$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft File: I8MbHNaMzE0c6105mlAbYFD9HUY.mft (raw, json) Hash identifier: WSc4D2p3XrCGhWAlYcdkv2r4cki3v4plJ7UpYnoO2n8= Subject key identifier: AE:AB:DA:F5:E0:FF:5C:42:E3:F8:45:72:91:90:7C:A8:25:2E:6C:77 Authority key identifier: 23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 Certificate issuer: /CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Certificate serial: 03F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft Manifest number: 0500 Signing time: Sun 19 Oct 2025 02:26:20 +0000 Manifest this update: Sun 19 Oct 2025 02:26:19 +0000 Manifest next update: Sun 26 Oct 2025 02:26:19 +0000 Files and hashes: 1: I8MbHNaMzE0c6105mlAbYFD9HUY.crl (hash: WDIyEAtLovU4v5+rMmN7LnhliCTi22/9Bh+HVMxXdJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0, serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Validity Not Before: Oct 19 02:26:19 2025 GMT Not After : Oct 26 02:26:19 2025 GMT Subject: CN=68f44c4c-f880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5b:e2:f4:39:d6:a8:f6:c1:a2:f5:24:4a:05: 8d:da:db:33:07:31:11:43:dc:bc:36:7b:83:f7:70: 6f:9e:21:5e:b2:f4:c3:b2:95:15:f2:1b:63:c2:9d: 29:69:13:a6:9f:97:fa:8c:04:6d:9a:84:38:4e:aa: 35:bb:0c:84:51:7f:28:e9:eb:a0:45:4e:fb:01:d1: 53:3f:31:11:d2:1c:91:a2:b1:c1:a0:b8:2e:d7:87: d7:d5:01:94:33:c5:21:b3:af:c4:d3:c0:d9:df:40: 2d:80:14:e7:df:aa:21:c6:d3:88:eb:2f:2e:56:ce: dd:2a:54:09:c6:02:04:da:61:5d:ce:de:bb:19:0a: ec:3d:16:9b:e7:a4:87:86:bd:6f:47:57:d7:6e:19: 40:ee:40:b4:47:e1:31:dd:e7:63:74:bf:59:43:0e: 91:f7:ae:b5:d4:ac:23:d8:c6:ea:ca:b2:11:52:c9: 0e:9a:68:d8:61:5f:19:13:5d:32:57:6c:e5:d5:27: 44:8d:9f:a5:56:c5:25:68:a0:14:e5:dd:13:88:a5: d0:9b:90:18:70:10:41:e7:b7:4c:ab:9e:3f:08:c9: ce:c3:72:6d:da:8d:c5:ef:c2:68:fa:7d:99:40:1e: b2:b1:13:28:3b:8d:67:6c:f0:f7:17:28:27:47:0d: b9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:AB:DA:F5:E0:FF:5C:42:E3:F8:45:72:91:90:7C:A8:25:2E:6C:77 X509v3 Authority Key Identifier: keyid:23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:13:69:f4:0a:d4:d6:a4:18:f9:77:6a:f2:62:1e:20:0f:c8: ab:af:07:2d:29:7b:21:19:d4:c4:b5:6e:e2:ac:54:1f:9a:86: 30:06:1b:17:06:6d:64:38:c8:15:6d:96:49:3a:af:a7:9a:d1: 6b:60:d0:99:b7:91:2b:ba:f8:68:1e:95:91:d8:27:61:5a:46: ab:2c:59:6f:30:9a:27:35:18:c5:06:33:33:30:40:7e:4a:dd: e5:29:46:3c:3e:62:84:3c:dd:05:1b:e3:a0:33:53:28:05:07: a7:04:21:33:90:8e:42:e8:e4:e1:23:1f:7d:ec:4e:19:18:a0: 45:a2:d7:ab:d4:2c:cc:49:36:c7:a9:4a:15:f3:20:58:6c:26: b2:c0:7b:8b:46:e0:d3:a2:2b:62:a7:85:be:a9:d1:a7:3e:30: 04:40:4a:70:d4:5e:21:87:bf:82:9d:a7:2b:bc:09:f8:3c:2b: 40:86:44:fa:50:20:b7:77:fa:45:3f:06:f5:f0:dd:b1:50:58: 62:20:de:b1:be:48:3d:cd:b6:0b:3d:8e:bb:6a:02:7f:4a:d8: 6d:55:11:d9:0e:8c:fd:9d:2c:66:16:87:0c:a8:80:8d:df:d2: a4:a4:94:0c:e9:ed:67:1c:d2:aa:a1:cf:b0:95:cf:df:0b:d8: b0:33:cd:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBGQzAxMTAvBgNVBAUTKDIzQzMxQjFDRDY4Q0NDNEQxQ0VCNUQzOTlBNTAxQjYw NTBGRDFENDYwHhcNMjUxMDE5MDIyNjE5WhcNMjUxMDI2MDIyNjE5WjAYMRYwFAYD VQQDEw02OGY0NGM0Yy1mODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVvi9DnWqPbBovUkSgWN2tszBzERQ9y8NnuD93BvniFesvTDspUV8htjwp0p aROmn5f6jARtmoQ4Tqo1uwyEUX8o6eugRU77AdFTPzER0hyRorHBoLgu14fX1QGU M8Uhs6/E08DZ30AtgBTn36ohxtOI6y8uVs7dKlQJxgIE2mFdzt67GQrsPRab56SH hr1vR1fXbhlA7kC0R+Ex3edjdL9ZQw6R96611Kwj2MbqyrIRUskOmmjYYV8ZE10y V2zl1SdEjZ+lVsUlaKAU5d0TiKXQm5AYcBBB57dMq54/CMnOw3Jt2o3F78Jo+n2Z QB6ysRMoO41nbPD3FygnRw25/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6r2vXg /1xC4/hFcpGQfKglLmx3MB8GA1UdIwQYMBaAFCPDGxzWjMxNHOtdOZpQG2BQ/R1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEZDMC9DREUwOTg3Njk1 NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpFMGM2MTA1bWxBYllGRDlI VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4TWJITmFNekUwYzYxMDVtbEFiWUZEOUhVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpF MGM2MTA1bWxBYllGRDlIVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHE2n0CtTWpBj5d2ryYh4gD8irrwctKXshGdTEtW7irFQfmoYwBhsX Bm1kOMgVbZZJOq+nmtFrYNCZt5EruvhoHpWR2CdhWkarLFlvMJonNRjFBjMzMEB+ St3lKUY8PmKEPN0FG+OgM1MoBQenBCEzkI5C6OThIx997E4ZGKBFoter1CzMSTbH qUoV8yBYbCaywHuLRuDToitip4W+qdGnPjAEQEpw1F4hh7+CnacrvAn4PCtAhkT6 UCC3d/pFPwb18N2xUFhiIN6xvkg9zbYLPY67agJ/SthtVRHZDoz9nSxmFocMqICN 39KkpJQM6e1nHNKqoc+wlc/fC9iwM80p -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:22 2025 by rpki-client