$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: fNuiLN46vH/mM82dznVwYOWcAiCSVhLLBhp8dV65uBE= Subject key identifier: 36:6D:40:BB:97:C2:4C:B3:1A:FC:70:08:72:2A:05:E3:0C:FB:E4:3A Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 0260 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 025D Signing time: Sun 19 Oct 2025 03:56:44 +0000 Manifest this update: Sun 19 Oct 2025 03:56:43 +0000 Manifest next update: Sun 26 Oct 2025 03:56:43 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: eIJTriLym7DuzbYoYT8Y99JUkHEh5TBtZVjtnpFNDgU=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: LAWmMRc8daUtEB7NaiA0m2Tl41sqEulVfrA7do1Thps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Oct 19 03:56:43 2025 GMT Not After : Oct 26 03:56:43 2025 GMT Subject: CN=68f4617b-69cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bc:f7:10:c7:1a:c7:98:9d:52:33:77:99:46: 0a:6c:5f:0a:65:e8:1d:13:03:c4:d7:e3:2b:84:31: 1b:36:03:64:a8:e4:7f:ce:de:4f:9b:12:48:9d:89: 1c:41:2c:a7:a5:cb:0c:39:2e:b9:7a:d9:63:ed:a5: c6:7a:e9:38:71:5a:3a:33:af:27:f9:0b:69:3c:4f: 0d:86:b0:b1:62:69:3f:c3:43:d5:a5:50:cb:5c:d5: 76:6d:b6:1a:7b:55:f3:5a:a8:fd:5e:7b:bf:bf:08: fb:40:9f:df:32:00:c0:38:96:35:35:8d:d8:5c:dd: b8:82:0e:c1:57:21:66:c2:68:a3:12:f1:fa:95:b8: 08:19:f8:03:30:06:c7:05:ca:d8:a9:f0:bb:ec:78: 3b:cd:a1:f1:f0:34:68:45:15:ee:c5:75:57:6a:4f: e5:65:16:c7:23:d1:50:b5:9c:3c:05:88:45:b3:8f: 02:98:ba:2a:69:69:98:0f:49:20:12:f4:7c:7c:d6: 69:bc:ee:cf:a3:cb:44:09:ce:8d:9e:dd:d7:a4:59: 7d:3e:24:99:4b:4b:a9:49:55:72:46:ed:2f:a2:b1: 90:6c:7a:ca:35:46:4c:1c:be:33:e9:4f:c7:c4:d2: d7:5e:d4:9e:4e:47:95:15:50:59:19:4d:13:d1:2e: 4d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6D:40:BB:97:C2:4C:B3:1A:FC:70:08:72:2A:05:E3:0C:FB:E4:3A X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:6d:28:49:78:28:e6:a1:4b:4c:6c:65:2c:e2:7b:39:9c:aa: 46:58:7f:13:c8:2e:7d:3b:4f:ce:3b:52:4e:78:fc:5e:d3:4c: 5f:01:f3:33:f9:9e:f3:da:dd:ed:dc:ad:04:b1:be:c5:d5:c0: 5e:fc:10:93:ba:33:88:89:61:9f:d8:50:52:6d:48:cc:9a:ef: 16:54:68:f8:fc:88:1a:80:ab:fc:bb:3a:81:35:d3:c0:33:c6: 1d:68:60:5c:3a:ae:9a:26:d7:77:c6:5a:38:e5:83:11:0e:56: 6f:64:39:47:de:59:83:64:9b:dd:8f:42:b6:cf:ac:1b:7c:7f: cb:9c:46:fc:03:1a:89:c5:bf:b7:98:c3:1e:d1:05:12:45:10: 4c:da:43:9a:d4:bd:94:71:97:b9:69:d2:dc:8d:26:ac:3f:1f: c4:07:6c:46:74:48:53:75:ed:2a:73:99:49:4c:0a:08:48:35: b7:c7:87:51:d7:1b:d2:2b:64:4c:d7:4e:dc:1a:70:d8:ae:1f: fa:ae:5f:8d:96:7a:fe:3c:86:1a:a2:83:9e:95:b3:a0:15:ff: db:18:87:38:50:bc:19:06:fd:4e:e1:9e:83:94:96:53:1e:7f: 0f:2b:70:ed:2a:28:72:1e:ed:e6:98:67:a8:99:c0:e3:07:cc: 9f:c6:9b:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUxMDE5MDM1NjQzWhcNMjUxMDI2MDM1NjQzWjAYMRYwFAYD VQQDEw02OGY0NjE3Yi02OWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLz3EMcax5idUjN3mUYKbF8KZegdEwPE1+MrhDEbNgNkqOR/zt5PmxJInYkc QSynpcsMOS65etlj7aXGeuk4cVo6M68n+QtpPE8NhrCxYmk/w0PVpVDLXNV2bbYa e1XzWqj9Xnu/vwj7QJ/fMgDAOJY1NY3YXN24gg7BVyFmwmijEvH6lbgIGfgDMAbH BcrYqfC77Hg7zaHx8DRoRRXuxXVXak/lZRbHI9FQtZw8BYhFs48CmLoqaWmYD0kg EvR8fNZpvO7Po8tECc6Nnt3XpFl9PiSZS0upSVVyRu0vorGQbHrKNUZMHL4z6U/H xNLXXtSeTkeVFVBZGU0T0S5NCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZtQLuX wkyzGvxwCHIqBeMM++Q6MB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNbShJeCjmoUtMbGUs4ns5nKpGWH8TyC59O0/OO1JOePxe00xfAfMz +Z7z2t3t3K0Esb7F1cBe/BCTujOIiWGf2FBSbUjMmu8WVGj4/IgagKv8uzqBNdPA M8YdaGBcOq6aJtd3xlo45YMRDlZvZDlH3lmDZJvdj0K2z6wbfH/LnEb8AxqJxb+3 mMMe0QUSRRBM2kOa1L2UcZe5adLcjSasPx/EB2xGdEhTde0qc5lJTAoISDW3x4dR 1xvSK2RM107cGnDYrh/6rl+Nlnr+PIYaooOelbOgFf/bGIc4ULwZBv1O4Z6DlJZT Hn8PK3DtKihyHu3mmGeomcDjB8yfxps0 -----END CERTIFICATE-----Generated at Mon Oct 20 08:02:30 2025 by rpki-client