$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft File: 8XiofFRzBDe6WfqpzhhP-HkP5PE.mft (raw, json) Hash identifier: 3jLtbzE5tz9ItIQpAmDSsAZQP7bHaQOTZOj1z2ZmddA= Subject key identifier: 4C:CC:7F:3F:7D:0E:CF:DA:8C:2D:8D:C1:08:D3:3C:13:A1:48:92:38 Authority key identifier: F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 Certificate issuer: /CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Certificate serial: 050F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft Manifest number: 050A Signing time: Thu 18 Sep 2025 23:58:46 +0000 Manifest this update: Thu 18 Sep 2025 23:58:46 +0000 Manifest next update: Thu 25 Sep 2025 23:58:45 +0000 Files and hashes: 1: 8XiofFRzBDe6WfqpzhhP-HkP5PE.crl (hash: NzBSGraFdKwX5EuTdtAEzQpC5Gs+4EPx5+2zRhQVUJ0=) 2: CB89040A73EA11EC8A823312C4F9AE02.roa (hash: 6pWGQwdhpFKj5uyRVvtM8M7iiAHBMFerXsGqI0l0KTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1295 (0x50f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6792, serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Validity Not Before: Sep 18 23:58:46 2025 GMT Not After : Sep 25 23:58:45 2025 GMT Subject: CN=68cc9cb6-336f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:07:fb:33:40:a0:81:58:e3:83:89:de:22:d0: 7d:59:38:61:92:a6:a7:a9:42:37:3e:3c:46:b2:a3: dd:48:79:6c:93:93:29:6f:75:94:55:c7:1b:c1:bf: 43:e2:32:4a:bd:df:31:d8:5b:0b:47:e1:2c:8d:43: ec:23:df:f9:10:51:5a:81:e2:34:69:9c:ab:52:9b: 79:e0:ce:d1:dc:5a:da:d7:ef:45:da:31:78:fc:33: 2a:6c:fb:31:1a:f5:75:7d:45:b7:21:e0:b4:cf:53: 13:99:76:bc:dc:ef:a4:56:69:6c:0e:1e:a3:b8:70: cc:3e:66:73:9a:0c:77:bc:34:61:1b:55:0a:4b:dc: 77:88:5a:3a:a4:eb:4d:08:1e:18:5d:f9:96:48:28: dd:5e:9a:b0:01:53:19:e5:5e:24:1f:a4:9a:f4:b9: f1:af:8e:f3:a7:52:47:94:2a:4b:cc:eb:85:74:6d: d5:5d:2c:ae:2a:46:25:2a:7d:c1:b1:e9:b0:5a:94: 72:4f:e5:1d:06:9c:5a:85:ea:61:da:7b:1b:13:f9: dc:d6:e9:0c:fb:d6:68:c2:32:e4:92:9a:9b:02:8c: 8f:c2:ae:97:f4:cb:a4:fb:df:2c:63:52:bc:70:b1: 33:07:93:77:a3:4c:3e:0a:e3:df:67:8a:5e:9e:c9: 79:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CC:7F:3F:7D:0E:CF:DA:8C:2D:8D:C1:08:D3:3C:13:A1:48:92:38 X509v3 Authority Key Identifier: keyid:F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:eb:55:38:75:12:c6:33:c9:62:16:40:09:0f:ae:42:b5:6d: 43:81:72:28:4b:03:4d:09:ba:c0:40:ff:8a:48:42:31:03:f5: c8:fc:4b:54:93:40:93:b2:64:d0:dd:6f:7e:67:de:9a:d9:58: ba:e5:d5:ef:c5:21:c4:df:11:85:17:c0:a3:5a:89:16:cf:f5: c6:bf:34:12:9d:44:d1:93:7a:6d:70:ab:56:08:6b:92:eb:c6: 0d:55:b3:8b:ad:a8:1e:f3:81:ad:70:a8:e5:12:85:d0:51:be: d3:d8:45:60:66:d9:46:15:90:f0:ca:83:6e:f4:f6:9a:a9:88: c1:96:9d:a5:14:19:4a:bf:68:88:d3:98:b5:c1:8c:ad:be:18: de:d1:07:42:76:8a:64:14:b0:cc:79:00:64:00:ab:93:18:b3: 3f:f5:a3:37:3a:2e:be:f3:11:35:ae:00:fc:7c:09:b7:d2:6a: aa:e4:23:9d:50:1e:c0:f6:63:63:94:49:2c:83:20:00:3c:4f: 20:b2:75:c4:da:63:26:d9:72:aa:fa:c5:e8:8c:1b:88:65:21: e5:ba:40:27:48:2c:be:01:90:cc:1f:b2:0d:69:4a:5c:cd:2e: 6f:b9:18:d0:2e:28:61:3d:c6:ab:44:3b:36:1b:45:cf:68:a5: 43:b0:c1:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3OTIxMTAvBgNVBAUTKEYxNzhBODdDNTQ3MzA0MzdCQTU5RkFBOUNFMTg0RkY4 NzkwRkU0RjEwHhcNMjUwOTE4MjM1ODQ2WhcNMjUwOTI1MjM1ODQ1WjAYMRYwFAYD VQQDEw02OGNjOWNiNi0zMzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowf7M0CggVjjg4neItB9WThhkqanqUI3PjxGsqPdSHlsk5Mpb3WUVccbwb9D 4jJKvd8x2FsLR+EsjUPsI9/5EFFageI0aZyrUpt54M7R3Fra1+9F2jF4/DMqbPsx GvV1fUW3IeC0z1MTmXa83O+kVmlsDh6juHDMPmZzmgx3vDRhG1UKS9x3iFo6pOtN CB4YXfmWSCjdXpqwAVMZ5V4kH6Sa9Lnxr47zp1JHlCpLzOuFdG3VXSyuKkYlKn3B semwWpRyT+UdBpxaheph2nsbE/nc1ukM+9ZowjLkkpqbAoyPwq6X9Muk+98sY1K8 cLEzB5N3o0w+CuPfZ4pensl50QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzMfz99 Ds/ajC2NwQjTPBOhSJI4MB8GA1UdIwQYMBaAFPF4qHxUcwQ3uln6qc4YT/h5D+Tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjc5Mi9EQkYxQzc3MjIx RUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJEZTZXZnFwemhoUC1Ia1A1 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYaW9mRlJ6QkRlNldmcXB6aGhQLUhrUDVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njc5Mi9EQkYxQzc3MjIxRUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJE ZTZXZnFwemhoUC1Ia1A1UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb61U4dRLGM8liFkAJD65CtW1DgXIoSwNNCbrAQP+KSEIxA/XI/EtU k0CTsmTQ3W9+Z96a2Vi65dXvxSHE3xGFF8CjWokWz/XGvzQSnUTRk3ptcKtWCGuS 68YNVbOLrage84GtcKjlEoXQUb7T2EVgZtlGFZDwyoNu9PaaqYjBlp2lFBlKv2iI 05i1wYytvhje0QdCdopkFLDMeQBkAKuTGLM/9aM3Oi6+8xE1rgD8fAm30mqq5COd UB7A9mNjlEksgyAAPE8gsnXE2mMm2XKq+sXojBuIZSHlukAnSCy+AZDMH7INaUpc zS5vuRjQLihhPcarRDs2G0XPaKVDsMFO -----END CERTIFICATE-----Generated at Fri Sep 19 08:31:48 2025 by rpki-client