$ rpki-client -vvf rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft File: bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft (raw, json) Hash identifier: KEqtfcIX2/k5UKymE6Fy3jJaXfj+wgMF6mj89KiZayU= Subject key identifier: 64:09:85:96:90:81:BE:1A:8C:59:48:E9:D6:D9:F9:FA:E4:F8:7A:F8 Authority key identifier: 6E:1F:12:40:9C:F3:9B:F9:13:C4:32:B5:87:6F:FA:FD:9F:D0:61:95 Certificate issuer: /CN=A919243F/serialNumber=6E1F12409CF39BF913C432B5876FFAFD9FD06195 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft Manifest number: 04 Signing time: Mon 03 Nov 2025 08:05:20 +0000 Manifest this update: Mon 03 Nov 2025 08:05:20 +0000 Manifest next update: Mon 10 Nov 2025 08:05:20 +0000 Files and hashes: 1: bh8SQJzzm_kTxDK1h2_6_Z_QYZU.crl (hash: 5TsOnFBj/fF5aTxH6dJrrsqMzCadgW1EZt8qkbP2/SA=) 2: 384B24AAB65511F0AE39E37FC4F9AE02.roa (hash: IiFDFyUtI+I6691ygwzpABiGbW4Bf29Vv0LhgY1Qc78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.crl rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919243F, serialNumber=6E1F12409CF39BF913C432B5876FFAFD9FD06195 Validity Not Before: Nov 3 08:05:20 2025 GMT Not After : Nov 10 08:05:20 2025 GMT Subject: CN=69086240-2d1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4d:c0:ae:ca:e1:a0:27:ad:5e:d0:f3:d7:b7: b4:b8:d4:cf:c2:85:ed:79:09:53:13:78:a7:e0:ad: 6c:d0:3e:5d:f2:7c:05:59:2b:c0:6a:c3:d4:5d:cb: e5:b0:e4:ab:5c:b3:4f:15:a9:da:30:a2:e4:6f:47: b7:0d:f1:9f:f1:69:43:82:05:32:f0:6f:34:5e:c5: 4a:65:eb:7d:1c:ae:24:d0:e4:9e:b9:e4:b4:50:26: 8f:6b:61:4a:4d:86:e5:a0:25:16:76:34:17:da:ba: 8c:d4:55:75:c1:4d:c6:a9:58:b0:9f:38:5f:01:9e: b7:98:c4:ee:f5:07:10:51:ce:df:0b:35:05:b6:01: 08:82:ad:49:65:4d:d4:1c:8e:fa:a0:62:bf:8e:16: f5:cb:f5:df:2d:3a:6f:4d:0a:a6:3d:0b:05:46:4c: 04:ea:f7:e8:61:dd:75:f6:95:e0:d7:4f:4a:6c:e1: 58:c6:f1:1e:fe:ef:48:f9:cf:d0:0e:64:db:af:df: 9e:59:20:f5:e2:e7:cc:47:55:6c:06:cf:c1:55:2d: a4:ae:30:ab:34:2d:22:d9:79:e8:93:16:64:04:ee: b0:41:e1:7f:03:a6:fa:0e:f9:cf:5e:f6:6f:62:9e: bb:f9:f1:c8:45:11:08:e8:dd:52:d9:fb:66:22:c3: 07:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:09:85:96:90:81:BE:1A:8C:59:48:E9:D6:D9:F9:FA:E4:F8:7A:F8 X509v3 Authority Key Identifier: keyid:6E:1F:12:40:9C:F3:9B:F9:13:C4:32:B5:87:6F:FA:FD:9F:D0:61:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:a7:c3:89:7b:48:3f:7e:66:ac:b7:5e:04:f0:4d:06:65:9d: 30:7c:cc:2f:72:86:c7:54:8e:59:8d:1b:96:cc:1c:08:51:32: 86:18:ed:81:0c:a5:36:cd:93:ea:1a:be:9c:ac:41:8a:70:70: 0e:52:28:64:d8:38:0b:6c:23:28:f7:03:43:61:b3:b0:b5:40: 37:b6:67:9b:87:8c:ef:1a:42:51:c8:c0:2c:99:cd:01:40:33: 37:94:c3:6a:78:85:6a:9a:62:af:99:c4:b3:86:e2:6f:04:43: 78:bd:78:77:3d:13:c0:19:d6:3e:58:1c:90:8e:48:ac:bc:69: 2f:fc:36:f2:e9:3e:19:09:37:c6:e2:62:b7:81:2e:69:f2:13: 92:3f:db:4d:97:71:88:ca:cf:b7:ca:4d:4e:85:ed:d1:b2:25: 08:63:a5:15:ed:20:8a:86:f5:80:da:60:a9:32:63:d5:f3:76: ed:94:03:c5:74:48:6d:51:0a:f3:92:be:d0:fd:33:59:b0:f8: d3:41:cf:5d:97:40:6f:2f:4d:7e:d1:6a:30:a9:72:31:17:7b: 44:12:b7:aa:c1:fc:5d:f8:24:50:62:bb:4d:e7:1a:47:27:cb: 7c:9e:46:28:07:0f:d8:06:43:66:09:ba:7c:04:c3:d5:c6:a9: 96:56:6b:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MjQzRjExMC8GA1UEBRMoNkUxRjEyNDA5Q0YzOUJGOTEzQzQzMkI1ODc2RkZBRkQ5 RkQwNjE5NTAeFw0yNTExMDMwODA1MjBaFw0yNTExMTAwODA1MjBaMBgxFjAUBgNV BAMTDTY5MDg2MjQwLTJkMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDTcCuyuGgJ61e0PPXt7S41M/Che15CVMTeKfgrWzQPl3yfAVZK8Bqw9Rdy+Ww 5Ktcs08VqdowouRvR7cN8Z/xaUOCBTLwbzRexUpl630criTQ5J655LRQJo9rYUpN huWgJRZ2NBfauozUVXXBTcapWLCfOF8BnreYxO71BxBRzt8LNQW2AQiCrUllTdQc jvqgYr+OFvXL9d8tOm9NCqY9CwVGTATq9+hh3XX2leDXT0ps4VjG8R7+70j5z9AO ZNuv355ZIPXi58xHVWwGz8FVLaSuMKs0LSLZeeiTFmQE7rBB4X8DpvoO+c9e9m9i nrv58chFEQjo3VLZ+2YiwwcdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZAmFlpCB vhqMWUjp1tn5+uT4evgwHwYDVR0jBBgwFoAUbh8SQJzzm/kTxDK1h2/6/Z/QYZUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyNDNGL0U4RENBNjMyQjY1 NDExRjA5RUNGNEI3RkM0RjlBRTAyL2JoOFNRSnp6bV9rVHhESzFoMl82X1pfUVla VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmg4U1FKenptX2tUeERLMWgyXzZfWl9RWVpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky NDNGL0U4RENBNjMyQjY1NDExRjA5RUNGNEI3RkM0RjlBRTAyL2JoOFNRSnp6bV9r VHhESzFoMl82X1pfUVlaVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKKnw4l7SD9+Zqy3XgTwTQZlnTB8zC9yhsdUjlmNG5bMHAhRMoYY7YEM pTbNk+oavpysQYpwcA5SKGTYOAtsIyj3A0Nhs7C1QDe2Z5uHjO8aQlHIwCyZzQFA MzeUw2p4hWqaYq+ZxLOG4m8EQ3i9eHc9E8AZ1j5YHJCOSKy8aS/8NvLpPhkJN8bi YreBLmnyE5I/202XcYjKz7fKTU6F7dGyJQhjpRXtIIqG9YDaYKkyY9Xzdu2UA8V0 SG1RCvOSvtD9M1mw+NNBz12XQG8vTX7RajCpcjEXe0QSt6rB/F34JFBiu03nGkcn y3yeRigHD9gGQ2YJunwEw9XGqZZWaxQ= -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:50 2025 by rpki-client