$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: EP2mKi6JDIpXD/ilrFzVCOcgnwmfp++LkmQBn7NFv0Y= Subject key identifier: DA:0B:CB:1E:F6:14:64:46:F4:97:23:3E:6D:F0:E3:67:79:CF:C8:F0 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0DAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0D82 Signing time: Sun 02 Nov 2025 17:59:13 +0000 Manifest this update: Sun 02 Nov 2025 17:59:12 +0000 Manifest next update: Sun 09 Nov 2025 17:59:12 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: gZBc//CkPb9pE42+m//LjMjRWZ87ZV1lsPmi/3PCsxw=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: 8r7MWVk5x8o1qlWsJdhw0htq1GLcuT7GZDff98YKUWg=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: 4RiRLEUaqFnMyzAxg+jhTtVSLZnRrw+D1OLV5ZjDtiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3501 (0xdad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Nov 2 17:59:12 2025 GMT Not After : Nov 9 17:59:12 2025 GMT Subject: CN=69079bf0-a18a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8a:ae:8a:91:b4:29:44:18:6c:a1:45:04:38: f6:1a:be:77:53:10:2a:ee:53:cd:68:ab:ef:33:76: b4:87:d3:7a:8e:02:54:80:ba:eb:a0:3e:a5:a4:52: 28:e1:da:30:54:5f:0d:73:75:35:4e:26:ab:0c:57: b4:ee:c5:55:cc:43:70:b1:7a:ac:0e:20:b6:25:87: 98:f7:aa:93:5c:3b:7b:1c:8f:f6:3d:2e:65:5f:d4: 49:e8:c5:ec:96:8e:1b:a3:ce:e8:81:d5:80:23:44: 73:a1:be:54:f5:46:a1:88:7c:3b:3c:59:40:38:cd: 8f:0a:5e:38:d0:62:c7:27:2d:e2:f0:48:c2:01:39: d6:80:4a:0d:05:4e:f0:9e:9d:80:53:b6:66:29:be: 74:89:4d:64:dd:5a:4b:3b:c3:00:aa:67:2e:0a:ff: 6d:47:2c:a0:2a:19:ce:96:07:25:90:84:3f:85:d0: 2f:22:fc:80:59:f7:61:29:e0:61:d8:f6:41:c3:a6: ec:7f:30:fd:5f:90:fd:be:74:d1:45:92:3b:67:4b: 3f:37:bf:a2:e9:db:0d:28:af:e5:6a:16:e2:9e:1d: b0:a7:7e:fc:49:e5:45:85:9b:59:27:8b:ad:e3:50: 38:c6:2a:90:c3:41:d2:26:75:d1:d7:9a:d5:0a:02: d0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0B:CB:1E:F6:14:64:46:F4:97:23:3E:6D:F0:E3:67:79:CF:C8:F0 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:b7:09:ee:ff:25:d2:7e:97:da:2d:bd:e2:1f:7b:2a:fd:3d: 1d:bb:b4:e2:58:30:1f:80:a2:01:2d:61:c3:2d:51:3d:f5:a7: 34:d1:65:b5:6e:28:21:91:00:07:d4:95:24:a6:97:74:a4:dd: 2d:89:2f:66:b9:bb:a6:3c:6d:5f:65:fd:2b:36:aa:31:66:19: d9:b8:6b:5e:fb:b6:27:d3:54:6a:1f:62:c6:e4:76:b9:e4:d8: ef:e9:66:5a:ec:c8:0a:66:39:36:04:e5:58:c0:53:34:2d:49: 59:48:bb:30:27:5b:9f:40:00:1a:bf:95:50:b0:87:f2:14:0e: 5c:90:43:a7:74:fe:8c:75:1e:59:39:0e:bc:e5:0a:1e:48:ae: e5:f4:ff:7d:58:e9:ca:35:c4:c3:bc:be:b5:04:7f:35:c0:b9: 18:c6:e1:9d:2a:f2:d2:07:df:e6:98:31:39:a7:1c:89:d4:2b: ae:14:5e:8d:9c:94:f8:27:64:40:b6:f4:a8:48:38:e1:a6:b8: bd:d0:e8:8e:fd:11:e6:71:ae:ff:db:3f:c5:6b:f4:c6:42:c2: 8e:c3:d7:99:2a:0d:d0:43:7b:6b:b6:bf:3c:6e:06:fb:cf:c6: a7:4f:90:2a:cf:06:c2:d2:52:6d:6c:2e:1e:a0:ad:a3:91:5f: 8a:20:2b:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjUxMTAyMTc1OTEyWhcNMjUxMTA5MTc1OTEyWjAYMRYwFAYD VQQDEw02OTA3OWJmMC1hMThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24quipG0KUQYbKFFBDj2Gr53UxAq7lPNaKvvM3a0h9N6jgJUgLrroD6lpFIo 4dowVF8Nc3U1TiarDFe07sVVzENwsXqsDiC2JYeY96qTXDt7HI/2PS5lX9RJ6MXs lo4bo87ogdWAI0Rzob5U9UahiHw7PFlAOM2PCl440GLHJy3i8EjCATnWgEoNBU7w np2AU7ZmKb50iU1k3VpLO8MAqmcuCv9tRyygKhnOlgclkIQ/hdAvIvyAWfdhKeBh 2PZBw6bsfzD9X5D9vnTRRZI7Z0s/N7+i6dsNKK/lahbinh2wp378SeVFhZtZJ4ut 41A4xiqQw0HSJnXR15rVCgLQnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoLyx72 FGRG9JcjPm3w42d5z8jwMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2twnu/yXSfpfaLb3iH3sq/T0du7TiWDAfgKIBLWHDLVE99ac00WW1 bighkQAH1JUkppd0pN0tiS9mubumPG1fZf0rNqoxZhnZuGte+7Yn01RqH2LG5Ha5 5Njv6WZa7MgKZjk2BOVYwFM0LUlZSLswJ1ufQAAav5VQsIfyFA5ckEOndP6MdR5Z OQ685QoeSK7l9P99WOnKNcTDvL61BH81wLkYxuGdKvLSB9/mmDE5pxyJ1CuuFF6N nJT4J2RAtvSoSDjhpri90OiO/RHmca7/2z/Fa/TGQsKOw9eZKg3QQ3trtr88bgb7 z8anT5AqzwbC0lJtbC4eoK2jkV+KICv4 -----END CERTIFICATE-----Generated at Tue Nov 4 02:51:15 2025 by rpki-client