$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft File: pbtkBP5TtawGtBCz1s2gNKITHpA.mft (raw, json) Hash identifier: wuSZ6F1WOgeJ0iDu0Vs8uOnUTh3HOyT+fbzUKGyGorE= Subject key identifier: 5C:24:70:68:7E:4D:F6:1B:7D:9E:C7:A9:4A:FF:9A:89:15:9D:F3:86 Authority key identifier: A5:BB:64:04:FE:53:B5:AC:06:B4:10:B3:D6:CD:A0:34:A2:13:1E:90 Certificate issuer: /CN=A915DE6C/serialNumber=A5BB6404FE53B5AC06B410B3D6CDA034A2131E90 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft Manifest number: 4E Signing time: Wed 05 Nov 2025 07:28:56 +0000 Manifest this update: Wed 05 Nov 2025 07:28:55 +0000 Manifest next update: Wed 12 Nov 2025 07:28:55 +0000 Files and hashes: 1: pbtkBP5TtawGtBCz1s2gNKITHpA.crl (hash: 6sbAPobHczywQiUTEZX2NuIlddOIMZ4sKhpjNFH9k4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.crl rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE6C, serialNumber=A5BB6404FE53B5AC06B410B3D6CDA034A2131E90 Validity Not Before: Nov 5 07:28:55 2025 GMT Not After : Nov 12 07:28:55 2025 GMT Subject: CN=690afcb7-d55f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d5:17:49:a1:74:a7:d9:17:7b:d5:ba:c1:a6: e0:f7:50:25:bb:71:69:13:2a:59:5b:b6:cf:e0:e0: 4d:ea:ab:aa:43:f9:f5:ab:51:dc:b9:4e:18:e6:56: 82:ad:cc:6a:8b:3f:0d:bd:03:d8:a8:39:7f:1a:96: 5c:f1:53:a0:1c:fe:66:1c:f1:fb:2f:97:07:17:f8: c9:36:0b:ef:7a:8e:3f:f0:75:2d:63:39:a1:56:31: d8:ff:0b:44:d0:ba:49:23:0b:1f:99:86:28:a7:4f: ee:76:ae:26:21:b7:7f:5f:1f:98:89:7a:68:7d:58: ec:93:e5:75:98:b1:64:ae:10:29:73:ad:ab:fb:4e: 01:4f:2d:ab:af:f4:78:2b:c1:2f:50:95:54:c0:d9: a1:28:60:ef:99:5f:c0:db:47:76:de:ec:d2:c0:28: c3:00:76:83:22:35:dc:b1:70:33:14:10:69:aa:a2: 53:b2:ac:ee:1b:31:6a:e1:d4:90:13:18:a9:6f:63: 9d:5a:31:74:73:a9:ff:61:84:e9:8e:22:93:ff:61: 47:86:db:c6:88:1c:a5:39:6e:63:c3:ae:b4:95:e6: 8d:27:2d:5f:16:d8:8e:88:23:54:b7:8f:7e:cb:dd: 82:09:ce:78:39:7b:5d:a4:ab:08:53:ed:fd:27:bc: be:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:24:70:68:7E:4D:F6:1B:7D:9E:C7:A9:4A:FF:9A:89:15:9D:F3:86 X509v3 Authority Key Identifier: keyid:A5:BB:64:04:FE:53:B5:AC:06:B4:10:B3:D6:CD:A0:34:A2:13:1E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:7b:f6:29:e7:50:8a:93:c4:4b:dc:c6:c5:47:60:4c:4e:f5: 14:4c:58:da:da:5b:80:51:0b:c6:8b:3e:f6:0a:ac:67:00:f7: f2:e5:ef:65:05:94:66:29:48:7f:4a:f4:9b:2f:d6:38:f3:11: 62:56:9c:d5:81:09:c0:c1:5a:ea:5c:19:db:dc:02:58:53:63: 11:56:a5:af:78:4d:c8:00:81:3c:12:8e:50:86:dd:96:da:7d: 57:ee:c1:d9:81:92:e7:1a:fc:dd:e0:9d:5d:a8:de:70:56:24: 07:19:9d:f6:a1:e7:89:2e:bf:6a:f7:ab:3f:ff:c7:42:ff:59: 64:2c:46:b1:b0:4f:b9:c2:6a:03:fd:b8:c7:ed:72:22:b2:62: e9:c1:92:e5:74:2d:2f:e5:83:aa:1a:af:76:5a:4a:00:e1:ba: 54:1e:5a:f2:8a:0c:99:fb:15:8c:bc:1a:19:90:cb:bc:79:8b: 0a:2f:f9:ad:d3:01:ca:77:15:eb:45:02:57:41:94:30:78:60: e7:63:2a:22:6c:59:d1:1c:ae:af:f2:d3:b6:df:65:11:47:48: b6:8c:8e:58:19:fb:fd:36:23:a1:9c:86:74:a8:37:c5:c4:fd: 9d:b8:59:16:3c:95:05:fb:aa:4a:06:1c:64:74:fb:a8:57:ca: 05:33:86:f5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU2QzExMC8GA1UEBRMoQTVCQjY0MDRGRTUzQjVBQzA2QjQxMEIzRDZDREEwMzRB MjEzMUU5MDAeFw0yNTExMDUwNzI4NTVaFw0yNTExMTIwNzI4NTVaMBgxFjAUBgNV BAMTDTY5MGFmY2I3LWQ1NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL1RdJoXSn2Rd71brBpuD3UCW7cWkTKllbts/g4E3qq6pD+fWrUdy5ThjmVoKt zGqLPw29A9ioOX8allzxU6Ac/mYc8fsvlwcX+Mk2C+96jj/wdS1jOaFWMdj/C0TQ ukkjCx+ZhiinT+52riYht39fH5iJemh9WOyT5XWYsWSuEClzrav7TgFPLauv9Hgr wS9QlVTA2aEoYO+ZX8DbR3be7NLAKMMAdoMiNdyxcDMUEGmqolOyrO4bMWrh1JAT GKlvY51aMXRzqf9hhOmOIpP/YUeG28aIHKU5bmPDrrSV5o0nLV8W2I6II1S3j37L 3YIJzng5e12kqwhT7f0nvL6xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXCRwaH5N 9ht9nsepSv+aiRWd84YwHwYDVR0jBBgwFoAUpbtkBP5TtawGtBCz1s2gNKITHpAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERTZDLzc0RkJCM0Q2NDNE NDExRjA5MEI0NzY2OEM0RjlBRTAyL3BidGtCUDVUdGF3R3RCQ3oxczJnTktJVEhw QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGJ0a0JQNVR0YXdHdEJDejFzMmdOS0lUSHBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RTZDLzc0RkJCM0Q2NDNENDExRjA5MEI0NzY2OEM0RjlBRTAyL3BidGtCUDVUdGF3 R3RCQ3oxczJnTktJVEhwQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACJ79innUIqTxEvcxsVHYExO9RRMWNraW4BRC8aLPvYKrGcA9/Ll72UF lGYpSH9K9Jsv1jjzEWJWnNWBCcDBWupcGdvcAlhTYxFWpa94TcgAgTwSjlCG3Zba fVfuwdmBkuca/N3gnV2o3nBWJAcZnfah54kuv2r3qz//x0L/WWQsRrGwT7nCagP9 uMftciKyYunBkuV0LS/lg6oar3ZaSgDhulQeWvKKDJn7FYy8GhmQy7x5iwov+a3T Acp3FetFAldBlDB4YOdjKiJsWdEcrq/y07bfZRFHSLaMjlgZ+/02I6GchnSoN8XE /Z24WRY8lQX7qkoGHGR0+6hXygUzhvU= -----END CERTIFICATE-----Generated at Wed Nov 5 12:28:50 2025 by rpki-client