$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft File: BtehAtOMEJaAT42lLiz3jYkaxyE.mft (raw, json) Hash identifier: qOvHR8vFmYhW8mcy85TSsy2G+ADk0P06Wgckv+vUDgs= Subject key identifier: 60:83:E6:F2:19:72:F9:DE:E6:AB:86:E6:BA:3D:1F:18:D1:3D:B4:1E Authority key identifier: 06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 Certificate issuer: /CN=A916B2C1/serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft Manifest number: 0521 Signing time: Tue 04 Nov 2025 23:37:21 +0000 Manifest this update: Tue 04 Nov 2025 23:37:21 +0000 Manifest next update: Tue 11 Nov 2025 23:37:21 +0000 Files and hashes: 1: BtehAtOMEJaAT42lLiz3jYkaxyE.crl (hash: 9rSbdRKqU8cMuG0A7VrzPHi8CYblH1hWOK61P9z/omo=) 2: 551FA6B620DE11EC8CA3EC74C4F9AE02.roa (hash: sy0Mbt4ke59HBbem5DYUNkJ8NfZs0P/CrbYjmapjxqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:37:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B2C1, serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Validity Not Before: Nov 4 23:37:21 2025 GMT Not After : Nov 11 23:37:21 2025 GMT Subject: CN=690a8e31-8e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:79:c1:13:96:e6:13:d7:97:62:dc:7b:c0:da: ea:4a:40:e5:3e:1d:9b:ef:40:6b:8a:fa:12:8a:b3: 27:f4:08:35:e7:96:a1:74:38:81:e3:24:61:aa:05: d2:c1:b6:5c:20:e1:a1:0d:59:8b:19:2d:7f:73:ed: 68:b5:f8:75:4a:ca:1a:15:02:1d:4e:86:7f:bf:60: b4:dd:bc:b4:17:05:93:c9:75:61:90:4e:a1:9e:a6: 5b:d4:d5:a7:f3:12:29:86:c8:25:9e:14:02:a1:6c: 23:e0:7e:02:53:75:a5:bb:3e:46:b5:91:aa:69:73: e2:7a:cb:72:4c:ee:dd:80:53:81:2e:d8:27:fd:2c: e8:da:fa:09:48:3f:6e:45:bc:b9:bf:42:54:c5:16: d2:03:b1:f2:81:06:71:1a:a6:8b:75:7e:e5:0f:30: f5:df:9d:25:b5:41:e1:97:66:17:79:87:ed:c4:05: 9b:c4:77:9e:23:35:fd:9e:84:e4:62:49:b3:48:db: d8:d6:b9:db:66:8a:fd:1b:d3:f7:c0:33:84:21:34: b3:22:3e:98:c9:2f:2e:4f:62:2b:f7:d4:46:3a:31: 46:a9:fd:7b:9c:e9:fe:f2:9c:5b:3a:d1:9f:b3:ab: 20:4c:a4:a6:cb:70:a2:92:9b:4f:4f:2f:e1:b6:e5: 09:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:83:E6:F2:19:72:F9:DE:E6:AB:86:E6:BA:3D:1F:18:D1:3D:B4:1E X509v3 Authority Key Identifier: keyid:06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:ee:e4:fe:58:df:89:f5:ac:81:84:9f:77:39:83:90:c1:ca: 5e:93:b9:a9:da:fc:05:32:ae:24:97:55:ba:8c:86:7a:7d:40: 3b:70:00:c5:99:f3:ba:76:39:e8:0d:fb:1c:e3:30:89:ca:21: 5e:30:d7:3e:84:31:45:3e:ae:f7:92:ba:5e:a0:4b:7f:96:63: fa:21:3a:85:5b:0c:ac:f0:df:6e:10:06:f1:c9:5d:e1:57:99: 9a:4e:6d:15:11:35:72:59:3a:ed:2d:08:1d:6f:89:73:e4:48: 12:a1:dd:b9:e7:32:a4:4e:5f:45:a9:47:53:55:2a:ac:24:31: 07:46:7e:b5:dd:95:ad:ae:d3:3e:28:a6:4b:d8:83:42:17:54: 59:28:1c:3e:82:91:9e:92:d9:1d:94:13:ae:97:a2:61:30:93: 65:7c:22:01:71:6a:67:3c:11:4a:09:76:cb:75:be:56:6a:77: f5:ad:72:36:16:4d:b2:6a:9e:16:02:e4:b8:d7:dd:b2:7c:80: 8f:ff:9f:43:bb:24:a8:0e:99:b6:7c:fa:ca:b1:78:31:e0:c5: 6b:62:15:95:54:2d:25:91:c2:1a:63:e7:6e:19:51:81:20:8b: ef:c7:e7:7e:f1:ba:4f:a7:ab:45:7c:4d:bb:2b:43:de:bf:a2: 8b:20:e9:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyQzExMTAvBgNVBAUTKDA2RDdBMTAyRDM4QzEwOTY4MDRGOERBNTJFMkNGNzhE ODkxQUM3MjEwHhcNMjUxMTA0MjMzNzIxWhcNMjUxMTExMjMzNzIxWjAYMRYwFAYD VQQDEw02OTBhOGUzMS04ZTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3nBE5bmE9eXYtx7wNrqSkDlPh2b70BrivoSirMn9Ag155ahdDiB4yRhqgXS wbZcIOGhDVmLGS1/c+1otfh1SsoaFQIdToZ/v2C03by0FwWTyXVhkE6hnqZb1NWn 8xIphsglnhQCoWwj4H4CU3Wluz5GtZGqaXPiestyTO7dgFOBLtgn/Szo2voJSD9u Rby5v0JUxRbSA7HygQZxGqaLdX7lDzD1350ltUHhl2YXeYftxAWbxHeeIzX9noTk YkmzSNvY1rnbZor9G9P3wDOEITSzIj6YyS8uT2Ir99RGOjFGqf17nOn+8pxbOtGf s6sgTKSmy3CikptPTy/htuUJ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCD5vIZ cvne5quG5ro9HxjRPbQeMB8GA1UdIwQYMBaAFAbXoQLTjBCWgE+NpS4s942JGsch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjJDMS8yRUE1MUQ1NjIw REMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVKYUFUNDJsTGl6M2pZa2F4 eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0ZWhBdE9NRUphQVQ0MmxMaXozallrYXh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjJDMS8yRUE1MUQ1NjIwREMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVK YUFUNDJsTGl6M2pZa2F4eUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+7uT+WN+J9ayBhJ93OYOQwcpek7mp2vwFMq4kl1W6jIZ6fUA7cADF mfO6djnoDfsc4zCJyiFeMNc+hDFFPq73krpeoEt/lmP6ITqFWwys8N9uEAbxyV3h V5maTm0VETVyWTrtLQgdb4lz5EgSod255zKkTl9FqUdTVSqsJDEHRn613ZWtrtM+ KKZL2INCF1RZKBw+gpGektkdlBOul6JhMJNlfCIBcWpnPBFKCXbLdb5Wanf1rXI2 Fk2yap4WAuS4192yfICP/59DuySoDpm2fPrKsXgx4MVrYhWVVC0lkcIaY+duGVGB IIvvx+d+8bpPp6tFfE27K0Pev6KLIOnZ -----END CERTIFICATE-----Generated at Wed Nov 5 19:49:16 2025 by rpki-client