$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: r2gMhtXNm4jf1mf2VsS/ddAq2c2TYwPsCUdScXsiDec= Subject key identifier: 36:07:BC:3F:83:BE:F3:71:5F:6D:56:D5:50:88:1F:84:04:81:FA:B3 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 03DD Signing time: Sun 19 Oct 2025 02:30:52 +0000 Manifest this update: Sun 19 Oct 2025 02:30:50 +0000 Manifest next update: Sun 26 Oct 2025 02:30:50 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: JLnpHeOD0ucQwto+mYD/hmQgtzRQYkBsFmbtY3laFGY=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Oct 19 02:30:50 2025 GMT Not After : Oct 26 02:30:50 2025 GMT Subject: CN=68f44d5b-7de0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:79:90:a9:c6:42:1b:47:ef:22:9a:6e:aa:e4: 0e:93:4c:9e:06:7a:00:14:f3:20:4c:8b:39:61:6b: 1d:81:76:fa:05:5b:ba:0a:3a:c8:7b:d5:46:5b:df: f6:5a:92:96:66:70:7b:79:21:61:f7:72:f6:d4:ad: 0e:92:50:06:1d:b5:bf:07:ed:7c:af:0b:ac:65:27: 8a:b7:40:91:9e:f7:dc:4f:88:44:cd:ef:d6:e0:04: f2:93:de:80:e9:e8:1a:47:22:db:19:29:12:40:a1: 49:04:5c:e6:ed:ae:7c:91:ec:e0:e3:68:12:3e:df: 0a:22:79:a1:e7:0b:90:21:4c:d7:ac:a2:8f:15:fd: 82:3b:c6:11:80:c9:db:49:b7:0b:c1:1e:ac:1e:ad: c1:ff:a8:d9:95:4a:64:36:2a:54:1a:9a:98:56:1f: 6a:24:75:2e:81:a0:0c:f7:da:f1:c0:ec:07:8d:b3: 2a:7a:60:68:ff:10:51:79:17:6f:de:1c:69:f6:2e: 0f:91:50:bd:93:a5:13:c6:60:f9:74:18:d9:89:4c: 95:6f:54:3c:71:72:c3:94:4d:55:4a:09:ec:60:10: c1:8c:04:25:37:20:2c:9d:cd:10:7a:75:bd:64:93: b2:cc:ab:24:c8:ae:a3:b3:4b:b6:3b:88:be:fb:e3: 99:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:07:BC:3F:83:BE:F3:71:5F:6D:56:D5:50:88:1F:84:04:81:FA:B3 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:55:ae:e1:5c:11:65:01:a2:22:7c:47:b5:81:e3:83:ea:1b: db:9f:0e:ab:8e:ab:8d:89:d9:cd:b4:f0:7d:eb:06:cd:92:ad: ce:e2:d4:9c:75:dd:7e:2d:b9:b7:05:72:fc:39:35:62:19:5c: d6:f4:a7:db:ca:ec:77:8d:5c:da:29:09:46:f7:f6:f9:85:40: 0a:8d:a8:13:fb:01:aa:44:f4:93:06:9f:44:2c:2c:49:6a:25: c6:6e:33:85:dc:45:8e:e3:44:37:da:9c:14:d5:09:20:f3:1e: 12:52:9d:55:e4:5e:51:b0:e4:ed:3b:ef:18:bd:ab:9f:e1:eb: 4e:3f:cb:01:db:b5:36:a8:f5:ec:30:5b:07:46:2b:5c:c8:81: bc:3a:8c:60:2e:b1:26:84:42:d0:4b:8d:b8:3f:fb:47:87:e3: 31:66:5a:2b:e3:ce:4f:b2:e7:36:29:d8:fd:aa:bd:70:2b:67: 0b:70:55:a0:da:63:76:f1:1e:c5:ee:52:fc:00:bc:3a:b8:8a: f8:b1:87:a5:b5:8f:13:5f:f6:a5:48:23:0b:ce:48:6e:ab:35: 13:ee:0e:a7:99:64:cd:01:1d:08:07:20:0d:59:ba:67:49:3c: e9:2b:14:b2:0d:32:04:ad:2d:d9:c4:42:45:26:63:98:09:fe: 73:6d:14:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUxMDE5MDIzMDUwWhcNMjUxMDI2MDIzMDUwWjAYMRYwFAYD VQQDEw02OGY0NGQ1Yi03ZGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk3mQqcZCG0fvIppuquQOk0yeBnoAFPMgTIs5YWsdgXb6BVu6CjrIe9VGW9/2 WpKWZnB7eSFh93L21K0OklAGHbW/B+18rwusZSeKt0CRnvfcT4hEze/W4ATyk96A 6egaRyLbGSkSQKFJBFzm7a58kezg42gSPt8KInmh5wuQIUzXrKKPFf2CO8YRgMnb SbcLwR6sHq3B/6jZlUpkNipUGpqYVh9qJHUugaAM99rxwOwHjbMqemBo/xBReRdv 3hxp9i4PkVC9k6UTxmD5dBjZiUyVb1Q8cXLDlE1VSgnsYBDBjAQlNyAsnc0QenW9 ZJOyzKskyK6js0u2O4i+++OZdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYHvD+D vvNxX21W1VCIH4QEgfqzMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlVa7hXBFlAaIifEe1geOD6hvbnw6rjquNidnNtPB96wbNkq3O4tSc dd1+Lbm3BXL8OTViGVzW9Kfbyux3jVzaKQlG9/b5hUAKjagT+wGqRPSTBp9ELCxJ aiXGbjOF3EWO40Q32pwU1Qkg8x4SUp1V5F5RsOTtO+8Yvauf4etOP8sB27U2qPXs MFsHRitcyIG8OoxgLrEmhELQS424P/tHh+MxZlor485Psuc2Kdj9qr1wK2cLcFWg 2mN28R7F7lL8ALw6uIr4sYeltY8TX/alSCMLzkhuqzUT7g6nmWTNAR0IByANWbpn STzpKxSyDTIErS3ZxEJFJmOYCf5zbRQm -----END CERTIFICATE-----Generated at Mon Oct 20 00:22:18 2025 by rpki-client