$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json) Hash identifier: vxxspGt0yRadRhzwmcAV4UtSiQpE4GXWWSw0RX0/YEc= Subject key identifier: E9:D5:5C:6A:73:29:5B:74:FA:75:5C:FB:C5:AE:4B:96:76:76:23:D4 Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft Manifest number: 86 Signing time: Sun 19 Oct 2025 09:53:36 +0000 Manifest this update: Sun 19 Oct 2025 09:53:35 +0000 Manifest next update: Sun 26 Oct 2025 09:53:35 +0000 Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: 8jwl6ovFJG2Wc+B0Jl8Cbm3RgKtuBbZf23UKjUkVIaI=) 2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: mx4Ct5Tnd5YkFq5qkT60Yq1dgh6KZfYC5nrKRxnyy28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A Validity Not Before: Oct 19 09:53:35 2025 GMT Not After : Oct 26 09:53:35 2025 GMT Subject: CN=68f4b520-42c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2e:c2:c6:af:bf:3b:9b:fc:4c:7e:19:a2:77: 38:b1:47:ff:86:c8:08:cb:3b:b0:49:31:73:9b:97: 40:e1:31:f1:43:a9:fc:83:0a:68:05:01:96:94:86: 70:31:84:37:9f:e2:df:86:3c:7a:be:68:db:45:2a: 99:38:44:2f:96:a9:5e:be:1a:af:91:c4:b0:4f:5a: 4e:e2:61:b5:05:35:3a:29:47:50:2f:6a:17:06:2d: c8:97:d2:bc:cd:7e:24:30:a6:05:21:94:e4:68:f7: 2f:3a:93:ee:ca:56:e0:25:64:b6:1d:01:62:58:23: e2:20:c9:f0:ab:a2:91:1b:5b:cd:92:4f:ab:95:cf: 62:4b:df:f7:30:e7:8e:59:5e:7e:c7:69:b9:e0:5b: a7:07:fe:90:2d:17:c4:16:7b:13:72:fc:8c:77:c5: d3:39:bf:80:e5:3f:d3:6c:04:89:8d:0e:86:26:a2: 65:45:41:72:61:80:36:aa:3a:da:33:a3:cb:f7:0b: b2:f8:5d:9d:38:a7:fa:3b:ff:db:0e:68:e6:e9:95: d4:ab:35:c8:0a:9b:43:d0:09:a1:1e:e0:e4:ba:89: 17:23:f0:f0:7f:f8:26:18:ed:1d:71:cb:47:b8:95: 63:84:2a:13:b0:e8:8a:2a:bf:4f:f3:68:3d:ec:29: 7f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D5:5C:6A:73:29:5B:74:FA:75:5C:FB:C5:AE:4B:96:76:76:23:D4 X509v3 Authority Key Identifier: keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:bb:bc:3d:66:25:8f:cd:c8:df:00:79:a4:e2:f7:6f:a7:e2: b2:70:e6:d3:a6:01:a4:fc:0f:f3:86:8f:e3:85:38:d1:29:b5: 16:33:f8:60:bc:fa:43:de:62:90:7f:9c:84:da:fd:9e:fb:63: 56:05:8d:a6:36:63:44:f8:50:49:f8:ec:41:fc:64:16:d2:8d: eb:24:65:90:c6:ce:91:51:05:0e:45:47:cf:04:3c:b7:aa:f2: af:8d:e8:f0:7e:0b:ca:ce:b0:8d:df:48:6c:2f:dd:3b:1f:83: 32:35:d4:9d:22:64:6b:d2:b7:60:4b:37:d6:83:43:70:0c:2e: b3:37:54:96:b0:41:a7:a9:ee:2a:19:d5:a2:56:00:1d:38:01: c0:d9:08:93:04:bc:71:e2:0c:8d:b8:a5:07:38:81:1e:40:f9: 59:84:05:cb:d6:33:72:6f:76:b2:d8:48:8d:40:c0:10:d7:c8: e8:ef:6a:27:f0:42:2f:c4:1b:d5:9e:7a:c9:38:46:9e:eb:2e: 38:64:7c:b8:86:03:36:80:7e:5e:a9:e2:dd:51:42:8b:23:2c: 87:29:80:52:db:86:3f:76:45:a8:0c:e3:3b:92:09:af:5a:21: d5:22:b9:3e:10:6c:8e:21:f8:0a:48:a1:61:2d:6a:1b:ae:6b: 90:7a:53:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5RjUxMTAvBgNVBAUTKEYxMjg5NTc5MjExN0U5MDcwM0EwMDIwRjRGMzU5ODMx REIyRjkzN0EwHhcNMjUxMDE5MDk1MzM1WhcNMjUxMDI2MDk1MzM1WjAYMRYwFAYD VQQDEw02OGY0YjUyMC00MmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAry7Cxq+/O5v8TH4Zonc4sUf/hsgIyzuwSTFzm5dA4THxQ6n8gwpoBQGWlIZw MYQ3n+Lfhjx6vmjbRSqZOEQvlqlevhqvkcSwT1pO4mG1BTU6KUdQL2oXBi3Il9K8 zX4kMKYFIZTkaPcvOpPuylbgJWS2HQFiWCPiIMnwq6KRG1vNkk+rlc9iS9/3MOeO WV5+x2m54FunB/6QLRfEFnsTcvyMd8XTOb+A5T/TbASJjQ6GJqJlRUFyYYA2qjra M6PL9wuy+F2dOKf6O//bDmjm6ZXUqzXICptD0AmhHuDkuokXI/Dwf/gmGO0dcctH uJVjhCoTsOiKKr9P82g97Cl/LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnVXGpz KVt0+nVc+8WuS5Z2diPUMB8GA1UdIwQYMBaAFPEolXkhF+kHA6ACD081mDHbL5N6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlGNS8zMjgzRTdENERG REExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZRY0RvQUlQVHpXWU1kc3Zr M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhTaVZlU0VYNlFjRG9BSVBUeldZTWRzdmszby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlGNS8zMjgzRTdENERGREExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZR Y0RvQUlQVHpXWU1kc3ZrM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdu7w9ZiWPzcjfAHmk4vdvp+KycObTpgGk/A/zho/jhTjRKbUWM/hg vPpD3mKQf5yE2v2e+2NWBY2mNmNE+FBJ+OxB/GQW0o3rJGWQxs6RUQUORUfPBDy3 qvKvjejwfgvKzrCN30hsL907H4MyNdSdImRr0rdgSzfWg0NwDC6zN1SWsEGnqe4q GdWiVgAdOAHA2QiTBLxx4gyNuKUHOIEeQPlZhAXL1jNyb3ay2EiNQMAQ18jo72on 8EIvxBvVnnrJOEae6y44ZHy4hgM2gH5eqeLdUUKLIyyHKYBS24Y/dkWoDOM7kgmv WiHVIrk+EGyOIfgKSKFhLWobrmuQelN+ -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:02 2025 by rpki-client