$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft File: 8Cl9DkUxodYqla9dLyLvJAja0pw.mft (raw, json) Hash identifier: 6DvjlR/cLlX+lUzVKa47Ik2/AoDOf8+PdPme2A+T5hQ= Subject key identifier: 97:F5:93:CA:C6:BF:41:11:68:03:40:A2:96:16:D6:DB:16:D2:20:48 Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C Certificate issuer: /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Certificate serial: 07F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft Manifest number: 07DE Signing time: Sat 18 Oct 2025 22:25:14 +0000 Manifest this update: Sat 18 Oct 2025 22:25:13 +0000 Manifest next update: Sat 25 Oct 2025 22:25:13 +0000 Files and hashes: 1: 8Cl9DkUxodYqla9dLyLvJAja0pw.crl (hash: lLIsIIFCTsdAtkf94bmQC9uNEyje16qQDNKFP2Tzk+M=) 2: DF3CAFC44D9E11F0B1307858C4F9AE02.roa (hash: nNMfwVwGreVHShqHhiSA1wDrVojq2wBr5IqezlVe7oA=) 3: 23AF26C40C2B11EBAD607865C4F9AE02.roa (hash: lqzj6YduHCJKV8dYpz5WAfuKsZiHyQ1FWQ0JXN7wCvU=) 4: 5ECF5AFE37CC11F0AE950A5FC4F9AE02.roa (hash: npjQiEYYdVjWG8dKeFVFQ6M5ppQB2z0yEbCwP4ngirc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF312, serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Validity Not Before: Oct 18 22:25:13 2025 GMT Not After : Oct 25 22:25:13 2025 GMT Subject: CN=68f413c9-e248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e9:43:7d:65:09:bd:8c:42:0e:25:9b:fc:c0: 16:b7:29:41:ec:b4:ed:27:b8:17:3b:aa:89:75:4c: e6:55:6f:5c:d7:f3:d5:f7:ef:ea:81:e4:aa:ed:18: c6:26:6d:66:3a:a2:d9:cd:65:56:3b:ec:55:06:68: 06:ae:97:af:b4:dd:4f:31:80:19:1c:46:87:1e:a7: b1:34:1c:db:64:bb:31:07:9d:61:e6:b1:d9:58:58: 96:c5:ed:40:21:89:50:0f:d7:91:ff:58:67:d2:9a: d4:d2:c0:50:10:50:a9:ec:43:0a:fd:0a:c8:1c:54: cf:84:0c:12:15:97:82:ab:77:18:b6:c2:c7:d7:16: e3:ea:b9:37:b9:22:bd:ca:2f:34:87:77:b5:48:87: bf:a3:e4:b0:21:e6:a0:8f:f2:b4:5e:fe:25:f6:0d: 66:23:66:29:5a:89:ee:3e:e7:64:7c:27:71:53:0a: 6a:7b:77:52:e5:c0:7b:c7:80:2f:01:5f:bf:23:eb: e6:c6:06:b2:ff:68:45:42:ec:08:97:af:8e:9e:e2: 69:93:97:16:b1:ab:23:10:31:47:c7:5e:e4:8f:3e: 73:d1:96:b4:5a:ab:25:52:9f:05:bf:00:15:c4:85: f6:6f:d8:d6:e4:5b:a2:eb:07:86:9c:37:c1:ee:85: f7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F5:93:CA:C6:BF:41:11:68:03:40:A2:96:16:D6:DB:16:D2:20:48 X509v3 Authority Key Identifier: keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:7d:75:2a:25:fb:df:ad:bb:89:6e:e2:d2:db:27:fd:2b:8c: 1d:47:c6:74:e8:95:4a:c9:dc:b6:62:2b:87:c3:3a:3b:45:59: e2:7e:6d:4f:b2:4b:3e:53:c8:04:6b:f0:94:05:ce:f5:e5:62: 5e:21:55:f5:f9:32:2c:72:df:4a:e7:73:1f:8e:99:14:19:ea: e6:01:23:1d:96:b7:a3:05:5b:9a:a2:cf:43:fc:51:ef:61:c5: bd:42:03:d6:31:63:70:fb:ea:ea:a5:c7:28:ee:0b:82:fa:1d: 97:f6:57:d2:3e:0a:ee:37:e5:10:bb:11:9f:3f:18:a8:d1:7c: 78:55:ba:cd:26:63:83:d3:9a:48:d5:48:57:ea:14:8d:86:b5: cd:99:93:59:65:23:75:09:c7:f7:85:72:79:be:e4:ac:d3:17: 7c:8c:aa:a2:e6:85:b4:ad:d7:0d:44:6d:5a:10:2c:0c:e5:e6: 53:9f:02:74:34:20:61:be:34:27:04:5f:70:7d:bd:c7:4b:8b: 46:a0:0a:00:f1:98:5a:ad:49:76:05:1a:7e:93:02:2d:ef:59: 43:ce:5e:29:07:84:ce:2e:bc:27:60:56:82:92:1c:81:16:de: fa:d1:a4:4f:59:b2:e0:c6:56:07:32:75:92:fd:14:a9:68:2e: aa:03:ff:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMTIxMTAvBgNVBAUTKEYwMjk3RDBFNDUzMUExRDYyQTk1QUY1RDJGMjJFRjI0 MDhEQUQyOUMwHhcNMjUxMDE4MjIyNTEzWhcNMjUxMDI1MjIyNTEzWjAYMRYwFAYD VQQDEw02OGY0MTNjOS1lMjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ulDfWUJvYxCDiWb/MAWtylB7LTtJ7gXO6qJdUzmVW9c1/PV9+/qgeSq7RjG Jm1mOqLZzWVWO+xVBmgGrpevtN1PMYAZHEaHHqexNBzbZLsxB51h5rHZWFiWxe1A IYlQD9eR/1hn0prU0sBQEFCp7EMK/QrIHFTPhAwSFZeCq3cYtsLH1xbj6rk3uSK9 yi80h3e1SIe/o+SwIeagj/K0Xv4l9g1mI2YpWonuPudkfCdxUwpqe3dS5cB7x4Av AV+/I+vmxgay/2hFQuwIl6+OnuJpk5cWsasjEDFHx17kjz5z0Za0WqslUp8FvwAV xIX2b9jW5Fui6weGnDfB7oX3KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJf1k8rG v0ERaANAopYW1tsW0iBIMB8GA1UdIwQYMBaAFPApfQ5FMaHWKpWvXS8i7yQI2tKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMxMi9BQTkyQjk3ODBD MjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9kWXFsYTlkTHlMdkpBamEw cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDbDlEa1V4b2RZcWxhOWRMeUx2SkFqYTBwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjMxMi9BQTkyQjk3ODBDMjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9k WXFsYTlkTHlMdkpBamEwcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3fXUqJfvfrbuJbuLS2yf9K4wdR8Z06JVKydy2YiuHwzo7RVnifm1P sks+U8gEa/CUBc715WJeIVX1+TIsct9K53MfjpkUGermASMdlrejBVuaos9D/FHv YcW9QgPWMWNw++rqpcco7guC+h2X9lfSPgruN+UQuxGfPxio0Xx4VbrNJmOD05pI 1UhX6hSNhrXNmZNZZSN1Ccf3hXJ5vuSs0xd8jKqi5oW0rdcNRG1aECwM5eZTnwJ0 NCBhvjQnBF9wfb3HS4tGoAoA8ZharUl2BRp+kwIt71lDzl4pB4TOLrwnYFaCkhyB Ft760aRPWbLgxlYHMnWS/RSpaC6qA/+i -----END CERTIFICATE-----Generated at Mon Oct 20 13:59:11 2025 by rpki-client