$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: +nblGCFiNEJAR6nS7siwxfHGL9ZsLIeW6OmPwMZw5Ws= Subject key identifier: ED:56:11:81:CC:1F:1E:05:7F:32:44:94:21:3A:11:E9:25:69:BD:C6 Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 0387 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 0382 Signing time: Sun 19 Oct 2025 02:50:50 +0000 Manifest this update: Sun 19 Oct 2025 02:50:49 +0000 Manifest next update: Sun 26 Oct 2025 02:50:49 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: xhlovFimccnRt3HVsWP0Q3xUtEGFIwJ+k3Lp8/yG8Vg=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: 3Kdq8iB7GHkmorOzNCkj5Eih8OtxQjBmOJhG+WoD4A8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Oct 19 02:50:49 2025 GMT Not After : Oct 26 02:50:49 2025 GMT Subject: CN=68f45209-a599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:3c:f7:12:75:eb:23:46:a5:5f:fd:56:8e:79: 05:b0:98:bc:da:11:f1:33:ca:61:f6:7c:59:73:14: e6:53:fd:cf:99:3b:be:d6:a4:da:e7:95:d0:b4:d4: 5a:5f:bf:15:ff:e4:9d:23:87:7d:e2:90:ce:e0:66: 3d:44:a3:66:82:5a:ee:33:c3:58:6c:b8:05:9f:4c: 76:f4:c3:af:c6:06:6d:8f:15:75:7e:ee:18:f7:d8: f4:81:98:cb:a6:b8:51:62:dd:63:02:7a:fa:d2:a6: 88:63:53:d9:69:7d:9d:21:8f:aa:64:96:df:92:06: 89:73:32:37:65:32:13:4a:77:c8:3d:fe:dd:bc:35: d2:6e:e5:a6:ca:ed:32:8a:a6:f9:18:fd:74:a8:1b: 23:58:a7:31:1b:a8:a5:ec:2a:b6:1b:8f:d8:1d:88: 0b:4a:f1:7b:bd:dd:41:3c:cd:6f:43:c3:53:7a:2c: 0d:5e:a1:07:f8:3e:08:a1:fb:08:1a:8f:85:eb:a2: 2c:d4:09:da:c7:61:e8:d3:b4:0b:07:d6:7d:fd:4c: 30:9a:fa:e4:f2:b2:ed:03:a5:1b:93:a7:2f:93:98: 5d:17:50:44:e5:ab:d8:a0:4f:23:c5:a1:65:d1:41: d8:51:8e:e7:39:93:74:7c:5a:08:21:b5:c0:f2:8a: 1d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:56:11:81:CC:1F:1E:05:7F:32:44:94:21:3A:11:E9:25:69:BD:C6 X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:21:43:74:2c:39:06:50:d5:ff:ac:64:12:46:58:f0:b7:da: 08:d1:c4:39:3f:23:cd:4d:d3:2b:4e:a8:34:89:c5:4a:4c:11: 96:15:14:ee:d8:da:91:a0:32:cd:6b:83:a0:bc:a1:30:a6:80: 95:b1:e0:57:ba:05:a1:e8:ef:b5:c9:1e:4c:d4:ab:f8:7a:b5: d8:d0:9b:d7:73:60:07:bf:bc:c4:39:0a:45:22:d6:09:46:50: d2:a8:dd:89:74:a1:db:3a:07:ce:d2:5f:6a:7a:ef:f2:a5:89: 75:93:58:d8:01:8c:34:4f:df:10:16:34:d6:0e:97:21:30:16: 7e:f0:f1:18:c0:7a:c2:78:77:68:7b:c9:b9:83:f7:ed:22:1e: ef:0e:9c:98:5b:f3:df:60:01:6c:83:5a:52:60:c7:06:61:a8: 0b:42:c1:3d:c7:52:30:3a:fb:1f:dd:76:b7:dd:b1:e9:22:ee: a8:b0:a9:9d:78:2a:15:77:1a:f7:55:aa:a7:7b:ac:82:6f:c7: 5f:9b:0d:fa:85:82:20:5b:92:25:89:85:3a:3f:97:f5:22:73: 41:ee:91:28:d4:f5:53:32:b2:40:18:41:57:13:82:6c:61:3c: d1:3d:9a:13:a0:11:3d:6a:4f:e9:30:10:48:12:ab:79:ad:6d: 41:4a:51:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjUxMDE5MDI1MDQ5WhcNMjUxMDI2MDI1MDQ5WjAYMRYwFAYD VQQDEw02OGY0NTIwOS1hNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/jz3EnXrI0alX/1WjnkFsJi82hHxM8ph9nxZcxTmU/3PmTu+1qTa55XQtNRa X78V/+SdI4d94pDO4GY9RKNmglruM8NYbLgFn0x29MOvxgZtjxV1fu4Y99j0gZjL prhRYt1jAnr60qaIY1PZaX2dIY+qZJbfkgaJczI3ZTITSnfIPf7dvDXSbuWmyu0y iqb5GP10qBsjWKcxG6il7Cq2G4/YHYgLSvF7vd1BPM1vQ8NTeiwNXqEH+D4IofsI Go+F66Is1Anax2Ho07QLB9Z9/Uwwmvrk8rLtA6Ubk6cvk5hdF1BE5avYoE8jxaFl 0UHYUY7nOZN0fFoIIbXA8oodbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1WEYHM Hx4FfzJElCE6Eeklab3GMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4IUN0LDkGUNX/rGQSRljwt9oI0cQ5PyPNTdMrTqg0icVKTBGWFRTu 2NqRoDLNa4OgvKEwpoCVseBXugWh6O+1yR5M1Kv4erXY0JvXc2AHv7zEOQpFItYJ RlDSqN2JdKHbOgfO0l9qeu/ypYl1k1jYAYw0T98QFjTWDpchMBZ+8PEYwHrCeHdo e8m5g/ftIh7vDpyYW/PfYAFsg1pSYMcGYagLQsE9x1IwOvsf3Xa33bHpIu6osKmd eCoVdxr3Vaqne6yCb8dfmw36hYIgW5IliYU6P5f1InNB7pEo1PVTMrJAGEFXE4Js YTzRPZoToBE9ak/pMBBIEqt5rW1BSlGz -----END CERTIFICATE-----Generated at Mon Oct 20 08:00:13 2025 by rpki-client