$ rpki-client -vvf rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft File: -bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft (raw, json) Hash identifier: ehVLYLeq9pJpq0gSgroUGGblZbOkhVlzdqrOdoXZcwE= Subject key identifier: C7:92:B4:96:CC:F6:AA:EC:E4:64:8F:6D:13:A9:81:D0:EA:6D:C1:9F Authority key identifier: F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 Certificate issuer: /CN=A915E012/serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft Manifest number: 6B Signing time: Wed 05 Nov 2025 07:08:53 +0000 Manifest this update: Wed 05 Nov 2025 07:08:52 +0000 Manifest next update: Wed 12 Nov 2025 07:08:52 +0000 Files and hashes: 1: -bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl (hash: LjzivNXIUG6TXNwNSMDm21xYNRH6r1Sl4W3X5AM/Usg=) 2: 28BBA728141411F08D862A74C4F9AE02.roa (hash: bM0rHlFCkCxESty36KKICwvwa1HEG8pgqoXnhaZGbjI=) 3: 2857C712141411F08D862A74C4F9AE02.roa (hash: q/LJ7SPvTkUYwfSCfg1Hilqw1bbJVMWb831qXikLEmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E012, serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Validity Not Before: Nov 5 07:08:52 2025 GMT Not After : Nov 12 07:08:52 2025 GMT Subject: CN=690af805-9eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:67:b9:18:8c:d7:bb:e7:d2:a9:6a:9a:e2: 6b:38:fc:bd:cf:ed:dd:c5:d1:16:fc:0d:aa:86:6f: 30:1f:55:8c:06:98:f7:46:26:3b:f1:48:66:ab:be: 5d:d5:bb:63:d0:43:47:72:86:03:94:3e:17:43:11: 5b:57:00:0d:e8:97:40:ea:54:e1:bb:bd:16:45:e5: e4:06:2e:fc:35:42:f2:6a:aa:b3:8e:7a:94:73:79: c0:7a:8e:28:5e:02:52:00:58:fe:cb:39:c8:57:c5: 32:cd:1e:04:92:57:85:d7:d2:fe:ba:ba:85:d9:18: 2b:69:51:cc:71:d8:b0:71:93:d2:58:ff:8b:b2:63: 4e:f1:38:77:72:73:81:fb:17:3b:da:d9:e1:55:c1: ec:36:57:be:b7:9c:c7:55:e0:3d:86:74:66:d2:45: 9d:5f:1c:8b:29:05:21:f6:56:09:14:49:0e:2a:13: 1f:0e:ae:ba:5f:0a:d1:64:bc:7d:5b:0d:7c:04:27: c5:21:3b:13:81:19:3f:65:66:6d:32:af:a2:8f:2b: a0:eb:9a:ef:ed:f0:db:d5:59:67:83:cb:2f:04:86: 29:88:5d:39:61:22:c5:c6:a1:9f:2c:00:9f:a3:90: 32:e5:dc:7c:08:18:79:5d:80:89:84:da:ce:c7:46: 34:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:92:B4:96:CC:F6:AA:EC:E4:64:8F:6D:13:A9:81:D0:EA:6D:C1:9F X509v3 Authority Key Identifier: keyid:F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:42:a4:d9:79:4c:38:43:bf:64:cb:4e:9a:d9:87:14:00:a4: ec:f0:79:8f:73:6b:3d:d1:07:c4:da:48:58:9b:e5:b1:af:35: a4:46:3b:f6:db:16:df:dc:ed:db:a5:bb:2e:3a:2f:f5:4a:64: 99:1a:c6:c2:3e:cb:2d:6f:c6:bf:ca:10:76:f5:75:f6:36:52: 81:18:e6:da:ef:76:43:05:42:77:82:d2:bf:72:9c:4e:4b:da: 86:ed:8a:fd:db:b1:bb:c8:e7:ef:f8:6f:88:3a:7f:4b:70:5c: 52:5a:b9:ee:8e:5e:5b:23:5d:51:50:36:6c:ad:76:15:b9:58: 37:66:00:84:36:d2:8a:e7:98:fc:d8:28:de:d3:a5:50:63:9d: d2:87:4b:84:32:89:76:cf:84:d0:4f:a6:73:34:9e:b3:ff:e4: fb:49:3e:76:b7:e5:c3:8d:29:01:4d:ca:69:9c:3f:c9:82:a0: ec:82:28:a5:53:42:47:91:e0:3e:64:4b:c6:13:8b:6d:b3:c3: 90:b9:f1:56:c6:1c:fb:49:e0:03:5a:ae:ce:62:d8:d1:0f:66: c8:86:4d:cb:89:c7:fa:86:68:18:77:8d:bb:1b:ac:83:f0:e6: 89:6c:0e:24:36:56:cc:3c:db:30:bc:47:cb:69:64:b3:81:05: 88:72:ba:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RTAxMjExMC8GA1UEBRMoRjlCNDAyMkMwMjlFN0Q5RTVBNjM0OTY4RkRCQTRBMEU5 Q0Q2MjRFNDAeFw0yNTExMDUwNzA4NTJaFw0yNTExMTIwNzA4NTJaMBgxFjAUBgNV BAMTDTY5MGFmODA1LTllYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC89We5GIzXu+fSqWqa4ms4/L3P7d3F0Rb8DaqGbzAfVYwGmPdGJjvxSGarvl3V u2PQQ0dyhgOUPhdDEVtXAA3ol0DqVOG7vRZF5eQGLvw1QvJqqrOOepRzecB6jihe AlIAWP7LOchXxTLNHgSSV4XX0v66uoXZGCtpUcxx2LBxk9JY/4uyY07xOHdyc4H7 Fzva2eFVwew2V763nMdV4D2GdGbSRZ1fHIspBSH2VgkUSQ4qEx8OrrpfCtFkvH1b DXwEJ8UhOxOBGT9lZm0yr6KPK6Drmu/t8NvVWWeDyy8EhimIXTlhIsXGoZ8sAJ+j kDLl3HwIGHldgImE2s7HRjTRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUx5K0lsz2 quzkZI9tE6mB0OptwZ8wHwYDVR0jBBgwFoAU+bQCLAKefZ5aY0lo/bpKDpzWJOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFMDEyL0I4MUFBMjU4MTQx MzExRjBCNjhFNzM3M0M0RjlBRTAyLy1iUUNMQUtlZlo1YVkwbG9fYnBLRHB6V0pP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWJRQ0xBS2VmWjVhWTBsb19icEtEcHpXSk9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVF MDEyL0I4MUFBMjU4MTQxMzExRjBCNjhFNzM3M0M0RjlBRTAyLy1iUUNMQUtlZlo1 YVkwbG9fYnBLRHB6V0pPUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHlCpNl5TDhDv2TLTprZhxQApOzweY9zaz3RB8TaSFib5bGvNaRGO/bb Ft/c7duluy46L/VKZJkaxsI+yy1vxr/KEHb1dfY2UoEY5trvdkMFQneC0r9ynE5L 2obtiv3bsbvI5+/4b4g6f0twXFJaue6OXlsjXVFQNmytdhW5WDdmAIQ20ornmPzY KN7TpVBjndKHS4QyiXbPhNBPpnM0nrP/5PtJPna35cONKQFNymmcP8mCoOyCKKVT QkeR4D5kS8YTi22zw5C58VbGHPtJ4ANars5i2NEPZsiGTcuJx/qGaBh3jbsbrIPw 5olsDiQ2Vsw82zC8R8tpZLOBBYhyujM= -----END CERTIFICATE-----Generated at Wed Nov 5 16:48:45 2025 by rpki-client