$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: tois8SupFQy98zWCtRO1sJ1XgH/OO0BPdt72XyKMr7w= Subject key identifier: 45:31:79:78:BB:B1:B4:54:04:A4:95:94:7B:EE:CF:8A:EC:44:1C:2B Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 0818 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0811 Signing time: Sat 18 Oct 2025 22:07:37 +0000 Manifest this update: Sat 18 Oct 2025 22:07:36 +0000 Manifest next update: Sat 25 Oct 2025 22:07:36 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: 1SvsynjT5tHEYdUm4id7a6/GIAG2HSgzxRDBIx2tUa8=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: 6xP14nks32sgSCrxZSRCROaUVIGpujX9KfbjfXlu4Sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2072 (0x818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Oct 18 22:07:36 2025 GMT Not After : Oct 25 22:07:36 2025 GMT Subject: CN=68f40fa9-9a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:54:40:b6:c4:6a:51:e8:3e:3f:e6:3b:73:61: f1:4d:02:fb:7b:4d:dc:84:c2:2d:0e:4c:f7:b0:98: 1e:89:a4:67:3f:0e:aa:5b:41:e7:9a:74:e2:2e:5f: c6:93:29:9d:3d:a6:8e:84:e0:c3:5e:09:dd:73:29: 3e:6d:e1:dd:98:a1:3c:f8:0c:b6:b5:a8:2d:6f:f9: 0e:c2:67:5a:5e:0a:1f:b6:da:df:44:24:cd:2a:c6: f6:24:78:eb:cd:f4:16:bc:37:8e:57:ab:79:c8:ea: 14:29:78:23:48:ec:ff:2a:33:e7:dd:fb:5c:dd:b3: 5d:50:4f:5e:60:57:33:7e:d2:b0:c2:d8:33:17:c1: 87:47:f6:f9:65:f4:d4:12:43:6e:75:b0:c8:b8:30: 20:77:67:e6:16:1b:fe:fe:8f:26:89:b0:4f:21:66: 5a:80:eb:6d:3c:e1:a6:b7:0a:1e:22:8f:7c:66:24: dc:80:6c:4e:89:e1:33:b0:75:45:b5:70:18:da:b5: 4b:0b:98:a1:88:f5:94:9f:c0:81:8c:15:ac:50:98: 08:f3:4c:c7:8e:c7:af:f9:fe:72:20:c7:85:f7:09: bc:72:58:28:aa:cd:67:5b:c5:4c:4d:60:97:b4:06: cd:47:97:50:82:94:20:4e:4c:2a:bf:c3:e6:4c:7d: e7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:31:79:78:BB:B1:B4:54:04:A4:95:94:7B:EE:CF:8A:EC:44:1C:2B X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:20:3c:c4:a8:29:6e:18:08:96:fc:4f:6b:bc:e9:cf:a8:0e: 7b:74:8d:52:c1:7a:64:04:11:75:f4:d6:d9:a6:a8:39:b8:77: 07:85:82:bf:1f:34:3d:76:a3:b4:b8:7e:d3:39:79:ca:5f:0c: d8:e0:8e:39:19:72:73:12:2a:ab:cb:8f:3a:07:c0:eb:3c:9d: ea:ee:bb:66:be:7f:98:f8:af:72:3a:0a:3b:a4:fa:cf:2c:09: e3:9e:6a:94:11:6e:7b:a9:18:dc:5a:a6:90:46:49:61:d1:bd: 5c:ee:30:e3:9e:9a:8f:e3:ce:c2:86:02:70:70:55:ac:1f:43: 22:c5:91:2e:7d:e2:46:e8:41:15:35:a6:97:70:4c:b9:a1:c3: ec:56:05:82:40:7b:65:d3:93:f2:cc:96:7c:d7:5b:71:7a:d7: 8e:4e:86:0e:73:b4:f3:91:36:1d:e2:d1:59:0c:be:87:08:40: 0a:9d:fe:85:e8:0b:e1:56:38:c6:21:9c:46:0b:99:e1:06:9c: a8:c1:c1:c0:9c:15:ea:b3:49:84:81:18:4c:dc:3f:0b:36:65: cc:ec:4a:fd:10:a7:f5:8a:03:ed:ca:20:b3:73:9a:e0:d4:67: fe:7a:39:12:3a:07:76:fe:22:32:95:85:9b:4d:9d:97:4a:1c: 29:f5:a8:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjUxMDE4MjIwNzM2WhcNMjUxMDI1MjIwNzM2WjAYMRYwFAYD VQQDEw02OGY0MGZhOS05YTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1RAtsRqUeg+P+Y7c2HxTQL7e03chMItDkz3sJgeiaRnPw6qW0HnmnTiLl/G kymdPaaOhODDXgndcyk+beHdmKE8+Ay2tagtb/kOwmdaXgofttrfRCTNKsb2JHjr zfQWvDeOV6t5yOoUKXgjSOz/KjPn3ftc3bNdUE9eYFczftKwwtgzF8GHR/b5ZfTU EkNudbDIuDAgd2fmFhv+/o8mibBPIWZagOttPOGmtwoeIo98ZiTcgGxOieEzsHVF tXAY2rVLC5ihiPWUn8CBjBWsUJgI80zHjsev+f5yIMeF9wm8clgoqs1nW8VMTWCX tAbNR5dQgpQgTkwqv8PmTH3nxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUxeXi7 sbRUBKSVlHvuz4rsRBwrMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCIDzEqCluGAiW/E9rvOnPqA57dI1SwXpkBBF19NbZpqg5uHcHhYK/ HzQ9dqO0uH7TOXnKXwzY4I45GXJzEiqry486B8DrPJ3q7rtmvn+Y+K9yOgo7pPrP LAnjnmqUEW57qRjcWqaQRklh0b1c7jDjnpqP487ChgJwcFWsH0MixZEufeJG6EEV NaaXcEy5ocPsVgWCQHtl05PyzJZ811txeteOToYOc7TzkTYd4tFZDL6HCEAKnf6F 6AvhVjjGIZxGC5nhBpyowcHAnBXqs0mEgRhM3D8LNmXM7Er9EKf1igPtyiCzc5rg 1Gf+ejkSOgd2/iIylYWbTZ2XShwp9ajc -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:19 2025 by rpki-client