$ rpki-client -vvf rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft File: j4RQ6hjtZj3XYxNayPnBormb2W0.mft (raw, json) Hash identifier: cFE5o73Xf2FhHbglpOsKMV79xy17knCJOtedFN7I1hw= Subject key identifier: DE:3D:1B:3B:65:E6:82:ED:B8:B1:AB:54:21:F1:19:6C:06:DF:DD:24 Authority key identifier: 8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D Certificate issuer: /CN=A913D9CB/serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Certificate serial: 08A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft Manifest number: 089B Signing time: Sat 18 Oct 2025 21:41:09 +0000 Manifest this update: Sat 18 Oct 2025 21:41:09 +0000 Manifest next update: Sat 25 Oct 2025 21:41:09 +0000 Files and hashes: 1: j4RQ6hjtZj3XYxNayPnBormb2W0.crl (hash: 0s/Y2eYsyyzxGtikyRs11GWu5TyhKN4rCfqO62UG3BE=) 2: BA33C4CC638A11F090002541C4F9AE02.roa (hash: SYp3+Qw2NUOxAP2PI8VyKC4eZrJ7XxwyTmQykIlzc3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D9CB, serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Validity Not Before: Oct 18 21:41:09 2025 GMT Not After : Oct 25 21:41:09 2025 GMT Subject: CN=68f40975-c11b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:f5:c1:7b:73:c5:41:30:e5:2c:0d:4c:3a: 2e:f9:02:4e:dd:f9:d2:34:e9:6d:9d:48:59:5c:f8: 80:6b:9b:90:90:56:01:c7:f5:2b:02:5a:f6:78:e6: f9:7c:8f:1c:43:4f:6f:0a:4f:f8:01:96:30:26:7c: f0:e0:19:2a:57:0c:a6:be:af:9d:f1:60:49:2c:0c: 1b:dc:c3:fe:41:41:ac:e7:6c:35:8a:3c:51:70:32: 54:e4:06:ea:d9:de:5a:25:ac:93:e8:52:30:12:cf: 3d:dc:c4:ba:9d:e7:72:1c:39:2f:4e:78:4a:95:bc: 7e:38:38:77:28:1b:74:1b:f7:54:bd:a5:5e:92:1c: 6a:ba:60:ba:16:68:1b:2c:f8:c2:74:08:ea:36:1b: 58:5f:d1:3c:b7:6c:46:ce:ad:77:19:d3:39:82:6f: 00:c0:d6:1d:3f:65:4a:a1:bd:dc:5e:57:fc:9f:b7: 89:51:ec:b7:49:22:45:e0:2a:0f:9c:71:82:19:8f: 5f:7b:69:c2:44:30:80:e9:f4:63:4a:78:b2:22:39: 91:ca:82:d5:86:5f:0c:d7:c3:a1:d6:f4:2f:73:65: 09:48:b3:0e:71:93:c2:86:4c:d0:7c:22:72:ca:b7: bf:10:10:87:9a:70:c5:78:02:8c:5b:5e:86:14:be: 71:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3D:1B:3B:65:E6:82:ED:B8:B1:AB:54:21:F1:19:6C:06:DF:DD:24 X509v3 Authority Key Identifier: keyid:8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:0b:b6:1b:b7:e2:4f:dc:5f:ec:33:c8:01:ff:e5:98:c7:06: b0:ed:49:30:f0:0f:79:4b:36:63:79:92:de:ca:58:5c:ac:bc: f6:0e:fe:82:3c:28:66:b2:88:79:6f:73:b3:50:2c:84:f1:cc: f5:28:2d:7f:f9:99:7f:1e:78:3f:45:03:45:06:3a:6d:57:7f: fa:33:a5:ff:06:68:6e:67:df:2e:66:29:fc:ca:01:27:4a:f4: f1:65:6f:bc:cf:e3:76:b4:76:db:a2:b7:41:fd:77:5e:1b:b6: a6:83:14:3c:0b:41:2e:31:da:10:19:f3:b9:e4:a6:bd:be:69: cc:97:57:59:6a:e4:3e:dd:d5:26:a5:f6:f1:4f:66:2a:b1:05: 72:c3:76:69:21:32:d5:6b:4f:8a:84:eb:8d:b5:f6:c2:bc:bb: b8:99:26:e6:41:58:b4:fa:42:6b:59:08:ff:dd:d7:5a:c2:93: 1c:6e:d0:e0:82:da:ef:b3:83:f1:b9:c9:35:3a:5b:0d:8a:5d: 7f:01:89:52:d8:a3:bd:63:30:c5:6c:8b:34:31:cd:fb:b5:89: ef:32:62:cd:37:99:cc:c3:8c:83:c4:ae:d0:34:70:52:74:34: 5c:ae:06:45:b8:3a:5e:f3:5d:48:fd:22:07:cb:97:fd:cb:d4: bd:48:34:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q5Q0IxMTAvBgNVBAUTKDhGODQ1MEVBMThFRDY2M0RENzYzMTM1QUM4RjlDMUEy Qjk5QkQ5NkQwHhcNMjUxMDE4MjE0MTA5WhcNMjUxMDI1MjE0MTA5WjAYMRYwFAYD VQQDEw02OGY0MDk3NS1jMTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2L1wXtzxUEw5SwNTDou+QJO3fnSNOltnUhZXPiAa5uQkFYBx/UrAlr2eOb5 fI8cQ09vCk/4AZYwJnzw4BkqVwymvq+d8WBJLAwb3MP+QUGs52w1ijxRcDJU5Abq 2d5aJayT6FIwEs893MS6nedyHDkvTnhKlbx+ODh3KBt0G/dUvaVekhxqumC6Fmgb LPjCdAjqNhtYX9E8t2xGzq13GdM5gm8AwNYdP2VKob3cXlf8n7eJUey3SSJF4CoP nHGCGY9fe2nCRDCA6fRjSniyIjmRyoLVhl8M18Oh1vQvc2UJSLMOcZPChkzQfCJy yre/EBCHmnDFeAKMW16GFL5xBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN49Gztl 5oLtuLGrVCHxGWwG390kMB8GA1UdIwQYMBaAFI+EUOoY7WY912MTWsj5waK5m9lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDlDQi8zRkQyRDlDNENB MkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpqM1hZeE5heVBuQm9ybWIy VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o0UlE2aGp0WmozWFl4TmF5UG5Cb3JtYjJXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDlDQi8zRkQyRDlDNENBMkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpq M1hZeE5heVBuQm9ybWIyVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4C7Ybt+JP3F/sM8gB/+WYxwaw7Ukw8A95SzZjeZLeylhcrLz2Dv6C PChmsoh5b3OzUCyE8cz1KC1/+Zl/Hng/RQNFBjptV3/6M6X/BmhuZ98uZin8ygEn SvTxZW+8z+N2tHbbordB/XdeG7amgxQ8C0EuMdoQGfO55Ka9vmnMl1dZauQ+3dUm pfbxT2YqsQVyw3ZpITLVa0+KhOuNtfbCvLu4mSbmQVi0+kJrWQj/3ddawpMcbtDg gtrvs4Pxuck1OlsNil1/AYlS2KO9YzDFbIs0Mc37tYnvMmLNN5nMw4yDxK7QNHBS dDRcrgZFuDpe811I/SIHy5f9y9S9SDRK -----END CERTIFICATE-----Generated at Mon Oct 20 16:06:48 2025 by rpki-client