$ rpki-client -vvf rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft File: j8P43lI68p2yShWQ_UCgRHWuCiU.mft (raw, json) Hash identifier: 8VNFSdWSMxTtG/JlczDV/Ei9dW+i6SST8W9GQXbIOuA= Subject key identifier: 0A:7A:FE:5D:C7:2E:D2:67:0F:5C:B0:FA:AA:DC:3F:A8:BA:5E:A9:07 Authority key identifier: 8F:C3:F8:DE:52:3A:F2:9D:B2:4A:15:90:FD:40:A0:44:75:AE:0A:25 Certificate issuer: /CN=A911AB93/serialNumber=8FC3F8DE523AF29DB24A1590FD40A04475AE0A25 Certificate serial: 1E8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft Manifest number: 1FC7 Signing time: Sat 18 Oct 2025 16:20:53 +0000 Manifest this update: Sat 18 Oct 2025 16:20:53 +0000 Manifest next update: Sat 25 Oct 2025 16:20:53 +0000 Files and hashes: 1: j8P43lI68p2yShWQ_UCgRHWuCiU.crl (hash: d0CjRS9RQUxEErf3kVk1mGGlO+rdNJhJHtVxu3iTc+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.crl rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7822 (0x1e8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AB93, serialNumber=8FC3F8DE523AF29DB24A1590FD40A04475AE0A25 Validity Not Before: Oct 18 16:20:53 2025 GMT Not After : Oct 25 16:20:53 2025 GMT Subject: CN=68f3be65-63fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b9:bb:4d:76:bd:65:72:fb:2e:b3:a5:ba:58: 9e:04:b0:c4:d3:8b:94:8e:0e:12:c0:d4:7d:d8:af: 5e:a1:27:96:a6:27:9b:8f:b9:23:7a:78:00:ac:7f: ee:41:9b:be:09:5e:02:ea:16:74:03:77:17:8e:93: 0e:ee:10:5a:d0:aa:c7:2a:d7:0b:02:cd:f9:a8:07: 83:52:8a:7a:44:de:cd:07:a3:74:04:2d:33:56:e7: df:55:c4:ef:1c:8a:37:ec:74:ca:e8:3e:09:ae:12: aa:81:5e:b0:b4:ed:14:9b:b4:fb:9f:66:7d:02:2b: 40:a4:13:a6:51:3a:c1:10:8b:a4:57:f9:10:38:fd: 71:26:19:27:ae:83:f3:0a:e0:44:27:9b:83:d8:ba: 27:77:4e:77:87:b4:26:4d:2a:55:25:e3:43:06:ad: 99:b6:98:5a:d4:8c:a8:1c:9d:25:80:26:99:b7:96: 40:e7:fc:bf:9f:61:17:b2:da:90:8f:2c:f3:f7:73: b2:69:2d:06:4e:00:8b:04:ac:7c:43:b6:44:ff:ee: a0:9d:5c:4c:73:5c:86:ba:fb:3f:b9:26:72:fd:a6: 8d:59:0d:44:3b:28:14:e6:83:1c:f5:a7:64:79:11: 9c:37:34:51:c4:9a:40:2a:fd:e2:a0:57:3b:91:a4: 90:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:7A:FE:5D:C7:2E:D2:67:0F:5C:B0:FA:AA:DC:3F:A8:BA:5E:A9:07 X509v3 Authority Key Identifier: keyid:8F:C3:F8:DE:52:3A:F2:9D:B2:4A:15:90:FD:40:A0:44:75:AE:0A:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:bd:a7:38:5e:14:83:a7:1b:ef:35:2b:b0:ec:ee:7c:1a:1d: 26:22:8b:d3:31:81:c9:2c:3e:67:b1:c6:5c:a0:7f:4f:80:d6: b6:d9:15:c9:e7:bf:ce:7c:ec:ed:ae:7f:4f:53:31:a2:1e:c7: cb:e1:65:8d:e0:0c:63:ec:09:5b:aa:bd:fe:6a:52:5c:a3:e9: 08:69:09:68:5c:0d:8c:9d:e9:fa:e0:6b:d0:d7:56:cf:0b:40: 3c:51:30:5e:fa:d0:10:c7:c4:63:64:e3:25:26:c2:54:97:7e: 06:98:2b:27:6b:ee:96:4f:d8:5e:f8:f5:1e:a4:39:30:0e:27: 51:3c:c0:8f:c1:ad:5b:5b:a7:64:7d:75:d4:29:2f:53:ca:ab: e2:e1:0e:f4:aa:70:0c:c7:e4:79:f4:5d:8b:8f:7c:b0:de:a6: b7:2d:36:eb:a0:e7:18:07:83:00:9f:c9:4a:b5:e8:e0:02:b0: 1b:28:b9:f3:64:78:96:14:39:4f:ba:1f:49:41:36:95:dc:a5: e1:56:0c:b7:af:2d:40:52:89:7f:3f:39:60:54:a4:86:40:4f: c4:da:c3:b6:54:39:6c:4f:25:1d:f0:a3:fc:61:3d:c8:1f:d9: 07:4d:7f:9d:75:56:84:23:d1:8f:5c:2e:d7:0f:47:d0:fe:22: 22:09:6e:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCOTMxMTAvBgNVBAUTKDhGQzNGOERFNTIzQUYyOURCMjRBMTU5MEZENDBBMDQ0 NzVBRTBBMjUwHhcNMjUxMDE4MTYyMDUzWhcNMjUxMDI1MTYyMDUzWjAYMRYwFAYD VQQDEw02OGYzYmU2NS02M2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbm7TXa9ZXL7LrOlulieBLDE04uUjg4SwNR92K9eoSeWpiebj7kjengArH/u QZu+CV4C6hZ0A3cXjpMO7hBa0KrHKtcLAs35qAeDUop6RN7NB6N0BC0zVuffVcTv HIo37HTK6D4JrhKqgV6wtO0Um7T7n2Z9AitApBOmUTrBEIukV/kQOP1xJhknroPz CuBEJ5uD2Lond053h7QmTSpVJeNDBq2Ztpha1IyoHJ0lgCaZt5ZA5/y/n2EXstqQ jyzz93OyaS0GTgCLBKx8Q7ZE/+6gnVxMc1yGuvs/uSZy/aaNWQ1EOygU5oMc9adk eRGcNzRRxJpAKv3ioFc7kaSQUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAp6/l3H LtJnD1yw+qrcP6i6XqkHMB8GA1UdIwQYMBaAFI/D+N5SOvKdskoVkP1AoER1rgol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUI5My84RDMwMzk0Njgx OEIxMUU2QkYxQ0I2NTdDNEY5QUUwMi9qOFA0M2xJNjhwMnlTaFdRX1VDZ1JIV3VD aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4UDQzbEk2OHAyeVNoV1FfVUNnUkhXdUNpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUI5My84RDMwMzk0NjgxOEIxMUU2QkYxQ0I2NTdDNEY5QUUwMi9qOFA0M2xJNjhw MnlTaFdRX1VDZ1JIV3VDaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgvac4XhSDpxvvNSuw7O58Gh0mIovTMYHJLD5nscZcoH9PgNa22RXJ 57/OfOztrn9PUzGiHsfL4WWN4Axj7Albqr3+alJco+kIaQloXA2Mnen64GvQ11bP C0A8UTBe+tAQx8RjZOMlJsJUl34GmCsna+6WT9he+PUepDkwDidRPMCPwa1bW6dk fXXUKS9Tyqvi4Q70qnAMx+R59F2Lj3yw3qa3LTbroOcYB4MAn8lKtejgArAbKLnz ZHiWFDlPuh9JQTaV3KXhVgy3ry1AUol/PzlgVKSGQE/E2sO2VDlsTyUd8KP8YT3I H9kHTX+ddVaEI9GPXC7XD0fQ/iIiCW7l -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:23 2025 by rpki-client