qQYn41liwPFzQa2DF5ka5MmfqV6VX JhFJ9XwEG9Xx0uqTR1LUjCpEkI4o3PlfN2YE9aaO1yoayP9ecDl+YmrqAegxnd+C eonapOEn8Zc9trrmlCLMmsJV9ACpZakiOW7gZtV4FHXyISKngWW0BswZokOMQ6Ak LN4QUpN9aRZNydSeVMDkvfUhSxl+1XznwGycaKtNRmqQGTbH51T7IXkA7guD+Tqq K7fT0c+nJ0dja2ONnHkEP33NYdwg7sYJZ3SfAE1AtqDsUkhVeJq2JW+YsVvITqjn i7qR5fkMQ3ZTxcDU0gpXDIpKCRn0s9Z8 -----END CERTIFICATE-----Generated at Wed Nov 5 18:37:37 2025 by rpki-client