$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: 6t+PocPZQdIHYPOugVS809nnsp3lR1r9Wpc1/3znA7E= Subject key identifier: EE:3E:3C:DA:52:4E:3A:E5:47:E3:C8:DA:EA:CE:6D:06:00:EC:34:31 Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: E0 Signing time: Wed 05 Nov 2025 05:41:15 +0000 Manifest this update: Wed 05 Nov 2025 05:41:15 +0000 Manifest next update: Wed 12 Nov 2025 05:41:15 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: FZXXnfqCLqjs7TPPP5dgwFR2gaGiXgJESvDbz9xjvfM=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: Jxy+pvv4xysDlIQZeDPDC9SdzrWtHicNhXpYrAxOrBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Nov 5 05:41:15 2025 GMT Not After : Nov 12 05:41:15 2025 GMT Subject: CN=690ae37b-7a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8b:ee:de:e0:e6:a2:4a:e9:5e:26:55:db:9e: be:4f:dd:d8:a7:26:77:db:c1:cb:9c:e4:f9:f9:09: c3:31:6b:e5:cd:cf:5d:78:e0:27:5a:f9:e2:f9:f2: 8f:61:99:d0:4a:ff:3a:79:4b:b7:67:9d:a3:ea:21: 63:88:85:e7:38:b3:a1:9c:a1:f8:a1:19:c8:8c:c3: 62:6f:55:27:ad:e5:42:0c:82:02:09:db:23:d3:17: f5:11:e5:f9:32:0a:33:12:49:12:a9:e3:0b:98:0c: 50:bf:9e:58:7b:38:55:c0:7e:a5:94:af:b1:fb:72: d4:09:f5:38:97:10:cb:dd:5b:47:c2:20:b2:ad:68: 86:bd:db:86:b5:8d:f1:6d:5b:c9:63:ff:fc:6a:8d: 2f:47:4e:aa:7c:69:3c:1f:95:6c:39:b6:f9:3c:0e: 01:a5:b3:05:41:4a:77:b4:e1:05:29:60:55:b7:b5: 96:a8:4b:ae:ac:f2:be:6e:d3:cb:9d:14:4f:cb:da: b2:c8:ff:ba:45:6c:fa:a7:b1:b5:fb:1c:38:6b:44: 4d:d9:c0:c2:c7:3a:84:0a:a6:a8:d6:ab:06:6f:1e: b1:db:da:0b:46:16:fe:c9:a0:8f:06:50:26:b5:ac: 28:58:19:8a:d2:39:54:16:af:f2:a6:fc:cf:50:a8: 08:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:3E:3C:DA:52:4E:3A:E5:47:E3:C8:DA:EA:CE:6D:06:00:EC:34:31 X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:14:bd:64:20:10:1f:54:78:1d:c0:74:c6:66:5f:3f:4b:db: 99:ed:74:ec:9e:30:45:2a:2e:ad:bf:dd:bc:42:16:4f:c1:e5: fa:2e:09:a0:75:71:b4:f0:ac:41:01:17:8a:30:66:ec:36:1d: af:37:03:4b:2f:c2:fb:09:14:f4:30:25:19:a7:ce:5e:d2:cc: 40:7a:93:36:9c:a9:57:f0:61:0b:6c:a7:54:f0:48:6f:2c:45: 99:8b:59:54:02:6c:39:c4:19:10:08:d1:8b:dd:81:09:6b:69: 99:47:8f:c5:52:37:6e:18:fe:81:7a:43:18:a5:2d:80:cc:41: 1d:06:61:7b:db:24:cf:a2:3f:96:2d:8b:07:01:e2:9f:48:98: a7:f6:cc:dc:d4:01:c2:82:28:63:ae:b9:7b:0d:8f:63:62:90: e2:3f:66:26:2a:f4:b5:ae:7f:46:77:70:3f:cc:2e:11:a3:62: c8:d8:71:8d:c1:6f:65:1e:3e:0d:6b:48:10:88:72:83:bd:eb: 02:8b:c3:61:8e:f7:5a:b7:ce:b6:06:0c:d4:44:a3:5d:a8:b3: 55:94:f1:49:eb:97:72:5b:31:d3:15:48:e1:c6:79:14:ad:95: 4f:5a:fe:75:ad:55:51:e4:d3:7e:dd:3c:dd:f8:23:c9:b5:c7: e4:2a:60:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdFNUYxMTAvBgNVBAUTKDgzQzJCNTRCNjQxRTNGRjA2RTMxQTJCNDQ1MEMxNTdB REFENTlCNjgwHhcNMjUxMTA1MDU0MTE1WhcNMjUxMTEyMDU0MTE1WjAYMRYwFAYD VQQDEw02OTBhZTM3Yi03YTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ivu3uDmokrpXiZV256+T93YpyZ328HLnOT5+QnDMWvlzc9deOAnWvni+fKP YZnQSv86eUu3Z52j6iFjiIXnOLOhnKH4oRnIjMNib1UnreVCDIICCdsj0xf1EeX5 MgozEkkSqeMLmAxQv55YezhVwH6llK+x+3LUCfU4lxDL3VtHwiCyrWiGvduGtY3x bVvJY//8ao0vR06qfGk8H5VsObb5PA4BpbMFQUp3tOEFKWBVt7WWqEuurPK+btPL nRRPy9qyyP+6RWz6p7G1+xw4a0RN2cDCxzqECqao1qsGbx6x29oLRhb+yaCPBlAm tawoWBmK0jlUFq/ypvzPUKgIgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4+PNpS TjrlR+PI2urObQYA7DQxMB8GA1UdIwQYMBaAFIPCtUtkHj/wbjGitEUMFXra1Zto MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0U1Ri84MEM0QjMwMDY1 MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBfQnVNYUswUlF3VmV0clZt MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0yZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBf QnVNYUswUlF3VmV0clZtMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIFL1kIBAfVHgdwHTGZl8/S9uZ7XTsnjBFKi6tv928QhZPweX6Lgmg dXG08KxBAReKMGbsNh2vNwNLL8L7CRT0MCUZp85e0sxAepM2nKlX8GELbKdU8Ehv LEWZi1lUAmw5xBkQCNGL3YEJa2mZR4/FUjduGP6BekMYpS2AzEEdBmF72yTPoj+W LYsHAeKfSJin9szc1AHCgihjrrl7DY9jYpDiP2YmKvS1rn9Gd3A/zC4Ro2LI2HGN wW9lHj4Na0gQiHKDvesCi8Nhjvdat862BgzURKNdqLNVlPFJ65dyWzHTFUjhxnkU rZVPWv51rVVR5NN+3Tzd+CPJtcfkKmCX -----END CERTIFICATE-----Generated at Wed Nov 5 20:56:44 2025 by rpki-client