$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: EDTg0VWMOTnTA7oHBRQA5ZhjsnE9Xd0bySH48862ZxU= Subject key identifier: 21:86:4D:D5:72:3E:F6:A5:12:3F:AE:09:43:3A:16:7C:A2:3C:50:5C Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: D8 Signing time: Sun 19 Oct 2025 08:39:49 +0000 Manifest this update: Sun 19 Oct 2025 08:39:49 +0000 Manifest next update: Sun 26 Oct 2025 08:39:49 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: FxnnNzkbh846PFY8M7OhrE+2/P/ANfK94annhDs8mBc=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: Jxy+pvv4xysDlIQZeDPDC9SdzrWtHicNhXpYrAxOrBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Oct 19 08:39:49 2025 GMT Not After : Oct 26 08:39:49 2025 GMT Subject: CN=68f4a3d5-85ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e1:b0:93:fb:05:f2:21:dd:f1:e3:79:a7:92: 7a:f3:12:da:5a:c7:ff:20:70:e9:3e:63:3c:56:79: 3d:70:f1:cf:de:e0:62:70:72:60:77:6f:e0:aa:b1: 47:bc:52:14:b9:1e:3b:74:5b:1d:34:17:40:17:74: 41:48:3a:ea:0e:ec:fc:3f:45:15:78:97:cd:b6:ce: e8:2b:9c:aa:cb:4e:e1:75:b0:d0:e7:6d:a2:58:ec: 4e:fb:f7:63:74:d9:1d:96:13:2a:f8:be:96:32:07: 2f:b9:1b:48:fc:0b:4d:c2:34:e6:a4:a8:f2:a8:01: 53:13:11:20:4d:0a:56:c3:1d:e6:2c:0c:58:4f:b7: 0f:7e:0d:41:65:bd:d8:d6:30:29:40:da:26:60:e6: 86:33:f3:3d:c6:6b:98:b6:13:7c:44:04:eb:d6:7f: e8:3b:9d:90:bf:7d:b0:f4:c6:03:3c:c0:ea:8c:80: ab:a9:9a:6f:6b:79:df:b7:45:85:ec:cd:10:e5:a6: 7b:8a:05:88:60:a6:1a:83:bf:77:6a:9c:47:7d:f9: b8:28:45:1f:ba:63:bc:43:ba:5a:7f:97:32:ef:79: 3a:a3:fa:dc:55:4e:28:ea:bc:48:0b:7c:ca:43:7e: b7:3f:26:92:98:93:60:b8:cf:07:1c:9d:41:97:80: fb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:86:4D:D5:72:3E:F6:A5:12:3F:AE:09:43:3A:16:7C:A2:3C:50:5C X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:2c:d1:20:20:7c:82:d9:dd:0b:62:20:53:35:af:af:4f:0a: c6:35:ec:43:58:41:34:64:6d:74:17:ef:26:c9:ed:c7:c3:8a: aa:c8:55:86:a2:c3:77:7b:81:54:4e:bf:f5:4f:90:ab:08:35: 2d:a8:34:9a:b2:e5:d5:42:b5:df:51:5c:7a:d2:f6:5e:21:48: 27:44:a0:4f:48:17:00:bb:6e:6b:dd:17:7a:9e:ce:44:c6:6e: 6b:6d:f1:9a:28:97:d8:94:24:53:0c:46:99:a7:fe:38:db:00: 96:2e:03:46:db:ac:26:92:11:8d:04:b1:79:d8:41:6c:e9:dd: c7:4b:ad:57:07:89:12:fa:67:e2:0b:9f:f6:71:5a:00:52:31: c6:81:2f:85:33:2d:af:ba:b3:1b:56:ce:04:c9:9b:7a:c4:06: 3f:23:7d:95:ed:67:13:96:65:52:69:17:55:74:e1:6b:6a:64: c7:45:73:1d:30:ff:7f:5f:7b:db:99:72:a9:43:fa:02:90:06: 95:7a:46:cc:04:ff:a8:0a:64:4f:0f:f7:0c:d0:1c:5a:f2:6e: e5:6a:20:dc:0e:1a:91:3c:1d:13:b2:70:bc:14:b6:11:08:90: 2a:b4:17:68:05:e1:98:14:8d:62:14:dd:2c:c6:3b:c4:5e:ad: c1:72:56:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdFNUYxMTAvBgNVBAUTKDgzQzJCNTRCNjQxRTNGRjA2RTMxQTJCNDQ1MEMxNTdB REFENTlCNjgwHhcNMjUxMDE5MDgzOTQ5WhcNMjUxMDI2MDgzOTQ5WjAYMRYwFAYD VQQDEw02OGY0YTNkNS04NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOGwk/sF8iHd8eN5p5J68xLaWsf/IHDpPmM8Vnk9cPHP3uBicHJgd2/gqrFH vFIUuR47dFsdNBdAF3RBSDrqDuz8P0UVeJfNts7oK5yqy07hdbDQ522iWOxO+/dj dNkdlhMq+L6WMgcvuRtI/AtNwjTmpKjyqAFTExEgTQpWwx3mLAxYT7cPfg1BZb3Y 1jApQNomYOaGM/M9xmuYthN8RATr1n/oO52Qv32w9MYDPMDqjICrqZpva3nft0WF 7M0Q5aZ7igWIYKYag793apxHffm4KEUfumO8Q7paf5cy73k6o/rcVU4o6rxIC3zK Q363PyaSmJNguM8HHJ1Bl4D7ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGGTdVy PvalEj+uCUM6FnyiPFBcMB8GA1UdIwQYMBaAFIPCtUtkHj/wbjGitEUMFXra1Zto MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0U1Ri84MEM0QjMwMDY1 MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBfQnVNYUswUlF3VmV0clZt MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0yZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBf QnVNYUswUlF3VmV0clZtMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2LNEgIHyC2d0LYiBTNa+vTwrGNexDWEE0ZG10F+8mye3Hw4qqyFWG osN3e4FUTr/1T5CrCDUtqDSasuXVQrXfUVx60vZeIUgnRKBPSBcAu25r3Rd6ns5E xm5rbfGaKJfYlCRTDEaZp/442wCWLgNG26wmkhGNBLF52EFs6d3HS61XB4kS+mfi C5/2cVoAUjHGgS+FMy2vurMbVs4EyZt6xAY/I32V7WcTlmVSaRdVdOFramTHRXMd MP9/X3vbmXKpQ/oCkAaVekbMBP+oCmRPD/cM0Bxa8m7laiDcDhqRPB0TsnC8FLYR CJAqtBdoBeGYFI1iFN0sxjvEXq3BclbG -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:04 2025 by rpki-client