$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft File: 8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json) Hash identifier: H77DA39IVSojMsbUtfodNOnuexmzFr60irFn9X8QLm8= Subject key identifier: 06:90:2F:B1:21:05:FF:46:A9:17:00:7C:79:BC:48:69:A0:F5:23:EA Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 Certificate issuer: /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Certificate serial: 03B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft Manifest number: 03AC Signing time: Wed 05 Nov 2025 00:47:44 +0000 Manifest this update: Wed 05 Nov 2025 00:47:44 +0000 Manifest next update: Wed 12 Nov 2025 00:47:44 +0000 Files and hashes: 1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: LF7qD3K6oSIbf0ra+vQHJE1nYpM/d9gG6MFL3z6XU/Y=) 2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: WXC/B6Dbe8kPnOwbgfCf/9me935cYsiOJufkenUuGQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Validity Not Before: Nov 5 00:47:44 2025 GMT Not After : Nov 12 00:47:44 2025 GMT Subject: CN=690a9eb0-d732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ad:74:f9:4a:0d:3e:cf:70:95:8e:05:78:9c: 76:3f:1a:30:1a:fb:2a:56:28:6e:5d:d4:46:04:f7: d3:fa:ba:a3:7a:f4:32:0e:ce:f8:2e:59:c5:f8:62: 8d:5d:8e:55:4c:99:47:ae:b4:31:35:d8:46:62:45: 89:33:1f:24:5e:26:c9:e0:3b:ef:5c:54:08:8f:49: c9:e9:dc:62:cd:83:d9:9d:f6:ce:54:e2:c8:c1:b9: 35:58:2f:3d:31:2c:4c:4f:d3:d5:f5:ef:db:fb:9f: 8f:63:a0:ce:41:fa:c0:a1:02:96:82:e5:87:b1:23: 13:d5:fb:02:69:cd:9f:5e:da:ae:7d:b0:3f:30:2d: 93:41:b0:89:e5:ab:fc:6d:3e:5f:4b:90:cc:e4:b2: 49:a0:51:26:ac:31:34:61:16:4b:bd:4e:b2:83:8f: 98:92:41:6e:2c:7b:3e:ee:41:c4:67:08:45:1e:6c: d1:24:0e:96:c1:a9:dc:0f:54:02:2f:2f:dc:ca:53: eb:ad:8c:10:0f:53:47:05:65:1b:1f:d4:11:ca:7f: 1d:0e:0d:c8:49:36:05:10:59:2a:7d:7e:74:d6:e9: 99:c0:7f:7b:f0:7e:70:40:e1:c2:ec:74:c4:32:56: c5:6d:b9:6d:9e:b6:77:c3:2c:61:2c:15:d3:75:8b: 75:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:90:2F:B1:21:05:FF:46:A9:17:00:7C:79:BC:48:69:A0:F5:23:EA X509v3 Authority Key Identifier: keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:f3:c3:a2:b9:5a:32:c6:e0:59:41:5d:6f:51:7f:93:91:a6: c9:fe:6e:2c:9b:e0:35:b2:9b:d2:ca:51:44:52:81:b0:6c:81: 83:42:fb:03:c0:9b:ea:54:74:63:03:81:7c:59:e9:ec:50:e8: f0:72:7f:a0:b1:73:70:58:57:a0:62:93:ed:ac:07:85:d8:8d: 4a:66:be:c4:9e:ec:31:4c:86:8f:e5:3a:c1:c2:8f:10:19:da: ad:c2:e4:93:b9:77:36:d6:3d:14:af:6a:ca:e5:c8:ad:0c:c1: 1a:cb:06:bc:90:85:16:a8:cb:0f:ac:81:4e:4f:1a:fa:94:a3: 05:3d:53:d1:75:ac:e5:4a:af:7b:bd:dc:0b:5a:14:7d:c0:17: 16:cc:7f:23:bb:22:ac:43:16:e2:0a:e5:98:fb:64:27:b5:d1: 28:17:0d:3f:7e:7d:10:3a:c7:ac:6d:28:5e:02:ac:07:ef:77: 65:2f:e4:b9:3e:67:e2:9b:fd:a7:dc:5a:61:df:18:a1:5a:3d: 76:79:d1:1e:22:00:89:ec:11:f9:fa:86:f9:a7:d2:78:7b:b0: dc:0a:36:be:da:0a:7e:b3:ef:00:52:72:75:55:18:4a:f7:ae: 1f:82:6a:bd:25:a7:fb:1f:6c:87:e7:60:e8:b2:6e:e8:35:f8: fb:9f:75:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5QzAxMTAvBgNVBAUTKEYxNTAxOTIwQTU1RjNBN0MyNzEwMzkxNDlGRkEyOEE3 QzFDQzM4RjEwHhcNMjUxMTA1MDA0NzQ0WhcNMjUxMTEyMDA0NzQ0WjAYMRYwFAYD VQQDEw02OTBhOWViMC1kNzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK10+UoNPs9wlY4FeJx2PxowGvsqVihuXdRGBPfT+rqjevQyDs74LlnF+GKN XY5VTJlHrrQxNdhGYkWJMx8kXibJ4DvvXFQIj0nJ6dxizYPZnfbOVOLIwbk1WC89 MSxMT9PV9e/b+5+PY6DOQfrAoQKWguWHsSMT1fsCac2fXtqufbA/MC2TQbCJ5av8 bT5fS5DM5LJJoFEmrDE0YRZLvU6yg4+YkkFuLHs+7kHEZwhFHmzRJA6WwancD1QC Ly/cylPrrYwQD1NHBWUbH9QRyn8dDg3ISTYFEFkqfX501umZwH978H5wQOHC7HTE MlbFbbltnrZ3wyxhLBXTdYt1dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaQL7Eh Bf9GqRcAfHm8SGmg9SPqMB8GA1UdIwQYMBaAFPFQGSClXzp8JxA5FJ/6KKfBzDjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlDMC82Q0IzODM1OEIz NDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9ud25FRGtVbl9vb3A4SE1P UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWQVpJS1ZmT253bkVEa1VuX29vcDhITU9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlDMC82Q0IzODM1OEIzNDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9u d25FRGtVbl9vb3A4SE1PUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB88OiuVoyxuBZQV1vUX+TkabJ/m4sm+A1spvSylFEUoGwbIGDQvsD wJvqVHRjA4F8WensUOjwcn+gsXNwWFegYpPtrAeF2I1KZr7EnuwxTIaP5TrBwo8Q GdqtwuSTuXc21j0Ur2rK5citDMEaywa8kIUWqMsPrIFOTxr6lKMFPVPRdazlSq97 vdwLWhR9wBcWzH8juyKsQxbiCuWY+2QntdEoFw0/fn0QOsesbSheAqwH73dlL+S5 Pmfim/2n3Fph3xihWj12edEeIgCJ7BH5+ob5p9J4e7DcCja+2gp+s+8AUnJ1VRhK 964fgmq9Jaf7H2yH52Dosm7oNfj7n3VX -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:09 2025 by rpki-client