$ rpki-client -vvf rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft File: bcDHAorrOzsmYx9pJXBQC2DtJxk.mft (raw, json) Hash identifier: 5MXEARE6wBCeU8LPZgE2/id4NCfhjcHPTI3ndTWw0g4= Subject key identifier: E5:B8:24:59:7B:96:B1:74:71:07:D6:1F:D0:F8:2E:E1:E1:BE:D0:FD Authority key identifier: 6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 Certificate issuer: /CN=A913A81E/serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Certificate serial: 077A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft Manifest number: 0773 Signing time: Sat 18 Oct 2025 22:57:18 +0000 Manifest this update: Sat 18 Oct 2025 22:57:17 +0000 Manifest next update: Sat 25 Oct 2025 22:57:17 +0000 Files and hashes: 1: bcDHAorrOzsmYx9pJXBQC2DtJxk.crl (hash: /eLf7Z0Ghm4/7QR3fl9Wh01AIW7jux1T+p1qcYjS9vk=) 2: C562A08C34FC11EB9AA0EE7DC4F9AE02.roa (hash: epMIDVwgcHlg7RNyZoeV3XtGz9YSFqDh2xemQgN/qvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A81E, serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Validity Not Before: Oct 18 22:57:17 2025 GMT Not After : Oct 25 22:57:17 2025 GMT Subject: CN=68f41b4e-d583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e6:41:08:0e:30:8b:06:be:46:90:75:45:cc: 7f:f5:45:d3:5d:71:19:67:12:a8:3b:88:82:61:fe: 04:08:ca:c8:4d:6d:cc:15:cf:06:6d:f2:8b:01:15: 82:71:e6:65:87:85:c7:41:0a:fb:36:b9:63:18:2e: f4:2a:13:d8:58:73:fc:ba:45:c6:ed:8c:cb:24:66: 60:e9:45:95:f0:d7:2b:68:ce:38:0a:0e:89:20:3e: 33:ae:6e:c3:fb:04:27:9b:6a:df:44:59:b3:fa:bd: 9c:e7:87:46:6d:48:45:07:2e:d1:10:a1:60:24:59: 28:72:2a:ff:54:94:19:22:a1:e6:f3:82:56:43:63: 68:3b:ca:d6:b0:dd:ed:47:a7:bb:f7:29:c1:f7:00: 94:12:85:c1:fb:2b:6a:ee:88:eb:04:81:44:45:fc: 2d:59:89:17:3f:ea:ff:5c:a1:7b:dc:07:83:df:e2: 91:19:52:0f:2c:fb:22:a3:9e:46:45:67:58:cd:9c: 84:7f:ec:b7:77:1b:b9:91:74:13:86:79:50:a4:e1: 7a:60:eb:37:ca:dc:51:58:eb:0f:62:65:5c:f4:de: 98:a8:0e:b9:dd:74:3a:e0:3c:97:bf:32:27:bd:7a: 02:b6:b4:19:c1:3f:ea:8d:d0:dd:c1:56:48:5e:48: 08:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B8:24:59:7B:96:B1:74:71:07:D6:1F:D0:F8:2E:E1:E1:BE:D0:FD X509v3 Authority Key Identifier: keyid:6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f9:dd:ea:81:ec:86:c4:51:40:c5:da:44:98:70:4d:d2:09: 41:21:fa:29:e4:b3:19:90:58:3e:a5:a4:75:08:bc:18:29:4c: 36:04:d3:4d:16:bb:af:2f:b5:8b:a0:fc:15:a9:f1:53:b3:33: 93:79:d9:a6:be:8c:e1:17:90:58:8d:a6:6c:23:24:be:2f:9d: fe:8b:78:42:66:38:8e:79:fd:eb:f7:58:76:da:f9:60:5f:d0: a9:ae:a2:a3:be:af:19:2c:fe:f9:64:be:93:5f:80:4f:ad:cc: 03:27:75:a0:66:85:07:ba:74:4b:c4:fc:c9:2c:24:cf:1b:f5: e9:91:4e:73:bd:d2:4d:c3:c7:5e:25:a0:06:01:c7:c7:2d:32: eb:81:77:37:05:e7:38:ef:39:23:46:e1:db:6a:6f:d3:39:1a: 3b:0f:4f:10:49:5b:f6:17:b6:2b:03:50:c3:a6:bf:b1:e2:0f: 46:33:21:cf:d7:8e:5c:0a:77:6c:78:a4:b4:b0:f6:68:96:98: 63:34:8a:79:66:7d:5c:b1:d3:45:96:8a:e6:a9:52:cc:04:5d: b7:5c:43:73:cd:d5:5b:25:ab:02:b8:70:79:a6:15:9a:f7:71: d9:a5:b5:61:cb:64:99:fb:6b:b3:04:42:18:2d:b9:59:3e:68: 61:e2:ed:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MUUxMTAvBgNVBAUTKDZEQzBDNzAyOEFFQjNCM0IyNjYzMUY2OTI1NzA1MDBC NjBFRDI3MTkwHhcNMjUxMDE4MjI1NzE3WhcNMjUxMDI1MjI1NzE3WjAYMRYwFAYD VQQDEw02OGY0MWI0ZS1kNTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuZBCA4wiwa+RpB1Rcx/9UXTXXEZZxKoO4iCYf4ECMrITW3MFc8GbfKLARWC ceZlh4XHQQr7NrljGC70KhPYWHP8ukXG7YzLJGZg6UWV8NcraM44Cg6JID4zrm7D +wQnm2rfRFmz+r2c54dGbUhFBy7REKFgJFkocir/VJQZIqHm84JWQ2NoO8rWsN3t R6e79ynB9wCUEoXB+ytq7ojrBIFERfwtWYkXP+r/XKF73AeD3+KRGVIPLPsio55G RWdYzZyEf+y3dxu5kXQThnlQpOF6YOs3ytxRWOsPYmVc9N6YqA653XQ64DyXvzIn vXoCtrQZwT/qjdDdwVZIXkgIMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOW4JFl7 lrF0cQfWH9D4LuHhvtD9MB8GA1UdIwQYMBaAFG3AxwKK6zs7JmMfaSVwUAtg7ScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgxRS85MUM5NTU5QzM0 RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96c21ZeDlwSlhCUUMyRHRK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjREhBb3JyT3pzbVl4OXBKWEJRQzJEdEp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgxRS85MUM5NTU5QzM0RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96 c21ZeDlwSlhCUUMyRHRKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2+d3qgeyGxFFAxdpEmHBN0glBIfop5LMZkFg+paR1CLwYKUw2BNNN FruvL7WLoPwVqfFTszOTedmmvozhF5BYjaZsIyS+L53+i3hCZjiOef3r91h22vlg X9CprqKjvq8ZLP75ZL6TX4BPrcwDJ3WgZoUHunRLxPzJLCTPG/XpkU5zvdJNw8de JaAGAcfHLTLrgXc3Bec47zkjRuHbam/TORo7D08QSVv2F7YrA1DDpr+x4g9GMyHP 145cCndseKS0sPZolphjNIp5Zn1csdNFlormqVLMBF23XENzzdVbJasCuHB5phWa 93HZpbVhy2SZ+2uzBEIYLblZPmhh4u2M -----END CERTIFICATE-----Generated at Mon Oct 20 04:47:01 2025 by rpki-client