$ rpki-client -vvf rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft File: 8ItqFjLJysLoaI3qSIfZMC6VYBA.mft (raw, json) Hash identifier: 8gp16qUuc1sZE3qrK8cNy5tUAzkcuHLtmgWbr3g7VJk= Subject key identifier: 95:94:67:C9:01:5B:FE:07:9F:B1:08:4B:AC:34:01:B8:68:D3:02:0C Authority key identifier: F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 Certificate issuer: /CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Certificate serial: 07CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft Manifest number: 07C2 Signing time: Sun 02 Nov 2025 21:15:25 +0000 Manifest this update: Sun 02 Nov 2025 21:15:25 +0000 Manifest next update: Sun 09 Nov 2025 21:15:25 +0000 Files and hashes: 1: 8ItqFjLJysLoaI3qSIfZMC6VYBA.crl (hash: yvQP7YNJdoc4QnzqeEmkc2Ej9wXnacsjmMr5V/TVxRI=) 2: B5DC8802169411EBBEBD9A23C4F9AE02.roa (hash: 4ZdvboJ8mrbqq75dMjpcRNVXA0/Wmpp30CU0dXWt/yQ=) 3: B54C3DBA169411EBBEBD9A23C4F9AE02.roa (hash: nma4xkXXDMJG7QciaymwPc3dJsJxzYlJjEDf7RTo8RE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1998 (0x7ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FFAB, serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Validity Not Before: Nov 2 21:15:25 2025 GMT Not After : Nov 9 21:15:25 2025 GMT Subject: CN=6907c9ed-6f44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:61:2f:02:a6:e1:ee:25:a3:11:55:5c:17: 4f:88:89:6e:7d:ba:57:79:91:b1:0a:78:a1:fb:77: 7e:73:e3:bc:84:92:d6:e4:ae:79:eb:1f:06:03:cc: 04:67:7d:82:f3:49:ad:fd:da:59:35:37:36:70:b1: 57:d6:07:75:b5:8c:49:75:e9:af:cd:5a:cc:e9:42: ac:13:5c:07:69:94:9d:6c:2e:87:ac:06:11:2d:6b: 43:9d:1e:1b:86:38:31:59:ff:79:28:22:1a:fb:dc: 94:87:2b:37:32:fb:d0:fb:7c:4a:78:cc:76:06:b7: 57:e7:7a:9e:a4:12:d5:36:0f:56:ba:fc:5a:42:c8: d9:c9:40:73:1c:5f:2f:1a:dc:5d:ed:bb:d5:d5:6c: d1:15:f9:f3:13:82:99:79:95:88:bb:4c:ec:c9:2e: 7d:0e:66:17:48:ee:a0:94:ad:8d:4d:ff:07:a8:0f: e1:e1:5a:17:c0:d9:8b:a4:67:6c:9c:c2:f0:2a:1e: f5:3f:8c:c3:ea:98:4a:55:87:f7:a0:82:d9:8b:5c: bf:1d:19:99:40:2a:0b:d4:1f:46:4e:a3:28:c5:72: 79:9b:2c:4b:10:9c:3f:3c:e0:3c:ed:a1:15:f5:47: c3:d0:bb:52:c4:21:4e:1f:7c:61:3f:3a:f6:d7:15: 1f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:94:67:C9:01:5B:FE:07:9F:B1:08:4B:AC:34:01:B8:68:D3:02:0C X509v3 Authority Key Identifier: keyid:F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:37:50:9e:73:1c:15:1f:68:fa:36:f1:1f:71:95:cc:1c:b6: d5:7f:a2:d9:3e:be:83:6a:be:0c:dd:86:17:87:e0:b4:73:44: 6a:89:8f:43:d0:a0:37:23:8f:d7:62:9e:0a:ae:9f:94:c7:dc: 9a:44:00:39:ba:41:a7:7d:1f:c0:0c:b0:44:25:e0:d8:10:f9: 6d:3f:cc:c8:09:e0:4f:53:9c:fb:3a:65:5c:8f:33:38:86:c8: 86:19:5d:90:63:6e:f9:90:97:b1:39:a4:c9:75:58:34:fe:4a: 12:7a:ad:38:8c:5a:cd:00:dd:cb:4e:d5:b6:e2:49:b2:3b:c4: c7:d8:58:e0:b3:a2:91:f6:8f:02:31:01:a8:eb:fc:b3:43:9a: c1:18:c0:f9:9c:db:fd:e5:d0:ec:b5:96:3f:05:ff:33:16:da: bb:75:51:7a:98:b6:d6:39:3e:2c:d2:e0:b2:55:fe:0c:b2:ab: f0:5d:86:f4:d4:4b:a0:81:fe:a1:3c:67:14:cd:8f:48:41:72: 22:f8:9b:ad:31:36:ae:6c:01:68:ab:49:ba:cc:b1:7e:74:63: 60:e2:07:3b:1f:22:f4:97:65:50:0f:34:82:44:47:d9:3f:5f: 4e:f6:ff:6f:b2:f3:2d:5e:b4:0b:63:68:41:21:f6:bc:72:05: f5:79:a5:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZGQUIxMTAvBgNVBAUTKEYwOEI2QTE2MzJDOUNBQzJFODY4OERFQTQ4ODdEOTMw MkU5NTYwMTAwHhcNMjUxMTAyMjExNTI1WhcNMjUxMTA5MjExNTI1WjAYMRYwFAYD VQQDEw02OTA3YzllZC02ZjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2JhLwKm4e4loxFVXBdPiIlufbpXeZGxCnih+3d+c+O8hJLW5K556x8GA8wE Z32C80mt/dpZNTc2cLFX1gd1tYxJdemvzVrM6UKsE1wHaZSdbC6HrAYRLWtDnR4b hjgxWf95KCIa+9yUhys3MvvQ+3xKeMx2BrdX53qepBLVNg9WuvxaQsjZyUBzHF8v Gtxd7bvV1WzRFfnzE4KZeZWIu0zsyS59DmYXSO6glK2NTf8HqA/h4VoXwNmLpGds nMLwKh71P4zD6phKVYf3oILZi1y/HRmZQCoL1B9GTqMoxXJ5myxLEJw/POA87aEV 9UfD0LtSxCFOH3xhPzr21xUfBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWUZ8kB W/4Hn7EIS6w0Abho0wIMMB8GA1UdIwQYMBaAFPCLahYyycrC6GiN6kiH2TAulWAQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkZBQi9BQTdGQTQwMDE2 OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlzTG9hSTNxU0lmWk1DNlZZ QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhJdHFGakxKeXNMb2FJM3FTSWZaTUM2VllCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkZBQi9BQTdGQTQwMDE2OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlz TG9hSTNxU0lmWk1DNlZZQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaN1CecxwVH2j6NvEfcZXMHLbVf6LZPr6Dar4M3YYXh+C0c0RqiY9D 0KA3I4/XYp4Krp+Ux9yaRAA5ukGnfR/ADLBEJeDYEPltP8zICeBPU5z7OmVcjzM4 hsiGGV2QY275kJexOaTJdVg0/koSeq04jFrNAN3LTtW24kmyO8TH2Fjgs6KR9o8C MQGo6/yzQ5rBGMD5nNv95dDstZY/Bf8zFtq7dVF6mLbWOT4s0uCyVf4MsqvwXYb0 1Euggf6hPGcUzY9IQXIi+JutMTaubAFoq0m6zLF+dGNg4gc7HyL0l2VQDzSCREfZ P19O9v9vsvMtXrQLY2hBIfa8cgX1eaWS -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:42 2025 by rpki-client