$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: Y45IixuAOj4ruSt2QKUp8hlp0SiwL0HAZpsEjyoJzxI= Subject key identifier: 4D:68:94:28:61:8A:72:FE:3B:D8:39:07:8B:17:64:37:0D:67:05:5C Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A53 Signing time: Tue 04 Nov 2025 20:09:16 +0000 Manifest this update: Tue 04 Nov 2025 20:09:15 +0000 Manifest next update: Tue 11 Nov 2025 20:09:15 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: UPvWQzVPF3AxSIDfLkw18axORIZWcM9CbB+1IE2uhv0=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: bs2WaiU2EHsdavOyCOj936j3V7QF3geo8o9d56rg2ig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2651 (0xa5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Nov 4 20:09:15 2025 GMT Not After : Nov 11 20:09:15 2025 GMT Subject: CN=690a5d6b-893a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5d:c8:85:5a:8b:a8:dd:49:43:38:61:70:fe: d2:12:38:a5:03:fa:46:c3:97:bc:f0:c0:da:85:4b: 3a:08:d2:92:64:14:db:a9:94:a2:8c:4a:92:4b:10: ff:1b:f1:99:fb:7e:b4:2b:c6:9f:c1:a7:b2:14:eb: b2:eb:21:d4:d5:cb:0c:d9:f0:94:52:4e:5f:96:bf: cc:e4:27:a1:39:46:6f:75:42:f1:a8:88:0c:5f:87: 74:51:f6:89:9a:d7:e6:00:dc:88:87:ba:8e:a0:93: 9b:c8:0b:13:3e:4f:ce:4b:99:45:b5:40:a1:1c:d8: 1e:f8:a8:f5:02:8a:c3:79:56:6a:3a:10:6b:48:99: 66:75:90:6a:52:d2:82:4b:99:b1:94:ac:51:dc:08: d7:26:46:33:53:18:7b:d4:9d:ce:23:1a:31:7f:30: d5:45:4e:a8:fc:fc:25:29:44:81:4d:67:45:50:76: d6:b6:b2:4a:5f:57:73:73:fc:70:6c:4a:f4:1d:45: b9:c8:20:d6:e8:0c:33:a6:ea:3b:b8:6a:39:7a:b8: a1:94:2b:31:77:58:39:ff:fe:a7:f6:ca:d5:9e:6f: f5:8a:e9:1d:2a:8d:30:f4:dc:e7:40:ab:04:55:4a: 23:af:b0:31:80:3a:83:59:28:f1:b7:15:f1:d0:cc: 6c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:68:94:28:61:8A:72:FE:3B:D8:39:07:8B:17:64:37:0D:67:05:5C X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:91:15:15:1f:e5:a4:97:7a:80:30:4e:ff:8e:2c:60:5f:72: ab:ca:fd:2c:f9:0e:85:c7:c0:ed:8c:06:de:2b:c7:e2:b4:71: 4c:d6:f1:3e:2d:b0:76:a0:fb:2b:9c:25:c6:bb:ad:a8:fd:9a: 83:8a:eb:b4:d3:71:b7:56:a9:cb:9b:c6:78:0f:7f:ef:50:0d: b1:88:44:29:7f:71:37:47:75:b6:75:ca:14:e6:e9:16:73:57: 73:8c:ee:6b:b0:59:4a:8b:a8:5c:24:ed:a5:7d:db:08:47:7f: 1a:12:81:e1:64:66:cc:88:73:4d:cf:24:f2:66:83:7a:ea:f4: ed:89:ff:17:37:e8:41:03:65:d8:59:16:b8:06:ef:76:a9:0f: 46:bf:47:ce:6d:82:5f:3a:3b:9d:76:12:ff:4b:ec:30:5d:82: b7:e5:bc:6f:65:a3:9f:c9:f7:d2:a7:20:36:92:22:2a:e9:ae: 39:3c:58:1b:9f:65:e3:40:4b:f2:10:15:7b:53:0d:64:ce:fa: e8:bf:1a:72:1e:f8:78:7e:df:d9:6b:52:1d:ba:37:fe:c9:aa: e8:b1:c9:db:d5:b8:e7:d6:6f:7a:90:a2:7d:9b:0f:17:60:d7: 4b:58:96:3a:90:9e:c2:7d:8b:28:58:e5:84:10:81:83:45:8f: be:38:a9:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUxMTA0MjAwOTE1WhcNMjUxMTExMjAwOTE1WjAYMRYwFAYD VQQDEw02OTBhNWQ2Yi04OTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAul3IhVqLqN1JQzhhcP7SEjilA/pGw5e88MDahUs6CNKSZBTbqZSijEqSSxD/ G/GZ+360K8afwaeyFOuy6yHU1csM2fCUUk5flr/M5CehOUZvdULxqIgMX4d0UfaJ mtfmANyIh7qOoJObyAsTPk/OS5lFtUChHNge+Kj1AorDeVZqOhBrSJlmdZBqUtKC S5mxlKxR3AjXJkYzUxh71J3OIxoxfzDVRU6o/PwlKUSBTWdFUHbWtrJKX1dzc/xw bEr0HUW5yCDW6Awzpuo7uGo5erihlCsxd1g5//6n9srVnm/1iukdKo0w9NznQKsE VUojr7AxgDqDWSjxtxXx0MxsZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1olChh inL+O9g5B4sXZDcNZwVcMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrkRUVH+Wkl3qAME7/jixgX3Kryv0s+Q6Fx8DtjAbeK8fitHFM1vE+ LbB2oPsrnCXGu62o/ZqDiuu003G3VqnLm8Z4D3/vUA2xiEQpf3E3R3W2dcoU5ukW c1dzjO5rsFlKi6hcJO2lfdsIR38aEoHhZGbMiHNNzyTyZoN66vTtif8XN+hBA2XY WRa4Bu92qQ9Gv0fObYJfOjuddhL/S+wwXYK35bxvZaOfyffSpyA2kiIq6a45PFgb n2XjQEvyEBV7Uw1kzvrovxpyHvh4ft/Za1Idujf+yaroscnb1bjn1m96kKJ9mw8X YNdLWJY6kJ7CfYsoWOWEEIGDRY++OKnR -----END CERTIFICATE-----Generated at Wed Nov 5 00:22:25 2025 by rpki-client