$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft File: 8eArOUb---b0ZPQ0jvIVX2HQehs.mft (raw, json) Hash identifier: P3DQin6ThgXgduT5JbHkQYglZKgvQVGi3SU/BoDCQqM= Subject key identifier: 7C:3A:FE:6B:90:9B:2F:D7:4F:68:DB:5E:AE:64:34:78:52:DD:CA:66 Authority key identifier: F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B Certificate issuer: /CN=A91FF4FC/serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Certificate serial: 0E29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft Manifest number: 0E23 Signing time: Sat 18 Oct 2025 18:28:35 +0000 Manifest this update: Sat 18 Oct 2025 18:28:34 +0000 Manifest next update: Sat 25 Oct 2025 18:28:34 +0000 Files and hashes: 1: 8eArOUb---b0ZPQ0jvIVX2HQehs.crl (hash: XXc2jgu/ZSHJm34wko+tE1SxsCosiog+vAiVR4An65k=) 2: A280C1FCA06D11EB92FB3739C4F9AE02.roa (hash: 0IBVwDZ7i+J4nVvUTeF7Wzqm6YjeaulpyuMa4quZjWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3625 (0xe29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF4FC, serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Validity Not Before: Oct 18 18:28:34 2025 GMT Not After : Oct 25 18:28:34 2025 GMT Subject: CN=68f3dc52-d7ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:5c:c8:e9:ad:3b:b1:d1:82:3d:f7:ab:4f: fa:a4:c8:ad:b6:0c:1c:3c:b7:fc:6d:04:1b:65:ea: d7:ca:40:f2:3e:00:3f:99:6d:67:14:23:45:a5:ab: 60:6f:cd:52:fd:0a:76:c9:e0:8e:14:c6:d1:5d:b1: 75:f0:87:9f:15:d5:56:f7:77:b9:c4:62:99:4a:c9: 66:52:60:09:c4:a0:26:d1:6e:6a:99:f4:10:84:06: cd:3d:b8:7c:5a:22:dc:6a:db:a4:06:c6:1e:f3:34: 20:98:b9:d5:5d:5e:ce:b7:29:02:89:ae:94:e5:c1: fa:1a:ee:e9:c2:d7:e0:4f:d6:64:04:2a:7b:0c:42: 3b:b0:31:dc:65:09:63:1f:3a:71:b0:78:c6:d9:4b: af:36:1e:88:f5:ab:7e:88:77:2f:f3:b1:e1:3b:2b: 03:08:0c:b0:bb:fc:b2:57:7d:5e:4e:06:3c:e8:dd: ef:26:2e:27:a1:b0:67:00:59:bb:c9:63:41:62:2b: fb:f6:3f:6b:70:45:15:10:f6:28:cb:3d:70:21:d8: c3:5f:e7:f6:72:64:2c:c3:20:d2:74:0c:05:e4:66: 68:9d:67:43:41:08:0a:60:5c:ec:ef:75:bc:dc:9c: d5:bf:a3:b5:90:4c:d2:d9:d3:d7:bc:02:8a:03:79: 07:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:3A:FE:6B:90:9B:2F:D7:4F:68:DB:5E:AE:64:34:78:52:DD:CA:66 X509v3 Authority Key Identifier: keyid:F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:f8:42:ed:fc:12:04:f1:b4:1b:76:4c:4b:e7:f8:7d:55:c2: c3:6a:9b:92:43:54:20:24:af:ba:23:40:01:d4:65:51:3e:69: 68:bc:d7:09:34:58:39:d5:a2:f7:4d:14:a0:74:04:af:34:ed: 2f:7c:b6:fa:3e:92:06:7c:1b:52:31:c7:2e:c5:d2:f5:61:97: 86:e5:91:ef:af:e2:65:cf:1e:92:90:ed:e8:0b:d7:a3:b3:8e: d8:a0:31:8a:b6:43:8f:92:60:b8:77:3a:cf:25:7f:18:cf:9b: 0f:f6:8f:5c:b3:cf:de:c3:d3:9b:46:0b:83:53:95:ec:85:72: 58:74:9b:b6:8f:6a:f4:5e:20:5c:5a:8b:af:5d:7f:5c:86:bb: a5:d4:6c:01:2e:e2:52:98:6b:04:3a:ca:74:cb:af:e7:fe:1d: 4d:bc:1d:b0:ce:ed:d7:fc:fc:a1:20:1b:94:b1:3e:d2:96:2a: a6:06:bd:9f:a1:a0:2a:98:9a:2e:80:6f:ca:fc:d2:ef:15:c6: 48:02:05:22:5c:d9:e8:4f:8a:7b:04:f1:95:4f:84:ed:ca:df: ee:78:72:5b:5c:fc:32:2e:fd:87:06:32:43:f8:01:0b:66:f8: d0:cf:14:0e:d3:59:7e:b6:1b:c4:ca:f3:2b:0d:58:03:9c:f1: 80:5d:f7:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY0RkMxMTAvBgNVBAUTKEYxRTAyQjM5NDZGRUZCRTZGNDY0RjQzNDhFRjIxNTVG NjFEMDdBMUIwHhcNMjUxMDE4MTgyODM0WhcNMjUxMDI1MTgyODM0WjAYMRYwFAYD VQQDEw02OGYzZGM1Mi1kN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWFcyOmtO7HRgj33q0/6pMittgwcPLf8bQQbZerXykDyPgA/mW1nFCNFpatg b81S/Qp2yeCOFMbRXbF18IefFdVW93e5xGKZSslmUmAJxKAm0W5qmfQQhAbNPbh8 WiLcatukBsYe8zQgmLnVXV7OtykCia6U5cH6Gu7pwtfgT9ZkBCp7DEI7sDHcZQlj HzpxsHjG2UuvNh6I9at+iHcv87HhOysDCAywu/yyV31eTgY86N3vJi4nobBnAFm7 yWNBYiv79j9rcEUVEPYoyz1wIdjDX+f2cmQswyDSdAwF5GZonWdDQQgKYFzs73W8 3JzVv6O1kEzS2dPXvAKKA3kHlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHw6/muQ my/XT2jbXq5kNHhS3cpmMB8GA1UdIwQYMBaAFPHgKzlG/vvm9GT0NI7yFV9h0Hob MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjRGQy8zQjYzNEJCRUI0 NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0tYjBaUFEwanZJVlgySFFl aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhlQXJPVWItLS1iMFpQUTBqdklWWDJIUWVocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjRGQy8zQjYzNEJCRUI0NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0t YjBaUFEwanZJVlgySFFlaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD+ELt/BIE8bQbdkxL5/h9VcLDapuSQ1QgJK+6I0AB1GVRPmlovNcJ NFg51aL3TRSgdASvNO0vfLb6PpIGfBtSMccuxdL1YZeG5ZHvr+Jlzx6SkO3oC9ej s47YoDGKtkOPkmC4dzrPJX8Yz5sP9o9cs8/ew9ObRguDU5XshXJYdJu2j2r0XiBc WouvXX9chrul1GwBLuJSmGsEOsp0y6/n/h1NvB2wzu3X/PyhIBuUsT7SliqmBr2f oaAqmJougG/K/NLvFcZIAgUiXNnoT4p7BPGVT4Ttyt/ueHJbXPwyLv2HBjJD+AEL ZvjQzxQO01l+thvEyvMrDVgDnPGAXfcu -----END CERTIFICATE-----Generated at Mon Oct 20 05:29:57 2025 by rpki-client