$ rpki-client -vvf rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft File: s8lXWbAmAWnVga-ERmxca89vwds.mft (raw, json) Hash identifier: KRuTPEIu4ZMH8I7M4ObaQQc5bic4nv/zYgK7DaFqsxo= Subject key identifier: BD:E6:BE:E0:EA:D8:08:45:51:11:DD:2E:29:25:D3:F9:FC:E5:18:D0 Authority key identifier: B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB Certificate issuer: /CN=A913B090/serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft Manifest number: 0221 Signing time: Sun 19 Oct 2025 04:18:21 +0000 Manifest this update: Sun 19 Oct 2025 04:18:21 +0000 Manifest next update: Sun 26 Oct 2025 04:18:21 +0000 Files and hashes: 1: s8lXWbAmAWnVga-ERmxca89vwds.crl (hash: 2QaHk+oLmL3rHMn9ChzD/ZgaQKX6Eb2S1AraPI4O+4Y=) 2: B57CACF267F511EDA884E65BC4F9AE02.roa (hash: uqE+ryUYHNLBPS1jaiyQ/Fm+6Bg+NYwJQStwm0tzSfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B090, serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Validity Not Before: Oct 19 04:18:21 2025 GMT Not After : Oct 26 04:18:21 2025 GMT Subject: CN=68f4668d-7516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0a:9b:8f:31:5f:07:68:0d:b6:c8:92:7f:63: 7d:2d:1c:2c:fb:6e:46:64:53:b8:20:55:6b:fa:64: 88:a8:c3:12:c8:5c:da:c4:00:20:26:b8:9f:ba:7e: bf:0e:1a:bc:08:61:d5:ba:f1:70:08:57:06:48:5d: 76:34:cc:8b:0f:e6:d3:bb:2d:1f:a8:79:a5:d4:32: 93:70:ba:4f:6d:35:95:37:1d:b6:d4:a4:61:69:d9: 4d:4d:59:07:8e:be:50:bb:da:b3:43:2a:4c:cb:35: e9:95:9a:d2:85:dd:06:22:15:9a:3d:5d:ea:96:b2: 2f:79:fb:7d:88:9f:d5:74:39:67:2a:90:37:f4:e5: 56:0b:7c:93:2f:ad:91:42:71:38:40:0f:59:11:98: 22:3e:35:15:a3:61:91:d4:0e:04:a4:6d:7b:e7:6b: ad:f1:df:df:22:f5:81:b7:30:2c:aa:f8:8a:f0:20: 43:5c:7e:56:90:28:6c:3b:06:ce:63:78:59:bb:bc: dc:c7:cb:fc:96:90:74:b6:ed:18:f1:aa:a3:b4:5a: 57:7b:fc:35:19:65:0c:e3:2d:20:b3:f1:d5:d7:7a: af:4a:84:95:b2:b0:34:82:ba:d2:20:5e:4e:de:5c: 9f:43:a5:f7:c5:2e:db:e1:67:2c:a7:01:29:92:54: 03:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E6:BE:E0:EA:D8:08:45:51:11:DD:2E:29:25:D3:F9:FC:E5:18:D0 X509v3 Authority Key Identifier: keyid:B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:20:17:40:19:85:cb:31:97:73:2c:41:78:cb:30:64:59:5d: 99:4a:1b:be:46:a3:1e:5e:dc:0f:d5:64:27:7c:aa:a0:ca:d5: 55:73:76:07:d8:7c:cf:6d:6c:3f:fa:77:f3:bb:dc:78:7e:3b: 02:15:d0:18:30:b4:e1:23:29:46:ac:4b:ed:f1:7a:9c:b1:cc: a5:ce:f2:96:10:46:75:7c:f7:9a:68:de:21:cb:0d:40:8e:65: bb:61:93:be:7a:70:ae:8d:df:ef:df:a8:85:34:7b:d2:e9:21: ff:fe:81:14:64:4b:c5:ec:cc:44:d2:de:4d:00:3d:89:45:94: 21:c2:12:27:fd:e8:b4:db:1a:a7:d0:57:e1:aa:6e:c9:4f:4e: ad:e8:dd:d2:f0:88:0c:c8:be:9c:a8:4d:29:3e:dd:88:d5:d4: bc:51:d4:ef:1b:08:39:b8:f6:75:cf:2f:f2:43:32:c6:00:24: b1:2b:98:65:98:61:47:de:f7:ca:41:af:85:e5:08:c1:9d:01: b0:ff:13:ab:50:60:a4:b4:29:71:06:a3:a4:72:76:40:d2:f9: a5:a9:51:e4:49:d2:a9:49:f3:1c:50:67:c9:1d:3a:da:22:43: e1:58:83:8c:33:de:36:3e:ab:05:c7:79:d7:44:d4:d0:96:6f: d6:c4:04:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwOTAxMTAvBgNVBAUTKEIzQzk1NzU5QjAyNjAxNjlENTgxQUY4NDQ2NkM1QzZC Q0Y2RkMxREIwHhcNMjUxMDE5MDQxODIxWhcNMjUxMDI2MDQxODIxWjAYMRYwFAYD VQQDEw02OGY0NjY4ZC03NTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wqbjzFfB2gNtsiSf2N9LRws+25GZFO4IFVr+mSIqMMSyFzaxAAgJrifun6/ Dhq8CGHVuvFwCFcGSF12NMyLD+bTuy0fqHml1DKTcLpPbTWVNx221KRhadlNTVkH jr5Qu9qzQypMyzXplZrShd0GIhWaPV3qlrIveft9iJ/VdDlnKpA39OVWC3yTL62R QnE4QA9ZEZgiPjUVo2GR1A4EpG1752ut8d/fIvWBtzAsqviK8CBDXH5WkChsOwbO Y3hZu7zcx8v8lpB0tu0Y8aqjtFpXe/w1GWUM4y0gs/HV13qvSoSVsrA0grrSIF5O 3lyfQ6X3xS7b4WcspwEpklQDjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3mvuDq 2AhFURHdLikl0/n85RjQMB8GA1UdIwQYMBaAFLPJV1mwJgFp1YGvhEZsXGvPb8Hb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA5MC82QjY3MjQzNDY3 RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFXblZnYS1FUm14Y2E4OXZ3 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4bFhXYkFtQVduVmdhLUVSbXhjYTg5dndkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA5MC82QjY3MjQzNDY3RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFX blZnYS1FUm14Y2E4OXZ3ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSIBdAGYXLMZdzLEF4yzBkWV2ZShu+RqMeXtwP1WQnfKqgytVVc3YH 2HzPbWw/+nfzu9x4fjsCFdAYMLThIylGrEvt8XqcscylzvKWEEZ1fPeaaN4hyw1A jmW7YZO+enCujd/v36iFNHvS6SH//oEUZEvF7MxE0t5NAD2JRZQhwhIn/ei02xqn 0Ffhqm7JT06t6N3S8IgMyL6cqE0pPt2I1dS8UdTvGwg5uPZ1zy/yQzLGACSxK5hl mGFH3vfKQa+F5QjBnQGw/xOrUGCktClxBqOkcnZA0vmlqVHkSdKpSfMcUGfJHTra IkPhWIOMM942PqsFx3nXRNTQlm/WxASf -----END CERTIFICATE-----Generated at Mon Oct 20 07:06:03 2025 by rpki-client