$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft File: 8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft (raw, json) Hash identifier: ase1ftMz7POINlTx1nX11+fjYq6e78ALlb8QRREIPQE= Subject key identifier: 27:B2:E7:24:82:B7:7D:FB:46:DC:6E:4D:D2:74:42:25:57:0A:CB:0D Authority key identifier: F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F Certificate issuer: /CN=A9159ECD/serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Certificate serial: 0581 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft Manifest number: 0578 Signing time: Tue 04 Nov 2025 23:24:36 +0000 Manifest this update: Tue 04 Nov 2025 23:24:35 +0000 Manifest next update: Tue 11 Nov 2025 23:24:35 +0000 Files and hashes: 1: 8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl (hash: vjrpy05FbfVmI7J8ucXHlKgHQKb5sfrJDC1+T63kiv4=) 2: C309F5BA017011ECB98B2F33C4F9AE02.roa (hash: qee+KTCUp6bDNFwH36fAFYsE8VZ1yRt+iGxeFmVp9gI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Validity Not Before: Nov 4 23:24:35 2025 GMT Not After : Nov 11 23:24:35 2025 GMT Subject: CN=690a8b33-db90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:74:1b:c2:3d:4d:3a:5c:46:33:66:a6:7d:8f: 03:b1:37:f2:90:29:ac:34:78:a8:d6:6c:2f:be:21: c7:3f:63:13:80:b9:d2:b5:2e:d2:c3:14:87:cc:d1: e0:e8:ad:ba:59:d2:48:76:26:bf:ba:4b:9c:1a:05: d6:cf:8c:3e:11:7b:e7:ff:98:90:96:8f:79:75:c9: 59:99:92:d2:36:b7:f7:14:db:ad:fd:ca:60:f0:96: 9d:f1:f9:c2:96:ef:b6:30:ac:02:92:60:5b:49:56: 05:06:c4:3e:17:f5:b6:14:bb:f6:e9:83:df:53:be: de:be:da:a2:e2:5b:0a:6e:21:6c:3d:e7:c6:75:2f: 96:e5:b2:d1:9b:b5:5e:d7:4d:39:03:34:87:66:de: f1:0f:d8:6a:01:3f:62:ca:03:0d:d2:2d:6a:b7:49: 18:fc:c6:c9:15:e8:b2:86:3b:60:c7:46:f4:3b:77: da:89:d6:aa:44:f5:ce:f0:9c:a0:15:9c:fe:72:96: 8b:d7:ba:9f:1e:6e:92:0e:30:99:a5:e0:e4:2d:76: 59:91:8c:2a:4e:0c:0b:4f:59:d8:d7:0d:93:bb:5f: 5a:48:a2:d4:18:5d:5c:60:ed:30:f7:48:b4:91:5d: df:e8:3d:f6:0a:84:31:40:64:83:5e:df:a0:bd:d2: 9c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B2:E7:24:82:B7:7D:FB:46:DC:6E:4D:D2:74:42:25:57:0A:CB:0D X509v3 Authority Key Identifier: keyid:F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:6b:a3:e9:64:3d:80:4e:fb:32:54:06:da:ad:ee:e3:f0:52: fe:d0:18:31:7a:1a:f8:9f:66:29:f9:df:75:e4:2b:41:3c:b2: 62:25:cb:9e:d7:c0:d7:ac:fe:43:6d:f7:7a:53:c9:f6:01:b8: c1:57:85:0a:eb:a2:69:aa:36:dc:ba:c5:59:b5:fd:55:93:c6: aa:4a:2e:e4:c4:46:f1:f5:9d:6f:f9:d9:ff:ce:14:b9:18:87: 5e:ce:e3:cb:9d:5f:ff:a5:3a:59:cf:ad:0d:6e:97:40:46:10: 2e:42:8d:ed:5b:54:24:b4:1d:40:c7:50:7a:e4:f9:97:a9:12: 2d:69:f3:fb:87:7b:4f:f1:b4:16:8d:a4:ed:ec:31:9d:2e:2b: bf:7a:0d:77:5b:a2:91:13:76:4c:47:9a:48:33:bc:e8:18:bf: f8:fa:04:df:32:e6:96:2f:e2:21:de:54:c8:a8:13:bf:fb:5d: 62:4f:68:49:76:76:c4:13:e7:47:fe:70:95:5e:5b:df:91:19: 88:f4:65:74:27:cb:43:79:41:f1:39:f3:d2:ea:7b:34:ea:0f: a1:60:84:69:37:60:0c:4c:91:c3:4c:83:d2:d7:9a:2a:eb:af: a6:c8:bc:9a:d8:64:dc:57:5b:82:8b:0f:29:17:b6:78:e2:02: a4:47:6c:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEYxQkE5NDNDMzAzNkM2OUI0NEE3NTk3MEE0NEQ5Mjkw NTY4OUE5MEYwHhcNMjUxMTA0MjMyNDM1WhcNMjUxMTExMjMyNDM1WjAYMRYwFAYD VQQDEw02OTBhOGIzMy1kYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1XQbwj1NOlxGM2amfY8DsTfykCmsNHio1mwvviHHP2MTgLnStS7SwxSHzNHg 6K26WdJIdia/ukucGgXWz4w+EXvn/5iQlo95dclZmZLSNrf3FNut/cpg8Jad8fnC lu+2MKwCkmBbSVYFBsQ+F/W2FLv26YPfU77evtqi4lsKbiFsPefGdS+W5bLRm7Ve 1005AzSHZt7xD9hqAT9iygMN0i1qt0kY/MbJFeiyhjtgx0b0O3faidaqRPXO8Jyg FZz+cpaL17qfHm6SDjCZpeDkLXZZkYwqTgwLT1nY1w2Tu19aSKLUGF1cYO0w90i0 kV3f6D32CoQxQGSDXt+gvdKc5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCey5ySC t337RtxuTdJ0QiVXCssNMB8GA1UdIwQYMBaAFPG6lDwwNsabRKdZcKRNkpBWiakP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC83QUM1MTU0QzAx NkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhwdEVwMWx3cEUyU2tGYUpx UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhicVVQREEyeHB0RXAxbHdwRTJTa0ZhSnFROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC83QUM1MTU0QzAxNkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhw dEVwMWx3cEUyU2tGYUpxUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAta6PpZD2ATvsyVAbare7j8FL+0Bgxehr4n2Yp+d915CtBPLJiJcue 18DXrP5Dbfd6U8n2AbjBV4UK66JpqjbcusVZtf1Vk8aqSi7kxEbx9Z1v+dn/zhS5 GIdezuPLnV//pTpZz60NbpdARhAuQo3tW1QktB1Ax1B65PmXqRItafP7h3tP8bQW jaTt7DGdLiu/eg13W6KRE3ZMR5pIM7zoGL/4+gTfMuaWL+Ih3lTIqBO/+11iT2hJ dnbEE+dH/nCVXlvfkRmI9GV0J8tDeUHxOfPS6ns06g+hYIRpN2AMTJHDTIPS15oq 66+myLya2GTcV1uCiw8pF7Z44gKkR2zL -----END CERTIFICATE-----Generated at Wed Nov 5 18:26:31 2025 by rpki-client