$ rpki-client -vvf rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft File: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft (raw, json) Hash identifier: wcIdlyCVbdb228ouUxqHRrvTPcQqJ/4REzIB95Om9Wk= Subject key identifier: B1:D8:C4:BF:70:45:CE:1F:42:6C:B6:71:EB:0E:C2:AA:A3:BE:97:3F Authority key identifier: F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C Certificate issuer: /CN=A917B12B/serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Certificate serial: 27B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft Manifest number: 2791 Signing time: Sat 18 Oct 2025 15:51:37 +0000 Manifest this update: Sat 18 Oct 2025 15:51:36 +0000 Manifest next update: Sat 25 Oct 2025 15:51:36 +0000 Files and hashes: 1: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl (hash: DfN6SE9KRuIDal8EAiKcO1tKgiZ5ozXzvaaE8il4KLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10169 (0x27b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B12B, serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Validity Not Before: Oct 18 15:51:36 2025 GMT Not After : Oct 25 15:51:36 2025 GMT Subject: CN=68f3b789-8364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:74:45:b2:34:60:86:03:80:f9:d0:d3:fb:00: 49:63:61:30:12:83:c6:ff:09:be:38:93:03:56:13: e2:6e:49:0e:28:5b:3b:ec:47:2b:2c:6b:5a:34:1f: c5:7f:71:62:5a:56:1a:66:19:1e:14:7c:d8:46:98: ce:22:41:c8:25:52:f6:7f:e6:27:4e:1c:b3:1f:f8: 6d:1f:61:40:8a:9e:41:00:dd:0a:c9:61:9a:de:8c: 11:3e:d5:47:cf:ed:f1:05:e6:6b:89:d2:bf:54:97: 75:71:d4:2a:9e:6b:fa:cd:cd:87:99:37:44:be:9c: 3a:5a:bc:27:fb:fc:13:69:c8:02:09:46:e0:94:25: ef:f7:a4:a1:a4:19:bd:f6:e4:00:b2:ed:f5:bf:b9: 27:c9:3c:ac:fd:29:56:0e:8d:64:d3:7d:cc:f0:e6: 02:64:5b:de:7f:eb:08:6e:2f:83:d2:3e:6c:aa:49: 0a:ca:fb:45:ea:18:3e:3b:ef:a5:a9:b3:3a:94:35: 6b:f0:da:55:f2:cd:76:7e:3f:70:f9:80:49:7c:48: 1a:69:17:c3:9b:af:ee:b0:c3:0d:9b:06:a1:25:71: ae:28:dd:c3:b4:b9:aa:84:9e:49:d3:33:e0:b5:a6: 85:f6:b9:38:71:4b:6d:a3:a3:c1:43:8b:88:af:35: 3c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D8:C4:BF:70:45:CE:1F:42:6C:B6:71:EB:0E:C2:AA:A3:BE:97:3F X509v3 Authority Key Identifier: keyid:F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8c:0b:b3:a8:be:f5:2f:a8:dc:06:6c:13:1c:7e:a1:31:47: 8b:16:7a:8e:4e:89:12:a3:5e:31:3e:56:08:b3:d4:c2:17:1d: 8f:21:a5:82:d0:40:7e:6e:a2:c4:1f:31:b4:26:88:61:9f:8e: 29:0f:f6:4f:0f:9e:ad:59:d5:9c:30:d9:46:70:42:f6:b1:67: f6:ca:d7:ef:4b:aa:5d:a7:4c:a9:e2:a8:e5:3a:18:31:fe:a7: 84:e8:19:4d:2b:6b:24:3e:1b:66:d0:69:b7:d6:42:3c:2f:ea: 63:45:ed:e0:9a:86:41:8f:23:b2:74:88:91:58:a2:7e:8d:d1: 7e:c8:58:1c:4f:ac:ab:fd:df:c3:20:1a:5c:6c:3b:1e:95:b3: 90:bf:ac:7a:51:a4:8a:94:5b:9c:51:f2:a3:58:fc:d5:de:13: c2:3e:78:ff:5a:19:ad:47:7b:38:65:34:8d:84:34:f2:63:0e: 77:97:b5:6b:f9:8b:ae:dc:78:f0:4a:53:36:b0:83:dc:39:07: 32:1b:7e:9e:56:96:1f:01:a6:46:c3:5b:37:03:21:33:30:74: 6d:58:15:a5:f7:b8:e2:a3:a5:28:1b:57:a0:4f:bd:ca:f0:62: 53:36:db:0c:b6:02:87:23:37:d3:30:2a:43:2f:a4:91:66:b7: 6a:fc:04:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxMkIxMTAvBgNVBAUTKEYyNjkyMzQ1M0YwMTcwMzA5RkQ1OEJGM0IwQjVEQ0U0 M0ZGOUI0MUMwHhcNMjUxMDE4MTU1MTM2WhcNMjUxMDI1MTU1MTM2WjAYMRYwFAYD VQQDEw02OGYzYjc4OS04MzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3RFsjRghgOA+dDT+wBJY2EwEoPG/wm+OJMDVhPibkkOKFs77EcrLGtaNB/F f3FiWlYaZhkeFHzYRpjOIkHIJVL2f+YnThyzH/htH2FAip5BAN0KyWGa3owRPtVH z+3xBeZridK/VJd1cdQqnmv6zc2HmTdEvpw6Wrwn+/wTacgCCUbglCXv96ShpBm9 9uQAsu31v7knyTys/SlWDo1k033M8OYCZFvef+sIbi+D0j5sqkkKyvtF6hg+O++l qbM6lDVr8NpV8s12fj9w+YBJfEgaaRfDm6/usMMNmwahJXGuKN3DtLmqhJ5J0zPg taaF9rk4cUtto6PBQ4uIrzU8uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHYxL9w Rc4fQmy2cesOwqqjvpc/MB8GA1UdIwQYMBaAFPJpI0U/AXAwn9WL87C13OQ/+bQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjEyQi9BNTA5RUMxRUJE OUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNEQ2YxWXZ6c0xYYzVEXzV0 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhta2pSVDhCY0RDZjFZdnpzTFhjNURfNXRCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjEyQi9BNTA5RUMxRUJEOUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNE Q2YxWXZ6c0xYYzVEXzV0QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASjAuzqL71L6jcBmwTHH6hMUeLFnqOTokSo14xPlYIs9TCFx2PIaWC 0EB+bqLEHzG0Johhn44pD/ZPD56tWdWcMNlGcEL2sWf2ytfvS6pdp0yp4qjlOhgx /qeE6BlNK2skPhtm0Gm31kI8L+pjRe3gmoZBjyOydIiRWKJ+jdF+yFgcT6yr/d/D IBpcbDselbOQv6x6UaSKlFucUfKjWPzV3hPCPnj/WhmtR3s4ZTSNhDTyYw53l7Vr +Yuu3HjwSlM2sIPcOQcyG36eVpYfAaZGw1s3AyEzMHRtWBWl97jio6UoG1egT73K 8GJTNtsMtgKHIzfTMCpDL6SRZrdq/ATh -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:07 2025 by rpki-client