$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft File: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft (raw, json) Hash identifier: P7f3CpcC+PZaCBmE+Gnq6jYfdxLAgpAGhpO6cG5mgqQ= Subject key identifier: 7D:C8:6A:F8:6A:3A:59:0D:E2:34:29:7F:7C:44:9A:F3:B0:05:1F:DE Authority key identifier: 24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D Certificate issuer: /CN=A91E8BAF/serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Certificate serial: 34F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft Manifest number: 34E6 Signing time: Sun 02 Nov 2025 15:19:32 +0000 Manifest this update: Sun 02 Nov 2025 15:19:32 +0000 Manifest next update: Sun 09 Nov 2025 15:19:32 +0000 Files and hashes: 1: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl (hash: 6HfNsvjKLPDaI4mqMFUz0/xXN6IaSy9oQ4CySeIg6Ks=) 2: F87DB8B440C811EEB681DC40C4F9AE02.roa (hash: a03YccLD26+EVq1g9SXKvWZ2v+EmXltyBYT+9f1nANI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13561 (0x34f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BAF, serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Validity Not Before: Nov 2 15:19:32 2025 GMT Not After : Nov 9 15:19:32 2025 GMT Subject: CN=69077684-97c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:df:dc:97:38:9f:c6:fc:c3:4f:d1:33:8e:ef: 09:df:c5:bc:3e:4b:75:c4:d9:1f:a3:6f:e1:57:ba: ca:66:b7:92:88:91:3a:09:76:fa:42:33:13:c9:34: 90:9c:80:18:01:de:ec:40:ca:bd:ee:34:d7:49:c8: 03:ab:0d:1b:22:7f:45:d6:43:37:93:02:7e:18:4e: 97:33:23:ca:c9:e8:1e:41:69:a6:f8:0b:99:e1:23: 3a:fe:af:14:ab:d8:3c:29:33:c1:56:a7:51:60:ea: 7f:4f:c6:0f:06:e4:e2:5b:c1:ea:d7:7c:75:5c:fc: 95:e4:ad:66:7e:c7:be:06:60:2b:a0:8b:a8:c4:04: 21:bd:f4:6b:b7:2a:18:e5:30:55:4c:72:db:bc:b3: f5:a4:ff:bf:5e:4f:7e:f5:68:7f:50:29:16:ba:7e: 94:5b:ab:0f:5f:9e:c9:dc:70:ba:8d:b0:9d:86:02: cb:4a:a5:d5:0b:34:ee:d8:4a:22:b7:ff:60:a5:06: 45:55:5e:02:c9:5b:12:49:58:fb:32:6e:d2:7c:e4: 00:eb:3a:ea:8a:fc:ac:21:2a:96:d6:4e:3a:49:bb: fa:ab:d8:61:f0:91:de:93:9b:c9:f9:2c:d2:ef:ad: 1b:b1:6f:a1:58:85:c9:79:f5:cc:24:3c:11:2e:b1: 8f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C8:6A:F8:6A:3A:59:0D:E2:34:29:7F:7C:44:9A:F3:B0:05:1F:DE X509v3 Authority Key Identifier: keyid:24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:0f:0f:c2:aa:60:12:74:90:66:dd:97:5b:84:62:73:fb:72: e0:ce:a5:8e:19:75:7d:3d:6e:6a:d8:fb:44:ad:ec:a2:b6:21: 1c:a1:4c:61:11:96:9c:16:c3:18:37:75:80:cf:f9:0e:26:d4: 3a:99:ab:ff:36:1a:20:5a:3a:e7:f0:95:00:13:99:60:62:05: 46:39:11:1b:47:b8:a0:1b:bd:7b:c9:54:d5:c2:cd:61:f5:64: df:fd:e8:ec:e1:97:83:59:a1:1d:7b:c6:1f:56:28:30:e5:d2: 0d:99:55:e3:c7:f6:21:cd:0a:de:9d:9c:3a:ff:fd:9a:dc:d7: 1e:29:63:80:e6:78:2c:cd:e3:3a:37:8d:be:ab:aa:39:34:97: a5:5c:ac:0f:ed:28:80:6e:a7:0f:0e:82:a3:c2:75:be:23:e4: 81:3d:29:08:72:e2:8d:90:5c:64:ab:55:33:4c:ce:d3:2c:e3: 49:39:93:97:0f:5a:a7:69:9a:6e:c3:17:d3:b6:d4:3e:50:d3: 50:4a:7d:17:9c:d1:3d:e7:82:ef:8c:23:90:f9:89:12:0a:1d: 3c:65:72:fc:6a:26:b8:8a:fe:08:b8:17:18:73:05:76:66:b2: dd:aa:f8:bf:5a:bb:12:6c:05:2a:27:d6:75:73:17:c6:8d:e1: d7:ff:13:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCQUYxMTAvBgNVBAUTKDI0OERCMUZFRTU1MTBDOEE2QUY4NUVBQzgxMEVDNEND QUU4QkY5MEQwHhcNMjUxMTAyMTUxOTMyWhcNMjUxMTA5MTUxOTMyWjAYMRYwFAYD VQQDEw02OTA3NzY4NC05N2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvN/clzifxvzDT9Ezju8J38W8Pkt1xNkfo2/hV7rKZreSiJE6CXb6QjMTyTSQ nIAYAd7sQMq97jTXScgDqw0bIn9F1kM3kwJ+GE6XMyPKyegeQWmm+AuZ4SM6/q8U q9g8KTPBVqdRYOp/T8YPBuTiW8Hq13x1XPyV5K1mfse+BmAroIuoxAQhvfRrtyoY 5TBVTHLbvLP1pP+/Xk9+9Wh/UCkWun6UW6sPX57J3HC6jbCdhgLLSqXVCzTu2Eoi t/9gpQZFVV4CyVsSSVj7Mm7SfOQA6zrqivysISqW1k46Sbv6q9hh8JHek5vJ+SzS 760bsW+hWIXJefXMJDwRLrGPvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3Iavhq OlkN4jQpf3xEmvOwBR/eMB8GA1UdIwQYMBaAFCSNsf7lUQyKavherIEOxMyui/kN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJBRi8zMkQ4RTIyRTFE QUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJcHEtRjZzZ1E3RXpLNkwt UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJMnhfdVZSRElwcS1GNnNnUTdFeks2TC1RMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJBRi8zMkQ4RTIyRTFEQUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJ cHEtRjZzZ1E3RXpLNkwtUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3Dw/CqmASdJBm3ZdbhGJz+3LgzqWOGXV9PW5q2PtEreyitiEcoUxh EZacFsMYN3WAz/kOJtQ6mav/NhogWjrn8JUAE5lgYgVGOREbR7igG717yVTVws1h 9WTf/ejs4ZeDWaEde8YfVigw5dINmVXjx/YhzQrenZw6//2a3NceKWOA5ngszeM6 N42+q6o5NJelXKwP7SiAbqcPDoKjwnW+I+SBPSkIcuKNkFxkq1UzTM7TLONJOZOX D1qnaZpuwxfTttQ+UNNQSn0XnNE954LvjCOQ+YkSCh08ZXL8aia4iv4IuBcYcwV2 ZrLdqvi/WrsSbAUqJ9Z1cxfGjeHX/xMC -----END CERTIFICATE-----Generated at Tue Nov 4 12:41:55 2025 by rpki-client