$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: MuJDhxWTrOLQ6sup2PuAg5z0FD/X7uiYgPvth5bAbjI= Subject key identifier: CF:98:22:74:08:D9:6A:9D:9A:BF:85:EA:1A:C4:A8:DA:AE:6C:8F:63 Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0CB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0CA1 Signing time: Tue 04 Nov 2025 18:23:22 +0000 Manifest this update: Tue 04 Nov 2025 18:23:22 +0000 Manifest next update: Tue 11 Nov 2025 18:23:22 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: xA5WpGvolel7llaTZXbeDghphlsNlU/vJC4GHrTNWFo=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: hMRVZDPhI9uQhHlcLsQL6+B9hhuCOLqR+jjUlDn3sAQ=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: s3U0q40HWyXJCTwtjWa8KKHr421/tnOx6JMPLRqROA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3252 (0xcb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Nov 4 18:23:22 2025 GMT Not After : Nov 11 18:23:22 2025 GMT Subject: CN=690a449a-9b7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:12:4b:9e:61:8d:b3:b2:64:a6:d9:de:cd:16: f9:9b:00:f5:28:28:c8:9f:25:42:52:c2:f4:83:5c: c8:35:2a:7d:70:20:ed:4b:a1:dc:cb:f9:e6:d1:49: e8:06:cc:8a:d6:b0:d4:1c:31:60:a1:11:52:22:25: bf:70:e1:02:da:6d:de:e5:5c:39:e1:12:95:1b:c4: bd:ff:70:61:52:52:4c:42:60:b2:70:74:e9:a7:38: a7:10:f4:ec:3d:62:9e:0e:d5:e7:4d:14:a1:4b:04: 42:39:d3:76:83:4c:af:1f:3f:67:f5:9e:6d:c2:a6: 8f:f3:e5:fb:26:8a:b6:a0:fd:b2:05:44:82:87:a3: f4:23:79:00:cd:60:68:35:b6:57:25:ce:33:d0:f4: 35:7f:f3:5f:a3:a6:d1:88:cb:4b:c4:be:d0:c5:87: e7:0b:83:b0:65:ad:60:f4:5c:e7:c8:fd:3c:d0:4f: 56:0d:b7:d9:79:be:e7:4b:8b:ab:c9:ab:98:c2:2d: 70:5d:5e:ab:89:51:cf:d8:3e:8a:56:20:88:7d:09: 15:65:a1:29:0c:a3:75:af:c0:7b:80:80:3c:fb:0a: 73:1b:10:00:2b:51:cd:42:62:9e:83:d9:da:ed:21: 05:9e:65:88:1d:3a:bf:ae:bf:73:dd:5c:61:5a:8e: 8e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:98:22:74:08:D9:6A:9D:9A:BF:85:EA:1A:C4:A8:DA:AE:6C:8F:63 X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:61:04:2f:e3:c5:83:f8:01:4a:67:de:bd:24:4a:bb:0a:b1: 7f:20:35:a0:9a:a9:91:91:41:94:29:e4:d2:83:79:04:38:8a: 38:9c:53:47:3a:0a:7b:73:28:09:23:7a:d4:9e:08:1f:62:48: 3c:c9:aa:36:df:56:d4:aa:4b:87:c4:fc:a3:a3:94:37:c8:9c: 3b:3e:61:d0:0f:ae:e9:ed:a0:f3:1d:5e:98:05:cc:85:4d:68: 99:91:8c:c1:b6:2d:98:2b:73:47:72:90:f6:aa:29:21:1d:d8: e1:91:1f:53:eb:2f:b8:72:16:a9:fe:a9:a6:0e:27:18:e4:a3: 5b:45:25:68:b0:89:e7:ef:c2:d5:58:86:a6:7a:75:d0:ca:b8: 4d:56:25:41:6b:34:52:c0:88:15:2a:98:3c:ad:13:a9:39:9c: 35:0c:ce:24:82:fa:66:9b:63:c7:25:64:cc:9e:2a:63:c2:e8: 0c:c8:e4:d8:a4:85:50:43:47:fe:eb:83:4b:ac:07:a1:5b:90: f9:3f:45:10:71:44:f1:28:9c:d2:c7:2c:ad:3d:71:f1:22:6f: fa:2e:4e:ed:91:36:35:9f:b5:85:5b:8c:e2:55:53:ba:70:03: f1:bc:3a:4f:dd:65:38:11:84:fc:bc:4b:3f:48:ef:d7:f0:75: da:b5:8f:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjUxMTA0MTgyMzIyWhcNMjUxMTExMTgyMzIyWjAYMRYwFAYD VQQDEw02OTBhNDQ5YS05YjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthJLnmGNs7JkptnezRb5mwD1KCjInyVCUsL0g1zINSp9cCDtS6Hcy/nm0Uno BsyK1rDUHDFgoRFSIiW/cOEC2m3e5Vw54RKVG8S9/3BhUlJMQmCycHTppzinEPTs PWKeDtXnTRShSwRCOdN2g0yvHz9n9Z5twqaP8+X7Joq2oP2yBUSCh6P0I3kAzWBo NbZXJc4z0PQ1f/Nfo6bRiMtLxL7QxYfnC4OwZa1g9FznyP080E9WDbfZeb7nS4ur yauYwi1wXV6riVHP2D6KViCIfQkVZaEpDKN1r8B7gIA8+wpzGxAAK1HNQmKeg9na 7SEFnmWIHTq/rr9z3VxhWo6OEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+YInQI 2Wqdmr+F6hrEqNqubI9jMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoYQQv48WD+AFKZ969JEq7CrF/IDWgmqmRkUGUKeTSg3kEOIo4nFNH Ogp7cygJI3rUnggfYkg8yao231bUqkuHxPyjo5Q3yJw7PmHQD67p7aDzHV6YBcyF TWiZkYzBti2YK3NHcpD2qikhHdjhkR9T6y+4chap/qmmDicY5KNbRSVosInn78LV WIamenXQyrhNViVBazRSwIgVKpg8rROpOZw1DM4kgvpmm2PHJWTMnipjwugMyOTY pIVQQ0f+64NLrAehW5D5P0UQcUTxKJzSxyytPXHxIm/6Lk7tkTY1n7WFW4ziVVO6 cAPxvDpP3WU4EYT8vEs/SO/X8HXatY9K -----END CERTIFICATE-----Generated at Wed Nov 5 00:25:39 2025 by rpki-client