$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft File: L8Qw8eIVy9fgjyZDiDcDUALeMak.mft (raw, json) Hash identifier: ZcZ+jJoaOKZtWdAMWkq6vURj7azzNl+YslHDq9hw+ak= Subject key identifier: 2A:39:2E:96:F4:57:CF:93:1A:B8:B2:99:E8:DF:A4:A7:42:69:03:E3 Authority key identifier: 2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 Certificate issuer: /CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Certificate serial: 0305 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft Manifest number: 02F9 Signing time: Mon 03 Nov 2025 01:11:06 +0000 Manifest this update: Mon 03 Nov 2025 01:11:06 +0000 Manifest next update: Mon 10 Nov 2025 01:11:06 +0000 Files and hashes: 1: L8Qw8eIVy9fgjyZDiDcDUALeMak.crl (hash: NuWRD3y/hW20+i3/Jf70uTT00BUP2xf29LuaFww5+io=) 2: CC1ACE7A6BC711F098C3B76CC4F9AE02.roa (hash: l12GGHb5zU8WFaP5yfw8CrXUTcEdQRcdzqYPOrrqqtY=) 3: 36B29DDC841711F0AB46F416C4F9AE02.roa (hash: mBez32ljXmIU/FGdNqv/QIBBd8Jpz2uUA0e46aOruT4=) 4: 5E616E44841711F0B7A8C63CC4F9AE02.roa (hash: I75VXJWFaD1GwhF1O0TXZ8SEa9d38CWsNr1ZhVLKJs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:11:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 773 (0x305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8A3, serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Validity Not Before: Nov 3 01:11:06 2025 GMT Not After : Nov 10 01:11:06 2025 GMT Subject: CN=6908012a-6fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6f:29:28:c1:c9:2f:51:9a:36:ed:54:4a:5b: f7:4d:0d:d3:6f:29:8d:63:fc:3b:ef:bc:1b:ff:fe: 6c:5f:ad:b2:42:bf:3d:f7:06:b7:32:ba:2b:95:6f: 74:bd:d9:a3:f7:86:04:2f:b7:aa:25:94:03:ea:a3: 3a:f4:6e:d7:19:92:8d:23:14:4d:4f:42:fb:3d:0a: 3b:a8:10:fa:34:6f:78:47:f3:ea:26:f5:c3:70:12: 22:29:5f:54:ed:bd:57:3b:3f:6b:fb:7f:58:c0:f8: d6:d0:e7:2d:0e:e5:b7:07:a5:bd:6f:40:74:f6:5f: 71:16:f6:61:41:b3:e0:9d:c5:93:f4:81:db:23:83: fc:4e:55:b9:64:e3:b2:2c:05:bf:5a:87:da:36:47: 3c:2a:66:fb:86:37:b7:b1:8a:29:5d:b0:6e:8a:ef: a2:8f:76:ee:4d:87:04:df:46:cc:26:02:46:fe:a5: 21:e1:1d:7a:73:d8:17:6c:48:2a:17:17:fc:aa:3b: fc:72:51:24:12:88:90:77:ad:17:1c:9a:87:d2:f8: 95:93:26:12:52:44:6b:70:af:21:f1:80:e0:01:72: 9a:89:c7:c0:42:5d:c9:d4:8b:15:c9:fd:29:35:c9: 39:41:a4:5a:c5:52:2d:9f:aa:4e:94:77:ba:3a:4a: b0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:39:2E:96:F4:57:CF:93:1A:B8:B2:99:E8:DF:A4:A7:42:69:03:E3 X509v3 Authority Key Identifier: keyid:2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:05:8d:cc:9c:2a:00:e9:e5:4c:29:7c:e5:14:30:04:5a:9c: 99:18:92:54:ef:69:83:90:31:ed:eb:7d:8a:45:be:56:c6:8b: ad:96:4e:8a:23:b3:87:b5:33:4e:a2:17:f4:3d:6b:02:a5:c5: 9a:e5:18:77:41:79:d3:fd:8f:d3:e3:c5:2c:b9:4f:5b:03:42: 79:c3:e5:0b:25:45:a0:18:d0:ea:0c:db:49:a5:bd:88:f0:a4: ed:aa:77:6d:f7:5d:02:9f:7b:21:f5:80:ae:89:7c:cc:f6:e5: 68:54:19:d0:50:11:87:24:8d:3e:0a:ff:44:25:54:a9:24:1f: 41:1d:46:d9:20:44:34:3d:89:2a:f2:bf:06:a7:c6:4f:48:30: 34:d5:94:d5:0d:bc:9a:3a:2d:26:09:a4:3f:b3:9f:da:e6:8c: 01:7a:ad:32:a8:82:50:87:b2:c6:aa:fa:20:80:b9:2e:c3:b4: 36:24:a0:1d:1a:1c:fc:fc:74:7e:77:ef:58:10:64:83:10:fd: 28:da:c3:e4:b3:e2:ff:6a:74:a9:47:43:af:2d:60:af:61:f6: c7:e6:3d:7d:c9:ae:8f:04:8d:6e:ea:11:6e:76:95:fb:f0:8c: ef:be:2e:45:70:df:fc:5c:29:0e:af:51:ca:89:49:36:ae:cd: 7f:c5:2c:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QTMxMTAvBgNVBAUTKDJGQzQzMEYxRTIxNUNCRDdFMDhGMjY0Mzg4MzcwMzUw MDJERTMxQTkwHhcNMjUxMTAzMDExMTA2WhcNMjUxMTEwMDExMTA2WjAYMRYwFAYD VQQDEw02OTA4MDEyYS02ZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW8pKMHJL1GaNu1USlv3TQ3TbymNY/w777wb//5sX62yQr899wa3MrorlW90 vdmj94YEL7eqJZQD6qM69G7XGZKNIxRNT0L7PQo7qBD6NG94R/PqJvXDcBIiKV9U 7b1XOz9r+39YwPjW0OctDuW3B6W9b0B09l9xFvZhQbPgncWT9IHbI4P8TlW5ZOOy LAW/WofaNkc8Kmb7hje3sYopXbBuiu+ij3buTYcE30bMJgJG/qUh4R16c9gXbEgq Fxf8qjv8clEkEoiQd60XHJqH0viVkyYSUkRrcK8h8YDgAXKaicfAQl3J1IsVyf0p Nck5QaRaxVItn6pOlHe6Okqw9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCo5Lpb0 V8+TGriymejfpKdCaQPjMB8GA1UdIwQYMBaAFC/EMPHiFcvX4I8mQ4g3A1AC3jGp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhBMy85NjY1MEYzOEZE MTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5ZmdqeVpEaURjRFVBTGVN YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UXc4ZUlWeTlmZ2p5WkRpRGNEVUFMZU1hay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhBMy85NjY1MEYzOEZEMTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5 ZmdqeVpEaURjRFVBTGVNYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6BY3MnCoA6eVMKXzlFDAEWpyZGJJU72mDkDHt632KRb5Wxoutlk6K I7OHtTNOohf0PWsCpcWa5Rh3QXnT/Y/T48UsuU9bA0J5w+ULJUWgGNDqDNtJpb2I 8KTtqndt910Cn3sh9YCuiXzM9uVoVBnQUBGHJI0+Cv9EJVSpJB9BHUbZIEQ0PYkq 8r8Gp8ZPSDA01ZTVDbyaOi0mCaQ/s5/a5owBeq0yqIJQh7LGqvoggLkuw7Q2JKAd Ghz8/HR+d+9YEGSDEP0o2sPks+L/anSpR0OvLWCvYfbH5j19ya6PBI1u6hFudpX7 8Izvvi5FcN/8XCkOr1HKiUk2rs1/xSxp -----END CERTIFICATE-----Generated at Tue Nov 4 18:35:39 2025 by rpki-client