$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft File: 08nS13n2aEMJcSuzDPoZkpDhuNY.mft (raw, json) Hash identifier: bCWu7AtCja2SHRYYskvRmXTxBn3r4hFIvMdWIxir7ow= Subject key identifier: 6E:3C:A8:EA:80:B3:97:1F:F9:9E:18:DA:DD:90:EB:6D:E4:74:30:CE Authority key identifier: D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 Certificate issuer: /CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft Manifest number: B7 Signing time: Mon 03 Nov 2025 06:00:16 +0000 Manifest this update: Mon 03 Nov 2025 06:00:15 +0000 Manifest next update: Mon 10 Nov 2025 06:00:15 +0000 Files and hashes: 1: 08nS13n2aEMJcSuzDPoZkpDhuNY.crl (hash: 7PACnhh3a14rkrgK3odEKYK1UdMypb9rN2g2Qws8aws=) 2: 6DEFE6D8A14611EF93AB8E21C4F9AE02.roa (hash: rRMGtINr2UhdhF+qj8NjJEBcNErv93/+Ql2sANUuRRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE8F, serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Validity Not Before: Nov 3 06:00:15 2025 GMT Not After : Nov 10 06:00:15 2025 GMT Subject: CN=690844f0-4a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e5:7a:f1:99:d9:5d:33:ec:6d:07:b6:c8:dd: 3a:fd:e7:11:59:8c:98:95:40:b2:5c:62:ac:2b:4d: 18:d1:a0:42:54:29:83:e5:1b:c7:d6:12:47:e0:60: fa:d8:da:bb:77:89:d4:4b:c4:31:8d:3d:60:34:79: 1c:9a:7a:2a:61:a8:58:de:be:7f:bf:5a:63:c2:d4: a7:92:17:9d:75:79:3d:51:9e:40:b4:d2:38:03:d6: 73:26:7e:7c:fe:db:56:bb:de:29:ef:ee:78:7d:70: 44:ec:92:8e:b6:d2:40:5d:ae:6b:a1:c5:15:6b:cf: f1:bd:7b:d2:8a:c3:82:b1:1f:2b:f3:00:9a:3b:10: 22:c5:3d:1d:a2:41:2a:c6:22:f1:45:da:d7:0f:51: 70:8c:2d:c5:56:2e:fc:16:42:4c:f3:b8:5c:e4:b2: e6:24:e7:2c:48:46:20:4b:56:96:7e:38:0d:04:15: d3:b8:fd:90:73:c2:16:aa:18:2c:5f:91:6e:f0:b1: c8:5a:1d:53:36:65:80:c3:13:ab:04:7d:f3:35:11: 83:6a:f3:e3:a9:bd:09:4d:f3:89:4a:f2:37:3d:68: 71:ac:f7:0d:a1:b5:3c:61:a5:5d:70:c7:29:9d:0f: 36:18:07:48:5f:72:b0:07:d3:27:83:57:6c:b1:6e: 22:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:3C:A8:EA:80:B3:97:1F:F9:9E:18:DA:DD:90:EB:6D:E4:74:30:CE X509v3 Authority Key Identifier: keyid:D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:8a:4b:a6:b0:81:c4:f8:96:69:1c:40:be:45:ec:a4:f4:11: 4f:2e:ad:09:6b:8d:4e:aa:72:09:f6:fb:a0:45:e5:f6:50:8e: 13:b2:e9:84:6c:f0:e9:8a:3f:72:23:1e:7f:0a:cc:ec:18:83: 86:0c:ba:0c:75:b7:5d:40:e8:f4:f6:c3:e2:3f:5e:d2:34:a0: cc:5b:22:ec:ff:23:0f:58:d0:11:be:7d:51:b0:3c:00:14:58: 4a:73:e6:00:fd:31:f6:b5:d3:3f:f6:21:36:ec:ba:f4:5c:78: 52:2b:35:bf:95:42:17:0e:ba:cb:48:66:d8:63:1f:51:0b:3e: 6f:49:24:87:7d:da:53:86:13:09:bd:c9:5d:19:2d:66:48:bc: 28:e4:90:fc:9b:65:9c:b5:3a:ef:9d:2e:b8:39:69:f0:5e:9a: 45:5d:79:01:85:31:d3:bf:51:98:1b:21:d4:fd:d3:06:0c:14: 87:d7:ae:22:c5:7c:f0:32:f0:38:29:72:cc:99:c6:1e:4c:c0: b8:ee:69:63:e1:99:32:cb:4e:19:4e:bf:82:ce:67:a9:90:02: 0c:45:c1:a6:28:69:ac:08:ac:45:a6:4b:99:0c:a8:09:48:b7: 01:dc:cb:d3:b0:49:e6:63:59:b4:54:82:b0:46:15:f5:d2:ad: ae:7b:c8:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURFOEYxMTAvBgNVBAUTKEQzQzlEMkQ3NzlGNjY4NDMwOTcxMkJCMzBDRkExOTky OTBFMUI4RDYwHhcNMjUxMTAzMDYwMDE1WhcNMjUxMTEwMDYwMDE1WjAYMRYwFAYD VQQDEw02OTA4NDRmMC00YTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOV68ZnZXTPsbQe2yN06/ecRWYyYlUCyXGKsK00Y0aBCVCmD5RvH1hJH4GD6 2Nq7d4nUS8QxjT1gNHkcmnoqYahY3r5/v1pjwtSnkheddXk9UZ5AtNI4A9ZzJn58 /ttWu94p7+54fXBE7JKOttJAXa5rocUVa8/xvXvSisOCsR8r8wCaOxAixT0dokEq xiLxRdrXD1FwjC3FVi78FkJM87hc5LLmJOcsSEYgS1aWfjgNBBXTuP2Qc8IWqhgs X5Fu8LHIWh1TNmWAwxOrBH3zNRGDavPjqb0JTfOJSvI3PWhxrPcNobU8YaVdcMcp nQ82GAdIX3KwB9Mng1dssW4iNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG48qOqA s5cf+Z4Y2t2Q623kdDDOMB8GA1UdIwQYMBaAFNPJ0td59mhDCXErswz6GZKQ4bjW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REU4Ri8wQjU0M0IwQUEx NDYxMUVGQTEyQTZFMUZDNEY5QUUwMi8wOG5TMTNuMmFFTUpjU3V6RFBvWmtwRGh1 TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4blMxM24yYUVNSmNTdXpEUG9aa3BEaHVOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REU4Ri8wQjU0M0IwQUExNDYxMUVGQTEyQTZFMUZDNEY5QUUwMi8wOG5TMTNuMmFF TUpjU3V6RFBvWmtwRGh1TlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyikumsIHE+JZpHEC+Reyk9BFPLq0Ja41OqnIJ9vugReX2UI4TsumE bPDpij9yIx5/CszsGIOGDLoMdbddQOj09sPiP17SNKDMWyLs/yMPWNARvn1RsDwA FFhKc+YA/TH2tdM/9iE27Lr0XHhSKzW/lUIXDrrLSGbYYx9RCz5vSSSHfdpThhMJ vcldGS1mSLwo5JD8m2WctTrvnS64OWnwXppFXXkBhTHTv1GYGyHU/dMGDBSH164i xXzwMvA4KXLMmcYeTMC47mlj4Zkyy04ZTr+CzmepkAIMRcGmKGmsCKxFpkuZDKgJ SLcB3MvTsEnmY1m0VIKwRhX10q2ue8iT -----END CERTIFICATE-----Generated at Tue Nov 4 08:20:04 2025 by rpki-client