$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: LHXpBU/Ibx8Xtt7JhNerq1cjQQdDBCPVEMzQaw4/n4U= Subject key identifier: E3:B1:65:51:D9:4F:5B:22:3E:DF:C9:8D:00:AD:77:CE:37:F7:82:BF Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 03E5 Signing time: Mon 03 Nov 2025 00:29:27 +0000 Manifest this update: Mon 03 Nov 2025 00:29:27 +0000 Manifest next update: Mon 10 Nov 2025 00:29:27 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: ZrGjpdDkpu5KznU4m8fqHSoNG9uDwdYUlceUwjQDNeQ=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Nov 3 00:29:27 2025 GMT Not After : Nov 10 00:29:27 2025 GMT Subject: CN=6907f767-f17b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:68:23:62:cd:e8:20:23:1a:33:1f:20:df:b9: d8:e7:f7:e0:11:98:e1:c7:f6:0a:1a:74:56:20:5f: 59:c0:5c:d5:74:d3:75:46:3e:3e:cb:28:ce:02:44: d7:65:c7:3a:50:b0:1f:84:bd:86:73:09:13:de:b1: ec:62:f1:0b:00:c3:70:a7:71:07:e9:73:77:3b:5a: 3d:4a:ff:a7:5c:07:18:63:e2:0b:ae:fd:5e:6e:33: 31:26:56:c8:ed:c2:59:24:1a:80:a9:3d:7a:1a:33: a7:f6:25:50:06:f5:1d:22:77:36:e8:05:33:4a:0e: 87:0a:6e:b4:2f:92:68:ca:c8:7d:60:ce:ed:b8:12: 75:c5:8b:7f:67:43:4f:70:ca:7c:99:bd:b0:db:52: a1:b3:a2:61:58:96:69:a7:1f:f9:be:0c:74:b7:6e: 31:e1:63:e8:70:2c:b1:ee:d8:be:6b:07:e2:cc:38: ce:1a:c2:43:60:dc:af:c1:db:19:ce:1b:ec:fe:9f: f4:40:87:b6:2d:2e:b9:a5:e7:29:0f:62:d2:3c:4f: d1:1b:88:24:73:dc:9f:bd:51:79:3d:f0:ab:9f:4a: 09:62:02:94:f8:db:6d:80:de:17:2f:a6:b5:a4:f1: 35:13:b2:14:35:32:ba:7b:b8:c1:87:a3:9f:bc:97: 1f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B1:65:51:D9:4F:5B:22:3E:DF:C9:8D:00:AD:77:CE:37:F7:82:BF X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:57:db:e9:4b:ab:08:9d:c8:1f:86:b4:f8:26:b9:96:4d:e8: 6d:1d:83:6b:64:95:ed:44:ca:f0:17:f3:b2:47:a2:10:42:86: d0:6d:d4:f8:ca:ec:1f:87:1d:91:99:64:b0:75:f5:64:6f:de: 4a:7b:75:d0:63:65:5a:c1:c2:b9:c4:c2:4a:6f:96:05:42:e6: 9d:2f:4c:e4:e9:d1:dd:4d:ac:31:73:0e:5a:41:2e:13:26:a4: 6b:f8:8b:f6:79:f4:e8:99:44:fc:57:12:0b:d9:9a:90:cb:b8: 19:a0:33:aa:ec:a3:85:d4:a1:99:21:66:9c:ea:f6:d5:57:0b: bf:a7:03:4a:ef:8e:e6:f1:b4:26:f6:31:8b:50:da:d2:dd:b6: 89:ef:27:62:be:87:a9:a2:e9:5f:58:d1:ac:e2:2b:b4:4e:a3: 57:10:08:81:49:a2:64:11:37:85:ad:43:1a:31:c2:0e:72:42: 7c:f7:ce:10:54:36:1f:21:96:f2:d9:d6:af:69:56:2d:d2:c1: 8a:6e:2c:25:7d:33:40:6e:6d:85:ff:c9:6b:20:73:52:ca:19: 46:4b:c6:a5:f4:1d:cb:0c:28:9c:1b:a1:c2:eb:02:eb:56:dd: 08:d4:3a:43:1a:31:33:7f:d1:65:46:16:bc:1e:6c:54:1b:0e: eb:a6:79:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUxMTAzMDAyOTI3WhcNMjUxMTEwMDAyOTI3WjAYMRYwFAYD VQQDEw02OTA3Zjc2Ny1mMTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmgjYs3oICMaMx8g37nY5/fgEZjhx/YKGnRWIF9ZwFzVdNN1Rj4+yyjOAkTX Zcc6ULAfhL2GcwkT3rHsYvELAMNwp3EH6XN3O1o9Sv+nXAcYY+ILrv1ebjMxJlbI 7cJZJBqAqT16GjOn9iVQBvUdInc26AUzSg6HCm60L5Joysh9YM7tuBJ1xYt/Z0NP cMp8mb2w21Khs6JhWJZppx/5vgx0t24x4WPocCyx7ti+awfizDjOGsJDYNyvwdsZ zhvs/p/0QIe2LS65pecpD2LSPE/RG4gkc9yfvVF5PfCrn0oJYgKU+NttgN4XL6a1 pPE1E7IUNTK6e7jBh6OfvJcfzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOxZVHZ T1siPt/JjQCtd84394K/MB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGV9vpS6sIncgfhrT4JrmWTehtHYNrZJXtRMrwF/OyR6IQQobQbdT4 yuwfhx2RmWSwdfVkb95Ke3XQY2VawcK5xMJKb5YFQuadL0zk6dHdTawxcw5aQS4T JqRr+Iv2efTomUT8VxIL2ZqQy7gZoDOq7KOF1KGZIWac6vbVVwu/pwNK747m8bQm 9jGLUNrS3baJ7ydivoepoulfWNGs4iu0TqNXEAiBSaJkETeFrUMaMcIOckJ8984Q VDYfIZby2davaVYt0sGKbiwlfTNAbm2F/8lrIHNSyhlGS8al9B3LDCicG6HC6wLr Vt0I1DpDGjEzf9FlRha8HmxUGw7rpnlI -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:45 2025 by rpki-client