$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft File: 8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json) Hash identifier: SnhN/7RZ0LlqwlpkfhdwY48hk9TUo3vs8LbWIogFcBs= Subject key identifier: 01:49:A5:1F:63:C0:7F:95:E1:C9:76:94:26:AB:D0:C3:41:C1:7D:35 Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 Certificate issuer: /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Certificate serial: 03A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft Manifest number: 03A4 Signing time: Sun 19 Oct 2025 02:43:50 +0000 Manifest this update: Sun 19 Oct 2025 02:43:49 +0000 Manifest next update: Sun 26 Oct 2025 02:43:49 +0000 Files and hashes: 1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: N/WLmxpNvFg+5r302tlAvypiPl8DwWQo2QKORTWZYv8=) 2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: WXC/B6Dbe8kPnOwbgfCf/9me935cYsiOJufkenUuGQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 936 (0x3a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Validity Not Before: Oct 19 02:43:49 2025 GMT Not After : Oct 26 02:43:49 2025 GMT Subject: CN=68f45065-a472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0c:30:9e:19:63:e9:72:8e:15:69:3a:5e:f0: d5:7e:8c:87:a8:ca:a5:24:a3:19:52:83:23:da:60: 1c:28:8f:0b:9b:34:94:3c:d7:5d:92:88:4e:f2:dd: 0d:55:e1:ec:6d:95:85:02:f0:f3:cc:10:1d:6a:3c: 10:ca:f0:0c:a2:08:fc:fb:70:4b:17:51:ee:2d:c3: 4e:3e:16:29:99:0a:a3:e5:0f:d1:94:df:9d:76:2c: 7f:8b:59:58:50:31:96:59:cc:bb:47:56:27:f8:7f: af:25:0c:1f:34:78:7d:e5:19:08:ba:5d:16:00:0c: d9:6a:5b:52:96:c5:4c:c0:85:77:08:98:1d:71:99: c0:57:05:3a:bd:65:3e:7c:68:d3:d9:0f:59:f7:95: a5:40:f9:d4:18:9e:c5:7a:f7:7b:1a:e3:d3:40:71: 33:39:b3:d6:b4:57:4e:35:d0:e0:b6:94:c4:6b:e4: 89:1e:06:a9:17:5b:6a:9d:f0:09:b8:63:1d:63:be: 3e:e5:2d:41:9e:08:c6:92:b1:4c:81:a4:57:cd:40: 54:e9:f8:d3:51:0e:b0:c1:d0:10:3c:df:a3:19:f4: 48:55:91:08:69:8e:f9:31:c5:d9:c7:d2:a9:38:f6: e1:62:86:70:42:f3:d1:ed:9e:c1:77:85:93:f3:e2: f9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:49:A5:1F:63:C0:7F:95:E1:C9:76:94:26:AB:D0:C3:41:C1:7D:35 X509v3 Authority Key Identifier: keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:bc:6f:c8:37:51:83:a5:af:b5:69:94:88:a1:a2:63:42:36: 8e:3d:0c:7c:33:ca:87:3c:cc:6f:7b:36:ea:57:9f:95:fb:dc: 20:88:e8:5f:43:9b:0d:9a:64:74:a4:b4:1b:e5:b3:72:bb:45: 68:b0:08:32:1f:e2:3b:a0:21:6c:75:3a:8a:e0:18:bd:13:ef: fa:0d:cc:62:33:57:f8:3e:d6:67:3b:4f:14:4d:c9:b6:4e:0a: 49:2d:e6:97:90:b7:af:8f:5b:17:ae:03:b7:75:f5:da:a1:56: 02:d3:27:55:e1:44:59:7e:44:6e:a9:b7:84:5b:b4:cf:63:3d: b6:42:3c:48:e1:64:17:f9:78:b1:d5:44:80:d1:de:6c:35:d3: 7b:15:dc:61:38:0c:25:62:9f:93:3a:39:a6:e6:ac:54:b2:8f: 33:21:91:b8:68:32:93:d0:9b:03:27:44:e0:0b:5e:a2:58:2e: ff:3e:90:5d:7d:64:d8:bc:55:4a:18:db:66:d5:ff:5b:fe:73: fa:19:ea:da:8e:75:13:77:ee:5f:43:96:f4:fa:72:90:51:15: 4c:e0:06:52:97:81:0a:b9:11:42:b4:33:bc:7a:52:56:95:20: ee:ff:1b:9d:3d:26:c8:58:fd:8b:35:da:3a:99:80:36:8a:c5: c9:08:e7:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5QzAxMTAvBgNVBAUTKEYxNTAxOTIwQTU1RjNBN0MyNzEwMzkxNDlGRkEyOEE3 QzFDQzM4RjEwHhcNMjUxMDE5MDI0MzQ5WhcNMjUxMDI2MDI0MzQ5WjAYMRYwFAYD VQQDEw02OGY0NTA2NS1hNDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQwwnhlj6XKOFWk6XvDVfoyHqMqlJKMZUoMj2mAcKI8LmzSUPNddkohO8t0N VeHsbZWFAvDzzBAdajwQyvAMogj8+3BLF1HuLcNOPhYpmQqj5Q/RlN+ddix/i1lY UDGWWcy7R1Yn+H+vJQwfNHh95RkIul0WAAzZaltSlsVMwIV3CJgdcZnAVwU6vWU+ fGjT2Q9Z95WlQPnUGJ7Fevd7GuPTQHEzObPWtFdONdDgtpTEa+SJHgapF1tqnfAJ uGMdY74+5S1BngjGkrFMgaRXzUBU6fjTUQ6wwdAQPN+jGfRIVZEIaY75McXZx9Kp OPbhYoZwQvPR7Z7Bd4WT8+L5JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFJpR9j wH+V4cl2lCar0MNBwX01MB8GA1UdIwQYMBaAFPFQGSClXzp8JxA5FJ/6KKfBzDjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlDMC82Q0IzODM1OEIz NDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9ud25FRGtVbl9vb3A4SE1P UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWQVpJS1ZmT253bkVEa1VuX29vcDhITU9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlDMC82Q0IzODM1OEIzNDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9u d25FRGtVbl9vb3A4SE1PUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGvG/IN1GDpa+1aZSIoaJjQjaOPQx8M8qHPMxvezbqV5+V+9wgiOhf Q5sNmmR0pLQb5bNyu0VosAgyH+I7oCFsdTqK4Bi9E+/6DcxiM1f4PtZnO08UTcm2 TgpJLeaXkLevj1sXrgO3dfXaoVYC0ydV4URZfkRuqbeEW7TPYz22QjxI4WQX+Xix 1USA0d5sNdN7FdxhOAwlYp+TOjmm5qxUso8zIZG4aDKT0JsDJ0TgC16iWC7/PpBd fWTYvFVKGNtm1f9b/nP6GerajnUTd+5fQ5b0+nKQURVM4AZSl4EKuRFCtDO8elJW lSDu/xudPSbIWP2LNdo6mYA2isXJCOdP -----END CERTIFICATE-----Generated at Mon Oct 20 01:42:45 2025 by rpki-client