$ rpki-client -vvf rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft File: 8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft (raw, json) Hash identifier: d5vCgyWwX8RWkbFsa31z2XNTvivNHhN4KSECFBj5ehc= Subject key identifier: BC:8B:B6:91:C4:BA:CC:F4:3D:1B:5D:6A:ED:BB:6D:25:74:1F:59:1F Authority key identifier: F0:5B:BD:26:D4:DE:08:F6:58:8C:B7:FA:FF:B1:83:0F:AB:C3:71:67 Certificate issuer: /CN=A912FBD5/serialNumber=F05BBD26D4DE08F6588CB7FAFFB1830FABC37167 Certificate serial: 069A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft Manifest number: 0694 Signing time: Tue 04 Nov 2025 22:27:38 +0000 Manifest this update: Tue 04 Nov 2025 22:27:38 +0000 Manifest next update: Tue 11 Nov 2025 22:27:38 +0000 Files and hashes: 1: 8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl (hash: dAbTebi8tRcqTes2bUwvtewhLQxlaCsVgs8cb+oDm+E=) 2: C0D6C00E8E5511EBA9EA9977C4F9AE02.roa (hash: d2oIVGi69pBa33ybuBMk+1p+0WxxE+fB43cE7gCYVHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FBD5, serialNumber=F05BBD26D4DE08F6588CB7FAFFB1830FABC37167 Validity Not Before: Nov 4 22:27:38 2025 GMT Not After : Nov 11 22:27:38 2025 GMT Subject: CN=690a7dda-1247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:92:e6:49:c7:1a:a0:d8:2d:c6:fc:ee:5c: 92:46:19:67:ab:84:41:fb:cb:30:1b:7c:bd:a3:18: 51:76:b0:cb:9c:cb:e0:5c:b4:e2:a2:1d:5f:53:c3: ee:8b:33:19:de:86:08:fb:56:15:34:b8:0c:bc:74: 1c:91:2a:6d:de:97:4b:ae:04:40:fc:59:01:86:b4: e4:46:a1:22:d9:e5:96:1a:7a:bf:dc:01:f2:92:3a: ff:af:af:eb:86:ba:3d:1a:a0:3a:6b:4c:06:0b:cc: 7d:4d:d6:b1:e9:c7:24:09:88:2c:ad:97:b7:f4:b7: ee:4c:86:85:1b:99:f6:83:f5:64:df:5f:d6:cd:6a: b8:63:73:1c:6b:03:ea:50:ba:71:28:05:bd:eb:42: 9a:b6:04:61:84:c5:b6:08:0e:ac:8c:bf:78:c9:13: 7a:0c:ec:a9:2e:02:6b:ef:8a:f2:1a:96:e5:aa:6e: 85:b8:c7:72:8b:91:55:7a:0d:82:0c:b2:39:61:68: 2e:34:61:81:21:38:19:f9:41:ea:07:d7:5f:82:cb: 56:b1:39:1e:ee:ac:a7:13:cb:a7:e2:1e:cb:8c:20: d6:76:82:12:78:f0:f7:b1:63:30:7b:27:4c:24:70: f1:5f:38:13:2d:24:ae:47:53:e2:cd:47:1d:8d:74: b5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:8B:B6:91:C4:BA:CC:F4:3D:1B:5D:6A:ED:BB:6D:25:74:1F:59:1F X509v3 Authority Key Identifier: keyid:F0:5B:BD:26:D4:DE:08:F6:58:8C:B7:FA:FF:B1:83:0F:AB:C3:71:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:4c:9f:0b:ab:88:66:58:5a:1e:17:d6:b1:66:98:7e:50:6b: 29:b1:d3:d9:13:cf:b8:a4:88:5a:55:ba:20:ad:51:f4:3b:61: f7:85:0e:91:b3:ce:89:db:24:da:a8:fc:5d:b8:2f:9d:77:38: 2f:ef:77:d7:6f:32:ef:85:37:b8:0a:f2:c2:7c:01:34:fb:c0: 74:93:ee:84:13:58:5b:93:45:c6:8d:03:1e:c2:17:50:20:6f: 57:90:46:01:8d:51:8a:85:6f:ac:81:12:e7:c2:fe:82:10:97: a6:bd:72:89:7b:74:7b:65:d7:d2:89:c1:7b:d6:33:53:9b:47: eb:a3:fb:10:67:fe:b3:86:84:2a:3b:f2:2c:22:79:37:88:9d: 4a:08:01:2f:8a:e7:f7:96:0e:39:b9:d8:6d:70:2f:15:8a:e3: a8:64:d8:28:99:74:30:ec:b4:32:b0:a0:ef:81:d7:69:ba:47: 6f:57:a0:d0:95:33:31:c2:6c:02:1a:15:51:ac:88:b0:82:87: 32:85:61:06:f3:8b:07:db:b8:ba:c2:ad:55:6a:a5:01:39:26: 58:e7:72:6c:68:14:fc:8d:db:b7:d8:b5:d1:d3:c8:ba:71:bf: 00:96:a4:6f:04:ca:bf:54:af:23:cc:e8:79:df:d7:f4:80:a7: e0:d6:d4:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCRDUxMTAvBgNVBAUTKEYwNUJCRDI2RDRERTA4RjY1ODhDQjdGQUZGQjE4MzBG QUJDMzcxNjcwHhcNMjUxMTA0MjIyNzM4WhcNMjUxMTExMjIyNzM4WjAYMRYwFAYD VQQDEw02OTBhN2RkYS0xMjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsc6S5knHGqDYLcb87lySRhlnq4RB+8swG3y9oxhRdrDLnMvgXLTioh1fU8Pu izMZ3oYI+1YVNLgMvHQckSpt3pdLrgRA/FkBhrTkRqEi2eWWGnq/3AHykjr/r6/r hro9GqA6a0wGC8x9Tdax6cckCYgsrZe39LfuTIaFG5n2g/Vk31/WzWq4Y3McawPq ULpxKAW960KatgRhhMW2CA6sjL94yRN6DOypLgJr74ryGpblqm6FuMdyi5FVeg2C DLI5YWguNGGBITgZ+UHqB9dfgstWsTke7qynE8un4h7LjCDWdoISePD3sWMweydM JHDxXzgTLSSuR1PizUcdjXS1JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyLtpHE usz0PRtdau27bSV0H1kfMB8GA1UdIwQYMBaAFPBbvSbU3gj2WIy3+v+xgw+rw3Fn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkJENS8wRDI2RDRBMDhF NTQxMUVCOTMzMDhBNzVDNEY5QUUwMi84RnU5SnRUZUNQWllqTGY2XzdHREQ2dkRj V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhGdTlKdFRlQ1BaWWpMZjZfN0dERDZ2RGNXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkJENS8wRDI2RDRBMDhFNTQxMUVCOTMzMDhBNzVDNEY5QUUwMi84RnU5SnRUZUNQ WllqTGY2XzdHREQ2dkRjV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJTJ8Lq4hmWFoeF9axZph+UGspsdPZE8+4pIhaVbogrVH0O2H3hQ6R s86J2yTaqPxduC+ddzgv73fXbzLvhTe4CvLCfAE0+8B0k+6EE1hbk0XGjQMewhdQ IG9XkEYBjVGKhW+sgRLnwv6CEJemvXKJe3R7ZdfSicF71jNTm0fro/sQZ/6zhoQq O/IsInk3iJ1KCAEviuf3lg45udhtcC8ViuOoZNgomXQw7LQysKDvgddpukdvV6DQ lTMxwmwCGhVRrIiwgocyhWEG84sH27i6wq1VaqUBOSZY53JsaBT8jdu32LXR08i6 cb8AlqRvBMq/VK8jzOh539f0gKfg1tSn -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:25 2025 by rpki-client