$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: 7qk+OGkYC0Ha3NJAMKQqcucif3dmyQu3aBEWCVD6AOo= Subject key identifier: DD:F3:F7:98:3A:D7:87:34:36:6F:A2:50:EF:F4:AD:19:E6:EB:0A:C5 Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: E4 Signing time: Sun 19 Oct 2025 08:28:06 +0000 Manifest this update: Sun 19 Oct 2025 08:28:05 +0000 Manifest next update: Sun 26 Oct 2025 08:28:05 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: 82+Ib+5IQePeUV5dKykGclwJqT3r87C8EPQlNoKZgsA=) 2: 52AE08D4ABCF11F083B9610FC4F9AE02.roa (hash: NMTDk1bikkd+fwdk2/Llio0zL8hpaBeHBKsi3D4d+4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Oct 19 08:28:05 2025 GMT Not After : Oct 26 08:28:05 2025 GMT Subject: CN=68f4a116-a286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:57:38:c1:fb:01:94:e5:03:27:b5:a6:56: 77:ec:11:22:55:13:55:b6:bb:25:05:13:e7:f4:0d: 49:e5:65:f0:2c:98:95:22:4a:9b:77:3d:dc:72:3d: 08:10:4b:fc:fc:82:98:2c:24:18:6c:d4:e3:d7:d1: c5:09:42:33:f2:eb:fc:0a:b0:f4:49:70:ad:f9:72: 34:7f:0c:1a:23:a4:3c:45:2a:7e:6e:07:3b:23:fc: d1:dc:d0:75:6b:6b:8f:ad:8e:da:e1:b8:6c:38:d8: 42:ad:25:8f:48:57:f2:c4:f7:0c:36:88:46:d7:5e: f6:9f:78:5c:26:ea:51:c7:da:65:99:45:5e:9f:02: 21:ff:c2:24:dc:64:ef:24:6d:38:57:4e:f3:69:22: 1a:70:3e:0a:d5:ad:c2:8d:0a:86:8f:c2:b7:56:b0: 49:20:08:85:71:20:15:f6:c1:a4:01:87:5a:1b:50: eb:2c:95:77:8d:05:63:74:99:2a:94:fb:2e:1e:0c: 17:70:d9:66:43:59:ef:e9:7f:91:27:83:f7:a5:d1: d6:1b:e3:7f:cc:d9:4b:98:79:fd:93:05:6c:b5:c8: 92:8c:74:cc:b6:7a:c5:e7:1c:25:42:0d:fd:10:f6: 21:db:09:91:4d:1e:85:6e:57:21:40:41:b6:26:63: c5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F3:F7:98:3A:D7:87:34:36:6F:A2:50:EF:F4:AD:19:E6:EB:0A:C5 X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:83:5b:40:c7:05:e3:7d:c8:e1:53:92:00:de:9e:7d:f4:04: 99:99:cb:24:40:5a:02:0b:31:fd:1a:64:f0:2e:cb:7e:b9:7f: 1a:e3:26:3c:50:54:b2:71:56:41:10:06:f5:c2:74:02:81:75: fc:3d:e5:c4:d8:ae:ae:c1:74:ee:30:55:dd:a7:6c:5a:fe:3c: d1:5d:da:bc:7e:86:dc:73:15:95:1e:ab:a6:5e:42:39:e7:e0: 59:fa:7d:53:00:66:a6:83:f4:09:6f:82:72:5d:4b:96:bc:ea: 2e:20:3f:14:87:dc:e6:66:0f:3d:95:85:01:2b:c4:a0:07:86: ff:6b:8f:0e:d2:1c:75:ae:8e:2b:03:7c:82:0e:18:39:04:56: 24:57:cf:1f:57:c0:8d:6b:78:ff:59:ea:a4:d0:7e:5c:be:e1: b5:2d:e8:02:1d:da:02:19:0b:a9:0f:6e:11:f7:0d:19:8a:93: 9e:1f:f4:8e:88:7a:86:49:b0:cc:74:45:5c:fb:84:a1:cb:98: bf:6f:36:ec:6a:c8:f0:fb:43:e9:a7:9f:1a:81:d6:7d:ef:64: c0:c5:3e:07:0d:41:5f:ff:d5:34:2f:7a:41:70:af:d7:aa:10: 16:ff:28:8e:55:2b:bd:bf:d5:b5:c8:6c:2e:79:72:cd:1d:7c: a2:ff:f3:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjUxMDE5MDgyODA1WhcNMjUxMDI2MDgyODA1WjAYMRYwFAYD VQQDEw02OGY0YTExNi1hMjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3ZXOMH7AZTlAye1plZ37BEiVRNVtrslBRPn9A1J5WXwLJiVIkqbdz3ccj0I EEv8/IKYLCQYbNTj19HFCUIz8uv8CrD0SXCt+XI0fwwaI6Q8RSp+bgc7I/zR3NB1 a2uPrY7a4bhsONhCrSWPSFfyxPcMNohG1172n3hcJupRx9plmUVenwIh/8Ik3GTv JG04V07zaSIacD4K1a3CjQqGj8K3VrBJIAiFcSAV9sGkAYdaG1DrLJV3jQVjdJkq lPsuHgwXcNlmQ1nv6X+RJ4P3pdHWG+N/zNlLmHn9kwVstciSjHTMtnrF5xwlQg39 EPYh2wmRTR6FblchQEG2JmPFdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3z95g6 14c0Nm+iUO/0rRnm6wrFMB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQg1tAxwXjfcjhU5IA3p599ASZmcskQFoCCzH9GmTwLst+uX8a4yY8 UFSycVZBEAb1wnQCgXX8PeXE2K6uwXTuMFXdp2xa/jzRXdq8fobccxWVHqumXkI5 5+BZ+n1TAGamg/QJb4JyXUuWvOouID8Uh9zmZg89lYUBK8SgB4b/a48O0hx1ro4r A3yCDhg5BFYkV88fV8CNa3j/Weqk0H5cvuG1LegCHdoCGQupD24R9w0ZipOeH/SO iHqGSbDMdEVc+4Shy5i/bzbsasjw+0Ppp58agdZ972TAxT4HDUFf/9U0L3pBcK/X qhAW/yiOVSu9v9W1yGwueXLNHXyi//O1 -----END CERTIFICATE-----Generated at Mon Oct 20 21:42:40 2025 by rpki-client