$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: hClqqxYePNQSkhdGM4Pn55RgzcEzZdzEbBcIYTQvU6g= Subject key identifier: 92:E1:A9:EB:8C:E5:D8:2A:63:4A:60:55:8D:85:74:D0:49:5A:F5:2C Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 010A Signing time: Mon 03 Nov 2025 04:59:50 +0000 Manifest this update: Mon 03 Nov 2025 04:59:49 +0000 Manifest next update: Mon 10 Nov 2025 04:59:49 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: NRvJG/LJxUC5OF3gHH4e03RbAhmG5wnhd1Id+gPf/lo=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Nov 3 04:59:49 2025 GMT Not After : Nov 10 04:59:49 2025 GMT Subject: CN=690836c6-b969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7d:0a:d1:6b:c3:b2:fa:9b:43:77:ae:eb:2e: f6:5b:56:ec:a0:a4:b1:2d:57:44:47:cb:c8:a7:c2: ea:b7:25:ca:5f:ca:9c:39:75:d1:70:81:e8:41:3a: b5:d6:52:e8:66:5b:70:10:94:23:9f:2c:41:df:21: 5d:8d:d5:db:50:56:17:72:73:5f:b8:c9:89:c6:d6: d3:5b:0e:b5:dd:ca:a7:f3:a9:4a:9a:17:7b:e1:81: ee:df:1f:3c:b8:94:fb:42:0a:9f:46:c5:35:a5:a8: ee:22:30:c9:99:7e:03:d1:d4:b5:f3:f0:fe:f6:51: 4c:b4:e1:b9:83:fb:be:a3:6e:3a:ca:ed:ae:f9:71: b3:d6:bd:86:1d:0f:a1:05:79:1c:34:42:1b:34:77: a4:36:a2:0f:d0:48:ed:cb:b2:a8:36:4b:c2:7f:64: 6a:82:ff:31:40:e9:83:1b:c7:64:e5:3f:a5:57:00: 60:4a:b1:05:e1:10:58:aa:d4:7f:15:22:fd:08:91: 8a:72:eb:58:40:a1:7e:c3:c5:21:43:68:a3:bc:a2: 58:9d:da:a5:74:c4:a7:23:f6:dc:21:2b:30:e5:ab: 2b:b4:57:39:d6:5a:52:ad:52:c4:42:69:30:bd:e4: 39:f0:8d:67:2d:7a:04:25:0a:d8:e5:17:0b:eb:82: 5f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E1:A9:EB:8C:E5:D8:2A:63:4A:60:55:8D:85:74:D0:49:5A:F5:2C X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:7c:b9:06:bf:f6:70:1c:e2:8d:d5:ce:f5:77:a3:eb:6c:55: ab:0e:41:b6:bc:76:70:a8:bb:8b:01:c7:46:be:b8:70:62:86: 3a:6f:02:83:6a:99:e8:3d:ac:f6:05:eb:a4:5c:a3:8c:94:dc: 24:0e:94:78:42:d7:e7:b7:6e:10:e2:4b:82:5f:46:6e:8b:c9: 86:50:a4:0f:21:d0:89:71:d5:f5:0b:21:c2:f1:a4:9b:d3:85: a0:ce:a4:67:4c:03:5d:b3:4b:fb:f5:63:12:b6:02:b6:d3:71: 54:50:d5:f9:be:7d:26:96:02:ef:fe:ab:ac:06:1c:97:71:84: 8f:35:4f:e3:92:c7:d5:d0:db:9e:31:4b:bf:47:f1:07:8a:5b: 20:72:14:de:93:dc:ba:08:4b:0e:04:ea:55:89:a1:de:6a:8e: 9e:53:e7:70:c9:61:44:f9:91:c5:1f:6f:00:f4:bf:4c:87:05: 19:39:55:7d:b7:76:57:06:42:9d:c1:c0:cf:b1:5e:23:6f:7f: 3b:f0:8c:00:87:7f:a4:2d:43:ff:18:48:6c:2b:42:cd:30:bd: 20:dd:ff:9a:c7:da:0f:72:e2:14:66:83:fa:e9:bf:01:71:6d: 3d:d7:50:cd:a4:5e:65:d7:d1:1d:7c:b1:34:9e:4b:14:0b:c2: 7d:2f:0e:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUxMTAzMDQ1OTQ5WhcNMjUxMTEwMDQ1OTQ5WjAYMRYwFAYD VQQDEw02OTA4MzZjNi1iOTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmn0K0WvDsvqbQ3eu6y72W1bsoKSxLVdER8vIp8LqtyXKX8qcOXXRcIHoQTq1 1lLoZltwEJQjnyxB3yFdjdXbUFYXcnNfuMmJxtbTWw613cqn86lKmhd74YHu3x88 uJT7QgqfRsU1pajuIjDJmX4D0dS18/D+9lFMtOG5g/u+o246yu2u+XGz1r2GHQ+h BXkcNEIbNHekNqIP0Ejty7KoNkvCf2Rqgv8xQOmDG8dk5T+lVwBgSrEF4RBYqtR/ FSL9CJGKcutYQKF+w8UhQ2ijvKJYndqldMSnI/bcISsw5asrtFc51lpSrVLEQmkw veQ58I1nLXoEJQrY5RcL64JfQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLhqeuM 5dgqY0pgVY2FdNBJWvUsMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASfLkGv/ZwHOKN1c71d6PrbFWrDkG2vHZwqLuLAcdGvrhwYoY6bwKD apnoPaz2BeukXKOMlNwkDpR4Qtfnt24Q4kuCX0Zui8mGUKQPIdCJcdX1CyHC8aSb 04WgzqRnTANds0v79WMStgK203FUUNX5vn0mlgLv/qusBhyXcYSPNU/jksfV0Nue MUu/R/EHilsgchTek9y6CEsOBOpViaHeao6eU+dwyWFE+ZHFH28A9L9MhwUZOVV9 t3ZXBkKdwcDPsV4jb3878IwAh3+kLUP/GEhsK0LNML0g3f+ax9oPcuIUZoP66b8B cW0911DNpF5l19EdfLE0nksUC8J9Lw52 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:42 2025 by rpki-client