$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft File: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft (raw, json) Hash identifier: BMDWU1WK3Ec1Z9zlr6j2G97pjox/c8u5BmoNXhKerOE= Subject key identifier: 48:55:9A:62:0A:A5:50:4B:5B:D2:78:08:AD:79:F9:AB:3C:99:B0:33 Authority key identifier: F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 Certificate issuer: /CN=A9146A02/serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Certificate serial: 0C95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft Manifest number: 0C8E Signing time: Sat 18 Oct 2025 19:01:55 +0000 Manifest this update: Sat 18 Oct 2025 19:01:55 +0000 Manifest next update: Sat 25 Oct 2025 19:01:55 +0000 Files and hashes: 1: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl (hash: l4RSOhBPcnCNtAgl4do5yXj6fZ/TT4VMuP/FyOw/MPc=) 2: 3F1B0EF2045F11EA87A3BD3BC4F9AE02.roa (hash: QFXAssP53pMm/bFh5UJHCvk6JCuQJOPSQpSae2xtEZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A02, serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Validity Not Before: Oct 18 19:01:55 2025 GMT Not After : Oct 25 19:01:55 2025 GMT Subject: CN=68f3e423-6ab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:47:a5:c9:60:0e:ed:ff:72:3d:71:b0:81:65: c1:a8:51:55:c7:ff:2b:3d:07:42:0c:30:ea:58:0a: f5:0b:63:f4:d8:f8:c8:58:59:e0:eb:84:4b:8b:7f: 76:3f:3a:be:bd:f2:5f:e7:e3:59:e9:d7:32:f9:8f: 77:e4:bd:37:95:2a:bc:7a:33:9c:c8:08:59:40:50: 96:78:cc:f9:c4:c0:80:2f:58:de:28:53:59:6b:99: b0:c2:c1:94:9a:1a:b9:a1:81:ce:a4:4e:9d:92:46: 14:33:f4:d0:27:25:53:6a:cd:0c:75:50:1f:a6:d1: 2b:73:c8:f8:80:de:5a:98:0e:a2:99:9d:79:a7:08: 4a:3e:7d:9b:e8:5f:3e:5f:10:ad:ed:4e:2a:02:dd: 43:89:3a:0d:f0:51:11:95:2c:60:7d:4c:0e:9c:78: a0:04:47:d6:39:6e:fc:2d:ff:09:9b:45:3a:7c:2f: f7:df:6e:c8:ed:3a:f4:6b:7f:ce:7b:f8:90:a7:36: 3c:c5:4c:16:76:1b:df:7f:5c:f5:55:f7:a4:37:0d: 85:4e:53:b0:ff:53:1b:b6:5c:6a:18:e7:df:49:b2: 25:27:18:5e:f8:f8:5f:46:54:1e:8c:82:83:18:79: fd:93:76:24:70:63:5a:86:3f:22:4b:91:8d:1d:05: de:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:55:9A:62:0A:A5:50:4B:5B:D2:78:08:AD:79:F9:AB:3C:99:B0:33 X509v3 Authority Key Identifier: keyid:F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c7:db:2e:13:d9:ac:f5:35:f2:ee:fb:01:64:49:8e:ce:97: 21:0b:76:61:4e:63:ba:98:71:91:c8:6b:43:d0:cd:63:fc:a6: f6:b9:39:10:37:e9:71:4f:36:5a:17:90:31:29:d3:9a:d0:f0: c5:c8:49:46:79:f1:80:ed:bf:33:2d:de:45:6c:bf:8a:c7:f5: d5:cb:cf:5f:96:f1:91:7e:44:e2:b1:e3:e7:d6:b2:ba:cb:2e: 22:91:80:cf:c8:db:c7:35:11:f4:b6:28:3c:ae:8e:02:5e:3f: 85:03:18:ae:e3:ae:a7:d0:0b:8c:f4:ee:0b:61:74:88:4c:bc: 1d:36:aa:32:05:79:25:94:a5:88:a7:93:f1:ec:59:9e:cc:5b: b4:18:54:80:f5:7f:9c:0c:9a:20:92:9e:83:e8:9a:7b:8d:28: ca:a7:4f:f6:81:95:14:72:96:4e:0b:04:3c:8c:cd:13:ce:6d: 82:a4:55:93:73:32:54:45:11:5f:92:98:cc:c3:cc:68:a2:b8: 08:87:94:25:38:d2:7e:98:76:ff:e7:36:b9:55:c5:db:c7:5b: 53:7e:20:52:11:09:91:f9:3f:be:42:a1:ea:c3:20:af:2f:d4: f2:f8:79:5c:58:0c:76:92:d6:8f:24:71:c7:69:88:64:17:0c: ef:ea:87:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBMDIxMTAvBgNVBAUTKEYwNzI4RUVEMkQ0RjhGRkQ4Q0ZFNUY4N0Y2MUJFQzA0 MzQ1MTQxMjkwHhcNMjUxMDE4MTkwMTU1WhcNMjUxMDI1MTkwMTU1WjAYMRYwFAYD VQQDEw02OGYzZTQyMy02YWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kelyWAO7f9yPXGwgWXBqFFVx/8rPQdCDDDqWAr1C2P02PjIWFng64RLi392 Pzq+vfJf5+NZ6dcy+Y935L03lSq8ejOcyAhZQFCWeMz5xMCAL1jeKFNZa5mwwsGU mhq5oYHOpE6dkkYUM/TQJyVTas0MdVAfptErc8j4gN5amA6imZ15pwhKPn2b6F8+ XxCt7U4qAt1DiToN8FERlSxgfUwOnHigBEfWOW78Lf8Jm0U6fC/3327I7Tr0a3/O e/iQpzY8xUwWdhvff1z1VfekNw2FTlOw/1MbtlxqGOffSbIlJxhe+PhfRlQejIKD GHn9k3YkcGNahj8iS5GNHQXe9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhVmmIK pVBLW9J4CK15+as8mbAzMB8GA1UdIwQYMBaAFPByju0tT4/9jP5fh/Yb7AQ0UUEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkEwMi84RENFRTlGQzA0 NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpfMk1fbC1IOWh2c0JEUlJR U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIS083UzFQal8yTV9sLUg5aHZzQkRSUlFTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkEwMi84RENFRTlGQzA0NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpf Mk1fbC1IOWh2c0JEUlJRU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtx9suE9ms9TXy7vsBZEmOzpchC3ZhTmO6mHGRyGtD0M1j/Kb2uTkQ N+lxTzZaF5AxKdOa0PDFyElGefGA7b8zLd5FbL+Kx/XVy89flvGRfkTisePn1rK6 yy4ikYDPyNvHNRH0tig8ro4CXj+FAxiu466n0AuM9O4LYXSITLwdNqoyBXkllKWI p5Px7FmezFu0GFSA9X+cDJogkp6D6Jp7jSjKp0/2gZUUcpZOCwQ8jM0Tzm2CpFWT czJURRFfkpjMw8xoorgIh5QlONJ+mHb/5za5VcXbx1tTfiBSEQmR+T++QqHqwyCv L9Ty+HlcWAx2ktaPJHHHaYhkFwzv6oeV -----END CERTIFICATE-----Generated at Mon Oct 20 17:56:01 2025 by rpki-client