$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft File: 8CJFNT_B8ZSpAipKwBl33l_eNvk.mft (raw, json) Hash identifier: W+64PvS0d1jaFA4WQd7BMSX8Di08epAG1uQxL7J4YSk= Subject key identifier: D4:75:63:16:2D:FC:06:AD:35:BD:89:09:53:2C:C4:44:EC:35:9A:45 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 03C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft Manifest number: 03AE Signing time: Wed 05 Nov 2025 00:52:08 +0000 Manifest this update: Wed 05 Nov 2025 00:52:07 +0000 Manifest next update: Wed 12 Nov 2025 00:52:07 +0000 Files and hashes: 1: 8CJFNT_B8ZSpAipKwBl33l_eNvk.crl (hash: UZ4TkBns8SCvAuogVhiwnLt1Ex2CL+xdQ9rwISzyOQg=) 2: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (hash: XtdmJSxuSqJLeY4yGf6y31fYXsFvKu/1qBD/nGzqK1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Nov 5 00:52:07 2025 GMT Not After : Nov 12 00:52:07 2025 GMT Subject: CN=690a9fb7-d2a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c7:af:6a:c4:9f:83:21:12:99:d2:d0:a7:46: 0e:0d:c0:b8:54:31:c1:52:89:d1:75:e4:4c:2b:5d: 86:1a:4c:cd:58:2c:b8:e4:ab:de:7d:7c:bd:f6:a5: c4:6b:a7:b0:72:e2:dd:96:bf:de:6a:d4:84:80:b6: b5:99:ce:be:5f:25:f2:79:71:0f:d1:ff:7c:52:70: 78:3a:d5:66:bd:fe:94:9b:85:69:16:16:e6:06:bd: 30:fb:b9:75:40:14:f4:8f:74:a5:4b:6b:1c:06:26: d2:0b:0d:2a:7b:d4:3c:ca:3d:fe:cf:bc:52:da:81: f2:e3:a9:ac:76:cd:74:79:04:be:aa:c5:38:87:e5: e4:70:be:b0:4e:3d:23:49:14:dc:80:e0:02:ba:82: fc:24:2e:45:2e:8e:c4:60:bf:5b:43:39:ce:6d:a3: 45:28:75:51:c4:3b:0e:56:fb:91:2c:ca:9f:54:fa: 54:68:05:5e:79:12:ee:ef:d9:89:fe:ee:66:9b:c1: d7:e4:16:48:8a:e0:0b:88:91:a6:2b:f3:c8:39:21: 09:bc:4f:57:0e:d1:f1:ad:c3:2b:09:63:36:55:0b: e7:53:fe:8e:97:5e:68:33:c3:95:c0:7e:af:0b:54: 37:7d:46:8b:84:bd:8e:5d:c9:19:de:af:8a:2a:5f: 9f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:75:63:16:2D:FC:06:AD:35:BD:89:09:53:2C:C4:44:EC:35:9A:45 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:77:b6:1c:ff:5b:06:8e:99:a9:55:82:7c:74:5f:01:ee:b6: 47:1b:f2:c6:86:db:d3:46:28:a6:87:32:22:0b:92:66:6a:f8: b2:d6:44:1b:f0:d1:54:ad:09:46:2a:cf:71:bc:59:fd:98:30: 17:85:78:6f:23:78:37:6d:58:9f:ef:b4:94:35:6a:c7:97:0d: eb:26:00:b0:3c:38:0d:6d:9f:85:21:d9:e4:b7:79:96:03:89: ef:02:25:e0:2a:5d:58:b8:8f:93:9e:d3:cd:85:1e:ec:cf:1b: da:18:1d:93:1f:63:01:bf:18:c9:08:06:37:4d:20:cd:f8:6a: 4a:78:0d:8b:d7:a0:71:f6:15:f1:5e:aa:cb:69:e4:cd:1c:bc: 10:36:2c:86:c2:43:33:8a:cf:1b:d7:e7:16:f5:11:77:af:35: 5a:4c:e5:0b:86:af:74:c4:e3:c0:c1:36:bd:80:34:0e:e3:b7: f8:32:5d:a1:15:61:fe:1b:70:bd:58:8f:ab:8a:09:d6:91:fa: a1:c6:5c:35:52:a4:f5:3d:b2:4d:57:95:a3:65:68:e9:87:24: af:23:89:93:22:f3:58:5f:c8:fd:2f:d3:29:1b:79:49:3a:c4: a3:48:fd:d9:3d:fd:e5:5d:98:2b:ec:1e:bc:05:ca:0a:a6:da: 70:29:0b:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjUxMTA1MDA1MjA3WhcNMjUxMTEyMDA1MjA3WjAYMRYwFAYD VQQDEw02OTBhOWZiNy1kMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8evasSfgyESmdLQp0YODcC4VDHBUonRdeRMK12GGkzNWCy45KvefXy99qXE a6ewcuLdlr/eatSEgLa1mc6+XyXyeXEP0f98UnB4OtVmvf6Um4VpFhbmBr0w+7l1 QBT0j3SlS2scBibSCw0qe9Q8yj3+z7xS2oHy46msds10eQS+qsU4h+XkcL6wTj0j SRTcgOACuoL8JC5FLo7EYL9bQznObaNFKHVRxDsOVvuRLMqfVPpUaAVeeRLu79mJ /u5mm8HX5BZIiuALiJGmK/PIOSEJvE9XDtHxrcMrCWM2VQvnU/6Ol15oM8OVwH6v C1Q3fUaLhL2OXckZ3q+KKl+fEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNR1YxYt /AatNb2JCVMsxETsNZpFMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTk2QS8yODc4NUY2MEJGQkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjha U3BBaXBLd0JsMzNsX2VOdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYd7Yc/1sGjpmpVYJ8dF8B7rZHG/LGhtvTRiimhzIiC5Jmaviy1kQb 8NFUrQlGKs9xvFn9mDAXhXhvI3g3bVif77SUNWrHlw3rJgCwPDgNbZ+FIdnkt3mW A4nvAiXgKl1YuI+TntPNhR7szxvaGB2TH2MBvxjJCAY3TSDN+GpKeA2L16Bx9hXx XqrLaeTNHLwQNiyGwkMzis8b1+cW9RF3rzVaTOULhq90xOPAwTa9gDQO47f4Ml2h FWH+G3C9WI+rignWkfqhxlw1UqT1PbJNV5WjZWjphySvI4mTIvNYX8j9L9MpG3lJ OsSjSP3ZPf3lXZgr7B68BcoKptpwKQtp -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:13 2025 by rpki-client