$ rpki-client -vvf rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft File: j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft (raw, json) Hash identifier: +TNti9k8GPIGcFn5uEq+h6Lxh7x96vkCLpwxyz4vlcY= Subject key identifier: 05:82:E2:76:04:9F:25:4E:4D:13:70:DF:1D:A4:06:C0:7E:E3:CB:D5 Authority key identifier: 8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 Certificate issuer: /CN=A91644A4/serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Certificate serial: 02E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft Manifest number: 02E2 Signing time: Sun 19 Oct 2025 03:25:18 +0000 Manifest this update: Sun 19 Oct 2025 03:25:17 +0000 Manifest next update: Sun 26 Oct 2025 03:25:17 +0000 Files and hashes: 1: j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl (hash: CGDAI+6RCglE8H61GmFZDBgamBFZ7Mwv73qTG8NymI4=) 2: 3B501252140811EDBF3D2F27C4F9AE02.roa (hash: UP0rzzGm1RNNAwSNVW6RQ9A/3hrn3jElJIPxPVvX0ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91644A4, serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Validity Not Before: Oct 19 03:25:17 2025 GMT Not After : Oct 26 03:25:17 2025 GMT Subject: CN=68f45a1e-2de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a2:0d:d7:a5:f9:df:f9:74:e5:43:a4:d6:c2: d2:0b:d2:b8:5d:93:79:fd:56:8a:42:db:52:9e:a1: b5:8f:fb:db:78:00:31:e0:1e:c4:c8:6c:ab:40:aa: ed:73:51:e3:9d:dc:a6:df:3f:8e:3c:8c:39:19:4a: 3c:57:a3:31:ce:f2:87:fa:c5:2f:e5:c8:3f:c8:60: 43:de:9a:4a:0c:70:09:72:24:79:27:e3:ba:26:c1: c7:37:c0:0a:5e:73:6f:60:86:e4:62:67:bf:43:fd: 9c:52:8d:ae:e7:44:2c:68:8c:fd:7d:d9:df:16:c3: 78:52:59:fe:b8:70:36:ba:74:55:d0:62:47:84:2b: 25:c1:5a:ac:f3:e0:40:4e:6e:f1:38:6c:8c:ad:21: 95:1c:7d:70:48:87:6e:71:95:7f:38:69:41:9c:93: fa:37:ad:16:6d:9f:b8:df:8f:71:eb:af:df:94:64: b6:71:a2:8c:74:ea:1b:b5:e3:77:c7:d8:16:f3:11: 18:ab:08:04:32:ea:76:63:c2:f3:6f:ef:91:2d:84: 69:4d:c1:45:77:98:eb:48:dc:37:0f:3e:5a:d2:97: 3c:b7:f8:49:e6:fb:3a:66:fa:84:db:a3:70:56:b5: c1:40:f4:1b:e9:4a:1b:cf:67:a2:ab:8e:68:67:26: 63:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:82:E2:76:04:9F:25:4E:4D:13:70:DF:1D:A4:06:C0:7E:E3:CB:D5 X509v3 Authority Key Identifier: keyid:8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:d2:50:4f:28:41:30:56:98:55:f0:0c:18:49:f3:d7:9d:af: 79:c5:81:44:26:13:7b:41:4b:19:45:fb:d5:8d:d2:0e:1c:d4: d7:87:b6:b1:60:47:87:66:c2:a2:48:58:60:ed:cf:dd:e4:d9: 60:e0:3a:b4:39:d3:4d:32:87:ca:7b:43:55:a4:18:9f:d9:7c: 71:f0:22:dc:ef:33:db:32:79:b8:db:a0:38:74:85:d9:4d:41: bd:b7:3d:16:63:a2:93:a7:03:9c:b9:3f:a2:6e:7c:28:5e:96: 4b:78:95:4a:3a:38:32:34:77:a1:6b:73:02:85:88:0e:2b:60: aa:53:a6:5b:75:28:88:74:10:bd:37:e6:f3:f2:04:6e:12:78: 1f:4e:7f:75:ae:1b:85:72:15:d4:cf:5b:56:b1:b8:79:71:cb: 34:3f:64:d7:34:93:fc:53:7e:e8:19:7c:95:f2:04:39:41:ea: 2b:cf:f1:73:16:9a:96:b8:14:52:f2:6d:44:1d:f5:5b:7c:e0: 51:72:6e:58:42:dd:09:03:3e:44:ab:5c:a8:f0:30:44:62:07: c0:ea:98:57:e5:f6:54:e5:7d:2c:1b:68:6d:88:91:e2:ed:d7: 0d:0f:78:7e:38:61:74:56:40:d9:bf:3f:b7:06:9f:16:53:29: 91:a6:10:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ0QTQxMTAvBgNVBAUTKDhGQzY2MUExOTMzMkFFODY0QkM4NzkwMDc0NERBMzM3 RjlBNzAwQTkwHhcNMjUxMDE5MDMyNTE3WhcNMjUxMDI2MDMyNTE3WjAYMRYwFAYD VQQDEw02OGY0NWExZS0yZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaIN16X53/l05UOk1sLSC9K4XZN5/VaKQttSnqG1j/vbeAAx4B7EyGyrQKrt c1Hjndym3z+OPIw5GUo8V6MxzvKH+sUv5cg/yGBD3ppKDHAJciR5J+O6JsHHN8AK XnNvYIbkYme/Q/2cUo2u50QsaIz9fdnfFsN4Uln+uHA2unRV0GJHhCslwVqs8+BA Tm7xOGyMrSGVHH1wSIducZV/OGlBnJP6N60WbZ+4349x66/flGS2caKMdOobteN3 x9gW8xEYqwgEMup2Y8Lzb++RLYRpTcFFd5jrSNw3Dz5a0pc8t/hJ5vs6ZvqE26Nw VrXBQPQb6Uobz2eiq45oZyZjjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWC4nYE nyVOTRNw3x2kBsB+48vVMB8GA1UdIwQYMBaAFI/GYaGTMq6GS8h5AHRNozf5pwCp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDRBNC8yRDIzQTRDQzAy MDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJvWkx5SGtBZEUyak5fbW5B S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4WmhvWk15cm9aTHlIa0FkRTJqTl9tbkFLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDRBNC8yRDIzQTRDQzAyMDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJv Wkx5SGtBZEUyak5fbW5BS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN0lBPKEEwVphV8AwYSfPXna95xYFEJhN7QUsZRfvVjdIOHNTXh7ax YEeHZsKiSFhg7c/d5Nlg4Dq0OdNNMofKe0NVpBif2Xxx8CLc7zPbMnm426A4dIXZ TUG9tz0WY6KTpwOcuT+ibnwoXpZLeJVKOjgyNHeha3MChYgOK2CqU6ZbdSiIdBC9 N+bz8gRuEngfTn91rhuFchXUz1tWsbh5ccs0P2TXNJP8U37oGXyV8gQ5Qeorz/Fz FpqWuBRS8m1EHfVbfOBRcm5YQt0JAz5Eq1yo8DBEYgfA6phX5fZU5X0sG2htiJHi 7dcND3h+OGF0VkDZvz+3Bp8WUymRphDb -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:05 2025 by rpki-client