$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: kIcZxwRGqvtn46EYjybkut6FnabADH73tqYZ52Vj8XI= Subject key identifier: 61:70:5A:E8:3F:18:28:6E:A8:4B:E2:1B:0E:4A:41:33:1F:C7:26:E2 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: 0135 Signing time: Mon 03 Nov 2025 04:32:42 +0000 Manifest this update: Mon 03 Nov 2025 04:32:41 +0000 Manifest next update: Mon 10 Nov 2025 04:32:41 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: kFqWzQjm5FCCZJAtlsiNqE/L6SahGxs1OHeTUMb2k+A=) 2: 263EBED2A76111F0BF85DF10C4F9AE02.roa (hash: KsEE78D9bYQHmSLXBCwNxmVaB7h9ibLa7GP3POywlYU=) 3: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Nov 3 04:32:41 2025 GMT Not After : Nov 10 04:32:41 2025 GMT Subject: CN=6908306a-5ba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:e0:23:fa:fa:ef:05:f4:e1:b8:fc:45:79: a3:01:5f:31:87:af:6e:f2:c3:3a:80:19:5f:99:71: 42:e3:e9:6f:11:be:85:02:68:76:9a:2d:35:6c:cb: cf:ba:d5:52:dc:e0:e8:67:ba:c3:9d:72:2f:b1:2c: 76:2e:ba:d2:69:bf:77:3f:8f:75:57:47:eb:02:f3: 73:8a:68:96:fe:95:5c:a0:96:ec:ef:70:17:e6:9d: ba:05:b3:0d:9e:6a:98:4c:17:7e:97:1f:38:c6:f1: 6f:86:bf:c9:1e:a1:60:26:3c:05:f9:dd:3a:3a:b3: 35:c1:8f:71:e2:86:84:43:70:54:56:da:35:b3:c0: 53:05:c7:9a:f4:ac:1c:31:d0:09:0e:b7:cb:20:b5: a8:68:3a:07:a9:07:42:27:1c:95:b9:24:1a:a2:0a: 91:ae:82:fc:6c:24:36:99:01:11:8d:ba:97:30:44: b3:5a:6d:4a:64:bd:2e:a0:ea:b7:ea:c2:ff:ad:9a: 05:59:47:fc:53:54:dd:de:00:59:4a:3c:81:41:f4: b1:04:a3:b9:20:6f:1d:3d:62:e5:9a:de:b7:38:f5: 46:98:6e:58:6b:4f:7b:a9:5c:4e:19:46:a0:5c:d6: 9c:d7:11:4d:6b:e9:6b:e8:10:dc:c0:e8:a2:f2:22: 2a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:70:5A:E8:3F:18:28:6E:A8:4B:E2:1B:0E:4A:41:33:1F:C7:26:E2 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:45:af:e0:35:0b:21:11:99:ad:7c:b8:a5:d6:56:d1:67:4f: 98:7e:32:07:aa:25:86:97:0c:2a:7e:05:25:23:1e:7e:5d:a6: 7c:e8:db:29:61:e2:a4:66:18:0a:fb:ef:da:c9:11:f9:21:35: 81:97:26:59:b1:09:f6:6c:b7:f2:cb:d0:6c:56:d9:db:82:24: bd:86:46:a2:94:df:e4:c3:fb:2f:b5:65:fa:ed:a4:f4:7f:0a: ca:e0:41:80:17:23:f1:cd:1d:ed:26:64:d8:91:28:74:76:de: e5:94:df:b0:e5:d1:72:85:bc:8b:b4:8a:09:7f:af:67:ef:39: a7:78:c3:a1:eb:61:89:f6:a2:0c:b5:90:c2:eb:ea:cd:94:bd: eb:4c:6c:40:f6:a8:a2:42:b0:9c:e8:d9:6a:d1:f5:d0:f5:09: 7d:c6:b3:23:05:64:40:a3:1e:bc:c7:db:a4:23:32:0b:b8:68: 65:f6:47:bb:bb:27:2a:24:b4:6d:1d:c9:92:af:7a:fb:43:9d: 81:4a:de:3e:30:8d:01:59:5b:20:d1:56:f0:df:48:e1:ca:2a: d0:26:14:48:80:c0:ab:b6:78:47:61:07:a3:eb:84:fa:44:bc: 03:d9:57:cf:29:67:52:8a:cd:e2:42:6a:28:1e:bf:a4:1f:85: 65:09:0c:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUxMTAzMDQzMjQxWhcNMjUxMTEwMDQzMjQxWjAYMRYwFAYD VQQDEw02OTA4MzA2YS01YmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu93gI/r67wX04bj8RXmjAV8xh69u8sM6gBlfmXFC4+lvEb6FAmh2mi01bMvP utVS3ODoZ7rDnXIvsSx2LrrSab93P491V0frAvNzimiW/pVcoJbs73AX5p26BbMN nmqYTBd+lx84xvFvhr/JHqFgJjwF+d06OrM1wY9x4oaEQ3BUVto1s8BTBcea9Kwc MdAJDrfLILWoaDoHqQdCJxyVuSQaogqRroL8bCQ2mQERjbqXMESzWm1KZL0uoOq3 6sL/rZoFWUf8U1Td3gBZSjyBQfSxBKO5IG8dPWLlmt63OPVGmG5Ya097qVxOGUag XNac1xFNa+lr6BDcwOii8iIq4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFwWug/ GChuqEviGw5KQTMfxybiMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/Ra/gNQshEZmtfLil1lbRZ0+YfjIHqiWGlwwqfgUlIx5+XaZ86Nsp YeKkZhgK++/ayRH5ITWBlyZZsQn2bLfyy9BsVtnbgiS9hkailN/kw/svtWX67aT0 fwrK4EGAFyPxzR3tJmTYkSh0dt7llN+w5dFyhbyLtIoJf69n7zmneMOh62GJ9qIM tZDC6+rNlL3rTGxA9qiiQrCc6Nlq0fXQ9Ql9xrMjBWRAox68x9ukIzILuGhl9ke7 uycqJLRtHcmSr3r7Q52BSt4+MI0BWVsg0Vbw30jhyirQJhRIgMCrtnhHYQej64T6 RLwD2VfPKWdSis3iQmooHr+kH4VlCQxU -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:21 2025 by rpki-client