$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: jTYfy/NGa46PV3pIWcYYVPooEBJxcrclr3O5a5NPvmU= Subject key identifier: D1:D6:D6:A3:B9:AA:DE:50:5A:33:5A:F3:11:54:0D:15:02:18:3E:D5 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: A3 Signing time: Sun 19 Oct 2025 09:29:34 +0000 Manifest this update: Sun 19 Oct 2025 09:29:33 +0000 Manifest next update: Sun 26 Oct 2025 09:29:33 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: z2ozodwkLIEcqzvYHWKhmgQIuKtp71LyCdCgq3na4uU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Oct 19 09:29:33 2025 GMT Not After : Oct 26 09:29:33 2025 GMT Subject: CN=68f4af7d-e07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2d:82:12:bb:ee:81:07:e9:d7:52:07:2c:81: 25:3d:86:38:66:6f:fa:29:ed:59:93:8f:4e:cf:a8: 07:6e:93:f4:48:fa:5a:6b:bd:78:69:66:83:59:dc: 97:98:a6:27:50:f7:a9:bc:ca:36:a5:d7:6d:a9:e4: 3f:46:a7:aa:ed:d4:6e:aa:24:28:7d:18:f7:71:f3: 98:4c:e0:b2:cb:cb:31:f6:b9:d7:94:98:50:98:f3: 30:2b:e6:8b:b1:1e:7d:20:ac:29:8f:33:87:39:1c: 42:bb:31:e1:82:a8:4d:49:7a:e0:e6:fa:86:4c:42: aa:e4:58:75:e9:b8:3b:e8:7c:74:e8:46:c5:d1:f5: ac:b1:d0:23:0f:47:4e:bb:80:21:95:dd:11:0f:6e: 0f:c3:02:e9:97:41:6f:5d:47:34:75:a6:b8:b6:a7: 7b:12:a1:4e:04:14:4a:6f:98:07:99:4d:3e:67:0f: 83:ba:f5:4e:e5:8c:6e:56:0f:07:26:72:7c:26:d7: 8b:7e:7c:b2:77:59:cf:e4:4e:aa:76:1e:68:5b:54: 44:27:8d:dc:ef:70:82:a4:17:3c:43:1d:e7:dd:b1: 4b:85:04:e9:02:d5:03:a8:41:9b:ae:a5:b4:d9:bf: e3:8f:82:40:83:df:78:f6:87:f0:1a:f8:3b:d6:7a: 23:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D6:D6:A3:B9:AA:DE:50:5A:33:5A:F3:11:54:0D:15:02:18:3E:D5 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:1f:84:67:8d:b6:e5:fb:30:24:80:03:e8:c3:4a:d4:43:a2: 4c:b6:ea:38:34:2f:73:d7:1d:ad:52:cd:bd:4d:85:20:fe:d3: fb:63:03:d6:38:5c:f8:28:7b:e6:41:b9:9e:3b:c1:d4:e2:80: 6f:7b:4b:f5:c8:e5:d6:62:04:74:a3:25:aa:23:33:96:66:08: f1:da:c5:8e:8f:db:f2:65:1d:7f:34:7c:a6:d8:e6:e4:d8:b0: 14:a0:e0:8f:22:38:af:f9:d9:4b:f1:52:c7:53:8f:47:29:8b: 13:d0:d4:a6:ba:72:69:e1:15:45:0b:41:a5:bd:a0:ed:af:4e: b9:b7:d3:25:21:1c:99:5c:99:97:de:62:1a:10:73:a0:62:9a: 2d:c2:e6:22:37:fd:ef:cd:2f:37:3d:7b:17:1d:9d:1a:7e:9a: d5:53:6e:ca:f5:74:fa:67:3c:03:70:c3:aa:72:af:9f:02:9e: 89:5d:2e:69:4e:63:44:5c:56:f8:0a:73:01:d4:0a:63:43:5c: 41:0f:3f:ae:f7:6b:fe:77:b9:ba:9d:02:05:fb:27:df:df:4a: 40:49:e5:d6:58:d8:94:1f:49:1e:b3:3d:43:5b:50:fb:e7:c8: ad:f4:a3:33:43:73:cb:0a:11:06:54:86:17:2c:76:5d:09:97: e9:1b:12:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDZDMTFGODNCOUE4Q0JERDIxNTMyRERGMEVBNjFERTkz ODhEMTNDNkIwHhcNMjUxMDE5MDkyOTMzWhcNMjUxMDI2MDkyOTMzWjAYMRYwFAYD VQQDEw02OGY0YWY3ZC1lMDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6y2CErvugQfp11IHLIElPYY4Zm/6Ke1Zk49Oz6gHbpP0SPpaa714aWaDWdyX mKYnUPepvMo2pddtqeQ/Rqeq7dRuqiQofRj3cfOYTOCyy8sx9rnXlJhQmPMwK+aL sR59IKwpjzOHORxCuzHhgqhNSXrg5vqGTEKq5Fh16bg76Hx06EbF0fWssdAjD0dO u4Ahld0RD24PwwLpl0FvXUc0daa4tqd7EqFOBBRKb5gHmU0+Zw+DuvVO5YxuVg8H JnJ8JteLfnyyd1nP5E6qdh5oW1REJ43c73CCpBc8Qx3n3bFLhQTpAtUDqEGbrqW0 2b/jj4JAg9949ofwGvg71noj1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHW1qO5 qt5QWjNa8xFUDRUCGD7VMB8GA1UdIwQYMBaAFGwR+DuajL3SFTLd8Oph3pOI0Txr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82RjYyODM4OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZkSVZNdDN3Nm1IZWs0alJQ R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82RjYyODM4OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZk SVZNdDN3Nm1IZWs0alJQR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmH4Rnjbbl+zAkgAPow0rUQ6JMtuo4NC9z1x2tUs29TYUg/tP7YwPW OFz4KHvmQbmeO8HU4oBve0v1yOXWYgR0oyWqIzOWZgjx2sWOj9vyZR1/NHym2Obk 2LAUoOCPIjiv+dlL8VLHU49HKYsT0NSmunJp4RVFC0GlvaDtr065t9MlIRyZXJmX 3mIaEHOgYpotwuYiN/3vzS83PXsXHZ0afprVU27K9XT6ZzwDcMOqcq+fAp6JXS5p TmNEXFb4CnMB1ApjQ1xBDz+u92v+d7m6nQIF+yff30pASeXWWNiUH0kesz1DW1D7 58it9KMzQ3PLChEGVIYXLHZdCZfpGxI0 -----END CERTIFICATE-----Generated at Mon Oct 20 11:39:33 2025 by rpki-client