$ rpki-client -vvf rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.mft File: 8p8VNXR1uHRvrXiTag_NhSbi1hM.mft (raw, json) Hash identifier: p/GXdR/VKKZvMwroYqhJw3ncks44AHjg8XcB4MzpB8I= Subject key identifier: 37:DA:F5:7B:D4:90:3B:A1:F7:C8:5B:B5:D8:C2:51:E8:8C:C9:9B:EC Authority key identifier: F2:9F:15:35:74:75:B8:74:6F:AD:78:93:6A:0F:CD:85:26:E2:D6:13 Certificate issuer: /CN=A911DB66/serialNumber=F29F15357475B8746FAD78936A0FCD8526E2D613 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8p8VNXR1uHRvrXiTag_NhSbi1hM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.mft Manifest number: 8C Signing time: Mon 03 Nov 2025 06:32:33 +0000 Manifest this update: Mon 03 Nov 2025 06:32:33 +0000 Manifest next update: Mon 10 Nov 2025 06:32:33 +0000 Files and hashes: 1: 8p8VNXR1uHRvrXiTag_NhSbi1hM.crl (hash: TTT9XUhZQD+nIFPpyacKUp1AZ+f5tu1DOHaQhKxZ2Qc=) 2: 879CFF8EE09E11EFAB364253C4F9AE02.roa (hash: kCo0wcr5hL64P6FXIbDjXCO02F9fPfzca6P+P/sgaPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.crl rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8p8VNXR1uHRvrXiTag_NhSbi1hM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DB66, serialNumber=F29F15357475B8746FAD78936A0FCD8526E2D613 Validity Not Before: Nov 3 06:32:33 2025 GMT Not After : Nov 10 06:32:33 2025 GMT Subject: CN=69084c81-1930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:93:04:0c:dd:0b:2b:80:07:46:4a:71:ff:8f: 4e:71:4a:0f:3e:bb:ff:41:48:57:8b:03:32:9f:e7: 0d:3f:58:8b:a9:9c:92:c5:fe:d2:fe:c5:46:c7:99: 22:3e:d6:51:58:2c:ad:eb:41:80:1c:92:8b:82:85: 99:c6:e1:c1:d6:fb:97:90:79:d6:9f:37:60:22:7a: e6:b5:e7:ab:bc:3c:6f:e3:ce:b4:ec:c4:f6:a9:2b: c1:70:ac:ac:b4:66:5d:c6:fc:26:00:7c:ef:67:fe: 4d:9a:5d:34:a1:c4:c4:61:f5:bc:fd:b0:58:3f:d6: ce:58:e4:e4:63:db:37:1d:75:b1:55:8b:e0:67:31: 58:59:d7:49:96:a2:53:ed:e2:92:8b:15:77:44:e2: c4:e1:72:ce:70:5a:d0:52:e9:22:f7:63:eb:62:d0: 99:ad:39:c2:20:ec:e1:a2:52:c3:e1:d3:c4:2f:54: 3e:22:ff:93:d1:0f:8e:ec:cc:09:a1:51:c4:ed:9d: 7f:e5:45:7f:19:fd:b0:a3:c6:91:ee:8f:5a:6d:25: 9a:27:9b:12:cf:0d:f1:ce:55:a1:fc:c5:4c:37:a0: 23:29:41:59:66:4c:41:3e:e7:86:46:a8:12:ac:88: eb:ec:e2:43:ac:af:11:0f:e2:71:b1:1f:5e:20:ec: fe:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DA:F5:7B:D4:90:3B:A1:F7:C8:5B:B5:D8:C2:51:E8:8C:C9:9B:EC X509v3 Authority Key Identifier: keyid:F2:9F:15:35:74:75:B8:74:6F:AD:78:93:6A:0F:CD:85:26:E2:D6:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8p8VNXR1uHRvrXiTag_NhSbi1hM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:51:11:7f:e6:94:56:bc:17:96:02:a6:3b:72:05:44:f5:51: d1:2c:1a:07:54:df:ac:8e:74:34:25:ef:43:d2:1c:74:5a:38: 80:ad:fe:8d:13:80:21:4d:e5:10:66:1d:85:1b:5b:ec:6d:20: 3d:15:e4:37:c8:f0:ea:c8:12:2c:d5:8b:f5:8e:19:6d:62:95: b9:b9:3f:78:a0:4f:bb:2f:8d:34:29:aa:6c:37:55:c6:60:c5: b0:92:38:a4:37:ce:88:47:a3:c6:c7:5c:ad:6c:db:e1:12:b5: 5f:5d:3a:ec:56:c0:5f:b3:0d:71:9e:39:5b:85:fb:9e:77:dc: 58:35:3c:ea:30:d4:a6:4d:ed:bd:de:37:0f:ff:af:80:5e:21: 36:b7:84:49:e8:f1:a1:ae:30:69:cc:e2:bd:87:ad:3a:6f:f4: 88:fb:33:84:02:17:87:f7:5b:be:68:ec:5b:9b:db:3f:35:a9: 2d:17:ee:b2:cc:d3:9e:7a:39:31:1d:0e:76:4f:e6:c2:74:23: 96:1e:2a:c0:78:f9:84:c5:b0:a7:e2:0d:2d:d4:41:a6:72:82: 40:9c:9a:0a:49:bf:0d:78:81:6c:32:06:dd:a7:cc:76:bd:84: 74:52:1c:b4:aa:fc:7d:a9:7d:72:84:58:28:57:db:c7:13:ce: 07:4f:fa:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURCNjYxMTAvBgNVBAUTKEYyOUYxNTM1NzQ3NUI4NzQ2RkFENzg5MzZBMEZDRDg1 MjZFMkQ2MTMwHhcNMjUxMTAzMDYzMjMzWhcNMjUxMTEwMDYzMjMzWjAYMRYwFAYD VQQDEw02OTA4NGM4MS0xOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZMEDN0LK4AHRkpx/49OcUoPPrv/QUhXiwMyn+cNP1iLqZySxf7S/sVGx5ki PtZRWCyt60GAHJKLgoWZxuHB1vuXkHnWnzdgInrmteervDxv48607MT2qSvBcKys tGZdxvwmAHzvZ/5Nml00ocTEYfW8/bBYP9bOWOTkY9s3HXWxVYvgZzFYWddJlqJT 7eKSixV3ROLE4XLOcFrQUuki92PrYtCZrTnCIOzholLD4dPEL1Q+Iv+T0Q+O7MwJ oVHE7Z1/5UV/Gf2wo8aR7o9abSWaJ5sSzw3xzlWh/MVMN6AjKUFZZkxBPueGRqgS rIjr7OJDrK8RD+JxsR9eIOz+PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfa9XvU kDuh98hbtdjCUeiMyZvsMB8GA1UdIwQYMBaAFPKfFTV0dbh0b614k2oPzYUm4tYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREI2Ni84MDY1OTdBQ0Uw OUExMUVGQjYzQTgxMzBDNEY5QUUwMi84cDhWTlhSMXVIUnZyWGlUYWdfTmhTYmkx aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwOFZOWFIxdUhSdnJYaVRhZ19OaFNiaTFoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REI2Ni84MDY1OTdBQ0UwOUExMUVGQjYzQTgxMzBDNEY5QUUwMi84cDhWTlhSMXVI UnZyWGlUYWdfTmhTYmkxaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxURF/5pRWvBeWAqY7cgVE9VHRLBoHVN+sjnQ0Je9D0hx0WjiArf6N E4AhTeUQZh2FG1vsbSA9FeQ3yPDqyBIs1Yv1jhltYpW5uT94oE+7L400KapsN1XG YMWwkjikN86IR6PGx1ytbNvhErVfXTrsVsBfsw1xnjlbhfued9xYNTzqMNSmTe29 3jcP/6+AXiE2t4RJ6PGhrjBpzOK9h606b/SI+zOEAheH91u+aOxbm9s/NaktF+6y zNOeejkxHQ52T+bCdCOWHirAePmExbCn4g0t1EGmcoJAnJoKSb8NeIFsMgbdp8x2 vYR0Uhy0qvx9qX1yhFgoV9vHE84HT/pC -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:16 2025 by rpki-client