$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft File: u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft (raw, json) Hash identifier: fIyXLEKcFtmtxu1DFVT6JmPZxtMqMpoKd7FsrwUnBA8= Subject key identifier: D8:4D:32:45:3B:3A:DC:22:88:DB:30:F2:E5:73:FE:B4:08:96:55:7B Authority key identifier: BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 Certificate issuer: /CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Certificate serial: 06E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft Manifest number: 06E1 Signing time: Sun 02 Nov 2025 21:57:31 +0000 Manifest this update: Sun 02 Nov 2025 21:57:30 +0000 Manifest next update: Sun 09 Nov 2025 21:57:30 +0000 Files and hashes: 1: u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl (hash: JOvfB+3apoI0nf9fYcPQUOYwS3P/84CTTagBg657CUk=) 2: 58B04DD46F3C11EB924C4E2AC4F9AE02.roa (hash: hyfMZHqHSYXqXmUoPBYl5C2bAAKrO9L6ZCwOSgIJA4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1767 (0x6e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3E3, serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Validity Not Before: Nov 2 21:57:30 2025 GMT Not After : Nov 9 21:57:30 2025 GMT Subject: CN=6907d3ca-dd24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:42:85:02:47:68:31:71:24:6b:a3:b5:dd:ab: 17:51:af:b3:c9:61:eb:d7:99:d9:74:f6:67:8c:ab: 70:17:53:3a:57:63:d0:16:bc:a3:16:a9:2c:57:17: 19:b3:17:2b:f5:75:c3:fa:f6:0a:25:e6:6e:a4:47: 70:0a:b3:ff:db:a9:d3:59:7c:b8:2b:45:15:7b:b0: e0:be:fe:bf:4f:59:2c:2d:c2:e9:f4:02:ba:af:30: 15:03:75:8e:2a:34:a7:26:d8:fc:c5:8c:4a:60:9c: cc:a6:8c:71:e2:42:08:f0:57:d1:3b:00:08:d4:db: 79:c4:34:82:a1:e6:b0:d7:96:bf:dd:a7:70:27:f6: 20:17:bd:f6:74:0f:ca:f0:6c:e5:b7:46:d4:d0:27: b7:3b:9e:90:19:7f:33:09:09:98:7c:fb:d2:47:01: f2:8e:6b:51:38:d1:16:87:4c:ef:82:b5:7e:90:55: 4e:7a:fd:59:d0:fa:32:69:73:1e:2f:1a:da:7c:38: 6d:e8:ce:dd:88:fd:41:c3:69:fd:cb:d2:b9:af:30: 35:c5:66:d8:8b:b7:ca:05:2c:52:e8:99:35:d0:aa: f2:7a:eb:74:61:ec:5d:06:1b:1a:c1:a3:bd:63:78: 40:5e:c3:b5:22:d8:28:26:03:b2:41:78:df:42:3e: 5f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:4D:32:45:3B:3A:DC:22:88:DB:30:F2:E5:73:FE:B4:08:96:55:7B X509v3 Authority Key Identifier: keyid:BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:0f:c9:d2:62:8c:53:26:82:6f:b5:7f:fd:e3:2d:d9:29:b8: 68:3d:62:e8:d0:de:9a:3b:f8:d6:a9:6a:91:21:99:fb:22:f9: 5d:97:32:44:2c:33:98:84:bc:b9:f1:d0:c1:76:df:81:f5:a0: b9:e2:51:9c:e2:3a:81:93:f5:73:d7:77:ce:e1:ce:94:9b:f1: 87:b6:9b:cd:e5:29:33:c7:82:09:45:56:e2:ef:66:16:ed:99: a2:eb:f9:47:b2:31:52:e5:80:24:4a:0f:14:a8:27:fb:8d:02: 6b:71:ca:54:fa:d7:18:70:18:a1:6d:cd:c9:eb:38:2f:98:93: 84:5b:8e:90:ea:4c:b5:98:90:70:90:21:33:f7:27:a1:4b:b6: 32:f0:45:f5:f1:d5:ef:69:80:d4:cf:14:48:a9:07:42:29:29: c4:e2:a4:e4:cf:06:f9:f9:43:31:f8:2b:b6:da:50:6c:e7:c8: 46:7a:b1:15:db:f9:8d:c8:ca:15:87:b9:40:12:55:53:82:d1: 96:81:b9:8d:da:1b:1b:6e:fb:3c:89:28:e4:47:22:14:e8:9c: 46:90:47:02:1d:32:6e:56:fd:d1:d3:04:f4:60:6c:fe:eb:70: ae:b3:47:11:6c:15:b3:57:6b:1e:6b:a9:64:be:70:70:c0:1f: 49:39:3d:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRTMxMTAvBgNVBAUTKEJCQ0M3NjBBRkUzRTlGMEE5Qjg4QzhFQzdBNDlFRDdD REQwMzk2RjcwHhcNMjUxMTAyMjE1NzMwWhcNMjUxMTA5MjE1NzMwWjAYMRYwFAYD VQQDEw02OTA3ZDNjYS1kZDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/EKFAkdoMXEka6O13asXUa+zyWHr15nZdPZnjKtwF1M6V2PQFryjFqksVxcZ sxcr9XXD+vYKJeZupEdwCrP/26nTWXy4K0UVe7Dgvv6/T1ksLcLp9AK6rzAVA3WO KjSnJtj8xYxKYJzMpoxx4kII8FfROwAI1Nt5xDSCoeaw15a/3adwJ/YgF732dA/K 8Gzlt0bU0Ce3O56QGX8zCQmYfPvSRwHyjmtRONEWh0zvgrV+kFVOev1Z0PoyaXMe LxrafDht6M7diP1Bw2n9y9K5rzA1xWbYi7fKBSxS6Jk10Kryeut0YexdBhsawaO9 Y3hAXsO1ItgoJgOyQXjfQj5f/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhNMkU7 OtwiiNsw8uVz/rQIllV7MB8GA1UdIwQYMBaAFLvMdgr+Pp8Km4jI7HpJ7XzdA5b3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNFMy8wOEI4RDBEMjZG M0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53cWJpTWpzZWtudGZOMERs dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U4eDJDdjQtbndxYmlNanNla250Zk4wRGx2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNFMy8wOEI4RDBEMjZGM0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53 cWJpTWpzZWtudGZOMERsdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkD8nSYoxTJoJvtX/94y3ZKbhoPWLo0N6aO/jWqWqRIZn7IvldlzJE LDOYhLy58dDBdt+B9aC54lGc4jqBk/Vz13fO4c6Um/GHtpvN5Skzx4IJRVbi72YW 7Zmi6/lHsjFS5YAkSg8UqCf7jQJrccpU+tcYcBihbc3J6zgvmJOEW46Q6ky1mJBw kCEz9yehS7Yy8EX18dXvaYDUzxRIqQdCKSnE4qTkzwb5+UMx+Cu22lBs58hGerEV 2/mNyMoVh7lAElVTgtGWgbmN2hsbbvs8iSjkRyIU6JxGkEcCHTJuVv3R0wT0YGz+ 63Cus0cRbBWzV2sea6lkvnBwwB9JOT1c -----END CERTIFICATE-----Generated at Tue Nov 4 02:17:10 2025 by rpki-client