$ rpki-client -vvf rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft File: 8gl4uKIsE6CwK586X8LUiKuovtU.mft (raw, json) Hash identifier: NG+vpvFc1dLrfK2TV22z5pgodICvRgfecogii8Dc9VQ= Subject key identifier: 28:80:EA:E9:AC:75:48:B2:28:02:74:8C:9F:0C:80:1F:58:DE:0B:B6 Authority key identifier: F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 Certificate issuer: /CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Certificate serial: 0A41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft Manifest number: 0A3B Signing time: Tue 04 Nov 2025 19:48:42 +0000 Manifest this update: Tue 04 Nov 2025 19:48:42 +0000 Manifest next update: Tue 11 Nov 2025 19:48:42 +0000 Files and hashes: 1: 8gl4uKIsE6CwK586X8LUiKuovtU.crl (hash: 7U6Mk0QVgoPKoCvjltDRGwJBtCuIEJOtbs1h5UyU4SU=) 2: BD7E578079E011EA8DD5907FC4F9AE02.roa (hash: iYxIY6VXdTf7gHnwepU+/VGZkh/V1c1cIjc+gsTh8TE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2625 (0xa41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914653C, serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Validity Not Before: Nov 4 19:48:42 2025 GMT Not After : Nov 11 19:48:42 2025 GMT Subject: CN=690a589a-7343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5b:45:e6:f2:df:f7:2d:81:a1:34:c5:13:68: 2c:55:9a:12:c0:10:15:e6:f6:23:98:62:46:22:19: 8b:f9:88:81:0c:96:8c:cc:2f:33:35:2c:d0:7b:20: 42:ce:00:41:89:eb:17:62:40:84:fe:73:5f:40:37: a2:8b:12:a2:05:03:1b:19:d5:57:fc:89:6c:23:3a: 25:ed:51:c5:b1:de:a4:64:61:64:df:6d:59:78:68: 38:27:99:21:1e:29:34:74:98:f6:33:39:05:ae:0d: 7b:82:37:ef:c9:41:ce:82:16:93:d9:30:e2:d4:83: 90:f5:72:35:59:74:c0:a4:6a:a7:0f:1f:60:8a:a5: bd:30:f8:1d:bd:40:81:01:f0:28:26:80:b0:96:d7: 2a:54:70:98:15:92:5f:34:33:48:92:09:49:68:f5: 18:84:95:68:0c:b0:f1:78:7f:b9:e1:89:af:a8:82: 73:b8:d2:43:71:3d:8a:2d:60:41:96:3c:39:f1:10: 74:59:40:a0:b9:a6:65:f2:21:9d:05:d4:8f:2b:4e: 03:67:79:01:02:11:2a:6e:44:b2:bf:75:ff:47:13: 8b:4f:40:de:ac:fe:35:14:f8:8d:03:d9:aa:7f:ba: 17:cb:e9:bc:1c:cb:f7:e9:76:cb:20:27:fa:87:3e: cb:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:80:EA:E9:AC:75:48:B2:28:02:74:8C:9F:0C:80:1F:58:DE:0B:B6 X509v3 Authority Key Identifier: keyid:F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:30:19:5f:2b:25:81:87:58:79:62:91:c0:fe:64:65:9c:77: 4c:f9:78:eb:43:c1:0e:26:92:42:2d:c8:2d:14:0a:60:80:3c: 4f:b8:63:fc:78:3b:6b:e2:1d:0a:c1:b7:4b:ee:c8:b9:1b:0e: 53:13:32:96:44:13:6d:17:91:d6:57:d6:a0:e7:2e:ce:c3:e6: b8:c7:fe:97:88:64:3d:c0:ab:33:23:39:86:81:eb:fc:0a:da: f2:0b:40:0b:14:20:38:6d:ac:09:21:f0:6d:70:d1:7e:81:80: fb:de:70:33:63:81:43:64:4a:24:bd:25:b2:5a:de:28:7e:b5: 92:20:03:b2:a4:bc:b3:b8:22:42:fd:19:42:94:dc:66:3a:40: 85:2e:a4:86:91:78:fc:ec:49:bb:8d:7d:57:1a:7d:d6:56:f1: f8:7e:a4:2e:9a:18:b5:0f:28:3d:dd:76:59:5b:f2:aa:81:d2: 0c:b9:d4:bd:d2:63:60:eb:90:12:65:9c:97:2f:f1:2e:f6:78: f5:23:72:ce:37:30:74:98:bf:de:e1:b3:fe:47:26:78:fe:14: 8a:56:35:37:26:22:ee:ba:fc:18:07:39:68:95:93:5b:93:2b: 35:9b:2d:17:90:38:14:97:c8:a1:41:3d:f7:35:ef:de:09:77: 74:2c:db:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1M0MxMTAvBgNVBAUTKEYyMDk3OEI4QTIyQzEzQTBCMDJCOUYzQTVGQzJENDg4 QUJBOEJFRDUwHhcNMjUxMTA0MTk0ODQyWhcNMjUxMTExMTk0ODQyWjAYMRYwFAYD VQQDEw02OTBhNTg5YS03MzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1tF5vLf9y2BoTTFE2gsVZoSwBAV5vYjmGJGIhmL+YiBDJaMzC8zNSzQeyBC zgBBiesXYkCE/nNfQDeiixKiBQMbGdVX/IlsIzol7VHFsd6kZGFk321ZeGg4J5kh Hik0dJj2MzkFrg17gjfvyUHOghaT2TDi1IOQ9XI1WXTApGqnDx9giqW9MPgdvUCB AfAoJoCwltcqVHCYFZJfNDNIkglJaPUYhJVoDLDxeH+54YmvqIJzuNJDcT2KLWBB ljw58RB0WUCguaZl8iGdBdSPK04DZ3kBAhEqbkSyv3X/RxOLT0DerP41FPiNA9mq f7oXy+m8HMv36XbLICf6hz7LVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiA6ums dUiyKAJ0jJ8MgB9Y3gu2MB8GA1UdIwQYMBaAFPIJeLiiLBOgsCufOl/C1IirqL7V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUzQy81QkE4NzgyMDc5 REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2Q3dLNTg2WDhMVWlLdW92 dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnbDR1S0lzRTZDd0s1ODZYOExVaUt1b3Z0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjUzQy81QkE4NzgyMDc5REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2 Q3dLNTg2WDhMVWlLdW92dFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPMBlfKyWBh1h5YpHA/mRlnHdM+XjrQ8EOJpJCLcgtFApggDxPuGP8 eDtr4h0KwbdL7si5Gw5TEzKWRBNtF5HWV9ag5y7Ow+a4x/6XiGQ9wKszIzmGgev8 CtryC0ALFCA4bawJIfBtcNF+gYD73nAzY4FDZEokvSWyWt4ofrWSIAOypLyzuCJC /RlClNxmOkCFLqSGkXj87Em7jX1XGn3WVvH4fqQumhi1Dyg93XZZW/KqgdIMudS9 0mNg65ASZZyXL/Eu9nj1I3LONzB0mL/e4bP+RyZ4/hSKVjU3JiLuuvwYBzlolZNb kys1my0XkDgUl8ihQT33Ne/eCXd0LNvG -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:57 2025 by rpki-client