$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: Wrb3sx50LEY3OuhXlkQiGMjHNL3kyXGT2xNW31FHow4= Subject key identifier: 84:DC:25:89:9B:13:07:C6:54:2E:70:85:19:37:FA:93:C2:54:BD:FD Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 06AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 06A5 Signing time: Tue 04 Nov 2025 22:21:40 +0000 Manifest this update: Tue 04 Nov 2025 22:21:40 +0000 Manifest next update: Tue 11 Nov 2025 22:21:40 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: ny+NlgvelrDIKm7r61lquXqSQ+N8UlWhsE/V4UZQdqY=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: oKHV5TBmq4GqrFfr2VIYxjHb/BXfTV1fp7LSb6WOO9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1707 (0x6ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF, serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: Nov 4 22:21:40 2025 GMT Not After : Nov 11 22:21:40 2025 GMT Subject: CN=690a7c74-446c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:c1:23:ac:64:4c:f1:91:6c:91:91:e0:94: 39:b9:0a:c6:d6:1a:fc:80:1e:fc:3d:c5:f8:95:78: 98:62:83:b8:ca:ac:99:09:bf:f7:52:46:e2:d1:48: 77:f9:6c:21:b8:c3:63:2b:7e:93:64:e5:a9:bd:c5: 7a:19:a3:36:70:c3:44:50:7d:94:63:33:1e:b8:0d: 25:20:cd:be:af:f8:2f:d0:4e:17:07:4f:40:fd:57: 82:7b:b2:5c:d3:dd:c7:42:8d:4e:b5:73:9f:18:90: 51:85:dd:27:11:95:2a:70:26:c8:f8:bc:16:5c:f1: 78:64:a6:20:5f:3f:08:f0:32:44:9a:a1:be:1b:56: c1:a1:37:9a:aa:d3:46:a6:48:06:a2:ce:da:bd:77: f7:c5:40:8a:a0:29:cc:07:15:a1:0c:f6:68:50:32: 09:a7:59:32:2e:a3:5e:3b:0c:fd:6f:ae:e0:1b:dc: ea:15:99:2d:ad:50:a8:84:2a:61:3f:10:a8:08:9f: bb:bf:f5:af:6f:35:76:51:3b:8b:cf:ea:0c:35:d1: 25:d1:50:9f:26:a4:45:89:8b:13:b6:cd:4e:02:31: 32:89:d4:f9:1d:0a:19:67:7e:d5:42:66:d9:84:49: 89:f0:6f:b3:73:0c:30:f9:c1:61:af:a1:01:ea:3d: f8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DC:25:89:9B:13:07:C6:54:2E:70:85:19:37:FA:93:C2:54:BD:FD X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:93:0c:7f:01:fc:91:50:73:df:f4:a5:ef:ec:85:ae:4a:d6: 18:9e:d1:ee:48:ab:43:67:66:b4:e2:6e:d0:b4:7e:43:47:2a: aa:cc:73:97:87:ae:bd:26:73:74:0e:59:2a:91:c2:56:b7:12: 53:55:c3:c4:f5:f6:73:b3:bd:26:13:c9:bb:cd:7c:ed:ca:52: 3a:98:2a:a7:60:3f:ad:c5:45:a6:71:fa:d0:d0:a2:27:7e:3c: 0a:dd:52:70:af:ff:13:9d:db:9d:c5:5f:89:9c:b5:81:e5:f2: 8e:2b:34:ae:75:1f:9f:1a:70:c0:cc:6b:2d:1b:5f:da:33:5c: 5a:fd:95:99:f1:6d:29:d9:53:97:9c:a4:b4:8b:8a:dd:c4:38: 62:06:78:db:f5:c6:0d:24:99:cd:f8:4e:23:86:0d:11:07:fe: fd:3e:56:a8:b2:bc:2c:9d:92:d0:34:57:d1:40:ad:56:8b:5c: 86:7f:b5:70:38:63:da:46:a8:cf:07:50:14:94:96:e1:b8:06: d7:cb:26:2a:2d:51:4a:f4:41:ee:4d:89:bd:f1:ad:02:47:a7: 47:6c:1b:8d:04:7c:9a:55:fa:c6:e1:1e:6d:0d:e0:3f:53:47: 09:11:fe:80:1c:f6:6b:92:ef:24:0d:4d:4a:0e:c6:f6:96:88: f5:64:71:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUxMTA0MjIyMTQwWhcNMjUxMTExMjIyMTQwWjAYMRYwFAYD VQQDEw02OTBhN2M3NC00NDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmHBI6xkTPGRbJGR4JQ5uQrG1hr8gB78PcX4lXiYYoO4yqyZCb/3Ukbi0Uh3 +WwhuMNjK36TZOWpvcV6GaM2cMNEUH2UYzMeuA0lIM2+r/gv0E4XB09A/VeCe7Jc 093HQo1OtXOfGJBRhd0nEZUqcCbI+LwWXPF4ZKYgXz8I8DJEmqG+G1bBoTeaqtNG pkgGos7avXf3xUCKoCnMBxWhDPZoUDIJp1kyLqNeOwz9b67gG9zqFZktrVCohCph PxCoCJ+7v/WvbzV2UTuLz+oMNdEl0VCfJqRFiYsTts1OAjEyidT5HQoZZ37VQmbZ hEmJ8G+zcwww+cFhr6EB6j34VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITcJYmb EwfGVC5whRk3+pPCVL39MB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfkwx/AfyRUHPf9KXv7IWuStYYntHuSKtDZ2a04m7QtH5DRyqqzHOX h669JnN0DlkqkcJWtxJTVcPE9fZzs70mE8m7zXztylI6mCqnYD+txUWmcfrQ0KIn fjwK3VJwr/8TndudxV+JnLWB5fKOKzSudR+fGnDAzGstG1/aM1xa/ZWZ8W0p2VOX nKS0i4rdxDhiBnjb9cYNJJnN+E4jhg0RB/79PlaosrwsnZLQNFfRQK1Wi1yGf7Vw OGPaRqjPB1AUlJbhuAbXyyYqLVFK9EHuTYm98a0CR6dHbBuNBHyaVfrG4R5tDeA/ U0cJEf6AHPZrku8kDU1KDsb2loj1ZHE/ -----END CERTIFICATE-----Generated at Wed Nov 5 14:44:04 2025 by rpki-client