$ rpki-client -vvf rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft (raw, json) Hash identifier: uc7icvJi7EXXbyDc3QEIKTG7djZ3Cfy0RT72cybVy6o= Subject key identifier: 15:D9:F2:E6:C6:AD:20:44:13:32:AC:8A:E3:48:75:39:7C:E7:B6:10 Authority key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A Certificate issuer: /CN=A912978E/serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft Manifest number: 0196 Signing time: Wed 05 Nov 2025 03:36:36 +0000 Manifest this update: Wed 05 Nov 2025 03:36:36 +0000 Manifest next update: Wed 12 Nov 2025 03:36:36 +0000 Files and hashes: 1: bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl (hash: +KxWdcvmKoLvFhzG9Jpek9Sg84ZN8H++MYtiWD5T4y0=) 2: 59923F2CA72011EEA63ABF4AC4F9AE02.roa (hash: eNZ801LzfUJJfFcQXfd+LEPeNYyxq0IQnV6OW/T3oK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912978E, serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Validity Not Before: Nov 5 03:36:36 2025 GMT Not After : Nov 12 03:36:36 2025 GMT Subject: CN=690ac644-77a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:53:5e:ad:66:99:55:7b:d6:f2:1a:5d:47:61: 6c:4b:44:94:95:ec:21:c9:ec:69:18:6e:7d:bd:07: 55:dc:5d:b8:da:c0:cf:a0:68:09:18:02:f8:f3:f7: ad:c6:dc:f1:ea:4d:3f:a4:bc:64:9b:d0:c5:39:b5: fb:2a:f3:e2:f5:55:b3:cc:03:2b:78:5c:32:ef:34: 82:18:44:a5:bb:ce:0b:85:be:84:e9:87:18:30:8a: d9:de:e2:52:a4:30:7b:cf:f1:7a:80:41:42:ed:cb: 81:03:5d:26:e5:4d:0c:23:d2:f4:94:16:cb:26:10: 8c:32:41:d8:5e:c2:1d:0a:52:cd:ef:55:9f:e1:af: 8d:b7:d6:61:f1:25:c2:dd:25:cb:cb:62:59:90:96: 36:79:0a:8a:0f:d1:fa:4c:d7:bd:9b:b7:94:c3:b7: 9d:93:69:2f:8f:84:c8:53:c7:66:ef:f7:36:d6:67: a3:6a:21:b6:04:76:a1:99:f2:0d:cc:98:b2:9d:75: 7e:fc:70:df:43:1b:c0:8e:46:a0:57:b3:6d:de:a1: 4d:c4:7e:dd:6a:ce:cf:b5:f0:72:26:79:c0:3f:3d: d0:4a:58:9c:d5:9b:d5:1f:91:d9:95:bd:94:15:64: 34:6b:43:bf:ec:b8:61:ed:04:6d:f2:27:cb:c4:27: b4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D9:F2:E6:C6:AD:20:44:13:32:AC:8A:E3:48:75:39:7C:E7:B6:10 X509v3 Authority Key Identifier: keyid:6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:56:4c:ca:4d:6f:7d:bc:87:8d:f6:18:87:89:7f:b6:31:55: 08:85:0a:3a:ec:9a:32:b2:8c:0b:4a:17:fb:6b:3c:e1:eb:af: 95:8a:ae:43:c0:47:11:aa:22:1e:1c:69:2b:32:b0:1b:a0:ae: 90:8a:64:73:4b:61:16:f2:74:60:b1:40:9c:8f:57:84:79:ef: ad:b0:64:01:7b:36:16:82:5f:41:c4:33:61:29:62:fc:c6:68: 14:12:6d:de:1c:f2:0f:56:7d:56:71:78:79:47:64:95:32:cf: 61:6e:c1:c6:67:3a:99:41:db:96:80:40:40:ce:71:8d:38:7f: 98:7d:c3:8b:2d:07:e7:df:31:9f:79:6b:ee:65:1f:9b:1b:52: d0:b4:b4:e9:c7:8c:7b:c3:32:ab:71:3c:ef:8a:b8:11:fe:cd: 8e:4d:c1:2e:a7:25:35:3b:a0:b2:be:7e:64:a7:79:1a:ea:d5: e2:df:73:02:40:79:9b:c2:45:2d:08:64:79:8c:58:d9:95:91: 55:1a:c4:9d:13:19:2d:47:c6:1f:f0:e7:68:1a:07:8f:49:81: ee:64:02:82:ab:30:db:c2:39:20:57:52:2a:4f:c4:a9:c0:97: 81:6b:d9:3b:bf:8f:2b:47:b0:0f:35:03:68:d3:04:98:70:d7: 6a:73:ff:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OEUxMTAvBgNVBAUTKDZERjA5MzU2NjBCNTI0RDJBODA4MDY0MzY4QjBBRkM1 NjUzOEE2OUEwHhcNMjUxMTA1MDMzNjM2WhcNMjUxMTEyMDMzNjM2WjAYMRYwFAYD VQQDEw02OTBhYzY0NC03N2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA61NerWaZVXvW8hpdR2FsS0SUlewhyexpGG59vQdV3F242sDPoGgJGAL48/et xtzx6k0/pLxkm9DFObX7KvPi9VWzzAMreFwy7zSCGESlu84Lhb6E6YcYMIrZ3uJS pDB7z/F6gEFC7cuBA10m5U0MI9L0lBbLJhCMMkHYXsIdClLN71Wf4a+Nt9Zh8SXC 3SXLy2JZkJY2eQqKD9H6TNe9m7eUw7edk2kvj4TIU8dm7/c21mejaiG2BHahmfIN zJiynXV+/HDfQxvAjkagV7Nt3qFNxH7das7PtfByJnnAPz3QSlic1ZvVH5HZlb2U FWQ0a0O/7Lhh7QRt8ifLxCe0TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXZ8ubG rSBEEzKsiuNIdTl857YQMB8GA1UdIwQYMBaAFG3wk1ZgtSTSqAgGQ2iwr8VlOKaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc4RS9ENUFFN0ZBQzUz Q0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpOS29DQVpEYUxDdnhXVTRw cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JmQ1RWbUMxSk5Lb0NBWkRhTEN2eFdVNHBwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc4RS9ENUFFN0ZBQzUzQ0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpO S29DQVpEYUxDdnhXVTRwcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+VkzKTW99vIeN9hiHiX+2MVUIhQo67JoysowLShf7azzh66+Viq5D wEcRqiIeHGkrMrAboK6QimRzS2EW8nRgsUCcj1eEee+tsGQBezYWgl9BxDNhKWL8 xmgUEm3eHPIPVn1WcXh5R2SVMs9hbsHGZzqZQduWgEBAznGNOH+YfcOLLQfn3zGf eWvuZR+bG1LQtLTpx4x7wzKrcTzvirgR/s2OTcEupyU1O6Cyvn5kp3ka6tXi33MC QHmbwkUtCGR5jFjZlZFVGsSdExktR8Yf8OdoGgePSYHuZAKCqzDbwjkgV1IqT8Sp wJeBa9k7v48rR7APNQNo0wSYcNdqc/8Z -----END CERTIFICATE-----Generated at Wed Nov 5 13:47:36 2025 by rpki-client