$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: HQjNpQQP2Sm+iwIL326kpWlBW1CUXyZ6ln35DLGldnA= Subject key identifier: 4F:1A:19:17:AB:FB:4C:A2:5A:B3:57:27:42:DA:FC:F2:D5:CD:31:A3 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: AA Signing time: Mon 03 Nov 2025 06:11:33 +0000 Manifest this update: Mon 03 Nov 2025 06:11:32 +0000 Manifest next update: Mon 10 Nov 2025 06:11:32 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: pSyHakyXDd/EczrAmSl1tY99pkaYzm2F/lYeNOjDnZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Nov 3 06:11:32 2025 GMT Not After : Nov 10 06:11:32 2025 GMT Subject: CN=69084794-2358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3c:06:91:f3:f3:40:50:b6:af:0b:53:b3:37: e9:2b:cd:ec:99:33:7a:25:45:0f:15:58:2b:79:74: 56:b4:39:67:02:e9:a3:45:73:2a:81:bd:36:7e:6b: 84:5c:9b:7b:86:19:e0:e1:99:0e:a8:98:72:de:0a: a7:54:b5:a4:ee:54:76:a8:a3:f3:b6:30:72:55:65: e1:3c:ab:0d:18:bf:79:41:a6:c6:95:e0:75:76:40: b7:25:3e:50:4b:c2:51:02:9b:a1:6b:41:df:0e:d4: af:6d:f0:7c:24:58:14:d2:20:a8:f8:da:6d:04:02: 03:49:eb:d0:07:b7:0f:e5:fc:8a:8e:98:6f:47:f4: c8:09:7f:6c:9e:c9:dd:c2:8a:31:a7:1a:58:19:bf: 6a:d9:14:2b:fd:e3:6f:4d:3e:ae:18:05:00:e8:02: e5:03:e6:79:99:d9:fb:d4:34:79:22:0a:88:f1:aa: bc:87:70:00:24:07:d0:6e:1d:e3:15:74:b2:08:62: a4:d5:6b:f0:9a:a0:22:0d:43:51:d6:cd:0e:ea:5b: 48:37:ae:0e:a5:d7:4d:42:0c:da:11:c3:a8:ef:80: cb:c2:d0:5b:20:bb:ca:4e:bb:a1:8e:e1:b7:8e:b4: 05:9f:35:34:7b:40:74:6d:92:1a:02:fe:ff:b5:44: 0f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1A:19:17:AB:FB:4C:A2:5A:B3:57:27:42:DA:FC:F2:D5:CD:31:A3 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:6d:51:62:d2:e3:20:39:8c:62:10:a0:e6:70:99:12:6e:b6: 07:5d:c5:8a:35:0b:6c:6d:6f:19:9a:72:e9:f6:95:d2:c3:96: df:60:0a:51:df:00:dd:41:92:e9:42:58:3c:f0:28:9a:ac:be: d7:06:48:b4:9d:e7:1b:06:8c:30:8c:13:b0:0c:75:5d:cd:8c: a7:ce:37:2b:3d:1e:8b:35:04:4a:7b:c0:5f:e0:09:c2:2b:2a: c7:3c:c3:7f:2a:b7:1d:84:cd:24:aa:31:ba:42:c5:c4:9a:69: 33:64:db:ce:96:e5:f5:4f:58:1b:7e:74:73:57:8d:49:00:9b: 55:83:89:5e:a2:c6:32:f4:7b:1a:4f:32:61:a1:28:e6:c5:21: f4:e3:f0:cf:9d:8c:d0:85:6e:05:35:26:34:fe:e9:2a:27:8a: a0:7a:ae:b1:b3:55:4d:84:83:02:ad:36:27:86:ae:24:65:c9: 98:90:e7:33:4b:4d:1d:6f:a4:3b:ad:5d:bb:e6:63:bb:0b:59: 36:d2:bf:2b:37:76:92:b1:eb:4b:65:6b:1a:7a:39:b8:64:a0: ea:97:97:d4:55:ff:7a:b9:10:58:27:b4:6f:1e:33:bd:a6:fd: b3:e0:84:9f:45:c7:e6:7c:92:19:99:d9:fa:b9:50:df:83:3c: 9e:98:83:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDZDMTFGODNCOUE4Q0JERDIxNTMyRERGMEVBNjFERTkz ODhEMTNDNkIwHhcNMjUxMTAzMDYxMTMyWhcNMjUxMTEwMDYxMTMyWjAYMRYwFAYD VQQDEw02OTA4NDc5NC0yMzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjwGkfPzQFC2rwtTszfpK83smTN6JUUPFVgreXRWtDlnAumjRXMqgb02fmuE XJt7hhng4ZkOqJhy3gqnVLWk7lR2qKPztjByVWXhPKsNGL95QabGleB1dkC3JT5Q S8JRApuha0HfDtSvbfB8JFgU0iCo+NptBAIDSevQB7cP5fyKjphvR/TICX9snsnd wooxpxpYGb9q2RQr/eNvTT6uGAUA6ALlA+Z5mdn71DR5IgqI8aq8h3AAJAfQbh3j FXSyCGKk1WvwmqAiDUNR1s0O6ltIN64OpddNQgzaEcOo74DLwtBbILvKTruhjuG3 jrQFnzU0e0B0bZIaAv7/tUQPNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8aGRer +0yiWrNXJ0La/PLVzTGjMB8GA1UdIwQYMBaAFGwR+DuajL3SFTLd8Oph3pOI0Txr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82RjYyODM4OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZkSVZNdDN3Nm1IZWs0alJQ R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82RjYyODM4OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZk SVZNdDN3Nm1IZWs0alJQR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkbVFi0uMgOYxiEKDmcJkSbrYHXcWKNQtsbW8ZmnLp9pXSw5bfYApR 3wDdQZLpQlg88CiarL7XBki0necbBowwjBOwDHVdzYynzjcrPR6LNQRKe8Bf4AnC KyrHPMN/KrcdhM0kqjG6QsXEmmkzZNvOluX1T1gbfnRzV41JAJtVg4leosYy9Hsa TzJhoSjmxSH04/DPnYzQhW4FNSY0/ukqJ4qgeq6xs1VNhIMCrTYnhq4kZcmYkOcz S00db6Q7rV275mO7C1k20r8rN3aSsetLZWsaejm4ZKDql5fUVf96uRBYJ7RvHjO9 pv2z4ISfRcfmfJIZmdn6uVDfgzyemINO -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:06 2025 by rpki-client