$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: 7j5tU+w0MhBJZuJMoGTranFbVJMBP8Xlre07qqipG50= Subject key identifier: DC:EE:5D:B3:82:91:95:63:2E:CD:38:74:96:5C:6E:72:14:B3:83:CC Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A48 Signing time: Sat 18 Oct 2025 20:41:23 +0000 Manifest this update: Sat 18 Oct 2025 20:41:22 +0000 Manifest next update: Sat 25 Oct 2025 20:41:22 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: c5A8WrXXkYo2KDipGRG4qCz6dL+0zSRMDabGvDsr3YI=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:41:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2639 (0xa4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Oct 18 20:41:22 2025 GMT Not After : Oct 25 20:41:22 2025 GMT Subject: CN=68f3fb72-eb68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:88:7a:30:f5:68:a5:d5:a0:68:d0:c6:4c:2d: 45:9a:e7:d7:8f:a1:00:df:ff:37:15:b8:9d:a9:ff: 5a:44:cf:c7:55:28:b5:07:f1:61:fe:cc:1d:6b:21: fe:d9:2d:f7:0c:15:6a:77:21:8f:bb:c3:7b:1f:83: 7d:00:77:e1:f7:69:0b:7e:62:8a:0d:f7:39:48:33: 4c:b3:71:93:5a:88:69:cd:3a:5f:8b:be:91:ea:f8: 64:f1:5a:b1:21:49:ef:f5:21:61:8c:10:b3:37:a1: db:5a:15:3a:8c:00:15:6b:c9:c1:9d:84:f5:89:f5: a6:c2:4a:d2:0f:4e:00:5a:f0:b0:20:69:bf:e7:c9: 58:93:60:5c:09:e7:b2:c4:c2:de:b0:f0:c2:0e:0f: 84:19:ef:22:94:c6:73:26:0d:78:b0:3d:35:61:5f: 5a:51:df:19:48:48:be:4a:0c:3d:35:0d:39:fb:a5: 40:86:9c:ef:bc:d2:93:29:af:9c:21:16:f8:c4:f3: c6:63:6a:75:75:e2:44:f8:af:ed:70:e2:23:e3:cc: 25:c9:23:02:5a:13:4e:68:88:0d:ee:fb:27:98:2c: 0f:12:6c:97:63:74:94:45:4a:f3:d7:a4:4d:8f:bf: 7f:22:d7:5b:35:96:ea:a0:f6:57:ca:10:f3:0b:6e: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EE:5D:B3:82:91:95:63:2E:CD:38:74:96:5C:6E:72:14:B3:83:CC X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a6:2a:8e:6b:1d:f3:07:b3:10:b1:52:0f:8d:b6:9d:42:71: e7:28:8f:23:87:4c:47:30:25:c4:ec:d9:3e:26:01:78:f0:b7: e4:5f:8b:02:21:93:b9:01:ec:b0:aa:71:0e:d2:76:20:aa:5e: 08:47:e0:10:b7:3a:de:a2:c6:9c:6a:90:27:6d:0b:86:43:21: 3a:04:4f:3d:f3:0c:43:47:15:9b:60:07:e5:f8:a8:8f:a8:3e: 80:a0:6d:2e:5c:a3:1a:36:33:8f:84:15:d9:1b:45:c1:1d:d4: ea:ae:24:5f:2d:a9:21:b6:6d:d6:d4:f2:d6:bd:7c:02:91:bf: 9c:d0:79:af:13:9f:d3:fb:d7:0a:73:21:55:27:9c:9b:ff:e1: 92:6d:f7:31:95:81:c5:4f:a9:50:87:1c:56:b7:21:e3:0d:0a: 6e:59:5a:b1:ac:dd:6c:32:c9:ca:2e:9d:4c:76:f1:c7:e7:d6: b6:5e:a3:a5:28:29:89:eb:92:7b:1a:c3:9c:ff:4c:07:ed:30: d1:be:ce:17:04:da:c9:3a:d9:66:40:5c:3a:f6:3a:be:01:b5: 3f:57:ba:c0:86:53:b8:9b:3c:b8:8b:ec:72:a8:c7:5d:5f:d6: cb:cf:25:48:66:9e:c2:d3:b1:c2:03:72:00:7f:dc:9f:6e:61: ab:8b:85:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUxMDE4MjA0MTIyWhcNMjUxMDI1MjA0MTIyWjAYMRYwFAYD VQQDEw02OGYzZmI3Mi1lYjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIh6MPVopdWgaNDGTC1FmufXj6EA3/83Fbidqf9aRM/HVSi1B/Fh/swdayH+ 2S33DBVqdyGPu8N7H4N9AHfh92kLfmKKDfc5SDNMs3GTWohpzTpfi76R6vhk8Vqx IUnv9SFhjBCzN6HbWhU6jAAVa8nBnYT1ifWmwkrSD04AWvCwIGm/58lYk2BcCeey xMLesPDCDg+EGe8ilMZzJg14sD01YV9aUd8ZSEi+Sgw9NQ05+6VAhpzvvNKTKa+c IRb4xPPGY2p1deJE+K/tcOIj48wlySMCWhNOaIgN7vsnmCwPEmyXY3SURUrz16RN j79/ItdbNZbqoPZXyhDzC27VBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzuXbOC kZVjLs04dJZcbnIUs4PMMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlpiqOax3zB7MQsVIPjbadQnHnKI8jh0xHMCXE7Nk+JgF48LfkX4sC IZO5AeywqnEO0nYgql4IR+AQtzreosacapAnbQuGQyE6BE898wxDRxWbYAfl+KiP qD6AoG0uXKMaNjOPhBXZG0XBHdTqriRfLakhtm3W1PLWvXwCkb+c0HmvE5/T+9cK cyFVJ5yb/+GSbfcxlYHFT6lQhxxWtyHjDQpuWVqxrN1sMsnKLp1MdvHH59a2XqOl KCmJ65J7GsOc/0wH7TDRvs4XBNrJOtlmQFw69jq+AbU/V7rAhlO4mzy4i+xyqMdd X9bLzyVIZp7C07HCA3IAf9yfbmGri4Ub -----END CERTIFICATE-----Generated at Mon Oct 20 04:18:44 2025 by rpki-client