$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft File: 8kxEMhD3QcvlnQFOum7pcrXN2uc.mft (raw, json) Hash identifier: yuiofI0iWZ/XpNJw17eprRB5jcsIHaZ+bhWcp8BJdrk= Subject key identifier: C1:58:F7:8B:13:C8:F2:9B:EE:4C:E1:8B:DA:C0:66:C9:3B:CC:1F:3F Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft Manifest number: F4 Signing time: Sun 19 Oct 2025 08:10:10 +0000 Manifest this update: Sun 19 Oct 2025 08:10:09 +0000 Manifest next update: Sun 26 Oct 2025 08:10:09 +0000 Files and hashes: 1: 8kxEMhD3QcvlnQFOum7pcrXN2uc.crl (hash: nkqWi91rq3b5tEYQiJh18edS/LlNwnQbKupapnVi2rQ=) 2: 20A6C35C37AF11EF844EC638C4F9AE02.roa (hash: P4Mm2VNQngkGMc8lCO6eHVGOp7Fy5SVP9GQX/B339mE=) 3: 2117AE6E37AF11EF844EC638C4F9AE02.roa (hash: vmrZgLw19B5ritq7z4vG50pAGmXRwXJvrAIY9L3sz/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Oct 19 08:10:09 2025 GMT Not After : Oct 26 08:10:09 2025 GMT Subject: CN=68f49ce1-7896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:40:42:50:94:c9:46:ea:22:82:92:50:4b:e5: a2:b1:87:40:38:8e:b0:34:f7:87:87:f3:b5:f6:20: f4:28:47:c8:a7:49:81:0e:c1:fb:1f:da:1e:4b:c2: db:63:ae:68:5f:a7:b1:fc:e9:6f:5a:4b:ae:30:04: 2a:2b:a5:5a:e7:3e:09:10:16:7c:73:01:b6:9a:6d: 88:8f:30:45:c9:db:c0:fe:42:ca:42:29:3e:cd:ea: 21:e1:96:78:54:b1:45:66:6c:d7:82:5a:ac:2a:a4: 0d:a4:c0:9a:b6:b4:7b:20:3a:72:b6:99:0a:c9:43: dd:97:1c:11:fd:05:f8:24:3e:56:d7:46:ca:45:9f: 94:91:23:39:19:bf:03:72:05:df:75:9b:3b:59:cc: 2f:6d:95:22:ef:c2:2c:8e:fe:db:b1:c2:d8:d6:d3: 82:13:20:13:f8:c4:ef:27:c3:a9:23:82:7e:05:49: 40:4c:07:02:e5:99:bd:10:cf:b2:e5:7c:06:e5:d2: 09:6c:99:05:af:71:29:4c:98:95:30:ae:d4:9b:15: 5d:0e:33:f4:a8:3e:bb:ee:e7:0b:3f:80:29:52:02: c3:1a:54:8a:91:a7:de:9d:0c:50:61:7e:22:d7:6a: 28:4c:0e:79:ad:f3:49:f4:4c:f0:ba:e5:d5:4e:bb: 6c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:58:F7:8B:13:C8:F2:9B:EE:4C:E1:8B:DA:C0:66:C9:3B:CC:1F:3F X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:24:99:12:ed:d7:4b:e1:df:b0:c4:52:64:a6:6c:55:af:77: 19:40:88:52:a5:c6:e6:ad:5f:65:61:27:4a:8f:c7:e7:9e:45: ea:fb:f6:a2:3f:dc:e6:26:f0:91:6d:ed:78:13:55:c6:43:e0: 71:58:20:ee:cc:ae:9f:f4:70:82:8d:1c:67:c4:af:5d:a5:86: 66:9d:10:ba:ac:a6:e5:3c:6d:a2:be:ac:54:2a:3c:69:cf:d3: 07:54:85:e2:93:ad:65:74:6d:8d:68:eb:63:37:e9:63:19:ce: 8f:81:18:5b:53:90:44:2d:f9:e9:8e:ae:07:9c:71:a9:d4:d6: 19:f3:76:51:71:8e:7d:d4:fd:23:f0:38:d9:e1:3c:cf:44:57: db:c9:b6:c0:6f:2d:37:a3:e2:78:20:f1:21:13:de:a2:1e:6b: 67:a6:c5:82:45:f6:f0:d0:16:0c:7d:25:97:b5:d4:00:1c:de: 97:c4:aa:e4:4a:4e:c3:f9:00:b9:01:e9:ae:f3:1a:05:b7:f8: 69:52:76:32:e6:32:44:0e:bc:cd:b2:eb:41:60:37:2c:af:59: 0d:2c:4e:9e:6c:8c:93:af:b0:c6:22:ca:78:11:af:72:d3:aa: 2e:c0:56:b3:01:7f:61:cd:ba:76:a4:bb:81:03:69:0f:67:97: ea:a4:47:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjUxMDE5MDgxMDA5WhcNMjUxMDI2MDgxMDA5WjAYMRYwFAYD VQQDEw02OGY0OWNlMS03ODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkBCUJTJRuoigpJQS+WisYdAOI6wNPeHh/O19iD0KEfIp0mBDsH7H9oeS8Lb Y65oX6ex/OlvWkuuMAQqK6Va5z4JEBZ8cwG2mm2IjzBFydvA/kLKQik+zeoh4ZZ4 VLFFZmzXglqsKqQNpMCatrR7IDpytpkKyUPdlxwR/QX4JD5W10bKRZ+UkSM5Gb8D cgXfdZs7WcwvbZUi78Isjv7bscLY1tOCEyAT+MTvJ8OpI4J+BUlATAcC5Zm9EM+y 5XwG5dIJbJkFr3EpTJiVMK7UmxVdDjP0qD677ucLP4ApUgLDGlSKkafenQxQYX4i 12ooTA55rfNJ9EzwuuXVTrtsiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFY94sT yPKb7kzhi9rAZsk7zB8/MB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81MTJDNzA1RTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1Fj dmxuUUZPdW03cGNyWE4ydWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbJJkS7ddL4d+wxFJkpmxVr3cZQIhSpcbmrV9lYSdKj8fnnkXq+/ai P9zmJvCRbe14E1XGQ+BxWCDuzK6f9HCCjRxnxK9dpYZmnRC6rKblPG2ivqxUKjxp z9MHVIXik61ldG2NaOtjN+ljGc6PgRhbU5BELfnpjq4HnHGp1NYZ83ZRcY591P0j 8DjZ4TzPRFfbybbAby03o+J4IPEhE96iHmtnpsWCRfbw0BYMfSWXtdQAHN6XxKrk Sk7D+QC5Aemu8xoFt/hpUnYy5jJEDrzNsutBYDcsr1kNLE6ebIyTr7DGIsp4Ea9y 06ouwFazAX9hzbp2pLuBA2kPZ5fqpEcX -----END CERTIFICATE-----Generated at Tue Oct 21 08:14:06 2025 by rpki-client