$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: eDN1wX5QjLpXRzwAhgTkBCBTFzcQNZ2Xg/Q+Z8F+8m8= Subject key identifier: 42:66:20:20:18:A5:76:87:0F:90:7A:C3:86:F1:67:3D:B6:59:88:81 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 0103 Signing time: Sun 19 Oct 2025 08:00:52 +0000 Manifest this update: Sun 19 Oct 2025 08:00:52 +0000 Manifest next update: Sun 26 Oct 2025 08:00:52 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: rrQ5rvwqFddPAOgVT+NgztdurrSnZNzmBhHizsocOmA=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Oct 19 08:00:52 2025 GMT Not After : Oct 26 08:00:52 2025 GMT Subject: CN=68f49ab4-d3d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:08:8d:b7:0a:71:b4:d0:22:13:f3:d0:11:2d: 15:37:15:ce:2e:ee:4d:75:59:56:b3:9a:5d:de:4f: cb:26:d3:12:87:e7:2b:94:5d:39:c9:80:1c:dd:7a: 2c:1f:f4:7d:5c:37:8a:e2:ea:69:18:2c:bd:c7:03: f2:70:2e:44:62:c9:17:35:e3:25:85:65:37:25:8b: 94:f7:d5:d9:e7:1e:55:97:ef:eb:c1:a0:94:c4:5b: 08:3e:cf:dc:21:0d:b1:d6:d8:da:da:d6:38:f7:d8: aa:7c:d9:2f:a8:55:33:00:3e:82:ef:ea:a1:04:bf: 1b:d1:16:cc:6b:e7:71:f8:59:e9:4f:45:ea:b0:2d: d8:48:4d:0b:0a:57:10:fb:bc:ec:a9:4b:47:b1:2e: 08:b1:98:e9:dd:32:37:89:16:01:c3:d5:4a:4e:26: 60:fc:c8:9b:a2:7c:69:23:d9:ed:ea:49:06:fa:5e: 95:28:8b:a2:fc:38:32:f8:c3:87:ba:44:db:85:e4: 9e:e0:7c:dd:74:25:ae:59:14:36:04:ef:31:e6:a8: 1e:0d:28:b0:42:a0:4a:fe:06:a1:e1:a3:e2:ec:53: d1:9c:c5:0f:4d:a2:f6:0c:b9:14:04:bb:5b:7a:b5: 63:05:24:9e:ff:69:d2:6a:91:20:47:c4:75:b1:b0: 7d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:66:20:20:18:A5:76:87:0F:90:7A:C3:86:F1:67:3D:B6:59:88:81 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:8b:fe:b0:c3:96:55:ee:03:46:cd:91:20:4e:88:97:cb:86: e9:48:d8:2d:6c:72:75:91:3d:2a:21:41:98:23:10:62:d8:5d: b4:bd:35:24:6b:bf:ab:e2:87:f8:ea:82:fc:92:d6:23:ad:dc: d1:c9:9d:19:bb:d4:7c:e2:dc:6e:1b:d5:a8:9a:b5:6d:6b:ff: d8:d3:94:aa:6c:57:86:60:1c:e1:9b:60:77:f0:ad:d2:ff:8a: 24:a5:b9:ae:01:95:22:bf:eb:2f:41:30:7b:b4:98:83:9d:70: 8b:b9:0e:73:e4:12:30:79:ee:80:ab:55:e5:6d:cb:a7:1e:67: f7:da:70:0f:65:30:4a:34:86:96:f8:dd:b2:cd:b0:4c:01:8a: 44:98:73:99:d1:e0:5e:1b:28:50:f1:f3:7b:fa:8f:1b:61:06: c6:a1:4f:ad:cf:71:4a:c2:f6:f0:ae:97:74:ab:ea:6f:d4:f1: 97:58:c7:89:d4:cb:e9:e0:79:e4:9b:b3:b7:e6:cc:71:c4:ce: 8c:ba:3a:4b:63:bf:e5:47:ac:6c:a3:66:53:b2:2b:5a:f2:dd: d8:93:25:7f:2c:28:64:e7:2d:75:c5:0c:80:a5:a5:01:d1:89: 50:4a:7a:f8:da:fe:55:6a:4d:c6:51:4a:1a:a9:a4:6c:3b:ab: 97:ad:47:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUxMDE5MDgwMDUyWhcNMjUxMDI2MDgwMDUyWjAYMRYwFAYD VQQDEw02OGY0OWFiNC1kM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgiNtwpxtNAiE/PQES0VNxXOLu5NdVlWs5pd3k/LJtMSh+crlF05yYAc3Xos H/R9XDeK4uppGCy9xwPycC5EYskXNeMlhWU3JYuU99XZ5x5Vl+/rwaCUxFsIPs/c IQ2x1tja2tY499iqfNkvqFUzAD6C7+qhBL8b0RbMa+dx+FnpT0XqsC3YSE0LClcQ +7zsqUtHsS4IsZjp3TI3iRYBw9VKTiZg/MibonxpI9nt6kkG+l6VKIui/Dgy+MOH ukTbheSe4HzddCWuWRQ2BO8x5qgeDSiwQqBK/gah4aPi7FPRnMUPTaL2DLkUBLtb erVjBSSe/2nSapEgR8R1sbB9kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJmICAY pXaHD5B6w4bxZz22WYiBMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvi/6ww5ZV7gNGzZEgToiXy4bpSNgtbHJ1kT0qIUGYIxBi2F20vTUk a7+r4of46oL8ktYjrdzRyZ0Zu9R84txuG9WomrVta//Y05SqbFeGYBzhm2B38K3S /4okpbmuAZUiv+svQTB7tJiDnXCLuQ5z5BIwee6Aq1XlbcunHmf32nAPZTBKNIaW +N2yzbBMAYpEmHOZ0eBeGyhQ8fN7+o8bYQbGoU+tz3FKwvbwrpd0q+pv1PGXWMeJ 1Mvp4Hnkm7O35sxxxM6MujpLY7/lR6xso2ZTsita8t3YkyV/LChk5y11xQyApaUB 0YlQSnr42v5Vak3GUUoaqaRsO6uXrUfp -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:33 2025 by rpki-client