$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: 5UjoAN5Z1U5e69S7uarWCcmXwOq36uEJFO3bP0lx9OY= Subject key identifier: 09:13:94:35:91:6E:A2:2D:79:E5:D7:19:5D:96:53:20:A8:9D:4C:3D Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 0264 Signing time: Mon 03 Nov 2025 01:38:04 +0000 Manifest this update: Mon 03 Nov 2025 01:38:04 +0000 Manifest next update: Mon 10 Nov 2025 01:38:04 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: QWNAA3fbEahIwfevhOwIQhy3CdryUf2htKaH4jNmH98=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: LAWmMRc8daUtEB7NaiA0m2Tl41sqEulVfrA7do1Thps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:38:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Nov 3 01:38:04 2025 GMT Not After : Nov 10 01:38:04 2025 GMT Subject: CN=6908077c-5c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ee:10:c7:84:73:76:ed:51:fa:11:70:4d:24: f0:da:2b:fb:e2:61:db:6a:27:24:1f:59:4d:ed:f4: 31:72:42:99:57:08:b0:9e:ed:b9:da:46:bc:47:7f: 5c:aa:45:2f:36:80:9a:7e:c9:1d:59:b9:35:00:0b: 24:ca:75:6a:43:8f:70:7b:4a:19:28:50:16:d5:0d: 56:d2:4c:06:fa:97:71:27:4b:b8:f7:da:62:bd:cd: 23:5b:86:b0:13:62:03:32:9e:5a:98:2b:37:cc:99: 98:8f:54:07:95:2c:56:c0:f6:5e:a7:e6:6c:f4:40: 17:63:17:07:4f:8c:d8:4e:59:70:9d:e7:0f:ff:62: a0:10:96:cd:79:8d:4b:fd:44:40:b4:7b:3a:20:b2: 70:8c:70:da:0c:25:5d:07:a6:4a:7f:1f:51:11:44: 24:47:cc:ab:76:54:e9:7c:5e:15:a9:9c:90:1f:1d: 23:ca:c5:5f:5e:ba:9d:4c:ea:ee:56:6b:e2:2f:7c: c1:54:db:4d:1e:ed:c1:05:85:40:31:d7:65:f5:e3: f1:12:a8:c3:39:5d:74:a9:b8:54:45:84:6d:d3:71: 39:9f:1a:8f:4f:a2:81:46:f5:b9:bc:12:6a:ef:2b: d6:c7:79:2b:e8:f2:3c:fb:e1:51:16:e9:ef:f1:c8: 7c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:13:94:35:91:6E:A2:2D:79:E5:D7:19:5D:96:53:20:A8:9D:4C:3D X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:32:bb:db:a4:53:84:a9:24:b8:14:4d:16:bb:25:28:3d:b5: 03:3a:9d:15:f3:09:9d:9b:77:77:62:d9:14:41:51:84:d1:44: 5c:89:89:4f:0d:a6:37:ab:40:81:0d:ff:77:9a:d8:75:34:ed: 47:43:83:e8:d2:c6:96:1e:0a:d6:68:d4:d3:d5:d2:4b:08:e5: ac:7b:60:b0:b9:94:12:4f:42:29:d2:ad:40:21:b5:93:fd:a7: 2a:00:7f:f5:d1:d4:73:49:0e:0a:19:2f:44:bb:1b:a1:30:c5: d3:35:53:d0:83:d3:d6:c5:1c:ec:29:69:db:5c:d9:71:31:ce: 80:b2:54:c0:be:af:4c:b8:46:bf:b1:0e:dc:3f:3b:df:49:f9: 16:84:17:65:8e:d7:48:94:c0:43:44:ac:85:41:95:0a:de:04: c9:8e:1f:2d:da:06:fd:3e:ee:70:a5:59:6c:3c:9a:7f:8a:88: bc:73:b3:99:18:5d:3f:7d:8e:c7:01:4d:c8:be:9a:29:ff:19: 8c:2e:13:71:c7:bd:92:1d:44:ba:4d:34:09:7c:b4:b3:d9:e9: e6:e3:01:4f:0f:2b:9f:da:50:11:b7:5d:ef:f8:1c:1a:e6:67: 57:10:f1:47:5d:7b:78:f7:f4:a5:16:eb:76:a5:45:aa:3e:63: 88:8d:ab:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUxMTAzMDEzODA0WhcNMjUxMTEwMDEzODA0WjAYMRYwFAYD VQQDEw02OTA4MDc3Yy01Yzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApe4Qx4Rzdu1R+hFwTSTw2iv74mHbaickH1lN7fQxckKZVwiwnu252ka8R39c qkUvNoCafskdWbk1AAskynVqQ49we0oZKFAW1Q1W0kwG+pdxJ0u499pivc0jW4aw E2IDMp5amCs3zJmYj1QHlSxWwPZep+Zs9EAXYxcHT4zYTllwnecP/2KgEJbNeY1L /URAtHs6ILJwjHDaDCVdB6ZKfx9REUQkR8yrdlTpfF4VqZyQHx0jysVfXrqdTOru VmviL3zBVNtNHu3BBYVAMddl9ePxEqjDOV10qbhURYRt03E5nxqPT6KBRvW5vBJq 7yvWx3kr6PI8++FRFunv8ch8BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkTlDWR bqIteeXXGV2WUyConUw9MB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcMrvbpFOEqSS4FE0WuyUoPbUDOp0V8wmdm3d3YtkUQVGE0URciYlP DaY3q0CBDf93mth1NO1HQ4Po0saWHgrWaNTT1dJLCOWse2CwuZQST0Ip0q1AIbWT /acqAH/10dRzSQ4KGS9EuxuhMMXTNVPQg9PWxRzsKWnbXNlxMc6AslTAvq9MuEa/ sQ7cPzvfSfkWhBdljtdIlMBDRKyFQZUK3gTJjh8t2gb9Pu5wpVlsPJp/ioi8c7OZ GF0/fY7HAU3Ivpop/xmMLhNxx72SHUS6TTQJfLSz2enm4wFPDyuf2lARt13v+Bwa 5mdXEPFHXXt49/SlFut2pUWqPmOIjauB -----END CERTIFICATE-----Generated at Tue Nov 4 12:46:43 2025 by rpki-client