$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft File: 08nS13n2aEMJcSuzDPoZkpDhuNY.mft (raw, json) Hash identifier: ryShVXnE+LktdHPv/CqSpfXqDpFZ3vy5TLFve/K9i5E= Subject key identifier: CE:7D:3B:51:0A:3F:78:57:B6:C9:72:CC:D0:2E:74:FC:4F:5E:80:40 Authority key identifier: D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 Certificate issuer: /CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft Manifest number: B0 Signing time: Sun 19 Oct 2025 09:15:43 +0000 Manifest this update: Sun 19 Oct 2025 09:15:42 +0000 Manifest next update: Sun 26 Oct 2025 09:15:42 +0000 Files and hashes: 1: 08nS13n2aEMJcSuzDPoZkpDhuNY.crl (hash: eeVf0xek3IYsdsSKzeLKn1Avb8dgadf7iDnRlEj3G6w=) 2: 6DEFE6D8A14611EF93AB8E21C4F9AE02.roa (hash: rRMGtINr2UhdhF+qj8NjJEBcNErv93/+Ql2sANUuRRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE8F, serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Validity Not Before: Oct 19 09:15:42 2025 GMT Not After : Oct 26 09:15:42 2025 GMT Subject: CN=68f4ac3e-5146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:98:20:bc:7c:9a:10:dc:b2:1c:ef:67:98:0a: 9c:1b:7f:db:58:7c:50:2d:19:a3:31:50:5d:a6:7f: af:62:a9:76:49:59:ee:6c:68:2e:73:95:4d:0c:a0: 3d:37:45:1a:1a:49:93:53:79:09:22:17:64:ef:9d: b6:80:5a:9e:56:67:34:0d:c8:0b:a2:70:4b:08:e7: 20:c9:68:89:b8:47:b9:29:b9:eb:2c:bb:a7:1c:00: eb:bd:df:f2:f7:f0:2f:42:22:a6:9c:07:03:4a:78: 6c:81:db:10:e8:58:2d:fd:ba:6f:19:37:30:9f:7b: ef:6b:6d:1c:8a:f4:3f:bc:5c:dc:77:ef:8d:f7:b8: ea:e3:ad:70:eb:1e:b0:c5:4f:49:77:7a:f9:83:0f: fd:3f:c3:19:6b:e4:c5:32:65:86:6b:e3:7f:82:76: 6b:f7:c6:f3:72:26:75:f8:f9:ac:01:74:9b:a0:45: a8:d5:f9:74:3c:75:e2:9f:05:7e:03:d0:dd:1a:1b: 18:0f:91:6f:0f:0f:55:54:eb:5f:5b:78:da:bb:2d: 6c:10:5c:6f:f1:63:b2:c1:7f:d9:47:34:44:d8:ff: 00:75:be:ac:a0:4b:f3:b5:cd:e7:34:09:89:e3:b9: 4a:5d:11:2c:c9:f2:06:6e:65:07:08:d6:c4:e7:27: be:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7D:3B:51:0A:3F:78:57:B6:C9:72:CC:D0:2E:74:FC:4F:5E:80:40 X509v3 Authority Key Identifier: keyid:D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:cb:4b:0f:db:96:a2:a7:bb:35:23:2d:78:11:25:ab:8a:85: db:fb:4f:4d:f0:ef:f0:26:9a:23:c3:ca:85:7a:18:66:5d:21: 07:4d:0d:ff:20:7c:19:a9:3f:52:3e:1f:f3:0d:96:04:6a:7e: 11:ab:28:0b:80:27:8e:a0:91:40:3d:0a:6e:51:b2:aa:d6:c2: b0:16:62:7a:9e:6e:18:01:a6:2e:c8:2c:c5:f8:88:df:29:2d: 52:57:c4:a2:c9:42:b9:6e:9d:05:34:a5:a5:48:56:ab:39:9c: 7b:20:0c:93:d4:13:d4:25:e0:46:35:06:e0:29:e6:d0:7f:9b: 84:01:27:8f:04:20:c7:c4:b8:16:11:e8:02:5e:79:b9:4c:a1: 2d:04:63:30:de:3e:97:91:d6:1a:82:a5:a2:d6:d1:8e:6d:09: 48:af:24:95:37:8f:b6:42:56:e3:a7:e7:87:dc:39:a2:e4:53: 9a:9e:91:7a:59:23:3c:77:21:ed:37:dd:0f:80:ff:b4:de:34: 2c:57:87:90:e6:e1:db:57:98:3b:80:a8:08:25:4a:b5:9c:09: 85:18:70:c0:ba:d9:ef:c5:85:1d:3a:df:19:1f:5f:35:6a:0d: ca:af:b3:c1:64:78:86:54:71:c9:3c:69:4b:85:6e:be:81:3c: 23:d7:1f:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURFOEYxMTAvBgNVBAUTKEQzQzlEMkQ3NzlGNjY4NDMwOTcxMkJCMzBDRkExOTky OTBFMUI4RDYwHhcNMjUxMDE5MDkxNTQyWhcNMjUxMDI2MDkxNTQyWjAYMRYwFAYD VQQDEw02OGY0YWMzZS01MTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZggvHyaENyyHO9nmAqcG3/bWHxQLRmjMVBdpn+vYql2SVnubGguc5VNDKA9 N0UaGkmTU3kJIhdk7522gFqeVmc0DcgLonBLCOcgyWiJuEe5KbnrLLunHADrvd/y 9/AvQiKmnAcDSnhsgdsQ6Fgt/bpvGTcwn3vva20civQ/vFzcd++N97jq461w6x6w xU9Jd3r5gw/9P8MZa+TFMmWGa+N/gnZr98bzciZ1+PmsAXSboEWo1fl0PHXinwV+ A9DdGhsYD5FvDw9VVOtfW3jauy1sEFxv8WOywX/ZRzRE2P8Adb6soEvztc3nNAmJ 47lKXREsyfIGbmUHCNbE5ye+OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM59O1EK P3hXtslyzNAudPxPXoBAMB8GA1UdIwQYMBaAFNPJ0td59mhDCXErswz6GZKQ4bjW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REU4Ri8wQjU0M0IwQUEx NDYxMUVGQTEyQTZFMUZDNEY5QUUwMi8wOG5TMTNuMmFFTUpjU3V6RFBvWmtwRGh1 TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4blMxM24yYUVNSmNTdXpEUG9aa3BEaHVOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REU4Ri8wQjU0M0IwQUExNDYxMUVGQTEyQTZFMUZDNEY5QUUwMi8wOG5TMTNuMmFF TUpjU3V6RFBvWmtwRGh1TlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6y0sP25aip7s1Iy14ESWrioXb+09N8O/wJpojw8qFehhmXSEHTQ3/ IHwZqT9SPh/zDZYEan4RqygLgCeOoJFAPQpuUbKq1sKwFmJ6nm4YAaYuyCzF+Ijf KS1SV8SiyUK5bp0FNKWlSFarOZx7IAyT1BPUJeBGNQbgKebQf5uEASePBCDHxLgW EegCXnm5TKEtBGMw3j6XkdYagqWi1tGObQlIrySVN4+2Qlbjp+eH3Dmi5FOanpF6 WSM8dyHtN90PgP+03jQsV4eQ5uHbV5g7gKgIJUq1nAmFGHDAutnvxYUdOt8ZH181 ag3Kr7PBZHiGVHHJPGlLhW6+gTwj1x+l -----END CERTIFICATE-----Generated at Mon Oct 20 04:49:02 2025 by rpki-client