$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft File: 8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft (raw, json) Hash identifier: fVfwDngT1nHVqEbkuLbsNIMZKUBx3sU5OeX0AIatlyA= Subject key identifier: F8:71:D0:90:D7:8F:CF:A1:B9:71:C7:60:7F:75:B9:AB:71:49:15:94 Authority key identifier: F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E Certificate issuer: /CN=A917E1FA/serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft Manifest number: 4B Signing time: Sun 19 Oct 2025 10:50:11 +0000 Manifest this update: Sun 19 Oct 2025 10:50:10 +0000 Manifest next update: Sun 26 Oct 2025 10:50:10 +0000 Files and hashes: 1: 8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl (hash: 41fUYwSyMpEasB9rKoD3rJKJzcnkpGsS38dMv7b3D80=) 2: FEC5694C482311F0B2B5E45DC4F9AE02.roa (hash: lNd0dhVh9oVMjkR+5hS3U5ljCVkdpvgCie/KVi3bQe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Validity Not Before: Oct 19 10:50:10 2025 GMT Not After : Oct 26 10:50:10 2025 GMT Subject: CN=68f4c263-f468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:59:03:5a:b4:ad:6c:00:41:dd:34:09:87:16: 70:6b:c4:0f:e5:69:0e:0c:7c:2a:15:f4:a1:ea:64: 51:0c:16:2e:5c:df:c6:d5:17:47:41:a4:b7:73:27: 9c:62:0a:ac:b8:b2:f2:0c:32:e6:72:50:86:b3:77: b0:59:d8:63:c0:6e:64:c6:a0:4a:83:be:8c:92:47: b3:70:6a:71:ca:bb:ed:e3:42:22:24:c0:2a:60:17: be:cc:6c:ce:1a:19:f1:a1:81:1d:c5:7e:92:3d:31: 55:aa:0d:c1:7b:3e:31:3b:0c:da:f0:0f:20:40:08: fe:0e:d5:74:a9:6e:ba:84:dc:54:8d:09:4a:5d:62: 78:f6:e1:c1:15:30:3b:ad:2c:03:ee:1d:c6:b2:07: c7:b6:1c:45:fc:a2:e5:7c:01:a9:e1:05:d6:6a:64: 38:7e:29:58:22:10:c3:d8:a9:cc:1e:62:99:ab:3d: 6d:90:ef:9b:90:6e:91:df:be:ea:1b:52:7d:5a:d2: a0:c8:d4:f6:03:a8:b3:08:02:fd:4c:5a:90:a7:aa: c2:ca:e3:ce:fe:a8:02:8a:c0:52:99:da:a1:1b:ba: 1e:6c:6d:d2:89:13:26:c4:39:32:97:53:7c:0c:d1: f3:44:1d:77:66:5f:5a:4b:38:09:f8:eb:80:3d:12: 48:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:71:D0:90:D7:8F:CF:A1:B9:71:C7:60:7F:75:B9:AB:71:49:15:94 X509v3 Authority Key Identifier: keyid:F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:db:f1:58:23:ed:c2:56:72:6a:d0:59:5e:c9:2a:ff:db:0b: 71:64:74:54:fe:74:61:1d:0d:90:3b:2d:44:7f:26:be:a8:a1: 7a:09:6d:d1:c2:e6:c5:03:0d:b0:f9:a0:4f:12:e1:1a:0d:81: 9f:1c:c7:ce:7d:93:e2:ad:ab:eb:59:e6:50:3b:6b:ad:8b:cd: d6:6f:aa:96:59:13:13:5e:aa:e7:75:04:62:6a:13:19:44:69: c2:10:79:58:6b:80:94:78:3d:96:25:75:f3:51:1c:c2:26:55: d0:cd:7f:ad:85:43:cb:6d:02:3b:9f:ae:be:bc:d3:59:e9:9c: 06:cd:51:91:9a:57:8f:c2:99:75:6d:a3:87:75:40:30:11:d3: d2:41:40:f2:1b:de:17:31:b4:b6:d6:04:b5:9f:7c:d4:fd:6e: f8:cf:03:1f:0d:aa:b1:b6:67:06:10:b2:de:60:0e:a1:b9:fa: 6b:c0:f8:38:f1:b5:44:ef:7b:52:83:f3:3e:0e:cf:64:c7:3d: 70:23:bd:91:4a:9c:e9:6c:71:b1:06:d1:cf:c1:b5:90:58:c7: bc:df:f8:15:17:42:0b:55:44:96:76:30:c5:14:21:8a:cc:d8: cd:c9:9c:29:64:00:da:46:42:8b:99:44:00:85:a8:27:6b:4c: 4b:ce:9f:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTFGQTExMC8GA1UEBRMoRjE1QzVDNUJBNTIxNDUzNzA3QzgxRjVGRUMwODExQkYy MUNGRjQwRTAeFw0yNTEwMTkxMDUwMTBaFw0yNTEwMjYxMDUwMTBaMBgxFjAUBgNV BAMTDTY4ZjRjMjYzLWY0NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsWQNatK1sAEHdNAmHFnBrxA/laQ4MfCoV9KHqZFEMFi5c38bVF0dBpLdzJ5xi Cqy4svIMMuZyUIazd7BZ2GPAbmTGoEqDvoySR7NwanHKu+3jQiIkwCpgF77MbM4a GfGhgR3FfpI9MVWqDcF7PjE7DNrwDyBACP4O1XSpbrqE3FSNCUpdYnj24cEVMDut LAPuHcayB8e2HEX8ouV8AanhBdZqZDh+KVgiEMPYqcweYpmrPW2Q75uQbpHfvuob Un1a0qDI1PYDqLMIAv1MWpCnqsLK487+qAKKwFKZ2qEbuh5sbdKJEybEOTKXU3wM 0fNEHXdmX1pLOAn464A9Ekg7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+HHQkNeP z6G5ccdgf3W5q3FJFZQwHwYDVR0jBBgwFoAU8VxcW6UhRTcHyB9f7AgRvyHP9A4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMUZBLzlBODczRUIwNDVB MzExRjA5NUVGRkQ0OEM0RjlBRTAyLzhWeGNXNlVoUlRjSHlCOWY3QWdSdnlIUDlB NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOFZ4Y1c2VWhSVGNIeUI5ZjdBZ1J2eUhQOUE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MUZBLzlBODczRUIwNDVBMzExRjA5NUVGRkQ0OEM0RjlBRTAyLzhWeGNXNlVoUlRj SHlCOWY3QWdSdnlIUDlBNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACHb8Vgj7cJWcmrQWV7JKv/bC3FkdFT+dGEdDZA7LUR/Jr6ooXoJbdHC 5sUDDbD5oE8S4RoNgZ8cx859k+Ktq+tZ5lA7a62LzdZvqpZZExNequd1BGJqExlE acIQeVhrgJR4PZYldfNRHMImVdDNf62FQ8ttAjufrr6801npnAbNUZGaV4/CmXVt o4d1QDAR09JBQPIb3hcxtLbWBLWffNT9bvjPAx8NqrG2ZwYQst5gDqG5+mvA+Djx tUTve1KD8z4Oz2THPXAjvZFKnOlscbEG0c/BtZBYx7zf+BUXQgtVRJZ2MMUUIYrM 2M3JnClkANpGQouZRACFqCdrTEvOn2Y= -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:36 2025 by rpki-client