$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: Kb1MI3wPgrx78846hTQc/SMcziy4J1ystKnOn57emIM= Subject key identifier: 1A:D3:DD:BA:8E:D2:46:9C:AA:4B:98:49:E4:B5:38:71:A1:89:65:B1 Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1667 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 1652 Signing time: Sat 18 Oct 2025 17:08:50 +0000 Manifest this update: Sat 18 Oct 2025 17:08:50 +0000 Manifest next update: Sat 25 Oct 2025 17:08:50 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: XZbxiuhc0Wxdd4DQp8JEU6cGA+vGx5HvmUxQBQ64i/U=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: CGg33H9/VkhPgziJXWcA6Qz7BN3epjzI9EHcIP++h+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5735 (0x1667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Oct 18 17:08:50 2025 GMT Not After : Oct 25 17:08:50 2025 GMT Subject: CN=68f3c9a2-d138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:74:4e:26:0d:07:7e:eb:32:a0:d2:9b:8d:5f: 00:1f:17:53:76:5d:b1:24:d7:5c:15:4c:6e:ef:9c: d2:7f:30:af:b1:eb:55:93:27:c9:a4:48:7a:7d:75: 85:c1:7c:bd:15:79:0e:67:31:ed:8e:89:20:30:92: 9a:e3:23:c4:9e:20:fa:68:13:52:54:7b:1b:ad:41: 46:cb:50:c6:59:27:aa:9e:c6:f8:4f:a4:57:1e:94: 5a:f3:93:26:2a:3b:7a:4c:8b:e2:c0:4d:b7:88:1f: ec:b8:9f:e2:16:fa:62:2d:93:0d:c2:55:f2:a2:45: d0:70:5b:a5:3d:f6:5c:c8:c0:2d:9b:1f:da:7f:9d: af:dd:87:60:78:8c:e1:eb:40:12:26:8b:95:f7:c5: 95:f7:9d:0e:89:41:47:30:0f:fa:00:33:f3:65:79: c5:1a:f0:05:23:82:9d:4b:fe:72:fc:85:5d:4e:3f: 1f:84:cf:bd:18:ef:64:69:71:f9:f3:14:19:01:62: 98:0b:46:a9:57:6b:56:6a:54:64:56:40:a5:18:61: 7a:92:6c:2f:2e:6f:93:ba:92:71:42:47:40:b7:c8: 00:ab:b2:52:bf:19:21:d4:5f:f5:d7:d3:c5:d8:ca: a3:30:71:2f:10:72:45:7d:3c:f6:d2:76:4d:fd:eb: e2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D3:DD:BA:8E:D2:46:9C:AA:4B:98:49:E4:B5:38:71:A1:89:65:B1 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:70:46:1c:a9:a6:a6:53:35:b3:f1:02:4c:db:d6:d1:df:88: bb:23:35:15:37:79:90:22:cb:b8:7f:2e:8c:fa:77:c9:9d:b4: 3b:12:86:66:75:97:cc:da:33:81:5f:06:83:34:7a:24:d7:8b: f0:44:ab:e3:7a:14:eb:52:ae:6c:b1:32:5b:b2:71:2c:ca:04: bb:db:05:5e:b6:bb:96:f4:c8:b2:18:c4:c4:e0:be:52:4a:1e: a9:68:ea:83:8a:2e:c6:34:34:a6:b4:90:1e:1d:2f:86:df:f9: bd:b0:8f:c3:6d:a8:d4:e9:d3:80:23:9f:41:e9:f3:ae:6b:de: 57:78:63:c4:8f:0c:40:96:c6:ec:ee:19:1b:32:24:43:13:92: 72:bc:79:08:bd:21:4f:de:8d:54:02:d8:6b:04:d1:6b:5e:14: 77:b5:1b:7e:6c:c0:1a:f1:a2:a5:a9:ea:0e:ff:c3:8a:17:ed: 71:20:b5:7b:2b:33:39:4d:45:7f:c9:8c:42:82:54:09:30:67: 71:2e:d7:40:2e:03:be:b2:4c:fe:b5:d4:46:d1:54:42:e0:ac: 04:2e:52:12:f3:ca:02:0b:cd:72:ac:64:9f:fe:89:c2:ba:db: 03:1b:fc:17:a0:20:79:e4:1a:78:75:8e:7c:6e:89:ff:c4:35: ef:21:68:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUxMDE4MTcwODUwWhcNMjUxMDI1MTcwODUwWjAYMRYwFAYD VQQDEw02OGYzYzlhMi1kMTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXROJg0HfusyoNKbjV8AHxdTdl2xJNdcFUxu75zSfzCvsetVkyfJpEh6fXWF wXy9FXkOZzHtjokgMJKa4yPEniD6aBNSVHsbrUFGy1DGWSeqnsb4T6RXHpRa85Mm Kjt6TIviwE23iB/suJ/iFvpiLZMNwlXyokXQcFulPfZcyMAtmx/af52v3YdgeIzh 60ASJouV98WV950OiUFHMA/6ADPzZXnFGvAFI4KdS/5y/IVdTj8fhM+9GO9kaXH5 8xQZAWKYC0apV2tWalRkVkClGGF6kmwvLm+TupJxQkdAt8gAq7JSvxkh1F/119PF 2MqjMHEvEHJFfTz20nZN/evi3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrT3bqO 0kacqkuYSeS1OHGhiWWxMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwcEYcqaamUzWz8QJM29bR34i7IzUVN3mQIsu4fy6M+nfJnbQ7EoZm dZfM2jOBXwaDNHok14vwRKvjehTrUq5ssTJbsnEsygS72wVetruW9MiyGMTE4L5S Sh6paOqDii7GNDSmtJAeHS+G3/m9sI/DbajU6dOAI59B6fOua95XeGPEjwxAlsbs 7hkbMiRDE5JyvHkIvSFP3o1UAthrBNFrXhR3tRt+bMAa8aKlqeoO/8OKF+1xILV7 KzM5TUV/yYxCglQJMGdxLtdALgO+skz+tdRG0VRC4KwELlIS88oCC81yrGSf/onC utsDG/wXoCB55Bp4dY58bon/xDXvIWiJ -----END CERTIFICATE-----Generated at Mon Oct 20 15:00:45 2025 by rpki-client