$ rpki-client -vvf rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft File: 8Esk0kgu8B-It9DWKlOSJzm3iA0.mft (raw, json) Hash identifier: J6HjTyK6kn2IGsCKXhfN+wkVpbiu0bCylFMxJxRHiBY= Subject key identifier: 05:3B:85:A9:6B:A9:CA:ED:C7:E6:68:9D:E5:A2:CF:FF:B4:EE:8A:54 Authority key identifier: F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D Certificate issuer: /CN=A91D112B/serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Certificate serial: 0796 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft Manifest number: 078C Signing time: Tue 04 Nov 2025 21:36:59 +0000 Manifest this update: Tue 04 Nov 2025 21:36:58 +0000 Manifest next update: Tue 11 Nov 2025 21:36:58 +0000 Files and hashes: 1: 8Esk0kgu8B-It9DWKlOSJzm3iA0.crl (hash: F3RbZdVB2w6wCZbS6AZMldZjy9sk6E4m5OyTdzo5/tA=) 2: D00FC228F46111ECA631AC55C4F9AE02.roa (hash: LAD7dRCik0KzxFNr8quzKbBZIsig686rpItw8aFMMeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1942 (0x796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D112B, serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Validity Not Before: Nov 4 21:36:58 2025 GMT Not After : Nov 11 21:36:58 2025 GMT Subject: CN=690a71fa-989a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:53:a8:9c:ba:c3:02:73:9c:fd:e9:c7:8e:6e: 00:46:6c:09:8f:be:0a:15:02:39:41:62:d2:8e:d1: e5:da:af:da:4f:4a:a1:14:b8:db:d2:19:ca:af:4b: 73:8e:8e:ba:87:6d:82:89:de:9a:8b:f3:da:84:f4: 86:7e:5f:e7:64:2e:e7:c3:99:c3:2b:8a:85:32:95: f7:9d:da:66:d1:c9:a1:f6:f7:d8:8c:51:e7:4d:e9: 1b:cc:94:f9:02:86:f3:91:5b:80:29:25:28:e8:78: 0a:f0:6f:7c:cb:de:f1:8e:64:5a:94:10:30:01:39: 7b:a2:c8:0e:06:ff:73:2b:7a:66:06:d0:e9:a7:fc: 04:60:6c:0d:b8:d5:87:07:0d:ed:22:3c:ce:4e:5b: 70:20:65:74:b3:9d:44:8e:78:0b:ed:a7:c3:4f:b4: 89:14:8e:c1:fd:a4:8a:61:63:8c:43:f6:c1:ae:8d: af:d6:c2:77:af:1f:49:6d:d7:5e:32:a9:fd:ea:06: 90:1f:04:08:41:5c:75:90:71:24:7c:36:d6:c4:b0: b7:9d:44:fb:8c:92:d1:ac:34:39:66:7e:77:c6:b9: 58:f9:f9:41:ca:73:0b:ac:95:ff:55:ac:7e:98:8b: 4c:24:b8:6a:aa:b6:3b:f9:d6:4a:de:c4:cd:70:cf: 42:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3B:85:A9:6B:A9:CA:ED:C7:E6:68:9D:E5:A2:CF:FF:B4:EE:8A:54 X509v3 Authority Key Identifier: keyid:F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:93:48:53:f0:31:94:4b:88:c3:ba:51:6a:c1:45:d6:a3:e4: a5:c0:10:ba:e3:40:c6:cd:5c:91:c4:ed:44:36:a0:ad:1e:9f: e5:90:c7:e7:e2:81:35:97:49:e4:34:28:97:ca:4a:29:c1:34: d7:de:66:2c:c3:c7:e5:50:7c:c2:27:b6:15:b4:60:01:b4:e4: 02:b0:d7:a2:03:86:f5:12:2f:31:71:2d:a0:f3:61:d6:67:58: fc:cf:35:17:4f:db:b8:30:42:c1:66:d5:45:bf:58:69:0b:19: aa:07:6e:ab:d1:66:9d:ce:c7:0a:d5:c6:e5:a8:42:7e:1b:6b: bc:6d:cc:2a:b0:79:47:51:5e:f7:a0:8c:31:86:bf:fd:86:54: 8a:1d:97:e9:3a:f6:c8:a3:82:e2:7d:be:49:a0:d9:71:2d:57: 01:76:a7:a1:ea:b4:cb:21:16:b6:07:0b:81:0f:76:24:0e:fe: 35:be:a5:b4:d6:b0:de:6d:f6:70:d1:76:32:1c:ee:32:c1:41: ba:46:1a:67:3e:79:17:f8:fa:89:b1:85:43:32:4a:3e:23:0d: 92:73:08:cb:96:ce:cd:ac:44:4a:ef:fd:08:35:27:ee:b5:6a: db:06:6d:72:ab:d5:66:84:f0:1a:cf:ae:e2:b7:97:fa:b2:ca: c9:b5:45:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMkIxMTAvBgNVBAUTKEYwNEIyNEQyNDgyRUYwMUY4OEI3RDBENjJBNTM5MjI3 MzlCNzg4MEQwHhcNMjUxMTA0MjEzNjU4WhcNMjUxMTExMjEzNjU4WjAYMRYwFAYD VQQDEw02OTBhNzFmYS05ODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFOonLrDAnOc/enHjm4ARmwJj74KFQI5QWLSjtHl2q/aT0qhFLjb0hnKr0tz jo66h22Cid6ai/PahPSGfl/nZC7nw5nDK4qFMpX3ndpm0cmh9vfYjFHnTekbzJT5 AobzkVuAKSUo6HgK8G98y97xjmRalBAwATl7osgOBv9zK3pmBtDpp/wEYGwNuNWH Bw3tIjzOTltwIGV0s51EjngL7afDT7SJFI7B/aSKYWOMQ/bBro2v1sJ3rx9Jbdde Mqn96gaQHwQIQVx1kHEkfDbWxLC3nUT7jJLRrDQ5Zn53xrlY+flBynMLrJX/Vax+ mItMJLhqqrY7+dZK3sTNcM9CtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAU7halr qcrtx+ZoneWiz/+07opUMB8GA1UdIwQYMBaAFPBLJNJILvAfiLfQ1ipTkic5t4gN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEyQi8xQ0QwRTA1MDJG MzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThCLUl0OURXS2xPU0p6bTNp QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFc2swa2d1OEItSXQ5RFdLbE9TSnptM2lBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTEyQi8xQ0QwRTA1MDJGMzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThC LUl0OURXS2xPU0p6bTNpQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfk0hT8DGUS4jDulFqwUXWo+SlwBC640DGzVyRxO1ENqCtHp/lkMfn 4oE1l0nkNCiXykopwTTX3mYsw8flUHzCJ7YVtGABtOQCsNeiA4b1Ei8xcS2g82HW Z1j8zzUXT9u4MELBZtVFv1hpCxmqB26r0WadzscK1cblqEJ+G2u8bcwqsHlHUV73 oIwxhr/9hlSKHZfpOvbIo4Lifb5JoNlxLVcBdqeh6rTLIRa2BwuBD3YkDv41vqW0 1rDebfZw0XYyHO4ywUG6RhpnPnkX+PqJsYVDMko+Iw2ScwjLls7NrERK7/0INSfu tWrbBm1yq9VmhPAaz67it5f6ssrJtUV9 -----END CERTIFICATE-----Generated at Wed Nov 5 11:45:36 2025 by rpki-client