$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: 1rD3hZFzLKKbEhpDgt+AYAAJus5IC6KnMHKDE6gZufI= Subject key identifier: 90:18:44:77:51:17:88:30:64:97:AD:55:44:4C:50:49:8F:5A:B8:C8 Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 7B Signing time: Sun 19 Oct 2025 10:05:48 +0000 Manifest this update: Sun 19 Oct 2025 10:05:48 +0000 Manifest next update: Sun 26 Oct 2025 10:05:47 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: k1/LF04o6zio2IREfSB93PlVBzugivGdeqD3GTXQXFE=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: 6DJYRNtdCQtPDVdh/suSAFKdKgawzgUz82oOnswPp6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: Oct 19 10:05:48 2025 GMT Not After : Oct 26 10:05:47 2025 GMT Subject: CN=68f4b7fc-b8aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:b3:23:40:25:6f:04:d0:f6:12:11:c0:97: 76:11:f6:76:01:dd:8a:61:be:3f:d8:2f:90:9d:8d: 58:fc:03:26:c7:f9:d7:20:e2:91:14:26:e5:98:f4: 3e:f9:6b:11:11:6f:9e:85:cd:be:27:32:53:a8:94: 83:9b:54:0d:d7:ac:c9:f3:80:ce:d7:d4:5b:a6:62: a8:44:9b:f1:96:b0:06:36:c9:44:c7:33:1d:ec:a2: 2e:60:f1:1e:5d:e9:28:8b:7a:80:21:a9:d4:17:48: 51:e6:26:f8:93:d8:3c:9b:d7:23:2d:49:89:7a:fe: 5e:26:f7:e0:df:0a:bb:a0:a6:8a:0f:87:fd:82:e2: b7:a7:11:5e:cb:59:a6:e2:e7:8c:e4:3c:f6:0d:0f: 8d:21:0b:35:53:9a:0a:e3:fc:a7:10:1a:b4:7d:e0: 75:60:d0:5a:99:5f:a3:c1:53:23:45:f6:d0:65:f4: a5:b8:a2:6d:c0:99:ad:ca:34:da:bc:51:d0:1e:c0: e3:ce:05:ba:21:6b:13:17:61:fb:a6:2b:a8:70:77: ff:f3:30:5e:93:77:a7:06:da:a0:48:da:9e:99:b8: 4a:0b:d5:c5:8a:53:0c:2d:e7:21:a3:17:c5:f3:be: 26:5c:81:66:0b:d4:3b:10:26:f3:62:1a:be:ec:15: 89:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:18:44:77:51:17:88:30:64:97:AD:55:44:4C:50:49:8F:5A:B8:C8 X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e9:37:9d:6c:ae:93:0d:65:f3:fd:0b:f3:05:e8:9e:7e:05: d4:58:09:a1:67:7b:81:40:5d:cb:a2:09:67:57:37:47:6c:e7: 3d:cf:cc:4f:c2:3f:67:f0:47:f3:63:24:eb:1f:29:b6:06:fb: ad:1b:70:8d:2b:fd:77:11:68:af:7f:f0:be:81:3c:16:3e:68: da:a9:2c:a2:f9:bf:96:f6:52:b8:91:05:a9:ee:df:bf:91:62: 51:5c:9f:7d:85:f0:85:be:4b:f3:23:2f:61:80:44:58:ae:6f: eb:c8:6d:1f:03:92:95:b6:4e:39:95:62:68:f5:be:cc:d2:b4: f9:d6:75:67:44:2b:80:de:ae:75:44:c7:30:36:92:3f:1c:57: 41:b4:65:bd:d7:32:99:6f:bf:9f:6b:a4:1c:24:fc:44:9a:e7: b5:a1:27:43:9a:26:82:fa:69:86:ae:2a:f0:78:ac:53:77:53: cb:89:18:bd:b7:d2:9d:aa:b8:18:4a:c9:dc:3f:cc:b7:27:db: 98:ba:af:09:23:72:49:0a:b1:a0:38:13:b1:c5:65:e9:56:9f: 00:77:b8:c1:6d:02:81:b6:47:89:bd:d4:4c:b5:b9:57:32:ad: 4c:27:92:15:d5:93:4e:61:4a:cb:ed:41:9a:c0:31:47:12:b5: 44:cb:dc:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI4RTExMC8GA1UEBRMoNUZDMUI2MzhDQ0NERkY5OUQ2NDQ1NjU1MjlDODA3MDg2 ODY4OUIzMTAeFw0yNTEwMTkxMDA1NDhaFw0yNTEwMjYxMDA1NDdaMBgxFjAUBgNV BAMTDTY4ZjRiN2ZjLWI4YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIKrMjQCVvBND2EhHAl3YR9nYB3Yphvj/YL5CdjVj8AybH+dcg4pEUJuWY9D75 axERb56Fzb4nMlOolIObVA3XrMnzgM7X1FumYqhEm/GWsAY2yUTHMx3soi5g8R5d 6SiLeoAhqdQXSFHmJviT2Dyb1yMtSYl6/l4m9+DfCrugpooPh/2C4renEV7LWabi 54zkPPYND40hCzVTmgrj/KcQGrR94HVg0FqZX6PBUyNF9tBl9KW4om3Ama3KNNq8 UdAewOPOBbohaxMXYfumK6hwd//zMF6Td6cG2qBI2p6ZuEoL1cWKUwwt5yGjF8Xz viZcgWYL1DsQJvNiGr7sFYm9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkBhEd1EX iDBkl61VRExQSY9auMgwHwYDVR0jBBgwFoAUX8G2OMzN/5nWRFZVKcgHCGhomzEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjhFL0NEQTNBNzFFRjU5 QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDhHMk9Nek5fNW5XUkZaVktjZ0hDR2hvbXpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjhFL0NEQTNBNzFFRjU5QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVu V1JGWlZLY2dIQ0dob216RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFvpN51srpMNZfP9C/MF6J5+BdRYCaFne4FAXcuiCWdXN0ds5z3PzE/C P2fwR/NjJOsfKbYG+60bcI0r/XcRaK9/8L6BPBY+aNqpLKL5v5b2UriRBanu37+R YlFcn32F8IW+S/MjL2GARFiub+vIbR8DkpW2TjmVYmj1vszStPnWdWdEK4DernVE xzA2kj8cV0G0Zb3XMplvv59rpBwk/ESa57WhJ0OaJoL6aYauKvB4rFN3U8uJGL23 0p2quBhKydw/zLcn25i6rwkjckkKsaA4E7HFZelWnwB3uMFtAoG2R4m91Ey1uVcy rUwnkhXVk05hSsvtQZrAMUcStUTL3Kk= -----END CERTIFICATE-----Generated at Mon Oct 20 12:16:41 2025 by rpki-client