$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: OgzjvOXTWsJXzd45yW+oa3w28LDv6gM05HaJKc0tKwU= Subject key identifier: 3F:09:A7:BE:9D:14:9E:9B:27:FD:8E:7C:A7:41:FD:21:5C:A3:12:75 Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 044C Signing time: Mon 03 Nov 2025 00:11:45 +0000 Manifest this update: Mon 03 Nov 2025 00:11:44 +0000 Manifest next update: Mon 10 Nov 2025 00:11:44 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: YaT1hMUYQE7/QBZvFgSTC0v+Q8pSGoh88n0mT5acJAE=) 2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Validity Not Before: Nov 3 00:11:44 2025 GMT Not After : Nov 10 00:11:44 2025 GMT Subject: CN=6907f341-c944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:cd:00:06:d3:15:94:6a:22:fb:b4:c3:f8: ec:e7:90:58:b6:80:87:e2:41:f3:bc:58:c0:db:cf: c5:7c:82:19:63:eb:87:df:40:42:5e:5b:db:d6:08: df:f0:fd:fc:87:72:49:bc:de:09:bb:af:fe:69:71: ee:e4:56:da:5e:ff:fe:62:a0:58:f7:c2:4f:3a:0a: 02:6e:9e:8a:97:d1:91:30:e6:3f:6e:58:1d:00:dc: 36:be:d6:41:10:69:17:54:ea:ba:1f:f0:d6:4b:ff: a3:fb:fb:18:d4:20:4b:8b:39:ef:7c:cb:ea:59:e8: 84:6e:31:a0:e4:83:e6:19:da:3d:9c:92:4f:cf:95: 96:66:fc:d6:8c:14:27:cc:31:ac:0a:5b:f7:88:4c: c6:f4:d6:eb:fe:7c:cc:b2:95:7c:05:a9:52:a5:4a: 55:cd:ec:e6:77:35:f7:32:7f:8b:48:84:54:62:43: 59:ed:df:17:9d:01:18:c2:f1:81:c7:a9:d5:41:c8: bb:90:f7:7f:c5:cf:d5:b1:25:f5:be:57:af:c1:d3: f2:c3:d4:02:25:16:ac:3d:d6:1f:06:7a:93:88:d2: cd:2d:f7:3b:ae:81:e8:9c:00:40:09:09:ea:fd:87: 82:21:58:d5:fc:6e:78:ba:97:b0:0d:35:d7:1d:cf: 03:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:09:A7:BE:9D:14:9E:9B:27:FD:8E:7C:A7:41:FD:21:5C:A3:12:75 X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:97:37:10:43:66:3d:58:07:51:31:93:b2:87:00:96:2a:81: 05:e3:af:9d:d6:8d:95:8e:57:92:22:d9:6c:7e:93:1c:a5:75: 7f:4b:67:8c:c9:c0:39:3f:5f:03:8b:d4:dc:45:27:4f:56:57: 0f:42:19:4c:e3:b5:30:24:67:13:74:3e:62:f0:f3:08:56:14: 43:98:2a:0a:cd:9b:21:d6:32:39:f3:4c:29:63:d4:9b:e4:3f: 26:6c:6d:9c:25:1d:13:e3:be:5d:f8:82:23:09:f4:92:06:09: 98:a1:55:3a:d7:61:0d:47:68:05:7e:d6:b2:c0:38:8b:18:99: 2d:39:25:ca:e2:12:10:d4:34:70:92:6e:7c:4b:5f:81:e9:cd: 7f:3b:67:b9:e6:e1:61:7e:7c:32:2c:cb:64:8f:e6:9a:41:6c: 65:58:71:87:5e:6f:e5:7a:89:67:08:49:1f:64:02:49:c3:5f: 9b:83:44:4e:02:01:fe:6c:8e:82:6a:f3:b0:9c:7e:02:14:90: ef:a7:02:c2:03:2e:b9:ea:8f:96:96:91:89:9d:98:3e:d4:d1: eb:d0:00:05:8b:04:b9:31:2d:d7:e7:c8:e5:06:73:e4:30:41: 8a:34:64:cb:2c:c8:b7:66:3a:52:1f:7d:ed:21:bc:a5:66:df: df:e4:a7:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjUxMTAzMDAxMTQ0WhcNMjUxMTEwMDAxMTQ0WjAYMRYwFAYD VQQDEw02OTA3ZjM0MS1jOTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy3NAAbTFZRqIvu0w/js55BYtoCH4kHzvFjA28/FfIIZY+uH30BCXlvb1gjf 8P38h3JJvN4Ju6/+aXHu5FbaXv/+YqBY98JPOgoCbp6Kl9GRMOY/blgdANw2vtZB EGkXVOq6H/DWS/+j+/sY1CBLiznvfMvqWeiEbjGg5IPmGdo9nJJPz5WWZvzWjBQn zDGsClv3iEzG9Nbr/nzMspV8BalSpUpVzezmdzX3Mn+LSIRUYkNZ7d8XnQEYwvGB x6nVQci7kPd/xc/VsSX1vlevwdPyw9QCJRasPdYfBnqTiNLNLfc7roHonABACQnq /YeCIVjV/G54upewDTXXHc8D5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8Jp76d FJ6bJ/2OfKdB/SFcoxJ1MB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDlzcQQ2Y9WAdRMZOyhwCWKoEF46+d1o2VjleSItlsfpMcpXV/S2eM ycA5P18Di9TcRSdPVlcPQhlM47UwJGcTdD5i8PMIVhRDmCoKzZsh1jI580wpY9Sb 5D8mbG2cJR0T475d+IIjCfSSBgmYoVU612ENR2gFftaywDiLGJktOSXK4hIQ1DRw km58S1+B6c1/O2e55uFhfnwyLMtkj+aaQWxlWHGHXm/leolnCEkfZAJJw1+bg0RO AgH+bI6CavOwnH4CFJDvpwLCAy656o+WlpGJnZg+1NHr0AAFiwS5MS3X58jlBnPk MEGKNGTLLMi3ZjpSH33tIbylZt/f5KdG -----END CERTIFICATE-----Generated at Tue Nov 4 08:07:05 2025 by rpki-client