$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json) Hash identifier: uJ1gMAfYFpHcT6nFKLo6zPBnfZ3JNgGV26Q6TMPfTLw= Subject key identifier: CC:A5:6E:66:F1:74:1F:F6:A0:80:D6:88:60:1B:3F:AF:88:18:BF:0F Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft Manifest number: 85 Signing time: Fri 17 Oct 2025 10:05:43 +0000 Manifest this update: Fri 17 Oct 2025 10:05:42 +0000 Manifest next update: Fri 24 Oct 2025 10:05:42 +0000 Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: YZ/HGZaEpmdsEx32px1/jVfA34cei7K5XC5HUdmoFE0=) 2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: mx4Ct5Tnd5YkFq5qkT60Yq1dgh6KZfYC5nrKRxnyy28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 10:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A Validity Not Before: Oct 17 10:05:42 2025 GMT Not After : Oct 24 10:05:42 2025 GMT Subject: CN=68f214f6-23ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:13:02:fa:aa:fd:d6:ac:ee:da:94:d5:43:1a: 77:aa:20:93:fe:1a:ab:97:c2:3f:f7:cd:5c:df:bf: cb:8a:2a:49:9d:43:1b:14:24:fe:17:ec:1d:25:c4: 12:a5:66:7d:b2:84:b9:90:4d:cd:ac:a0:35:3a:e0: 5f:66:bd:bc:12:66:2b:e3:ef:43:18:90:6b:f4:cb: e0:02:f8:31:c2:e3:85:a8:a2:8b:b4:9e:6e:40:98: b5:87:8b:fc:11:b9:1e:c4:9d:c9:bf:78:ff:04:0e: 10:40:de:22:35:97:56:43:51:f0:ec:fc:fd:9b:db: 67:33:6a:18:c3:34:d8:ff:ef:8c:2d:13:30:d4:07: bf:23:f0:1e:eb:22:94:2e:5d:18:00:91:3a:81:1a: e2:4c:95:dd:c5:f7:d8:0f:ac:b4:aa:5a:4e:19:0c: f9:71:09:18:7b:a7:8f:0b:cb:2e:bd:13:80:27:3b: e7:cb:f0:16:00:23:9a:89:58:ab:62:b2:bd:80:84: c3:eb:fd:42:d6:da:e9:7c:d4:ec:54:67:f3:12:5f: 6c:32:d0:ca:59:ae:1d:cc:c3:8d:dc:99:ae:1e:2a: ed:f1:77:57:19:54:61:38:c8:d3:21:c0:7f:29:e6: 59:32:40:b3:fb:aa:92:d4:71:2e:1d:f9:c8:d9:14: 66:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A5:6E:66:F1:74:1F:F6:A0:80:D6:88:60:1B:3F:AF:88:18:BF:0F X509v3 Authority Key Identifier: keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:11:bc:6d:5c:3a:37:6d:a5:fc:29:46:05:e7:5e:79:d3:0e: e3:e1:80:80:90:ab:76:dd:3f:8b:02:61:06:90:e7:74:e1:1b: 47:27:16:69:34:2a:4d:bb:3f:3a:6a:26:fa:83:3f:93:0f:c8: a9:ee:91:fd:26:40:fb:da:f0:05:02:b4:bb:fa:6f:c0:15:11: 1f:6b:ea:d0:b6:2f:32:b1:82:87:95:db:d1:ad:e3:b8:2a:92: f6:61:22:39:1c:6d:52:97:cb:0f:61:5f:f6:e7:c7:3c:ea:32: 3a:ba:2c:27:fd:d7:af:99:a9:6c:37:11:1f:27:5b:fd:57:5e: 8d:54:83:81:d5:49:ed:9b:9f:62:e3:eb:fb:fe:c1:57:c6:a0: f0:4e:84:b8:5b:c1:eb:94:d3:8f:86:fe:e5:b1:52:5e:38:1b: ed:72:59:10:53:03:ba:22:ad:e7:b7:bb:34:85:60:ab:d0:ec: d7:35:01:c6:23:9d:a0:a3:e1:3c:a2:03:31:b8:65:ad:20:7f: cb:ff:4f:fd:cc:13:a0:77:c3:86:ae:2c:8b:48:18:b5:0f:04: b5:df:bf:44:00:e5:c7:15:a4:a4:19:b2:1e:18:63:3a:0e:c1: 96:25:e7:2d:d8:51:fb:3d:64:0d:8f:46:79:ed:6f:42:18:23: 6c:95:ce:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5RjUxMTAvBgNVBAUTKEYxMjg5NTc5MjExN0U5MDcwM0EwMDIwRjRGMzU5ODMx REIyRjkzN0EwHhcNMjUxMDE3MTAwNTQyWhcNMjUxMDI0MTAwNTQyWjAYMRYwFAYD VQQDEw02OGYyMTRmNi0yM2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhMC+qr91qzu2pTVQxp3qiCT/hqrl8I/981c37/LiipJnUMbFCT+F+wdJcQS pWZ9soS5kE3NrKA1OuBfZr28EmYr4+9DGJBr9MvgAvgxwuOFqKKLtJ5uQJi1h4v8 EbkexJ3Jv3j/BA4QQN4iNZdWQ1Hw7Pz9m9tnM2oYwzTY/++MLRMw1Ae/I/Ae6yKU Ll0YAJE6gRriTJXdxffYD6y0qlpOGQz5cQkYe6ePC8suvROAJzvny/AWACOaiVir YrK9gITD6/1C1trpfNTsVGfzEl9sMtDKWa4dzMON3JmuHirt8XdXGVRhOMjTIcB/ KeZZMkCz+6qS1HEuHfnI2RRmlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMylbmbx dB/2oIDWiGAbP6+IGL8PMB8GA1UdIwQYMBaAFPEolXkhF+kHA6ACD081mDHbL5N6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlGNS8zMjgzRTdENERG REExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZRY0RvQUlQVHpXWU1kc3Zr M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhTaVZlU0VYNlFjRG9BSVBUeldZTWRzdmszby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlGNS8zMjgzRTdENERGREExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZR Y0RvQUlQVHpXWU1kc3ZrM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBREbxtXDo3baX8KUYF51550w7j4YCAkKt23T+LAmEGkOd04RtHJxZp NCpNuz86aib6gz+TD8ip7pH9JkD72vAFArS7+m/AFREfa+rQti8ysYKHldvRreO4 KpL2YSI5HG1Sl8sPYV/258c86jI6uiwn/devmalsNxEfJ1v9V16NVIOB1Untm59i 4+v7/sFXxqDwToS4W8HrlNOPhv7lsVJeOBvtclkQUwO6Iq3nt7s0hWCr0OzXNQHG I52go+E8ogMxuGWtIH/L/0/9zBOgd8OGriyLSBi1DwS1379EAOXHFaSkGbIeGGM6 DsGWJect2FH7PWQNj0Z57W9CGCNslc4C -----END CERTIFICATE-----Generated at Sat Oct 18 23:35:51 2025 by rpki-client