$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: bLUUxYg08+QQq957Td0A+iG9YSqbw5M4u3tPqPlKgxE= Subject key identifier: 45:87:59:E9:08:9E:34:59:53:1B:52:74:A2:B7:45:8D:26:5C:D8:A1 Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 83 Signing time: Mon 03 Nov 2025 06:42:06 +0000 Manifest this update: Mon 03 Nov 2025 06:42:06 +0000 Manifest next update: Mon 10 Nov 2025 06:42:06 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: /e9Vv9i9v84EeIu+8ShoDH1ly1uSeN0fEfpwYDwwylA=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: 6DJYRNtdCQtPDVdh/suSAFKdKgawzgUz82oOnswPp6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: Nov 3 06:42:06 2025 GMT Not After : Nov 10 06:42:06 2025 GMT Subject: CN=69084ebe-2f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:22:ab:3b:9b:66:30:d4:8e:84:d5:e5:72:96: f9:b0:40:64:8f:10:db:34:8c:02:2c:f8:b3:c5:ad: 9a:d1:1b:8e:24:03:31:ad:ae:ab:3e:b3:62:f6:6d: fd:25:c8:9e:80:27:41:15:de:e1:e2:e7:5c:90:8b: 5d:b7:2e:70:b5:a9:3a:bd:d9:eb:c8:aa:61:9e:af: 66:b1:7d:b1:7c:59:a2:d4:b5:0c:3b:c1:4e:4b:4e: 18:d1:6f:7f:7c:37:c6:ac:26:20:ef:c3:66:cf:07: ec:23:b6:45:f6:d2:6e:74:c4:28:3d:bb:e0:a7:0a: a0:7f:c4:06:b4:37:ed:e2:3f:0e:72:bf:f5:1d:4b: ed:9c:ef:74:2b:7f:31:4c:d6:37:f4:d4:ba:89:9c: 17:20:8c:5c:9b:6d:04:1e:29:07:07:c2:ff:c6:e5: fe:ad:21:03:be:58:ff:16:fc:fd:db:51:f0:03:18: ad:1d:e4:22:6e:dc:b4:4b:90:41:9a:6c:78:5c:45: 6c:72:79:fe:e8:09:38:d4:c1:ed:e9:20:e4:fc:57: da:f2:4a:17:cd:54:28:2f:2a:3a:97:18:c8:c6:ab: 14:5f:05:09:9e:46:a2:98:93:d4:17:66:00:f5:23: 94:26:12:fc:d7:6a:51:4c:44:41:4f:c0:d5:a8:19: be:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:87:59:E9:08:9E:34:59:53:1B:52:74:A2:B7:45:8D:26:5C:D8:A1 X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:38:68:49:c7:b7:65:43:ad:dc:0b:4d:b7:ae:9b:bf:f3:f5: db:72:ac:94:d1:dd:20:f5:8e:6a:8c:97:8c:9a:b9:ff:a7:c2: 55:ea:8e:63:2d:2b:22:2e:8e:12:e9:f5:5a:c5:ed:2b:f3:d4: 21:6b:18:4f:80:fb:5a:bf:11:c8:65:2c:18:97:48:d9:87:b1: 1c:7b:aa:6f:31:69:cc:e7:6e:83:38:d6:3d:f7:a0:c3:6d:ac: 9d:9f:4a:ce:c4:13:20:f7:7f:32:9b:de:aa:d8:5f:2d:cc:43: 90:e9:6a:89:49:d3:41:03:0c:53:9f:f7:47:e7:76:81:58:82: 13:bd:e3:48:33:50:52:32:54:8c:d1:5f:87:b4:ed:23:7f:1b: f1:67:28:13:30:ce:db:fc:d5:9e:30:b2:80:6f:8d:e4:ea:a3: 2d:f7:da:2b:7a:17:0f:3d:93:27:bd:a8:79:ca:13:83:54:dd: d1:12:e9:52:ab:e7:8c:e3:c6:bb:50:07:4a:aa:6a:16:c3:74: 86:1a:0c:fa:a2:96:cf:44:9b:12:d9:ae:1e:61:33:66:22:1a: b5:ff:20:9c:8c:0b:f4:70:a2:5e:3a:f1:5c:f5:bc:2d:f8:c5: 88:f3:83:41:a6:66:4e:34:cb:20:11:44:93:e3:02:29:3e:cb: 0c:24:80:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyOEUxMTAvBgNVBAUTKDVGQzFCNjM4Q0NDREZGOTlENjQ0NTY1NTI5QzgwNzA4 Njg2ODlCMzEwHhcNMjUxMTAzMDY0MjA2WhcNMjUxMTEwMDY0MjA2WjAYMRYwFAYD VQQDEw02OTA4NGViZS0yZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyKrO5tmMNSOhNXlcpb5sEBkjxDbNIwCLPizxa2a0RuOJAMxra6rPrNi9m39 JciegCdBFd7h4udckItdty5wtak6vdnryKphnq9msX2xfFmi1LUMO8FOS04Y0W9/ fDfGrCYg78NmzwfsI7ZF9tJudMQoPbvgpwqgf8QGtDft4j8Ocr/1HUvtnO90K38x TNY39NS6iZwXIIxcm20EHikHB8L/xuX+rSEDvlj/Fvz921HwAxitHeQibty0S5BB mmx4XEVscnn+6Ak41MHt6SDk/Ffa8koXzVQoLyo6lxjIxqsUXwUJnkaimJPUF2YA 9SOUJhL812pRTERBT8DVqBm+yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWHWekI njRZUxtSdKK3RY0mXNihMB8GA1UdIwQYMBaAFF/BtjjMzf+Z1kRWVSnIBwhoaJsx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTI4RS9DREEzQTcxRUY1 OUIxMUVGQTRGNTcxMjhDNEY5QUUwMi9YOEcyT016Tl81bldSRlpWS2NnSENHaG9t ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI4RS9DREEzQTcxRUY1OUIxMUVGQTRGNTcxMjhDNEY5QUUwMi9YOEcyT016Tl81 bldSRlpWS2NnSENHaG9tekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQOGhJx7dlQ63cC023rpu/8/XbcqyU0d0g9Y5qjJeMmrn/p8JV6o5j LSsiLo4S6fVaxe0r89QhaxhPgPtavxHIZSwYl0jZh7Ece6pvMWnM526DONY996DD baydn0rOxBMg938ym96q2F8tzEOQ6WqJSdNBAwxTn/dH53aBWIITveNIM1BSMlSM 0V+HtO0jfxvxZygTMM7b/NWeMLKAb43k6qMt99orehcPPZMnvah5yhODVN3REulS q+eM48a7UAdKqmoWw3SGGgz6opbPRJsS2a4eYTNmIhq1/yCcjAv0cKJeOvFc9bwt +MWI84NBpmZONMsgEUST4wIpPssMJIAA -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:07 2025 by rpki-client