$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: hiMUs6frTZgzYlvkrEJg7hDRdMi0zYEUU9qEshd34kQ= Subject key identifier: F7:09:27:E8:B1:B0:9E:89:9A:B4:BC:7D:58:98:BD:7B:CD:9E:95:9A Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: A8 Signing time: Sun 19 Oct 2025 09:22:55 +0000 Manifest this update: Sun 19 Oct 2025 09:22:54 +0000 Manifest next update: Sun 26 Oct 2025 09:22:54 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: F3bm1U3BZGSIPoag0FgZWRzzSRth7fH50hQRJfjpmms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Oct 19 09:22:54 2025 GMT Not After : Oct 26 09:22:54 2025 GMT Subject: CN=68f4adee-aaf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d0:8b:df:4b:37:5e:e1:e6:44:c7:6c:4e:13: 70:6f:b7:c8:72:c8:b9:da:6a:9d:02:96:30:f0:2a: dc:f5:59:71:c2:78:93:82:21:8d:c8:a3:4e:cd:9d: e4:8e:10:b7:e0:7b:29:84:ed:fc:70:08:c6:ae:f0: 14:b6:60:4a:be:fd:19:83:5e:02:df:2b:56:b3:6f: ff:24:5f:72:f7:04:c0:b9:7c:91:76:cf:c0:47:a6: 81:a8:d2:c5:01:53:a2:29:5a:54:d7:c2:38:14:93: a7:ea:45:db:42:a4:a5:b4:ab:4c:74:35:3e:b4:81: 29:f7:75:bb:bc:e0:76:6c:b9:20:9a:b2:4b:a3:cd: 12:ab:87:ce:98:88:cc:c7:80:c5:43:77:7c:74:34: 5d:32:97:f1:30:5e:50:67:63:06:22:da:38:8c:21: 25:b4:c2:a5:2a:49:dd:05:6a:8a:75:3d:fe:e8:18: 06:cb:df:bd:0f:75:25:d5:0f:47:e8:fe:ca:44:1f: 0d:1b:9b:9c:14:59:0f:8f:15:bd:b8:a1:a8:6b:07: f2:be:e0:d9:d1:86:b0:d2:ac:53:06:ad:1d:e3:b9: cf:c1:64:31:27:cc:8b:92:b8:04:39:75:54:f7:9c: bc:5b:5d:42:80:3b:fd:c4:0a:7b:f8:88:cf:1d:97: 22:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:09:27:E8:B1:B0:9E:89:9A:B4:BC:7D:58:98:BD:7B:CD:9E:95:9A X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d3:25:b1:a7:de:92:a6:a1:26:c7:78:01:18:59:46:61:b9: d2:b7:89:07:e0:92:4f:2d:aa:8a:b4:a9:1e:dc:cb:52:8c:8e: bf:d0:15:28:8e:8c:43:d1:d8:3a:09:b4:68:dc:ae:97:e7:4b: 35:d4:4d:b2:fe:50:03:5b:f9:80:96:83:9a:6f:40:b0:ff:0d: 46:f3:73:bd:a2:b7:d0:4b:53:6d:e2:ab:14:bc:a9:48:5c:60: e5:17:b9:31:d9:31:5b:40:18:3f:5e:64:1c:4f:2d:d0:f8:35: 74:98:bf:4c:9c:30:eb:46:6d:fe:47:c6:b7:e8:1b:19:48:8a: c6:99:74:c5:c0:ec:02:ef:ac:54:03:8d:78:68:82:d5:41:83: d1:eb:20:03:5c:46:8a:ab:09:ad:50:25:f2:db:4d:82:83:dc: 34:a7:78:82:de:ae:e6:27:34:6f:28:9f:c9:f1:00:46:45:53: 38:bd:b3:9c:01:b7:bc:0b:77:94:3b:c0:f9:f3:94:02:09:48: 87:8c:d6:f2:cf:07:c3:ed:2a:22:bf:68:69:52:09:f1:7b:16: 96:db:33:5a:67:08:07:08:19:54:60:56:05:4f:d7:b4:c5:7c: 89:92:8a:87:bc:72:01:78:a8:9c:c8:59:f9:9a:04:4e:e9:e4: 77:96:ed:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjUxMDE5MDkyMjU0WhcNMjUxMDI2MDkyMjU0WjAYMRYwFAYD VQQDEw02OGY0YWRlZS1hYWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dCL30s3XuHmRMdsThNwb7fIcsi52mqdApYw8Crc9VlxwniTgiGNyKNOzZ3k jhC34HsphO38cAjGrvAUtmBKvv0Zg14C3ytWs2//JF9y9wTAuXyRds/AR6aBqNLF AVOiKVpU18I4FJOn6kXbQqSltKtMdDU+tIEp93W7vOB2bLkgmrJLo80Sq4fOmIjM x4DFQ3d8dDRdMpfxMF5QZ2MGIto4jCEltMKlKkndBWqKdT3+6BgGy9+9D3Ul1Q9H 6P7KRB8NG5ucFFkPjxW9uKGoawfyvuDZ0Yaw0qxTBq0d47nPwWQxJ8yLkrgEOXVU 95y8W11CgDv9xAp7+IjPHZcipQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcJJ+ix sJ6JmrS8fViYvXvNnpWaMB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY0yWxp96SpqEmx3gBGFlGYbnSt4kH4JJPLaqKtKke3MtSjI6/0BUo joxD0dg6CbRo3K6X50s11E2y/lADW/mAloOab0Cw/w1G83O9orfQS1Nt4qsUvKlI XGDlF7kx2TFbQBg/XmQcTy3Q+DV0mL9MnDDrRm3+R8a36BsZSIrGmXTFwOwC76xU A414aILVQYPR6yADXEaKqwmtUCXy202Cg9w0p3iC3q7mJzRvKJ/J8QBGRVM4vbOc Abe8C3eUO8D585QCCUiHjNbyzwfD7Soiv2hpUgnxexaW2zNaZwgHCBlUYFYFT9e0 xXyJkoqHvHIBeKicyFn5mgRO6eR3lu3T -----END CERTIFICATE-----Generated at Mon Oct 20 19:05:46 2025 by rpki-client