$ rpki-client -vvf rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft File: 10rBuKMzUkP8svmQW8UdvcsOI20.mft (raw, json) Hash identifier: qLRY8Xn88uV4FhqdVsMyZStPrnMQMUtzjnouf2hEKLw= Subject key identifier: B2:67:86:2B:85:16:40:19:7B:7E:0F:AA:5F:78:C7:6A:98:E5:27:5F Authority key identifier: D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D Certificate issuer: /CN=A917E726/serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Certificate serial: 0B26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft Manifest number: 0B12 Signing time: Sun 02 Nov 2025 19:19:19 +0000 Manifest this update: Sun 02 Nov 2025 19:19:18 +0000 Manifest next update: Sun 09 Nov 2025 19:19:18 +0000 Files and hashes: 1: 10rBuKMzUkP8svmQW8UdvcsOI20.crl (hash: l4QY34VoORhhB+23qfv2wvj+CCazH8tE765wmqyFQAs=) 2: DDFB4716AB0D11F0A533CC38C4F9AE02.roa (hash: ST+eEmFvXhm94+Eq+HZ5fYqUNUrS3+2d6gwKeVG/128=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E726, serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Validity Not Before: Nov 2 19:19:18 2025 GMT Not After : Nov 9 19:19:18 2025 GMT Subject: CN=6907aeb6-063a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:81:c3:bf:e2:7b:90:6a:b1:c3:db:39:73:5b: 3b:f1:2a:9f:ae:8d:2f:8c:2a:ec:3d:11:cf:fd:b9: 0a:08:f6:c4:5e:95:51:c3:b1:b4:f7:87:ef:9d:bb: 32:6a:03:56:84:54:3d:09:4e:ff:6b:15:42:37:32: a5:f8:47:d3:78:04:b3:0a:10:5f:d6:36:b1:fd:51: 33:e6:21:23:86:fc:a8:87:34:53:e1:73:ec:37:76: 48:8a:34:e9:88:47:85:d6:0e:a4:03:15:1e:f3:3f: 64:96:71:91:07:b7:64:0c:b8:8c:d7:66:a3:f9:2f: f9:95:4c:d3:16:73:ca:37:4c:36:7e:48:b3:22:f1: 40:59:3d:7f:3a:b8:08:15:04:23:be:73:79:cc:73: e0:4c:4c:61:75:bb:18:95:92:82:c1:54:d0:84:d6: 5d:3f:b4:79:0c:c8:86:7c:96:3a:0d:f2:b4:ff:a7: 7c:be:e5:95:a5:78:bf:11:0c:59:a2:d6:d1:b4:35: 7d:ec:7a:d9:87:53:ae:ea:6b:d6:57:80:2d:35:e4: 0a:22:9d:c7:e7:dd:6e:45:36:20:53:55:1e:20:63: de:8e:e8:95:9e:97:85:8d:65:6e:e2:ce:36:1c:b8: 5c:b1:b4:79:9f:91:0a:18:77:95:c1:7f:a2:af:56: 41:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:67:86:2B:85:16:40:19:7B:7E:0F:AA:5F:78:C7:6A:98:E5:27:5F X509v3 Authority Key Identifier: keyid:D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:5f:89:93:8e:f3:91:a4:49:18:86:bf:82:ea:ff:1e:dc:97: f4:5c:0e:21:f8:93:dc:d4:0e:35:eb:7f:80:9a:39:15:9d:fe: 99:ba:bb:fd:15:b6:10:74:12:40:ac:65:ed:95:4d:f8:b9:c7: 74:dd:1e:ff:36:a3:8d:43:c8:2f:e4:3c:a0:7a:b4:4c:1c:4d: de:37:4e:34:b7:e9:a1:a9:cd:34:50:f1:2a:8f:59:ed:6c:b7: ed:d5:d4:e7:ab:2a:bb:69:27:2a:9b:89:f6:1b:5a:34:81:de: 9c:ae:32:25:1c:83:5f:c0:c9:a7:5b:29:e3:80:1b:ce:81:1d: c0:2b:ad:65:2e:c2:f5:98:4f:87:3a:8d:12:f5:9b:b2:6d:36: 7d:59:c9:81:25:2b:98:bf:64:a9:9a:f4:e3:e8:ae:c9:80:62: ef:18:3b:af:95:50:80:20:e0:20:82:11:5b:6e:9d:11:8c:85: 97:78:04:31:5c:bc:dd:ef:66:70:35:98:bc:5d:be:4d:32:6d: f1:22:71:cb:07:cf:ef:f7:d4:c7:05:18:d5:2a:76:f5:58:84: 4f:5f:a2:0d:8c:11:df:15:7c:09:33:ff:c0:c5:a9:17:ef:38: d3:0a:6b:f5:c9:87:d3:eb:6f:30:2a:cf:f7:29:b0:41:ba:57: c5:bb:cf:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3MjYxMTAvBgNVBAUTKEQ3NEFDMUI4QTMzMzUyNDNGQ0IyRjk5MDVCQzUxREJE Q0IwRTIzNkQwHhcNMjUxMTAyMTkxOTE4WhcNMjUxMTA5MTkxOTE4WjAYMRYwFAYD VQQDEw02OTA3YWViNi0wNjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIHDv+J7kGqxw9s5c1s78Sqfro0vjCrsPRHP/bkKCPbEXpVRw7G094fvnbsy agNWhFQ9CU7/axVCNzKl+EfTeASzChBf1jax/VEz5iEjhvyohzRT4XPsN3ZIijTp iEeF1g6kAxUe8z9klnGRB7dkDLiM12aj+S/5lUzTFnPKN0w2fkizIvFAWT1/OrgI FQQjvnN5zHPgTExhdbsYlZKCwVTQhNZdP7R5DMiGfJY6DfK0/6d8vuWVpXi/EQxZ otbRtDV97HrZh1Ou6mvWV4AtNeQKIp3H591uRTYgU1UeIGPejuiVnpeFjWVu4s42 HLhcsbR5n5EKGHeVwX+ir1ZBnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJnhiuF FkAZe34Pql94x2qY5SdfMB8GA1UdIwQYMBaAFNdKwbijM1JD/LL5kFvFHb3LDiNt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTcyNi82REJGQTM4QTUy RDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVrUDhzdm1RVzhVZHZjc09J MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwckJ1S016VWtQOHN2bVFXOFVkdmNzT0kyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTcyNi82REJGQTM4QTUyRDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVr UDhzdm1RVzhVZHZjc09JMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASX4mTjvORpEkYhr+C6v8e3Jf0XA4h+JPc1A4163+AmjkVnf6Zurv9 FbYQdBJArGXtlU34ucd03R7/NqONQ8gv5DygerRMHE3eN040t+mhqc00UPEqj1nt bLft1dTnqyq7aScqm4n2G1o0gd6crjIlHINfwMmnWynjgBvOgR3AK61lLsL1mE+H Oo0S9ZuybTZ9WcmBJSuYv2SpmvTj6K7JgGLvGDuvlVCAIOAgghFbbp0RjIWXeAQx XLzd72ZwNZi8Xb5NMm3xInHLB8/v99THBRjVKnb1WIRPX6INjBHfFXwJM//AxakX 7zjTCmv1yYfT628wKs/3KbBBulfFu88P -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:06 2025 by rpki-client