$ rpki-client -vvf rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft File: mbcL8gJe3c35KkfQTLdWrLBz3EU.mft (raw, json) Hash identifier: FN6V7gKgWtzGo33vuDYBnKb492ItJGvs/L5INxlte7w= Subject key identifier: 38:F5:14:CD:A6:FA:D0:AA:39:F5:9F:E5:41:0B:59:BF:C8:22:D8:13 Authority key identifier: 99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 Certificate issuer: /CN=A912C7DC/serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft Manifest number: 9E Signing time: Mon 03 Nov 2025 06:18:37 +0000 Manifest this update: Mon 03 Nov 2025 06:18:37 +0000 Manifest next update: Mon 10 Nov 2025 06:18:37 +0000 Files and hashes: 1: mbcL8gJe3c35KkfQTLdWrLBz3EU.crl (hash: z+2CSBvR8Bgcz5VN+FFN9r7m9ley4Mz21x+ycmVeZWQ=) 2: E310D7E2C58B11EFBA44DE34C4F9AE02.roa (hash: KRcguCIL3wMi3PwztLJpTVhTUzHmH2MqWyforuoA8o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C7DC, serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Validity Not Before: Nov 3 06:18:37 2025 GMT Not After : Nov 10 06:18:37 2025 GMT Subject: CN=6908493d-b997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:26:f5:5c:3e:6d:0f:ec:8b:2d:a2:b4:e9:f7: ba:ff:31:28:b3:e2:30:6b:ff:9b:be:02:29:39:49: f8:94:84:20:bc:14:b7:8b:50:56:5a:4e:33:45:0f: 2b:fb:ab:ec:cb:81:da:0f:8a:04:41:81:78:c0:72: 9e:77:ed:49:3a:5c:11:15:4a:57:8f:d5:09:69:15: 27:02:4e:a9:8d:cd:15:cc:14:ee:2d:c9:8e:86:82: 7a:06:f7:c9:85:74:d6:61:e4:d5:26:6f:92:a2:78: 63:41:90:e8:fe:11:cf:cd:b9:cc:b2:0d:5a:97:c6: ee:df:99:78:bd:25:b0:21:27:3d:63:4f:c3:99:d3: 9a:4c:98:68:8c:7b:17:97:5f:d3:29:a7:1b:e7:95: 13:50:52:50:51:dd:10:51:b1:5c:23:12:06:7d:b9: 0e:2d:d2:8f:ac:c4:2d:3b:46:7c:59:89:77:9c:0d: 5a:49:5c:c8:0a:b0:a3:cf:7f:95:52:ea:fb:e8:22: 7a:d8:4b:bf:e0:bf:f7:a3:92:71:d5:fe:05:2d:be: b3:c3:d9:99:5c:74:b6:f1:f1:2a:d7:58:ef:dd:a7: 74:4f:5a:b5:8b:af:a4:75:d2:b0:63:fe:72:52:86: 37:81:f3:86:57:c9:54:ec:b3:35:3a:b4:d4:0e:8f: 1b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F5:14:CD:A6:FA:D0:AA:39:F5:9F:E5:41:0B:59:BF:C8:22:D8:13 X509v3 Authority Key Identifier: keyid:99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:25:6e:ca:91:70:25:a8:bd:33:dc:05:fa:77:e6:5e:aa:de: 5f:ab:9f:59:72:59:86:3d:96:6e:a5:69:aa:aa:c4:18:54:63: 15:13:3c:5a:45:69:0b:07:f7:31:07:37:6a:d6:0a:9a:c2:ab: b6:20:ea:72:5b:f8:2e:84:9c:c0:37:c1:96:dc:75:68:4b:bd: 03:cb:c9:3d:4a:12:7b:26:bd:ff:9f:44:41:a9:02:13:23:b9: b5:8a:23:8e:5d:d5:a5:7e:a4:90:e9:3f:f5:fc:42:85:af:2a: e1:52:8d:5b:c6:1a:53:d1:5a:ac:57:ed:5c:ff:0a:8d:bc:c9: 7a:f5:f2:7a:54:8c:16:33:3c:0d:a1:54:b3:65:93:2c:bb:95: 27:f9:ec:48:39:6b:4e:a9:7c:e1:54:5d:c9:35:b2:dd:e4:54: 1a:46:6a:56:21:57:d2:4d:28:53:ab:16:5d:95:f4:d2:3f:85: 3f:af:64:76:7b:60:c5:d6:d7:1d:2d:01:68:0d:eb:e6:e4:af: 22:91:05:e3:66:0d:bb:e7:a8:e8:2a:47:ad:45:ca:09:89:0e: 83:60:de:05:fb:5a:a5:92:5e:e0:11:82:ac:c1:e0:4f:b5:f5: a2:f3:81:f5:86:16:3a:50:d1:34:ef:a7:7b:d0:c6:e9:42:63: 9b:c2:23:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3REMxMTAvBgNVBAUTKDk5QjcwQkYyMDI1RUREQ0RGOTJBNDdEMDRDQjc1NkFD QjA3M0RDNDUwHhcNMjUxMTAzMDYxODM3WhcNMjUxMTEwMDYxODM3WjAYMRYwFAYD VQQDEw02OTA4NDkzZC1iOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyb1XD5tD+yLLaK06fe6/zEos+Iwa/+bvgIpOUn4lIQgvBS3i1BWWk4zRQ8r +6vsy4HaD4oEQYF4wHKed+1JOlwRFUpXj9UJaRUnAk6pjc0VzBTuLcmOhoJ6BvfJ hXTWYeTVJm+SonhjQZDo/hHPzbnMsg1al8bu35l4vSWwISc9Y0/DmdOaTJhojHsX l1/TKacb55UTUFJQUd0QUbFcIxIGfbkOLdKPrMQtO0Z8WYl3nA1aSVzICrCjz3+V Uur76CJ62Eu/4L/3o5Jx1f4FLb6zw9mZXHS28fEq11jv3ad0T1q1i6+kddKwY/5y UoY3gfOGV8lU7LM1OrTUDo8buQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDj1FM2m +tCqOfWf5UELWb/IItgTMB8GA1UdIwQYMBaAFJm3C/ICXt3N+SpH0Ey3Vqywc9xF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzdEQy82REVGREI3MEM1 OEIxMUVGQjg3RTVGMzNDNEY5QUUwMi9tYmNMOGdKZTNjMzVLa2ZRVExkV3JMQnoz RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21iY0w4Z0plM2MzNUtrZlFUTGRXckxCejNFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzdEQy82REVGREI3MEM1OEIxMUVGQjg3RTVGMzNDNEY5QUUwMi9tYmNMOGdKZTNj MzVLa2ZRVExkV3JMQnozRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsJW7KkXAlqL0z3AX6d+Zeqt5fq59ZclmGPZZupWmqqsQYVGMVEzxa RWkLB/cxBzdq1gqawqu2IOpyW/guhJzAN8GW3HVoS70Dy8k9ShJ7Jr3/n0RBqQIT I7m1iiOOXdWlfqSQ6T/1/EKFryrhUo1bxhpT0VqsV+1c/wqNvMl69fJ6VIwWMzwN oVSzZZMsu5Un+exIOWtOqXzhVF3JNbLd5FQaRmpWIVfSTShTqxZdlfTSP4U/r2R2 e2DF1tcdLQFoDevm5K8ikQXjZg2756joKketRcoJiQ6DYN4F+1qlkl7gEYKsweBP tfWi84H1hhY6UNE076d70MbpQmObwiNw -----END CERTIFICATE-----Generated at Tue Nov 4 12:32:06 2025 by rpki-client