$ rpki-client -vvf rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft File: s8lXWbAmAWnVga-ERmxca89vwds.mft (raw, json) Hash identifier: raKHxMU3A98SLv35365FcLKaTgBw50hiWyx4FS9menc= Subject key identifier: 56:DA:AA:A8:E8:B4:DC:47:5B:CF:19:4B:05:90:0E:B1:81:CC:E9:38 Authority key identifier: B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB Certificate issuer: /CN=A913B090/serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft Manifest number: 0228 Signing time: Mon 03 Nov 2025 01:57:55 +0000 Manifest this update: Mon 03 Nov 2025 01:57:54 +0000 Manifest next update: Mon 10 Nov 2025 01:57:54 +0000 Files and hashes: 1: s8lXWbAmAWnVga-ERmxca89vwds.crl (hash: veLWYKKKY07yel1RzY/SlGeG6CvyQDQLvz7OGO2w7pE=) 2: B57CACF267F511EDA884E65BC4F9AE02.roa (hash: uqE+ryUYHNLBPS1jaiyQ/Fm+6Bg+NYwJQStwm0tzSfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B090, serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Validity Not Before: Nov 3 01:57:54 2025 GMT Not After : Nov 10 01:57:54 2025 GMT Subject: CN=69080c23-dd00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:52:e0:da:d8:49:41:11:0c:d1:84:d6:5a:72: 1d:68:41:74:f6:0d:24:bc:01:b5:c9:cc:1a:7f:f2: 4f:61:93:cc:27:a1:0c:91:e9:13:db:e5:cf:92:0a: 4f:e6:da:b9:0d:cb:99:28:c4:3b:56:83:d1:db:ec: 1d:9e:13:ac:39:12:c6:77:44:ff:9d:39:99:c4:49: 19:49:12:f7:00:0f:db:95:78:61:ca:b0:85:e4:cb: 95:91:6c:75:4a:5b:f8:37:62:57:4f:92:35:00:12: 1e:b7:68:b1:dc:a4:31:4c:b9:ee:b1:16:af:98:c7: b9:95:99:33:10:e5:1f:e2:f1:4c:75:6d:e2:04:6f: a8:a3:db:f7:c8:7e:75:6f:c8:ec:29:c3:41:3c:cd: 30:79:ef:f0:cd:a3:83:aa:2b:58:61:bd:a4:83:81: c3:fa:3e:69:96:79:f0:01:a4:6e:c4:64:ff:83:2b: 10:d9:5d:c5:5b:85:76:81:14:24:33:7a:f6:42:21: 15:46:6e:54:8c:0e:6f:5e:8b:ad:b4:79:30:e4:bd: 79:31:10:43:29:fd:c3:0f:0f:4a:56:74:fc:e8:20: ae:3f:81:6c:68:80:85:66:46:5d:a1:f7:8b:e7:ce: 3c:e0:8a:dd:ab:5d:97:cd:82:53:e3:4f:97:ec:e5: 33:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DA:AA:A8:E8:B4:DC:47:5B:CF:19:4B:05:90:0E:B1:81:CC:E9:38 X509v3 Authority Key Identifier: keyid:B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:fa:2e:ab:15:ac:71:dc:bb:14:84:9b:20:d3:d2:68:c0:f5: 9c:db:37:d1:58:1e:ae:f1:bf:ff:0e:af:87:7d:d2:06:dc:c5: 07:72:15:fd:ff:6e:7c:b5:a8:c8:90:e8:5f:18:e3:1f:fb:9a: a1:77:5e:c6:0d:53:42:e4:7a:91:10:ce:89:c0:be:df:0a:7f: 96:5b:ea:c1:97:29:20:0c:27:32:52:b3:5c:43:71:e4:e6:f3: 34:0e:94:04:24:d9:d0:cb:c1:94:fe:74:b0:88:08:aa:c9:df: a3:ea:c1:ab:d1:d0:0e:35:ab:cd:e8:9c:f2:26:d5:f5:90:bb: 52:bd:54:fe:b6:91:17:54:4f:e5:ed:0c:2c:19:b2:b5:87:5c: 1f:cc:7a:3f:18:65:75:05:35:34:e9:f0:1f:94:8f:1e:97:c8: 72:3d:8e:43:18:f0:97:04:aa:9f:9d:67:2e:0b:65:b9:08:5a: 9a:80:7e:8c:9a:d7:71:94:c8:e6:6f:c4:8d:c8:f0:be:ac:64: a7:d0:c3:f6:9e:bd:44:ba:a3:d9:2b:90:32:e4:a1:ff:bd:08: 7a:f5:d4:74:76:3a:5f:4d:d3:ad:d4:2f:25:89:82:80:15:c9: 72:e9:73:9e:11:b8:47:3f:2e:4b:60:d8:e3:0f:f9:14:ae:32: d0:12:37:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwOTAxMTAvBgNVBAUTKEIzQzk1NzU5QjAyNjAxNjlENTgxQUY4NDQ2NkM1QzZC Q0Y2RkMxREIwHhcNMjUxMTAzMDE1NzU0WhcNMjUxMTEwMDE1NzU0WjAYMRYwFAYD VQQDEw02OTA4MGMyMy1kZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFLg2thJQREM0YTWWnIdaEF09g0kvAG1ycwaf/JPYZPMJ6EMkekT2+XPkgpP 5tq5DcuZKMQ7VoPR2+wdnhOsORLGd0T/nTmZxEkZSRL3AA/blXhhyrCF5MuVkWx1 Slv4N2JXT5I1ABIet2ix3KQxTLnusRavmMe5lZkzEOUf4vFMdW3iBG+oo9v3yH51 b8jsKcNBPM0wee/wzaODqitYYb2kg4HD+j5plnnwAaRuxGT/gysQ2V3FW4V2gRQk M3r2QiEVRm5UjA5vXouttHkw5L15MRBDKf3DDw9KVnT86CCuP4FsaICFZkZdofeL 58484Irdq12XzYJT40+X7OUztQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbaqqjo tNxHW88ZSwWQDrGBzOk4MB8GA1UdIwQYMBaAFLPJV1mwJgFp1YGvhEZsXGvPb8Hb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA5MC82QjY3MjQzNDY3 RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFXblZnYS1FUm14Y2E4OXZ3 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4bFhXYkFtQVduVmdhLUVSbXhjYTg5dndkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA5MC82QjY3MjQzNDY3RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFX blZnYS1FUm14Y2E4OXZ3ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh+i6rFaxx3LsUhJsg09JowPWc2zfRWB6u8b//Dq+HfdIG3MUHchX9 /258tajIkOhfGOMf+5qhd17GDVNC5HqREM6JwL7fCn+WW+rBlykgDCcyUrNcQ3Hk 5vM0DpQEJNnQy8GU/nSwiAiqyd+j6sGr0dAONavN6JzyJtX1kLtSvVT+tpEXVE/l 7QwsGbK1h1wfzHo/GGV1BTU06fAflI8el8hyPY5DGPCXBKqfnWcuC2W5CFqagH6M mtdxlMjmb8SNyPC+rGSn0MP2nr1EuqPZK5Ay5KH/vQh69dR0djpfTdOt1C8liYKA Fcly6XOeEbhHPy5LYNjjD/kUrjLQEjdQ -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:12 2025 by rpki-client