$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/BD8AED08A64211F0AC995833C4F9AE02/l8hXp1yabimLCaBh2PfOEHv50zM.mft File: l8hXp1yabimLCaBh2PfOEHv50zM.mft (raw, json) Hash identifier: fO0svkjCi99PT1sDhzQiZPwvIE0o2IswFRFSmCToryo= Subject key identifier: 5E:3D:5D:17:0F:86:A6:2D:18:52:EF:71:3D:2F:45:57:94:BF:3F:BA Authority key identifier: 97:C8:57:A7:5C:9A:6E:29:8B:09:A0:61:D8:F7:CE:10:7B:F9:D3:33 Certificate issuer: /CN=A918E4B7/serialNumber=97C857A75C9A6E298B09A061D8F7CE107BF9D333 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/l8hXp1yabimLCaBh2PfOEHv50zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/BD8AED08A64211F0AC995833C4F9AE02/l8hXp1yabimLCaBh2PfOEHv50zM.mft Manifest number: 0D Signing time: Tue 04 Nov 2025 23:36:21 +0000 Manifest this update: Tue 04 Nov 2025 23:36:21 +0000 Manifest next update: Tue 11 Nov 2025 23:36:21 +0000 Files and hashes: 1: l8hXp1yabimLCaBh2PfOEHv50zM.crl (hash: Qe4oB5imEFfoysX9VC18f1oAfsW+5aR5moiWlYmEoBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/BD8AED08A64211F0AC995833C4F9AE02/l8hXp1yabimLCaBh2PfOEHv50zM.crl rsync://rpki.apnic.net/member_repository/A918E4B7/BD8AED08A64211F0AC995833C4F9AE02/l8hXp1yabimLCaBh2PfOEHv50zM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/l8hXp1yabimLCaBh2PfOEHv50zM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=97C857A75C9A6E298B09A061D8F7CE107BF9D333 Validity Not Before: Nov 4 23:36:21 2025 GMT Not After : Nov 11 23:36:21 2025 GMT Subject: CN=690a8df5-733f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:78:74:67:e2:7d:39:43:d0:a0:80:54:7a:3f: 5f:17:55:a3:78:f1:87:fc:16:85:21:7e:05:f0:2d: a6:eb:1b:1b:ab:17:15:3c:6b:30:33:e0:e9:c2:8b: 51:9b:3e:9f:a8:11:b9:62:87:85:2d:3f:05:e2:e7: 30:c7:5b:39:11:8f:44:67:33:1f:c1:bd:e2:4b:d9: 30:9c:32:20:0f:ef:56:5e:43:db:81:a0:c1:6a:6b: 19:c9:c9:61:91:33:63:82:62:98:c8:e4:eb:81:48: 00:68:29:6f:75:de:6a:cb:ea:9b:20:a9:ed:54:29: 4f:1b:de:80:e0:c3:00:c3:81:88:1e:98:4f:9e:6f: 33:4c:9e:35:23:d8:83:6f:1e:f8:b5:83:9b:97:30: 7d:4f:16:3a:6c:35:d8:2b:a7:49:77:f1:57:f8:83: 36:2a:7c:0e:da:de:79:ae:11:03:f1:d2:e0:79:93: a7:dc:e4:fd:92:86:57:1b:eb:79:cf:49:5a:62:01: 02:56:bd:0b:7b:5b:51:70:d4:13:1b:6b:d2:90:27: dd:d8:87:c0:66:6e:fc:6d:fe:03:2f:84:79:a1:f0: f9:e3:ef:d3:6e:3a:26:86:4f:7c:1d:aa:8f:87:f2: 3b:7c:b7:93:ba:af:c5:e1:cf:ae:d1:80:ba:7d:61: ce:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3D:5D:17:0F:86:A6:2D:18:52:EF:71:3D:2F:45:57:94:BF:3F:BA X509v3 Authority Key Identifier: keyid:97:C8:57:A7:5C:9A:6E:29:8B:09:A0:61:D8:F7:CE:10:7B:F9:D3:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/BD8AED08A64211F0AC995833C4F9AE02/l8hXp1yabimLCaBh2PfOEHv50zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/l8hXp1yabimLCaBh2PfOEHv50zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/BD8AED08A64211F0AC995833C4F9AE02/l8hXp1yabimLCaBh2PfOEHv50zM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:69:36:3a:8b:fe:0b:15:37:7e:5e:83:2f:d1:f2:59:37:ae: e2:1d:28:3e:5d:86:40:45:b9:ea:69:b7:c6:89:10:92:a1:cd: c8:87:ee:ad:86:7c:f3:fa:0b:9c:7d:7e:72:44:72:ec:f2:96: 68:09:ac:c4:85:86:32:fc:0d:05:a7:ba:d2:0f:ef:4a:e1:6e: 77:60:61:27:60:92:84:36:9b:52:6d:8a:7f:65:f8:01:d1:f5: 3c:01:76:52:99:2d:c8:13:14:23:28:7b:81:20:e3:62:6f:1a: 36:21:85:bf:a1:34:17:6a:32:3e:a4:9d:2a:b4:71:39:a6:87: ed:3a:e1:5e:b0:ac:ce:63:db:c0:53:a2:a0:12:de:24:7d:3f: 97:ce:3c:af:1d:e4:64:30:18:47:2a:80:d7:9a:e2:ea:53:7b: b4:e9:66:46:5f:99:8c:ca:ea:3c:0f:3d:db:91:27:80:09:e2: c2:e4:aa:75:5a:fd:dc:4e:7c:91:27:34:19:f8:f5:c1:0a:d8: a6:66:84:cd:d2:95:4d:1b:71:6d:ca:9a:2a:f6:70:4e:89:7e: 91:36:21:09:a7:ad:0c:f2:c0:88:27:30:27:91:60:03:12:c1: 23:25:fb:85:3b:b5:5f:15:fb:82:76:af:db:6c:87:02:5a:29: 52:04:69:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTRCNzExMC8GA1UEBRMoOTdDODU3QTc1QzlBNkUyOThCMDlBMDYxRDhGN0NFMTA3 QkY5RDMzMzAeFw0yNTExMDQyMzM2MjFaFw0yNTExMTEyMzM2MjFaMBgxFjAUBgNV BAMTDTY5MGE4ZGY1LTczM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYeHRn4n05Q9CggFR6P18XVaN48Yf8FoUhfgXwLabrGxurFxU8azAz4OnCi1Gb Pp+oEblih4UtPwXi5zDHWzkRj0RnMx/BveJL2TCcMiAP71ZeQ9uBoMFqaxnJyWGR M2OCYpjI5OuBSABoKW913mrL6psgqe1UKU8b3oDgwwDDgYgemE+ebzNMnjUj2INv Hvi1g5uXMH1PFjpsNdgrp0l38Vf4gzYqfA7a3nmuEQPx0uB5k6fc5P2Shlcb63nP SVpiAQJWvQt7W1Fw1BMba9KQJ93Yh8Bmbvxt/gMvhHmh8Pnj79NuOiaGT3wdqo+H 8jt8t5O6r8Xhz67RgLp9Yc4DAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXj1dFw+G pi0YUu9xPS9FV5S/P7owHwYDVR0jBBgwFoAUl8hXp1yabimLCaBh2PfOEHv50zMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFNEI3L0JEOEFFRDA4QTY0 MjExRjBBQzk5NTgzM0M0RjlBRTAyL2w4aFhwMXlhYmltTENhQmgyUGZPRUh2NTB6 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbDhoWHAxeWFiaW1MQ2FCaDJQZk9FSHY1MHpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF NEI3L0JEOEFFRDA4QTY0MjExRjBBQzk5NTgzM0M0RjlBRTAyL2w4aFhwMXlhYmlt TENhQmgyUGZPRUh2NTB6TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ9pNjqL/gsVN35egy/R8lk3ruIdKD5dhkBFueppt8aJEJKhzciH7q2G fPP6C5x9fnJEcuzylmgJrMSFhjL8DQWnutIP70rhbndgYSdgkoQ2m1Jtin9l+AHR 9TwBdlKZLcgTFCMoe4Eg42JvGjYhhb+hNBdqMj6knSq0cTmmh+064V6wrM5j28BT oqAS3iR9P5fOPK8d5GQwGEcqgNea4upTe7TpZkZfmYzK6jwPPduRJ4AJ4sLkqnVa /dxOfJEnNBn49cEK2KZmhM3SlU0bcW3Kmir2cE6JfpE2IQmnrQzywIgnMCeRYAMS wSMl+4U7tV8V+4J2r9tshwJaKVIEaaM= -----END CERTIFICATE-----Generated at Wed Nov 5 23:22:30 2025 by rpki-client