$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft File: K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft (raw, json) Hash identifier: CsSq50pu1y+ATmhUcl7+wAtmaA+qIECGWJpiyOd6BZs= Subject key identifier: FC:31:E2:2A:FF:B6:02:BF:F9:20:DB:17:33:27:F0:50:DD:CA:CC:2A Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft Manifest number: E3 Signing time: Mon 27 Oct 2025 07:35:46 +0000 Manifest this update: Mon 27 Oct 2025 07:35:46 +0000 Manifest next update: Mon 03 Nov 2025 07:35:46 +0000 Files and hashes: 1: K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl (hash: MZLkcp9P2/xYthZs15KACX1jOqBdxoODyWhR7NzL5/U=) 2: DC10E79AABF211F0AF7B0010C4F9AE02.roa (hash: oKvufsvZ365M3eiTvHVz+l4Cs1W/yryEEt8TEPNakIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Oct 27 07:35:46 2025 GMT Not After : Nov 3 07:35:46 2025 GMT Subject: CN=68ff20d2-1f0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:91:9d:ca:34:70:06:12:07:73:94:d5:8b:76: 30:d8:dc:e7:1f:de:f7:46:57:a1:95:d2:fd:42:19: 49:1c:4a:09:c1:fe:8e:a4:c4:a2:5a:d2:96:52:b4: 5f:91:b3:24:e2:bd:42:5a:40:c8:c4:7f:a2:34:57: e0:f2:a1:95:70:0c:2c:96:d3:dd:97:15:73:e7:a8: d0:9c:2c:42:85:2b:00:42:27:1b:d4:62:cf:81:54: df:14:a8:b2:98:bc:fc:36:ec:27:0f:d2:40:13:a0: 02:96:18:33:48:e2:41:d4:d7:f6:37:36:0d:cf:80: 3b:fe:db:d4:3a:1e:9e:e5:91:c9:bf:80:75:d8:e6: 4e:2f:99:f0:d3:8d:8b:75:c6:b7:44:c1:08:69:fe: 03:70:81:b7:a8:f6:4c:5b:02:86:d6:89:69:ea:32: 91:ba:5a:76:22:0b:22:af:8f:f7:e6:b0:4e:48:9e: 43:11:24:f0:83:26:7e:06:e4:92:80:6a:eb:bd:eb: 49:e3:5b:c5:1c:3d:a0:6a:7f:d8:14:8e:6f:45:a0: fe:65:c4:f7:7d:d5:c9:2b:d0:c2:98:53:04:38:b9: 4b:ea:d7:e4:e2:0a:af:77:91:3c:de:e2:fd:6d:fe: 14:8a:73:68:a3:48:df:11:b2:e3:d6:ab:ab:01:f0: 5b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:31:E2:2A:FF:B6:02:BF:F9:20:DB:17:33:27:F0:50:DD:CA:CC:2A X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:b4:b5:e6:3e:9d:ee:a4:e5:62:50:5d:aa:f1:c9:4d:bd:0b: 6a:53:d4:41:67:d6:9c:30:9a:2a:0f:ec:7b:bd:63:35:7d:ff: f2:7c:2d:07:fd:8e:72:8c:1a:bb:42:50:8d:37:82:da:73:ea: e1:a5:94:18:19:8e:5d:11:82:19:a8:57:03:96:89:29:c0:a5: db:74:1a:62:f4:71:f7:cd:35:b6:d0:a1:2c:f4:ab:d9:44:f4: a5:de:c4:e9:11:14:55:65:d4:ea:37:f1:ba:a0:3a:04:4d:6e: 96:9d:37:f6:ad:a7:5a:84:51:dd:e2:92:df:18:8a:e8:cb:c9: c9:25:fe:6d:a4:0c:c5:36:94:d4:25:d3:6b:73:73:43:da:aa: 6a:b4:11:0a:c8:2b:12:19:c8:af:7f:1a:fc:ed:98:e0:78:58: 04:f1:94:b4:28:35:47:ef:a4:1d:e2:d8:f1:6d:4f:b8:9b:2a: 76:08:61:3f:3b:98:09:dd:4d:17:af:bf:47:f3:1d:af:c6:3a: 0a:35:b6:43:f2:1c:88:c2:fc:82:b4:42:b0:cf:a2:5b:62:d9: 64:a3:b7:07:03:17:8a:0d:37:a5:4e:0f:6c:a3:73:83:c7:18: 8e:2d:3d:c3:02:4e:bb:15:e8:c7:fb:5d:2f:ef:bd:15:d9:7f: 5d:77:7c:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUxMDI3MDczNTQ2WhcNMjUxMTAzMDczNTQ2WjAYMRYwFAYD VQQDEw02OGZmMjBkMi0xZjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupGdyjRwBhIHc5TVi3Yw2NznH973RlehldL9QhlJHEoJwf6OpMSiWtKWUrRf kbMk4r1CWkDIxH+iNFfg8qGVcAwsltPdlxVz56jQnCxChSsAQicb1GLPgVTfFKiy mLz8NuwnD9JAE6AClhgzSOJB1Nf2NzYNz4A7/tvUOh6e5ZHJv4B12OZOL5nw042L dca3RMEIaf4DcIG3qPZMWwKG1olp6jKRulp2Igsir4/35rBOSJ5DESTwgyZ+BuSS gGrrvetJ41vFHD2gan/YFI5vRaD+ZcT3fdXJK9DCmFMEOLlL6tfk4gqvd5E83uL9 bf4UinNoo0jfEbLj1qurAfBbAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwx4ir/ tgK/+SDbFzMn8FDdyswqMB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NERFQS8zQkY1RjJFMDVBRTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgw QlpEbGx4aERQWUdEXzVSbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3tLXmPp3upOViUF2q8clNvQtqU9RBZ9acMJoqD+x7vWM1ff/yfC0H /Y5yjBq7QlCNN4Lac+rhpZQYGY5dEYIZqFcDlokpwKXbdBpi9HH3zTW20KEs9KvZ RPSl3sTpERRVZdTqN/G6oDoETW6WnTf2radahFHd4pLfGIroy8nJJf5tpAzFNpTU JdNrc3ND2qpqtBEKyCsSGcivfxr87ZjgeFgE8ZS0KDVH76Qd4tjxbU+4myp2CGE/ O5gJ3U0Xr79H8x2vxjoKNbZD8hyIwvyCtEKwz6JbYtlko7cHAxeKDTelTg9so3OD xxiOLT3DAk67FejH+10v770V2X9dd3wR -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:16 2025 by rpki-client