$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft File: 8kxEMhD3QcvlnQFOum7pcrXN2uc.mft (raw, json) Hash identifier: mkadjt9CyphnWXh+kf0H0wB+jfuthiPS4P/igiG03EY= Subject key identifier: 87:79:CB:AA:6B:F5:E3:E0:D8:FD:A7:0E:E5:38:D2:E6:6D:AC:89:C4 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft Manifest number: FD Signing time: Wed 05 Nov 2025 05:17:34 +0000 Manifest this update: Wed 05 Nov 2025 05:17:34 +0000 Manifest next update: Wed 12 Nov 2025 05:17:34 +0000 Files and hashes: 1: 8kxEMhD3QcvlnQFOum7pcrXN2uc.crl (hash: x7QFPN7XYVHBo2TYjfTNhhDO1wTpeBpoE0UA4f6MGKM=) 2: 20A6C35C37AF11EF844EC638C4F9AE02.roa (hash: P4Mm2VNQngkGMc8lCO6eHVGOp7Fy5SVP9GQX/B339mE=) 3: 2117AE6E37AF11EF844EC638C4F9AE02.roa (hash: vmrZgLw19B5ritq7z4vG50pAGmXRwXJvrAIY9L3sz/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Nov 5 05:17:34 2025 GMT Not After : Nov 12 05:17:34 2025 GMT Subject: CN=690addee-b921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:15:e8:a7:ab:7e:30:d0:cd:0d:28:16:d4:89: 13:18:a5:91:77:23:94:bd:69:0c:08:ab:33:a2:1e: 0d:1a:67:f1:7b:7a:94:9d:54:4c:6c:db:82:01:20: d7:ad:36:4f:42:21:ea:d7:41:ca:d9:0c:44:cd:58: bd:ad:ca:fe:69:63:b2:53:1b:5e:72:5d:86:48:8e: 89:dc:aa:d6:ec:d6:6c:05:2c:f7:fe:8e:62:7e:f5: 03:c5:b7:2f:7c:79:01:51:18:b6:6f:aa:ad:8e:88: d0:aa:d7:3f:3e:8b:01:e0:11:20:47:3f:5f:5b:f0: 79:4a:ff:b1:2c:fb:d2:3b:68:0e:d7:db:2b:f7:26: 0f:e7:20:40:37:9c:6b:f7:d0:87:4a:aa:0a:e6:38: 32:ef:51:68:bb:01:d5:51:43:52:7e:3f:e5:f9:7b: bb:6d:15:7b:f8:30:db:00:00:c8:cd:b4:88:c4:d4: 02:c2:46:3c:a1:a2:7e:7d:61:1b:6c:55:3e:6c:24: c3:ec:e3:3f:de:6c:ca:02:82:26:9b:4c:a6:ba:9d: b4:1a:d3:31:f4:d2:ea:8a:69:e8:5e:99:0c:fb:40: 86:81:26:42:da:e0:c0:9e:3b:cd:7e:e0:a7:b6:90: 6b:e3:53:8f:4c:a0:74:10:7b:0e:c8:24:9a:c2:4d: 99:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:79:CB:AA:6B:F5:E3:E0:D8:FD:A7:0E:E5:38:D2:E6:6D:AC:89:C4 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:b7:83:6e:0e:15:49:eb:84:25:ea:75:89:5d:25:7f:60:25: 04:47:63:32:70:92:8e:1c:ca:5b:83:0b:05:0b:ab:76:3a:e2: 05:39:d2:38:ec:f8:66:18:cb:6e:bf:ce:37:d4:4f:d5:f7:d2: 1a:85:2c:8b:2a:6d:b7:d3:d1:7b:10:c5:b2:34:19:15:bc:00: 06:06:ba:28:07:28:b6:70:cd:29:f2:e9:87:66:90:af:26:73: 59:89:25:61:da:cc:92:ca:68:06:cb:b6:23:7b:45:33:f5:36: 45:69:92:a5:9c:09:d8:7b:eb:8e:bc:56:15:bf:e0:3d:4f:7e: bf:e3:3f:9e:d9:47:e5:aa:57:ae:38:d1:21:3a:5f:dd:5c:97: 9d:fa:e8:c6:78:ec:36:fe:19:13:c5:63:92:b4:97:33:06:38: 56:04:70:8f:68:f3:2e:e1:77:7e:1a:d2:67:ce:45:06:06:38: f2:9c:51:7d:b8:f5:e7:26:6b:ec:bc:40:b7:02:e4:9f:60:19: 9f:68:27:44:fe:a6:76:44:79:70:d4:d6:dc:8b:f4:ad:ba:10: 00:97:fc:e2:bc:80:79:9f:4b:fa:5b:98:f6:5e:b8:e6:d3:13: 3e:cb:37:aa:cd:03:e9:8f:c5:bf:45:07:1f:4a:71:4b:26:73: a8:03:20:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjUxMTA1MDUxNzM0WhcNMjUxMTEyMDUxNzM0WjAYMRYwFAYD VQQDEw02OTBhZGRlZS1iOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRXop6t+MNDNDSgW1IkTGKWRdyOUvWkMCKszoh4NGmfxe3qUnVRMbNuCASDX rTZPQiHq10HK2QxEzVi9rcr+aWOyUxtecl2GSI6J3KrW7NZsBSz3/o5ifvUDxbcv fHkBURi2b6qtjojQqtc/PosB4BEgRz9fW/B5Sv+xLPvSO2gO19sr9yYP5yBAN5xr 99CHSqoK5jgy71FouwHVUUNSfj/l+Xu7bRV7+DDbAADIzbSIxNQCwkY8oaJ+fWEb bFU+bCTD7OM/3mzKAoImm0ymup20GtMx9NLqimnoXpkM+0CGgSZC2uDAnjvNfuCn tpBr41OPTKB0EHsOyCSawk2ZWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFId5y6pr 9ePg2P2nDuU40uZtrInEMB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81MTJDNzA1RTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1Fj dmxuUUZPdW03cGNyWE4ydWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCst4NuDhVJ64Ql6nWJXSV/YCUER2MycJKOHMpbgwsFC6t2OuIFOdI4 7PhmGMtuv8431E/V99IahSyLKm2309F7EMWyNBkVvAAGBrooByi2cM0p8umHZpCv JnNZiSVh2sySymgGy7Yje0Uz9TZFaZKlnAnYe+uOvFYVv+A9T36/4z+e2Uflqleu ONEhOl/dXJed+ujGeOw2/hkTxWOStJczBjhWBHCPaPMu4Xd+GtJnzkUGBjjynFF9 uPXnJmvsvEC3AuSfYBmfaCdE/qZ2RHlw1Nbci/StuhAAl/zivIB5n0v6W5j2Xrjm 0xM+yzeqzQPpj8W/RQcfSnFLJnOoAyDK -----END CERTIFICATE-----Generated at Wed Nov 5 20:07:16 2025 by rpki-client