$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: Hj6fdYx5x6a2vBBffX6HKvKsZktKsnGlQAGCXVvLxhc= Subject key identifier: FC:8D:23:7B:D0:14:E6:9A:97:63:77:5A:48:D8:10:72:49:E4:1D:AA Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: E7 Signing time: Mon 27 Oct 2025 07:34:31 +0000 Manifest this update: Mon 27 Oct 2025 07:34:31 +0000 Manifest next update: Mon 03 Nov 2025 07:34:31 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: P791I8Bb3Kui5mNULQI/r2F1Vp+wOZIVd9wjiWTngTY=) 2: 52AE08D4ABCF11F083B9610FC4F9AE02.roa (hash: NMTDk1bikkd+fwdk2/Llio0zL8hpaBeHBKsi3D4d+4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Oct 27 07:34:31 2025 GMT Not After : Nov 3 07:34:31 2025 GMT Subject: CN=68ff2087-20bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fc:a2:50:09:b9:33:f4:39:66:98:07:cf:b3: 58:d3:ff:c0:f3:7a:8b:89:b1:7e:c4:f8:44:9f:cb: b0:72:10:52:a1:a5:3f:97:bc:9f:ec:7e:b1:63:e4: 75:11:63:cf:1c:47:3b:74:15:1b:79:71:f9:87:e6: 7e:01:b0:99:2b:e8:01:fa:c3:1e:e1:eb:af:45:2b: 29:66:f9:fd:68:c3:2e:a3:05:1b:be:c1:de:0e:ee: be:5c:af:0b:fe:83:4a:f6:02:7b:8b:45:db:90:cd: 8e:9d:d8:b4:4b:b5:cd:19:64:02:d7:33:71:7c:6b: 2b:65:50:bb:01:24:22:f0:35:1a:21:a5:94:c8:28: 3c:04:1d:1c:d5:4d:51:46:7f:e4:11:03:6c:47:ba: 7d:be:39:98:ae:69:e3:12:5b:26:91:72:61:71:76: 4f:22:d3:99:00:0e:34:b8:b4:a1:22:ee:57:75:68: 40:ae:2c:38:9d:a6:77:c9:e7:8c:5a:86:6d:b3:11: df:45:a6:3d:b3:0c:99:99:3b:dd:af:16:69:e6:56: 92:0b:e4:4f:ec:3b:c6:95:6a:02:59:fc:c0:e3:ce: b3:e4:76:8c:21:03:49:11:bb:a7:b5:7b:75:44:de: 8e:08:8f:8d:61:0f:a8:82:3f:db:eb:b7:1a:33:c2: 76:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:8D:23:7B:D0:14:E6:9A:97:63:77:5A:48:D8:10:72:49:E4:1D:AA X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:b4:ba:d2:ee:c1:f6:8f:df:b1:6f:33:07:9e:cf:09:56:1f: f0:2d:51:f7:0b:9d:d4:c2:06:de:f6:45:9b:75:bf:db:91:ae: 88:67:0e:06:ce:08:fd:a4:36:41:49:c9:4c:23:4e:7c:3b:36: ff:37:1c:3f:da:97:7d:ea:97:c1:46:f3:5e:f0:d9:77:4d:77: f9:c2:0c:4a:3f:28:d3:3d:0d:dc:6a:d9:39:e4:93:79:b3:49: 24:dd:d5:dd:2d:96:4c:59:e2:44:89:31:0d:c8:44:14:4a:1e: 53:3d:47:ea:a1:9b:3c:45:1a:11:fa:6f:e5:f3:4d:c5:1b:7f: ba:28:19:01:c1:c5:ea:1f:c8:af:95:de:5e:6d:2a:bf:16:30: 37:cd:40:e8:dc:af:84:b5:d2:5b:08:75:fe:30:70:99:75:4b: 09:02:06:ef:df:eb:4b:1a:01:8e:d6:fb:4a:39:fa:88:b9:9f: 5e:47:8f:eb:46:66:34:58:d0:f6:29:f9:2a:2c:7e:36:32:e9: a5:05:dc:cb:a7:bf:fb:dd:19:14:a9:40:a8:27:95:fe:3b:db: 7a:86:88:b6:23:0a:64:0f:77:3c:e5:79:2b:da:76:6e:8f:55: 49:ff:6c:28:da:31:ac:11:fb:ad:3e:50:37:4e:68:85:c6:fa: a3:78:bf:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjUxMDI3MDczNDMxWhcNMjUxMTAzMDczNDMxWjAYMRYwFAYD VQQDEw02OGZmMjA4Ny0yMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/yiUAm5M/Q5ZpgHz7NY0//A83qLibF+xPhEn8uwchBSoaU/l7yf7H6xY+R1 EWPPHEc7dBUbeXH5h+Z+AbCZK+gB+sMe4euvRSspZvn9aMMuowUbvsHeDu6+XK8L /oNK9gJ7i0XbkM2Ondi0S7XNGWQC1zNxfGsrZVC7ASQi8DUaIaWUyCg8BB0c1U1R Rn/kEQNsR7p9vjmYrmnjElsmkXJhcXZPItOZAA40uLShIu5XdWhAriw4naZ3yeeM WoZtsxHfRaY9swyZmTvdrxZp5laSC+RP7DvGlWoCWfzA486z5HaMIQNJEbuntXt1 RN6OCI+NYQ+ogj/b67caM8J2pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyNI3vQ FOaal2N3WkjYEHJJ5B2qMB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6tLrS7sH2j9+xbzMHns8JVh/wLVH3C53Uwgbe9kWbdb/bka6IZw4G zgj9pDZBSclMI058Ozb/Nxw/2pd96pfBRvNe8Nl3TXf5wgxKPyjTPQ3catk55JN5 s0kk3dXdLZZMWeJEiTENyEQUSh5TPUfqoZs8RRoR+m/l803FG3+6KBkBwcXqH8iv ld5ebSq/FjA3zUDo3K+EtdJbCHX+MHCZdUsJAgbv3+tLGgGO1vtKOfqIuZ9eR4/r RmY0WND2KfkqLH42MumlBdzLp7/73RkUqUCoJ5X+O9t6hoi2IwpkD3c85Xkr2nZu j1VJ/2wo2jGsEfutPlA3TmiFxvqjeL/s -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:44 2025 by rpki-client