$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: 31mersEgg+28lbjdT0hwsTYT/7xmFn+ydqPL38uzR+o= Subject key identifier: 6F:4A:A3:28:F5:52:18:A5:88:11:1C:C1:C7:16:7D:17:E8:F9:F9:C3 Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A50 Signing time: Sun 02 Nov 2025 19:38:53 +0000 Manifest this update: Sun 02 Nov 2025 19:38:52 +0000 Manifest next update: Sun 09 Nov 2025 19:38:52 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: 3M5RN3PgYPQK5TiVEG9j+uhabyOquLlC3iTluyme7S8=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2647 (0xa57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Nov 2 19:38:52 2025 GMT Not After : Nov 9 19:38:52 2025 GMT Subject: CN=6907b34d-2365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e7:fd:82:ec:e7:43:8b:c0:5e:d9:bd:ba:55: 0a:70:33:90:85:b2:04:0c:28:85:a0:b9:50:e1:e7: d8:20:33:d6:79:9c:a3:7c:b3:5a:45:97:2a:a3:e0: b9:e7:62:a7:a1:29:34:1e:0c:3b:42:fc:c4:96:3f: 07:4d:98:89:28:12:9c:5f:cb:b0:ee:24:ea:75:0d: 03:90:9f:56:ea:93:bc:c9:b5:5b:eb:5e:04:4d:0e: f4:51:69:b8:a5:0f:88:13:e7:d7:8b:f0:7d:00:29: 51:b2:56:15:65:17:e3:16:98:de:56:9d:6f:2d:2b: bf:e9:d4:5e:f4:ec:e2:fd:21:35:fd:9e:df:ea:91: b5:e8:74:b2:84:47:29:14:63:e4:a2:6a:77:2d:0e: 99:81:6f:fc:15:77:be:f3:5c:7f:14:9b:18:d5:b8: 8c:7f:2b:06:be:d3:1e:30:85:2f:2d:c2:03:54:a6: 39:1d:e8:f1:5c:1d:21:4a:b6:aa:65:d6:d9:c1:7c: cc:21:e0:fc:aa:82:9c:51:50:72:52:8a:e7:e9:9d: 87:6c:90:7e:de:5e:63:ee:1b:d3:47:18:f2:f4:d5: a8:af:3d:85:6a:ea:ff:bd:98:3d:a2:a9:99:5e:bc: 49:7b:2c:f2:39:27:d9:9e:8d:f5:fa:45:33:8f:2f: c6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:4A:A3:28:F5:52:18:A5:88:11:1C:C1:C7:16:7D:17:E8:F9:F9:C3 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ac:70:30:13:cf:8f:06:7c:a9:88:fb:d9:05:49:6a:d9:7e: 9e:99:16:8d:bb:fd:95:9c:5f:c3:eb:4d:5f:fb:99:65:4a:bc: e0:4f:f3:a9:19:c7:fa:9c:64:e4:80:21:1c:cb:06:16:09:13: 37:44:f5:28:01:82:07:a8:b0:a8:35:cc:1c:59:c7:31:f3:69: 1b:02:8c:8c:6a:d2:57:97:c4:eb:e4:08:3a:45:2f:26:b0:f4: 94:19:11:cf:b8:a3:b3:5d:68:22:0f:72:91:10:2c:19:69:26: d0:89:cb:96:63:bc:fa:04:bc:2a:c7:a0:30:00:bb:16:b3:39: 0a:4f:68:fc:77:00:ad:6a:c8:16:4e:9f:86:1b:1d:bf:31:9f: e7:51:26:4d:9c:7f:a3:35:ef:80:08:fd:e5:f1:18:22:55:a2: 46:2d:86:52:a6:07:b9:38:ac:74:07:d0:05:2f:a4:df:18:03: 32:1e:78:50:fd:f2:05:38:17:31:7f:5a:df:7b:c7:9a:e2:65: 6b:f0:2f:5e:df:32:d3:d0:4c:f9:1c:10:52:93:97:03:88:9a: 08:4c:56:14:18:0c:2d:a9:b6:13:78:c9:82:86:d6:d6:56:de: 73:59:f8:ee:2b:01:0b:ac:1a:10:8a:4d:2e:fe:42:f8:72:3c: 31:b7:41:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUxMTAyMTkzODUyWhcNMjUxMTA5MTkzODUyWjAYMRYwFAYD VQQDEw02OTA3YjM0ZC0yMzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uf9guznQ4vAXtm9ulUKcDOQhbIEDCiFoLlQ4efYIDPWeZyjfLNaRZcqo+C5 52KnoSk0Hgw7QvzElj8HTZiJKBKcX8uw7iTqdQ0DkJ9W6pO8ybVb614ETQ70UWm4 pQ+IE+fXi/B9AClRslYVZRfjFpjeVp1vLSu/6dRe9Ozi/SE1/Z7f6pG16HSyhEcp FGPkomp3LQ6ZgW/8FXe+81x/FJsY1biMfysGvtMeMIUvLcIDVKY5HejxXB0hSraq ZdbZwXzMIeD8qoKcUVByUorn6Z2HbJB+3l5j7hvTRxjy9NWorz2Faur/vZg9oqmZ XrxJeyzyOSfZno31+kUzjy/G0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9Koyj1 UhiliBEcwccWfRfo+fnDMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmrHAwE8+PBnypiPvZBUlq2X6emRaNu/2VnF/D601f+5llSrzgT/Op Gcf6nGTkgCEcywYWCRM3RPUoAYIHqLCoNcwcWccx82kbAoyMatJXl8Tr5Ag6RS8m sPSUGRHPuKOzXWgiD3KRECwZaSbQicuWY7z6BLwqx6AwALsWszkKT2j8dwCtasgW Tp+GGx2/MZ/nUSZNnH+jNe+ACP3l8RgiVaJGLYZSpge5OKx0B9AFL6TfGAMyHnhQ /fIFOBcxf1rfe8ea4mVr8C9e3zLT0Ez5HBBSk5cDiJoITFYUGAwtqbYTeMmChtbW Vt5zWfjuKwELrBoQik0u/kL4cjwxt0HE -----END CERTIFICATE-----Generated at Tue Nov 4 01:06:08 2025 by rpki-client