$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft File: 8XiofFRzBDe6WfqpzhhP-HkP5PE.mft (raw, json) Hash identifier: 8KoOCGm86W5tg3eqrvI9GynV5gLYJlQ1nyeFf3QFTBI= Subject key identifier: 80:E5:AE:10:3E:68:59:4E:0F:E3:4C:A0:6C:D1:35:66:FF:72:A4:B5 Authority key identifier: F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 Certificate issuer: /CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft Manifest number: 0522 Signing time: Sun 02 Nov 2025 23:32:17 +0000 Manifest this update: Sun 02 Nov 2025 23:32:17 +0000 Manifest next update: Sun 09 Nov 2025 23:32:17 +0000 Files and hashes: 1: 8XiofFRzBDe6WfqpzhhP-HkP5PE.crl (hash: SmWiH9olsoFobD0FugVZKg11u1Gab+ttxKTh+QYw1YM=) 2: CB89040A73EA11EC8A823312C4F9AE02.roa (hash: RdBtknBPNwvXkD2UTwIXLTTCijG72Y4zCJ0N8YgUu8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:32:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6792, serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Validity Not Before: Nov 2 23:32:17 2025 GMT Not After : Nov 9 23:32:17 2025 GMT Subject: CN=6907ea01-ecc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b2:be:ac:12:9c:6e:06:23:0a:60:62:47:dc: ed:d9:64:2e:8e:2d:14:53:be:f9:b5:e0:bb:b2:b9: f7:86:2e:c4:07:08:94:58:1b:af:ae:12:78:0a:fe: 9f:67:cb:f1:94:48:c1:31:53:8a:33:7f:59:65:8c: a2:c4:f6:c7:9f:24:19:b2:bc:9d:50:a5:f4:af:dd: cc:9b:7a:a5:95:cd:78:07:94:9c:c6:2d:14:f0:6a: 46:fd:5b:a1:85:5f:ab:8f:62:51:57:0c:30:5d:fc: a5:99:e6:f4:82:88:3d:6f:b0:44:f2:1e:5d:1f:3d: 82:29:ad:7b:7d:46:c4:4d:30:ce:a6:39:1a:23:7d: 12:4f:3f:1d:cd:65:3d:8a:40:c0:06:79:4c:bd:67: 1a:c8:9a:ac:01:ba:f3:66:2b:61:d2:4a:5b:96:04: a7:9e:24:04:12:d9:30:50:a6:19:62:bc:2b:c1:3c: 98:e7:47:97:7a:5a:d8:28:9f:1e:c0:a6:e9:41:cb: 5a:e3:97:86:09:24:a6:c6:19:41:33:49:22:c4:72: c8:cb:1c:dc:9d:41:84:f4:91:80:e7:cf:a1:4e:90: fe:67:e3:a1:d0:1e:14:ed:7b:9e:9b:b7:10:69:b8: 83:51:6d:bd:fd:52:e2:a9:e1:4e:f0:44:13:6d:ba: fd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E5:AE:10:3E:68:59:4E:0F:E3:4C:A0:6C:D1:35:66:FF:72:A4:B5 X509v3 Authority Key Identifier: keyid:F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:fa:80:d7:1b:fa:a3:65:a5:96:05:1c:d4:14:77:0b:83:ae: da:9a:5e:ad:62:d5:ca:92:0b:dc:44:a0:d6:b4:74:42:2e:bd: 0b:fd:93:55:a5:50:99:de:4c:bc:8c:9a:2e:e0:08:e2:e2:f5: ce:08:f7:72:bb:cf:5b:64:32:80:d0:cf:df:6c:68:5d:b6:24: 75:2a:23:98:6e:b0:46:ef:d0:c9:1e:a7:dc:5b:4c:b8:61:57: 78:9b:6a:0b:64:70:00:5f:6f:c7:a3:7b:0e:80:41:34:30:3f: bd:d0:fe:19:ba:82:b8:6d:66:a4:60:01:46:4d:54:84:9b:9d: f2:fa:51:96:52:6e:11:46:98:c9:5a:92:3a:f4:0b:a5:c5:c3: 0c:f7:89:7a:41:8e:20:96:6d:36:a3:8e:b6:a8:92:cd:df:a9: 0b:3c:48:49:79:46:af:75:6c:1a:32:14:c4:c8:f1:f0:e3:a1: 9d:1a:c7:bf:ee:9a:db:57:68:d6:57:eb:39:17:51:6f:8a:d8: b2:0c:80:3d:c7:62:e7:4b:7e:e4:ba:9c:47:7c:05:f7:ab:66: 1d:b5:c2:9c:73:ce:37:22:ed:0e:cd:01:74:41:45:91:5f:a1: 5e:7e:5d:ec:21:e8:1d:15:d6:cf:c3:10:d6:40:5a:ba:99:0c: 99:d0:b6:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3OTIxMTAvBgNVBAUTKEYxNzhBODdDNTQ3MzA0MzdCQTU5RkFBOUNFMTg0RkY4 NzkwRkU0RjEwHhcNMjUxMTAyMjMzMjE3WhcNMjUxMTA5MjMzMjE3WjAYMRYwFAYD VQQDEw02OTA3ZWEwMS1lY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbK+rBKcbgYjCmBiR9zt2WQuji0UU775teC7srn3hi7EBwiUWBuvrhJ4Cv6f Z8vxlEjBMVOKM39ZZYyixPbHnyQZsrydUKX0r93Mm3qllc14B5Scxi0U8GpG/Vuh hV+rj2JRVwwwXfylmeb0gog9b7BE8h5dHz2CKa17fUbETTDOpjkaI30STz8dzWU9 ikDABnlMvWcayJqsAbrzZith0kpblgSnniQEEtkwUKYZYrwrwTyY50eXelrYKJ8e wKbpQcta45eGCSSmxhlBM0kixHLIyxzcnUGE9JGA58+hTpD+Z+Oh0B4U7Xuem7cQ abiDUW29/VLiqeFO8EQTbbr9gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDlrhA+ aFlOD+NMoGzRNWb/cqS1MB8GA1UdIwQYMBaAFPF4qHxUcwQ3uln6qc4YT/h5D+Tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjc5Mi9EQkYxQzc3MjIx RUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJEZTZXZnFwemhoUC1Ia1A1 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYaW9mRlJ6QkRlNldmcXB6aGhQLUhrUDVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njc5Mi9EQkYxQzc3MjIxRUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJE ZTZXZnFwemhoUC1Ia1A1UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2+oDXG/qjZaWWBRzUFHcLg67aml6tYtXKkgvcRKDWtHRCLr0L/ZNV pVCZ3ky8jJou4Aji4vXOCPdyu89bZDKA0M/fbGhdtiR1KiOYbrBG79DJHqfcW0y4 YVd4m2oLZHAAX2/Ho3sOgEE0MD+90P4ZuoK4bWakYAFGTVSEm53y+lGWUm4RRpjJ WpI69AulxcMM94l6QY4glm02o462qJLN36kLPEhJeUavdWwaMhTEyPHw46GdGse/ 7prbV2jWV+s5F1FvitiyDIA9x2LnS37kupxHfAX3q2YdtcKcc843Iu0OzQF0QUWR X6Fefl3sIegdFdbPwxDWQFq6mQyZ0LY2 -----END CERTIFICATE-----Generated at Tue Nov 4 16:31:55 2025 by rpki-client