$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft File: b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft (raw, json) Hash identifier: AxxMmNLY3afPwrcM1OqUUzlov/mWf7NtiMx6StJ997Q= Subject key identifier: F9:B0:B8:39:9F:F3:BA:1B:F6:D4:8B:E3:E5:6F:BF:16:F0:24:C2:40 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 11EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft Manifest number: 11BD Signing time: Tue 04 Nov 2025 17:17:51 +0000 Manifest this update: Tue 04 Nov 2025 17:17:51 +0000 Manifest next update: Tue 11 Nov 2025 17:17:51 +0000 Files and hashes: 1: b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl (hash: lPmImO675TYdfjQfg33r2SBioNV6730ipIBO8em02gA=) 2: F85A5EB6C33911E9A9463781C4F9AE02.roa (hash: jot76CXrAz3dE65zS5eFuiF7pvf8X1MVAGSlp7hXRdo=) 3: 8497885E04F911E9AF13ED31C4F9AE02.roa (hash: C3b1kJVj/ZgKAe5Ws86NLC+2MF3aglPyf/qxRhLS+ZQ=) 4: 95D40AE2497311EAB4873B63C4F9AE02.roa (hash: L9KTvljF01QWUS68uL1ITUuZceQQf452UdFJmG0kCrI=) 5: F8D520505D0E11EA89C55D65C4F9AE02.roa (hash: jh4/v+GyjU9Au0Vxs0XDzRjJtWql8kiBFNvqkmZsApQ=) 6: 603AD1D0AB1211EAB4E7101BC4F9AE02.roa (hash: IlX871gTVlMjHgxawx+1RHJJOHvxDDWwU+dINDtj5G0=) 7: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (hash: 0Ni5FHtxPqtRB1YXZ5zRXDqJAM/35OEWFhDuPTdXe6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4591 (0x11ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Nov 4 17:17:51 2025 GMT Not After : Nov 11 17:17:51 2025 GMT Subject: CN=690a353f-e211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f9:6e:33:4d:bc:10:b6:85:ad:f8:27:c8:3d: e8:b9:91:2e:17:5c:b5:61:86:e2:a3:59:fd:b3:01: be:57:ab:d8:2b:94:a3:34:da:c8:8d:54:06:93:30: 1c:63:de:a0:f7:98:fc:2a:bb:b6:2c:7b:f8:e6:d2: 07:13:07:37:17:3a:dc:ce:aa:e3:28:9f:a4:b9:c6: 71:f9:40:9b:71:02:37:fd:2b:0b:ac:ac:53:fe:70: 4a:64:7e:b9:1b:0b:a8:fa:65:ce:87:78:71:63:95: 07:1f:02:04:a4:00:fd:84:90:30:6f:a7:0a:a9:9f: f3:5b:78:a6:0d:59:6b:2a:d6:1f:f4:fb:db:56:b7: 1c:c2:97:03:20:d5:07:91:6f:60:f3:26:cf:c4:a6: 17:0e:e2:fc:df:88:65:d0:bf:68:e2:8f:54:fa:3a: 87:26:05:41:89:45:35:98:f2:d5:2c:75:91:08:c7: 21:8f:d5:2f:bd:1f:78:a1:ef:09:7d:d9:47:92:77: 02:a9:ec:df:0a:ac:b2:f0:57:19:7b:e9:cb:fa:85: ec:7b:f3:24:1b:60:71:28:bb:87:56:cf:58:dd:32: 01:9b:0b:ce:31:78:56:9a:4d:ed:3c:d9:a7:e1:1a: 58:52:27:01:39:d4:a5:94:ba:68:8b:d7:88:8c:cc: b5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B0:B8:39:9F:F3:BA:1B:F6:D4:8B:E3:E5:6F:BF:16:F0:24:C2:40 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:af:ab:28:69:69:ae:a4:e8:00:73:54:75:fd:71:4f:18:25: f7:99:cd:3c:b0:26:32:24:ff:6d:7b:bb:45:fb:aa:28:a1:ef: d7:d9:8e:a9:27:4b:e6:dc:71:a0:7d:a7:01:69:f1:08:a5:42: 59:95:4e:1d:a4:f6:08:b6:2e:67:53:11:93:97:7c:92:25:db: 36:20:aa:cf:38:d2:77:85:6a:4d:d1:87:bd:5a:ff:4e:18:b3: 19:04:7c:2a:82:e0:21:f3:eb:1a:6c:38:a0:db:a1:00:15:24: 6d:b3:01:ad:54:59:e1:c6:d8:66:a5:64:11:1e:e7:f9:cf:5e: af:49:87:58:27:1e:4d:45:ce:77:5a:7e:3c:29:81:4e:f6:1f: e1:8d:c0:70:6d:a4:c0:71:cd:9c:0b:7d:31:c4:27:b6:d4:63: a7:88:83:c1:21:d0:a5:05:82:c1:ce:62:20:c0:51:43:65:d5: 97:b8:ff:27:2b:06:cb:c0:38:9a:96:77:0a:fa:21:31:03:a5: 3b:1d:43:3e:00:c2:e7:5a:f6:41:95:d8:d7:44:ee:57:6e:e2: f0:d8:f4:63:f3:ea:17:97:91:e6:82:20:bc:2a:05:3c:fd:85: f6:b6:fa:ad:e7:a0:8f:ff:8c:de:0c:db:96:b5:1f:ce:ed:ad: 9c:48:68:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjUxMTA0MTcxNzUxWhcNMjUxMTExMTcxNzUxWjAYMRYwFAYD VQQDEw02OTBhMzUzZi1lMjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PluM028ELaFrfgnyD3ouZEuF1y1YYbio1n9swG+V6vYK5SjNNrIjVQGkzAc Y96g95j8Kru2LHv45tIHEwc3FzrczqrjKJ+kucZx+UCbcQI3/SsLrKxT/nBKZH65 Gwuo+mXOh3hxY5UHHwIEpAD9hJAwb6cKqZ/zW3imDVlrKtYf9PvbVrccwpcDINUH kW9g8ybPxKYXDuL834hl0L9o4o9U+jqHJgVBiUU1mPLVLHWRCMchj9UvvR94oe8J fdlHkncCqezfCqyy8FcZe+nL+oXse/MkG2BxKLuHVs9Y3TIBmwvOMXhWmk3tPNmn 4RpYUicBOdSllLpoi9eIjMy1cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmwuDmf 87ob9tSL4+VvvxbwJMJAMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJCQy9FQkNGMTY4MjA0RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJo YkhvS1R1RHVhaUtSRHNMZ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqr6soaWmupOgAc1R1/XFPGCX3mc08sCYyJP9te7tF+6oooe/X2Y6p J0vm3HGgfacBafEIpUJZlU4dpPYIti5nUxGTl3ySJds2IKrPONJ3hWpN0Ye9Wv9O GLMZBHwqguAh8+sabDig26EAFSRtswGtVFnhxthmpWQRHuf5z16vSYdYJx5NRc53 Wn48KYFO9h/hjcBwbaTAcc2cC30xxCe21GOniIPBIdClBYLBzmIgwFFDZdWXuP8n KwbLwDialncK+iExA6U7HUM+AMLnWvZBldjXRO5XbuLw2PRj8+oXl5HmgiC8KgU8 /YX2tvqt56CP/4zeDNuWtR/O7a2cSGi0 -----END CERTIFICATE-----Generated at Wed Nov 5 04:49:18 2025 by rpki-client