$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: 2zpQQicSm4qgq/CvJyiGWZuOjUMZbPaMfas4uLJtVWg= Subject key identifier: B7:56:3A:C5:CB:50:36:8B:9B:AE:4F:8B:4F:67:BD:1C:13:06:C9:79 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 010B Signing time: Wed 05 Nov 2025 05:08:37 +0000 Manifest this update: Wed 05 Nov 2025 05:08:37 +0000 Manifest next update: Wed 12 Nov 2025 05:08:37 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: 8gMl0TD6IkunIrjzNLh9CKuc9KMATYIC4BS19u9dHwI=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Nov 5 05:08:37 2025 GMT Not After : Nov 12 05:08:37 2025 GMT Subject: CN=690adbd5-b99c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a3:aa:b1:dc:3a:f3:9c:e2:cf:58:5f:a2:06: a8:16:b9:9b:db:b3:4b:96:a8:de:07:18:af:8f:87: a6:47:2a:95:3e:4b:bc:8b:f7:1a:31:af:32:c5:96: ab:c1:24:25:c4:8d:4f:c1:b0:42:dd:35:de:c3:94: 5a:17:9c:79:05:f2:25:96:d4:e6:c9:50:31:f9:ef: 4e:09:66:36:de:b8:3b:16:50:ea:15:58:35:24:a6: c6:73:8e:c3:3e:07:49:6a:d3:80:c8:ab:ce:38:d0: 3b:4b:ed:9e:fe:59:c6:e0:74:ec:4e:d7:1e:52:ad: e3:a1:22:38:d2:10:ec:c7:b5:7f:66:8f:d4:15:c3: 05:0f:00:a3:d1:7b:ab:d2:7d:2d:98:28:6c:ff:01: 65:bb:be:a5:83:2e:ec:77:6b:b6:06:93:a2:26:1b: d5:5e:90:60:d1:c7:3a:6f:53:7b:9d:37:88:c7:15: 5a:40:cb:c5:e9:73:8c:34:19:3c:20:26:1e:3f:96: 5f:b7:18:c0:07:56:63:59:db:4a:ba:e0:62:e3:03: 49:b1:c4:fd:80:df:4d:76:a4:2d:46:01:06:64:57: 87:69:06:d2:2b:a3:0b:29:02:5a:e4:6c:8c:6e:db: bd:80:6c:f1:cc:bd:64:49:db:36:cc:d6:ae:85:d5: ce:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:56:3A:C5:CB:50:36:8B:9B:AE:4F:8B:4F:67:BD:1C:13:06:C9:79 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:2b:82:52:f8:56:54:d1:e9:1e:e0:9b:7c:fc:ab:52:37:f5: 5f:88:7b:df:76:e9:d9:d0:38:b0:76:5d:20:b1:a0:1e:83:56: 06:41:b1:d9:88:14:00:98:5a:0b:f4:63:29:1f:dd:65:f4:09: 99:ea:d0:28:22:c5:b8:ae:cb:a3:0a:4f:9e:76:23:bc:1c:ff: 83:0a:4b:33:85:99:41:d3:e1:24:56:bd:17:97:f5:15:11:01: d0:ca:ac:a2:c2:01:39:9b:67:b3:63:4c:ae:5f:54:06:7c:af: f8:e9:5a:25:6d:d0:77:03:5e:83:1c:38:dd:1e:04:be:64:6d: 41:df:f6:30:32:5d:a1:d3:22:74:d2:b1:71:6f:25:1a:78:69: 1d:7b:54:35:73:76:a6:57:f4:de:c9:3a:f9:4a:28:b2:ff:0b: f4:02:2a:dc:18:cf:0d:ed:2c:5e:80:ae:79:af:56:d5:f6:55: de:85:b0:52:77:5d:1c:0f:b5:78:b7:08:0f:0a:71:78:94:56: fe:ad:cf:b4:04:1f:e1:17:12:5a:31:5a:7a:0d:61:a3:13:04: 99:1e:ab:b1:1a:83:7a:29:76:ae:6d:1e:6c:62:3d:2e:9f:e5: 45:4e:cb:11:70:b2:c0:80:37:b5:04:72:e8:d2:d6:3b:ec:5b: a5:51:cb:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUxMTA1MDUwODM3WhcNMjUxMTEyMDUwODM3WjAYMRYwFAYD VQQDEw02OTBhZGJkNS1iOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaOqsdw685ziz1hfogaoFrmb27NLlqjeBxivj4emRyqVPku8i/caMa8yxZar wSQlxI1PwbBC3TXew5RaF5x5BfIlltTmyVAx+e9OCWY23rg7FlDqFVg1JKbGc47D PgdJatOAyKvOONA7S+2e/lnG4HTsTtceUq3joSI40hDsx7V/Zo/UFcMFDwCj0Xur 0n0tmChs/wFlu76lgy7sd2u2BpOiJhvVXpBg0cc6b1N7nTeIxxVaQMvF6XOMNBk8 ICYeP5ZftxjAB1ZjWdtKuuBi4wNJscT9gN9NdqQtRgEGZFeHaQbSK6MLKQJa5GyM btu9gGzxzL1kSds2zNauhdXOGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdWOsXL UDaLm65Pi09nvRwTBsl5MB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFK4JS+FZU0eke4Jt8/KtSN/VfiHvfdunZ0Diwdl0gsaAeg1YGQbHZ iBQAmFoL9GMpH91l9AmZ6tAoIsW4rsujCk+ediO8HP+DCkszhZlB0+EkVr0Xl/UV EQHQyqyiwgE5m2ezY0yuX1QGfK/46VolbdB3A16DHDjdHgS+ZG1B3/YwMl2h0yJ0 0rFxbyUaeGkde1Q1c3amV/TeyTr5Siiy/wv0AircGM8N7SxegK55r1bV9lXehbBS d10cD7V4twgPCnF4lFb+rc+0BB/hFxJaMVp6DWGjEwSZHquxGoN6KXaubR5sYj0u n+VFTssRcLLAgDe1BHLo0tY77FulUcvK -----END CERTIFICATE-----Generated at Wed Nov 5 11:38:10 2025 by rpki-client