$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: EMOOLXow/vfQnNxjO1If82trVU3Q6bkD7d3WjiyN/aM= Subject key identifier: 5F:91:51:91:61:35:D6:25:3A:CB:51:12:69:BF:E0:B4:84:DF:7C:C8 Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 038E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 0389 Signing time: Mon 03 Nov 2025 00:45:46 +0000 Manifest this update: Mon 03 Nov 2025 00:45:45 +0000 Manifest next update: Mon 10 Nov 2025 00:45:45 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: kf5GpVKzLeM18DKJfqPW43CBlNI2ZK7szD7HN7HyQBI=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: 3Kdq8iB7GHkmorOzNCkj5Eih8OtxQjBmOJhG+WoD4A8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Nov 3 00:45:45 2025 GMT Not After : Nov 10 00:45:45 2025 GMT Subject: CN=6907fb39-94e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:26:12:81:cd:cf:00:37:b6:0d:2a:01:95:46: 14:1c:d3:2b:cc:74:2b:8f:b7:bb:b6:1c:a2:55:c0: b2:73:13:87:40:43:5d:d1:52:28:87:8a:16:e5:07: 13:15:ab:07:02:3e:45:25:ee:f0:45:4d:3a:cc:8b: aa:e0:0e:8a:4f:76:ba:af:bf:ba:5a:83:d9:70:f4: 6d:d4:80:7f:7a:8b:c2:6a:c6:11:50:d6:07:1e:77: 5f:d6:f1:bd:64:c8:b5:6e:53:f5:6a:ca:a7:14:6b: 1b:ae:fe:36:ac:33:b5:e1:42:19:87:f8:08:c1:01: f0:9b:e2:d8:94:56:d8:ec:45:a6:09:9f:3d:60:a5: 3b:d5:50:d6:4f:a5:b7:27:4d:1b:fa:c8:f3:7f:69: 7c:92:37:c2:33:f7:54:7a:8c:d1:a7:f6:9c:f2:d9: 37:52:e0:de:c5:34:5e:b9:f9:78:34:85:a4:3c:6a: 78:f9:99:5b:a0:fa:de:93:04:fd:fb:cb:df:b3:7c: 3f:b9:96:fb:85:50:29:7e:04:83:f5:84:16:4c:c7: 99:e9:2f:18:7a:f9:0a:7f:61:15:74:0d:98:45:1e: d4:fd:8d:6c:47:6f:f7:01:b2:d6:f5:7f:f7:b7:68: 97:7c:f7:d4:cb:fa:d9:f8:02:6c:be:45:d5:cb:c1: b2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:91:51:91:61:35:D6:25:3A:CB:51:12:69:BF:E0:B4:84:DF:7C:C8 X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:52:c4:c2:b5:30:d0:97:40:ac:ce:47:25:6a:50:85:aa:3f: 4f:6a:d0:6b:9b:40:19:a0:d1:62:9a:f7:ed:d4:c0:80:ed:47: 29:f8:69:82:2d:c1:a1:a3:22:e8:6e:d1:9d:c0:cc:51:9a:f5: eb:e0:27:c5:7b:b9:83:c3:e8:14:29:e0:f9:46:f4:57:68:75: 86:54:7e:a1:e3:f8:c0:f5:76:26:dd:bc:a7:1b:0c:82:18:55: 32:1d:c0:76:a5:05:ae:0c:13:bb:58:ba:12:fa:53:9d:67:71: 11:b6:25:33:c0:f5:11:a1:c2:df:03:7e:4d:67:1b:8e:9f:18: d7:c7:40:9f:79:96:34:0c:32:dc:05:b2:bc:bd:cc:d0:83:bd: 4a:6d:c3:d5:f4:5b:6b:c8:ae:dd:89:94:13:ed:87:d1:66:20: 48:c3:7e:9d:c9:d4:98:13:9c:31:86:1f:f8:c7:04:06:74:d0: 80:79:e1:bb:a0:49:f7:1f:84:be:66:22:5e:c9:db:94:3e:a9: 26:d8:9c:02:34:a6:cb:d4:b3:18:84:12:12:da:d2:f4:b3:6b: a1:fd:bb:34:70:4a:a6:ea:0f:0d:da:d0:50:34:b0:40:ad:07: 2a:1e:e7:4d:cd:b5:74:92:e4:92:c7:40:2a:f1:fd:41:18:5b: 50:21:f6:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjUxMTAzMDA0NTQ1WhcNMjUxMTEwMDA0NTQ1WjAYMRYwFAYD VQQDEw02OTA3ZmIzOS05NGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iYSgc3PADe2DSoBlUYUHNMrzHQrj7e7thyiVcCycxOHQENd0VIoh4oW5QcT FasHAj5FJe7wRU06zIuq4A6KT3a6r7+6WoPZcPRt1IB/eovCasYRUNYHHndf1vG9 ZMi1blP1asqnFGsbrv42rDO14UIZh/gIwQHwm+LYlFbY7EWmCZ89YKU71VDWT6W3 J00b+sjzf2l8kjfCM/dUeozRp/ac8tk3UuDexTReufl4NIWkPGp4+ZlboPrekwT9 +8vfs3w/uZb7hVApfgSD9YQWTMeZ6S8YevkKf2EVdA2YRR7U/Y1sR2/3AbLW9X/3 t2iXfPfUy/rZ+AJsvkXVy8GyxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+RUZFh NdYlOstREmm/4LSE33zIMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtUsTCtTDQl0CszkclalCFqj9PatBrm0AZoNFimvft1MCA7Ucp+GmC LcGhoyLobtGdwMxRmvXr4CfFe7mDw+gUKeD5RvRXaHWGVH6h4/jA9XYm3bynGwyC GFUyHcB2pQWuDBO7WLoS+lOdZ3ERtiUzwPURocLfA35NZxuOnxjXx0CfeZY0DDLc BbK8vczQg71KbcPV9FtryK7diZQT7YfRZiBIw36dydSYE5wxhh/4xwQGdNCAeeG7 oEn3H4S+ZiJeyduUPqkm2JwCNKbL1LMYhBIS2tL0s2uh/bs0cEqm6g8N2tBQNLBA rQcqHudNzbV0kuSSx0Aq8f1BGFtQIfaP -----END CERTIFICATE-----Generated at Tue Nov 4 08:11:02 2025 by rpki-client