$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: ohTqx4mgFsKN3zJURKWuGM7XhQESmM0zgJnK2BxMspQ= Subject key identifier: A8:26:77:9D:ED:D1:88:E4:C0:9E:5B:32:82:25:96:15:3C:D6:BA:9E Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 0269 Signing time: Wed 05 Nov 2025 01:46:42 +0000 Manifest this update: Wed 05 Nov 2025 01:46:41 +0000 Manifest next update: Wed 12 Nov 2025 01:46:41 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: nr3qVWOR7gpR8nrIOXqNWMJScIplOmVVneDbJol2dy0=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: 8x2SsfQuIT881cDaqWjgKUso9bJl3sYc8ulFMGO/wmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Nov 5 01:46:41 2025 GMT Not After : Nov 12 01:46:41 2025 GMT Subject: CN=690aac81-0358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ea:c3:cc:9b:66:22:af:74:17:14:8c:be:13: e2:da:f3:ba:de:f5:67:fb:8b:02:25:b3:c9:8b:ca: 2a:17:87:3c:61:70:25:93:f5:db:08:2b:c1:67:b5: 2f:f7:8c:b5:23:9d:ec:35:e9:e8:1a:94:e3:e6:30: 68:4f:8e:9f:43:f8:8d:11:38:c8:1c:5f:5d:e9:6e: 8f:93:94:00:72:99:3e:24:14:9e:2f:a3:cf:c7:7b: 00:fe:d1:bf:c4:60:3a:5d:f2:53:8f:f0:ee:ad:79: c3:c2:75:d7:3b:c5:1b:df:15:07:8f:c4:de:45:f8: e8:8c:f4:c8:e1:f5:ef:f5:6a:f5:50:eb:4d:a0:42: 50:af:17:e3:08:25:b7:0a:47:25:53:3c:e3:09:7b: 4d:5d:1f:89:0f:a4:3b:e9:f3:99:da:e5:9c:6f:f1: 30:57:5a:7b:19:f3:ee:e1:76:ed:0a:ed:d2:8f:fa: 88:c8:d3:68:ed:db:9e:c3:20:ae:c2:5d:87:76:fe: 7b:4f:6a:13:32:b3:86:74:bf:cf:d7:de:0b:2d:c8: 30:4d:9f:53:8e:d5:63:48:66:0c:07:a4:d5:ad:1d: bb:6e:ca:72:a2:59:26:2c:7d:02:a5:55:bd:66:06: e2:2a:e3:ee:9b:b9:c5:41:b2:1b:ee:d5:15:e2:d8: d7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:26:77:9D:ED:D1:88:E4:C0:9E:5B:32:82:25:96:15:3C:D6:BA:9E X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:33:e7:1c:c6:0a:54:0e:c5:de:8e:de:88:f0:77:8e:9a:9d: c8:d1:cc:52:81:a7:be:8e:c6:b7:de:6d:6d:e1:1c:cb:3a:37: 88:a1:d0:b8:66:d0:38:10:5f:f4:56:74:88:52:3e:54:d8:67: ba:5e:66:cc:a9:81:47:e7:c4:27:ba:fa:fb:69:89:1c:27:d1: ba:c0:e7:52:1d:8c:61:18:e4:43:7a:3c:10:32:fa:94:99:4e: e4:09:08:a0:3f:ef:fa:ed:11:11:df:a2:59:ff:96:22:00:5f: 94:d6:ff:3c:a7:b6:96:e2:55:ac:cd:ad:2a:a9:d2:c0:0d:99: 89:4c:c0:97:9a:00:17:3b:78:7e:bd:21:48:bb:3e:58:9f:b7: a4:86:5c:05:fc:fe:b4:b4:7e:ec:5f:62:6b:af:67:42:ff:6b: 73:e0:f0:4b:d2:ae:e1:e8:d9:49:92:7a:41:ec:53:b3:b5:25: 96:86:ba:9f:dc:cd:c4:fa:2d:43:03:9b:0c:bf:12:52:46:21: 28:f8:ab:7c:ae:25:81:ee:7d:7b:18:d1:24:f4:04:12:c7:d7: 1c:ec:2d:5e:e8:9b:74:8a:74:4f:ff:d3:97:50:9c:35:83:40: b5:0c:29:9d:35:ee:d0:8b:b8:b4:ab:cf:2c:14:8f:b7:43:1c: 8f:ba:cb:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjUxMTA1MDE0NjQxWhcNMjUxMTEyMDE0NjQxWjAYMRYwFAYD VQQDEw02OTBhYWM4MS0wMzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+rDzJtmIq90FxSMvhPi2vO63vVn+4sCJbPJi8oqF4c8YXAlk/XbCCvBZ7Uv 94y1I53sNenoGpTj5jBoT46fQ/iNETjIHF9d6W6Pk5QAcpk+JBSeL6PPx3sA/tG/ xGA6XfJTj/DurXnDwnXXO8Ub3xUHj8TeRfjojPTI4fXv9Wr1UOtNoEJQrxfjCCW3 CkclUzzjCXtNXR+JD6Q76fOZ2uWcb/EwV1p7GfPu4XbtCu3Sj/qIyNNo7duewyCu wl2Hdv57T2oTMrOGdL/P194LLcgwTZ9TjtVjSGYMB6TVrR27bspyolkmLH0CpVW9 ZgbiKuPum7nFQbIb7tUV4tjXOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgmd53t 0YjkwJ5bMoIllhU81rqeMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPM+ccxgpUDsXejt6I8HeOmp3I0cxSgae+jsa33m1t4RzLOjeIodC4 ZtA4EF/0VnSIUj5U2Ge6XmbMqYFH58Qnuvr7aYkcJ9G6wOdSHYxhGORDejwQMvqU mU7kCQigP+/67RER36JZ/5YiAF+U1v88p7aW4lWsza0qqdLADZmJTMCXmgAXO3h+ vSFIuz5Yn7ekhlwF/P60tH7sX2Jrr2dC/2tz4PBL0q7h6NlJknpB7FOztSWWhrqf 3M3E+i1DA5sMvxJSRiEo+Kt8riWB7n17GNEk9AQSx9cc7C1e6Jt0inRP/9OXUJw1 g0C1DCmdNe7Qi7i0q88sFI+3QxyPustR -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:23 2025 by rpki-client