$ rpki-client -vvf rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft File: rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft (raw, json) Hash identifier: DYM39GdcoBYInoOMIit87bxk9NleA9p8xzss2bCOsGU= Subject key identifier: 2E:28:79:C9:D1:B7:3F:F1:0C:F7:DA:0C:39:7E:74:C2:ED:D9:61:EE Authority key identifier: AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 Certificate issuer: /CN=A917138D/serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Certificate serial: 083C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft Manifest number: 082A Signing time: Tue 04 Nov 2025 20:57:16 +0000 Manifest this update: Tue 04 Nov 2025 20:57:16 +0000 Manifest next update: Tue 11 Nov 2025 20:57:16 +0000 Files and hashes: 1: rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl (hash: Xjr8WZEOVOyL/s22gWnKApbyTZGiKefvmjmmsmsIbXo=) 2: 7D0F62FAF3EF11EA82F3C251C4F9AE02.roa (hash: mDiyXguFaGa3vR8D07iQ+K1O3uq6pL2JeIG9VyLGezQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2108 (0x83c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917138D, serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Validity Not Before: Nov 4 20:57:16 2025 GMT Not After : Nov 11 20:57:16 2025 GMT Subject: CN=690a68ac-d0de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bf:87:aa:ae:65:20:08:7b:01:2d:2f:32:7b: b3:0a:17:b4:4d:bf:ba:72:ce:19:18:e9:f7:c8:14: 0c:81:7f:17:1b:41:20:d1:fc:66:58:ae:b3:8c:40: b3:6e:f0:fa:37:fb:40:93:77:ef:3f:83:1d:c7:02: 1e:96:7e:dc:ba:f5:b2:4a:19:38:09:05:fa:c6:71: 98:1b:dd:a9:fa:d5:d3:41:66:43:bd:3e:e3:a9:b9: 32:c7:92:b3:6c:d9:e2:41:20:1c:00:c5:db:2f:9a: 40:c7:01:f3:9e:e2:ed:38:ae:3a:7e:39:5e:7c:ef: 56:d3:10:9d:a4:40:f8:68:cf:ad:30:db:4e:78:dc: bf:09:df:69:29:af:2e:18:49:0c:e4:93:4f:db:71: 1e:2d:3c:9d:c1:37:8c:a0:2d:f5:57:ea:b6:41:1f: fa:cb:3d:bd:fa:89:a3:8a:a1:68:d9:27:e6:27:2d: f3:b6:6b:56:96:40:07:3a:5d:76:8a:6c:4e:dd:a1: 3d:41:91:50:27:49:c3:95:c4:a3:52:bd:70:09:5f: 63:78:a5:b3:ca:9f:27:c3:9d:79:3e:09:c1:d2:aa: 6f:23:6b:ac:3c:d0:df:71:d3:49:ef:4c:81:33:a5: 0f:63:a7:2e:5b:a8:4d:6d:cb:c5:ed:9c:f1:dc:12: 4c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:28:79:C9:D1:B7:3F:F1:0C:F7:DA:0C:39:7E:74:C2:ED:D9:61:EE X509v3 Authority Key Identifier: keyid:AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:31:16:6e:53:df:7e:6d:d7:49:38:c7:21:3b:5a:4b:26:6f: f8:1a:8c:8f:08:e3:e2:9e:63:2f:25:a3:31:1c:83:e6:d7:a9: 21:17:69:48:6f:b1:ab:3a:2c:9d:4e:82:56:02:39:5b:d6:b5: 11:86:66:db:78:32:cb:40:e5:0a:61:6c:c3:b2:d8:a3:79:82: 5e:c9:da:d9:6f:0b:13:a7:3a:7c:bd:db:a5:18:00:cd:d3:d2: 9e:99:1e:12:07:1c:b7:b1:8b:cc:d0:68:db:02:43:bb:99:4f: 08:33:1c:7d:85:11:f8:50:52:26:07:66:de:c5:0a:e5:b8:bb: 7c:31:be:58:9a:dc:cf:ac:bc:96:fa:a6:36:e2:bb:16:54:5b: e4:fb:6e:51:05:27:74:6e:a9:96:9c:86:a3:ba:b8:10:76:82: 71:e4:22:76:84:37:75:99:f8:f3:1c:57:59:16:62:7b:fd:32: 20:13:b9:ae:9a:68:5c:3a:8c:da:eb:01:2e:6b:67:90:38:3f: 3b:28:0f:7d:57:9b:d1:e4:43:f5:d2:7e:b1:0e:49:dc:4b:80: f3:3d:65:46:d9:28:2d:9f:8e:11:d6:6c:f1:0b:c1:1e:92:7a: 42:c2:72:3d:b0:26:fe:41:7c:dd:b6:f5:7a:56:be:1d:d4:bd: d1:1f:41:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEzOEQxMTAvBgNVBAUTKEFFMEYwRTlFRDRBNjcwNkU5MkUxMEI3ODlCQUMyQzYy NUE1NjUxNTYwHhcNMjUxMTA0MjA1NzE2WhcNMjUxMTExMjA1NzE2WjAYMRYwFAYD VQQDEw02OTBhNjhhYy1kMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL+Hqq5lIAh7AS0vMnuzChe0Tb+6cs4ZGOn3yBQMgX8XG0Eg0fxmWK6zjECz bvD6N/tAk3fvP4MdxwIeln7cuvWyShk4CQX6xnGYG92p+tXTQWZDvT7jqbkyx5Kz bNniQSAcAMXbL5pAxwHznuLtOK46fjlefO9W0xCdpED4aM+tMNtOeNy/Cd9pKa8u GEkM5JNP23EeLTydwTeMoC31V+q2QR/6yz29+omjiqFo2SfmJy3ztmtWlkAHOl12 imxO3aE9QZFQJ0nDlcSjUr1wCV9jeKWzyp8nw515PgnB0qpvI2usPNDfcdNJ70yB M6UPY6cuW6hNbcvF7Zzx3BJMVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4oecnR tz/xDPfaDDl+dMLt2WHuMB8GA1UdIwQYMBaAFK4PDp7UpnBukuELeJusLGJaVlFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTM4RC80RjZFOTMxOEYz RUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNHNlM0UXQ0bTZ3c1lscFdV VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JnOE9udFNtY0c2UzRRdDRtNndzWWxwV1VWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTM4RC80RjZFOTMxOEYzRUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNH NlM0UXQ0bTZ3c1lscFdVVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8MRZuU99+bddJOMchO1pLJm/4GoyPCOPinmMvJaMxHIPm16khF2lI b7GrOiydToJWAjlb1rURhmbbeDLLQOUKYWzDstijeYJeydrZbwsTpzp8vdulGADN 09KemR4SBxy3sYvM0GjbAkO7mU8IMxx9hRH4UFImB2bexQrluLt8Mb5YmtzPrLyW +qY24rsWVFvk+25RBSd0bqmWnIajurgQdoJx5CJ2hDd1mfjzHFdZFmJ7/TIgE7mu mmhcOoza6wEua2eQOD87KA99V5vR5EP10n6xDkncS4DzPWVG2Sgtn44R1mzxC8Ee knpCwnI9sCb+QXzdtvV6Vr4d1L3RH0HQ -----END CERTIFICATE-----Generated at Wed Nov 5 02:18:48 2025 by rpki-client