$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft File: 8CJFNT_B8ZSpAipKwBl33l_eNvk.mft (raw, json) Hash identifier: AZd7J+ZxTJP+4aJfqWqaGsuEdaxdOIWfTsjL+hk0FTY= Subject key identifier: 49:17:A6:C3:46:67:91:16:C9:C4:98:32:44:B3:3B:FD:70:6C:90:B3 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 03BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft Manifest number: 03A6 Signing time: Sun 19 Oct 2025 02:49:13 +0000 Manifest this update: Sun 19 Oct 2025 02:49:13 +0000 Manifest next update: Sun 26 Oct 2025 02:49:13 +0000 Files and hashes: 1: 8CJFNT_B8ZSpAipKwBl33l_eNvk.crl (hash: qyKsuzrOLi73JrJBkdOvQiuIIxkIa3GVWw3mY8RDq7Q=) 2: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (hash: XtdmJSxuSqJLeY4yGf6y31fYXsFvKu/1qBD/nGzqK1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 954 (0x3ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Oct 19 02:49:13 2025 GMT Not After : Oct 26 02:49:13 2025 GMT Subject: CN=68f451a9-2ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:62:f2:f3:a4:19:b2:cf:7f:be:85:f7:de:43: 91:5b:87:49:b3:a3:9a:6e:04:e7:8c:4a:bf:1a:aa: 4f:d8:96:73:4a:ac:53:10:38:a8:f1:70:85:b9:e5: 64:23:f1:d4:60:8f:aa:96:2a:e3:b5:2c:a1:9d:d1: a5:20:91:f8:f3:03:ba:93:b6:51:da:3c:64:7f:56: c1:ce:65:41:54:8b:e2:5a:64:77:bb:72:c8:0d:4e: 35:b9:44:1b:71:13:47:ae:08:1c:cc:51:21:7a:51: 56:8f:06:f2:88:98:1e:91:cd:0f:63:12:26:91:b2: c4:4f:35:d2:19:c3:10:bb:00:44:87:20:db:f4:79: a0:45:41:fd:74:08:e0:b5:32:4e:b1:df:b6:0d:d5: e7:28:87:6f:94:13:29:ee:09:86:6b:04:29:25:32: e5:8b:a8:19:d3:f0:5c:4f:44:25:85:87:9e:28:1f: 45:1e:22:72:0f:8a:77:b1:ce:1b:d9:51:54:ae:67: 2f:8a:8f:79:8d:01:03:68:7c:07:b3:23:13:2c:2b: dc:ca:90:37:d2:ce:76:98:d0:90:7c:a7:ae:59:db: c8:33:90:9e:5f:bd:83:11:ec:57:00:61:f5:15:55: e8:d2:12:61:4e:14:85:17:68:59:51:0a:48:75:3f: 28:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:17:A6:C3:46:67:91:16:C9:C4:98:32:44:B3:3B:FD:70:6C:90:B3 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:a3:da:7c:57:04:75:0d:25:6c:5e:6e:50:86:aa:6a:3e:90: 03:08:8e:d2:99:54:c1:44:2b:e3:1b:c1:57:ee:97:1e:1c:70: bf:bd:a1:a0:23:00:6e:81:59:5a:bd:3e:23:b3:e6:54:23:85: 70:d7:f1:12:96:31:b0:62:e6:ea:3e:ed:eb:ae:c7:b6:b4:2a: 11:e7:33:3a:82:d7:32:14:f5:05:e3:28:0d:9e:7f:00:c2:fd: 81:07:ee:3d:24:d8:a0:88:0a:e9:2b:3e:2c:20:60:9f:80:bd: 4e:66:1b:24:04:a4:a9:40:c0:e4:55:5e:07:37:d8:5d:8d:fd: c0:64:cd:5e:04:23:dd:1c:67:96:52:da:d1:4a:31:c4:ce:0f: 48:a1:be:06:34:02:fe:f4:56:4c:85:53:a1:6a:f7:11:da:8c: 2d:74:2e:b2:cc:71:c0:e4:1e:94:89:d5:50:1d:9e:a7:aa:10: 62:97:35:4d:50:62:cf:d7:f7:34:5d:df:e8:cf:a9:14:da:09: a6:20:3f:59:34:36:43:8d:7b:74:a1:74:ca:63:60:3c:e8:0e: 63:6a:7c:1a:c8:0d:89:bb:1b:d7:b0:60:fa:9e:f8:96:cd:79: 7b:71:8a:cf:31:2d:9d:af:c7:76:0a:20:60:f0:75:ee:05:9c: 9e:18:a7:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjUxMDE5MDI0OTEzWhcNMjUxMDI2MDI0OTEzWjAYMRYwFAYD VQQDEw02OGY0NTFhOS0yYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9WLy86QZss9/voX33kORW4dJs6OabgTnjEq/GqpP2JZzSqxTEDio8XCFueVk I/HUYI+qlirjtSyhndGlIJH48wO6k7ZR2jxkf1bBzmVBVIviWmR3u3LIDU41uUQb cRNHrggczFEhelFWjwbyiJgekc0PYxImkbLETzXSGcMQuwBEhyDb9HmgRUH9dAjg tTJOsd+2DdXnKIdvlBMp7gmGawQpJTLli6gZ0/BcT0QlhYeeKB9FHiJyD4p3sc4b 2VFUrmcvio95jQEDaHwHsyMTLCvcypA30s52mNCQfKeuWdvIM5CeX72DEexXAGH1 FVXo0hJhThSFF2hZUQpIdT8omwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkXpsNG Z5EWycSYMkSzO/1wbJCzMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTk2QS8yODc4NUY2MEJGQkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjha U3BBaXBLd0JsMzNsX2VOdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAio9p8VwR1DSVsXm5QhqpqPpADCI7SmVTBRCvjG8FX7pceHHC/vaGg IwBugVlavT4js+ZUI4Vw1/ESljGwYubqPu3rrse2tCoR5zM6gtcyFPUF4ygNnn8A wv2BB+49JNigiArpKz4sIGCfgL1OZhskBKSpQMDkVV4HN9hdjf3AZM1eBCPdHGeW UtrRSjHEzg9Iob4GNAL+9FZMhVOhavcR2owtdC6yzHHA5B6UidVQHZ6nqhBilzVN UGLP1/c0Xd/oz6kU2gmmID9ZNDZDjXt0oXTKY2A86A5janwayA2JuxvXsGD6nviW zXl7cYrPMS2dr8d2CiBg8HXuBZyeGKd3 -----END CERTIFICATE-----Generated at Tue Oct 21 02:11:33 2025 by rpki-client