$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: NawmlwKv9tLJ89k2o5TjyMSru6g/KXsme8wc0hJ6sOI= Subject key identifier: 9C:91:BA:CB:65:9F:0B:70:5C:9D:19:22:2A:44:90:04:57:C7:BA:7B Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1D75 Signing time: Tue 04 Nov 2025 16:13:29 +0000 Manifest this update: Tue 04 Nov 2025 16:13:28 +0000 Manifest next update: Tue 11 Nov 2025 16:13:28 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: C6tQmGwv34zCMPnJRj/T0HfdZggyoTXNp8Zn77l2x78=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: ptNgrWHvzJHQ4AbkataHwe2RnXoFWeh5k6roCCdUJ6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7556 (0x1d84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Nov 4 16:13:28 2025 GMT Not After : Nov 11 16:13:28 2025 GMT Subject: CN=690a2628-0f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:80:e0:6a:a5:66:18:4a:a3:a0:2d:16:f9:1a: 85:56:2b:24:e2:9d:aa:63:75:a7:f9:45:03:a1:b1: 4c:18:29:d5:bb:4e:5b:e3:ba:0b:16:e3:cf:cc:e3: c7:27:05:ae:06:a1:58:28:e2:16:98:e2:d3:13:3b: f2:31:b7:6a:49:5f:56:3b:03:6a:fc:47:31:37:f2: 8b:b1:3e:44:d8:9a:8d:7d:1c:1b:6e:30:ee:83:b7: 88:4e:18:8d:aa:92:fc:85:e6:28:c2:b6:fd:0f:a8: 81:23:49:e4:79:c2:5b:90:73:a4:cd:22:df:45:21: c2:87:b2:6f:98:bc:b4:14:dd:b4:77:21:dd:da:47: 23:7d:1f:dd:8a:7a:33:dd:88:72:46:5d:f4:de:43: 69:5e:e6:e1:03:b9:32:c5:91:f6:d6:e8:0a:0e:6b: 17:51:64:1a:66:fd:5d:90:7a:71:dc:2c:53:76:ee: 3e:72:22:60:50:fe:94:40:f7:e0:7a:1d:d8:65:64: ea:b4:da:b1:86:ae:ca:8a:c0:4a:65:cb:9a:5c:6b: 21:ae:fd:74:2b:5c:a0:20:86:e4:62:61:ea:8a:bd: 2e:ad:4c:56:51:74:7f:00:2a:3d:b2:f6:f8:ea:50: 4b:a6:25:ec:73:e4:f1:1d:69:df:d0:f8:c5:74:c0: 90:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:91:BA:CB:65:9F:0B:70:5C:9D:19:22:2A:44:90:04:57:C7:BA:7B X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:fc:e9:c5:58:9f:09:51:81:10:cd:a6:ce:ec:9e:ff:b3:3c: 25:53:21:5e:5b:55:7f:b7:b9:29:54:ed:22:f8:46:06:23:bf: 21:a7:94:06:01:2c:c9:c9:65:7d:ca:c6:cf:85:18:b2:a0:c9: 23:b6:57:5d:00:ee:20:19:a6:d4:56:b3:30:36:ee:16:05:5c: 3c:97:15:b4:c2:68:8c:f6:8a:64:83:40:fa:39:a0:36:39:d7: 58:ef:e7:f3:5f:eb:0d:db:c9:10:69:cb:ba:53:24:83:8c:a1: ce:e0:6a:97:44:9c:d8:30:1b:e9:cd:1a:c5:c5:e1:3b:8d:24: b7:7d:94:f4:31:9b:18:67:a7:14:ab:ff:66:7e:5f:d0:49:07: 6c:5c:a2:cd:d8:3c:a5:80:64:c5:7b:55:74:6b:ac:97:80:f5: a0:87:45:b2:20:6e:19:59:50:6d:6c:4e:c2:dc:fe:a1:08:57: 0b:1b:62:ef:7c:5e:01:57:0e:e9:78:91:b5:3c:44:81:99:fe: a5:17:71:28:c0:d7:07:3a:4b:89:40:a3:87:6c:cd:46:1c:35: 51:e4:c9:e7:32:14:64:49:c5:dc:ed:7a:e2:47:51:dc:d0:67: 3c:5f:24:32:0f:42:a3:fb:77:41:36:76:d9:7d:6b:a7:b0:ef: ec:38:e7:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUxMTA0MTYxMzI4WhcNMjUxMTExMTYxMzI4WjAYMRYwFAYD VQQDEw02OTBhMjYyOC0wZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4DgaqVmGEqjoC0W+RqFVisk4p2qY3Wn+UUDobFMGCnVu05b47oLFuPPzOPH JwWuBqFYKOIWmOLTEzvyMbdqSV9WOwNq/EcxN/KLsT5E2JqNfRwbbjDug7eIThiN qpL8heYowrb9D6iBI0nkecJbkHOkzSLfRSHCh7JvmLy0FN20dyHd2kcjfR/dinoz 3YhyRl303kNpXubhA7kyxZH21ugKDmsXUWQaZv1dkHpx3CxTdu4+ciJgUP6UQPfg eh3YZWTqtNqxhq7KisBKZcuaXGshrv10K1ygIIbkYmHqir0urUxWUXR/ACo9svb4 6lBLpiXsc+TxHWnf0PjFdMCQ6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyRustl nwtwXJ0ZIipEkARXx7p7MB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA/OnFWJ8JUYEQzabO7J7/szwlUyFeW1V/t7kpVO0i+EYGI78hp5QG ASzJyWV9ysbPhRiyoMkjtlddAO4gGabUVrMwNu4WBVw8lxW0wmiM9opkg0D6OaA2 OddY7+fzX+sN28kQacu6UySDjKHO4GqXRJzYMBvpzRrFxeE7jSS3fZT0MZsYZ6cU q/9mfl/QSQdsXKLN2DylgGTFe1V0a6yXgPWgh0WyIG4ZWVBtbE7C3P6hCFcLG2Lv fF4BVw7peJG1PESBmf6lF3EowNcHOkuJQKOHbM1GHDVR5MnnMhRkScXc7XriR1Hc 0Gc8XyQyD0Kj+3dBNnbZfWunsO/sOOcG -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:26 2025 by rpki-client