$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft File: Ak2PFao5dyF1iDou3BZQFOGSiho.mft (raw, json) Hash identifier: Yj5jSG2emb7FwM4ScIv1UUu3l/dxJT+xjIkui05eVtk= Subject key identifier: 7F:D4:56:F9:E2:A3:89:43:96:81:F0:BE:CC:F3:EB:34:2E:C2:B8:9F Authority key identifier: 02:4D:8F:15:AA:39:77:21:75:88:3A:2E:DC:16:50:14:E1:92:8A:1A Certificate issuer: /CN=A917B520/serialNumber=024D8F15AA39772175883A2EDC165014E1928A1A Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft Manifest number: 27 Signing time: Wed 05 Nov 2025 02:51:51 +0000 Manifest this update: Wed 05 Nov 2025 02:51:50 +0000 Manifest next update: Wed 12 Nov 2025 02:51:50 +0000 Files and hashes: 1: Ak2PFao5dyF1iDou3BZQFOGSiho.crl (hash: CEQtv4a2cM42HTBQZhTZ0c/V/Vpcupuccmb9jxce56E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.crl rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=024D8F15AA39772175883A2EDC165014E1928A1A Validity Not Before: Nov 5 02:51:50 2025 GMT Not After : Nov 12 02:51:50 2025 GMT Subject: CN=690abbc7-99c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ea:58:17:92:4b:60:48:13:f7:fe:87:49:1a: 64:60:32:2b:99:e8:aa:1c:c4:ec:e4:ba:d7:d4:ee: ee:32:df:8a:44:22:22:d6:be:dc:02:75:ba:9d:94: 43:7f:84:52:f0:9e:d2:e9:cb:42:e7:31:54:8f:c0: ee:0d:0f:6a:d0:25:03:f5:a8:a5:c6:de:be:07:1d: 88:99:ff:8c:15:c9:5d:96:e5:4b:0d:00:af:3a:de: 78:78:4f:5a:30:30:98:19:8c:f9:f3:ae:43:4a:59: 31:88:83:f6:51:43:f8:58:ae:1e:5d:2d:93:12:ab: e0:96:69:a9:95:16:f6:86:40:1e:d0:a3:ae:3c:92: f1:4c:0a:b2:77:76:be:c8:89:9e:24:b3:65:72:71: 59:a1:99:f3:eb:4b:1f:cf:37:da:34:d5:8f:8d:a1: f6:56:29:e6:42:03:d9:f7:1e:09:64:8e:fd:5a:3b: ae:d6:82:e5:d8:1e:ba:b4:aa:fe:48:19:c1:fd:69: 8b:30:40:17:3a:06:e0:5a:b6:d8:6e:07:e5:49:fa: 33:c0:76:d0:0c:59:79:33:3f:52:2f:d1:f6:56:39: 18:bc:bb:95:a9:cc:9d:cb:7a:9a:45:57:27:1b:74: 49:bf:cf:e6:78:c6:b9:bd:06:8f:8f:5a:66:9b:a5: a4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D4:56:F9:E2:A3:89:43:96:81:F0:BE:CC:F3:EB:34:2E:C2:B8:9F X509v3 Authority Key Identifier: keyid:02:4D:8F:15:AA:39:77:21:75:88:3A:2E:DC:16:50:14:E1:92:8A:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:36:b8:c3:ef:cd:2e:5c:8b:53:61:ac:8c:bc:ca:d2:5e:7b: fb:88:48:a5:38:c4:ad:4b:4d:bd:6f:03:2b:35:bf:aa:02:b6: fc:25:0c:3f:8c:1c:ca:dd:22:0d:58:d7:a9:62:37:a7:f8:35: fb:c4:cb:c7:27:cb:70:af:5a:11:17:bc:b1:67:d1:f7:09:3a: 1d:ce:b2:aa:00:65:03:a2:83:6d:9f:71:85:18:75:b4:49:9b: 45:ed:0c:a8:91:1b:0d:c0:49:23:d4:4e:54:0a:61:7b:6f:43: ad:a7:3d:06:2b:61:d7:bf:05:5f:38:6c:2d:ba:a0:72:ed:a8: 15:23:6a:ad:f2:36:0e:bd:9b:b0:68:26:ed:24:32:fe:d9:af: 6a:c5:a1:af:45:d0:d7:4d:60:f5:bf:20:3a:56:22:a3:df:7a: ac:e3:7e:98:ed:6d:66:25:f7:7a:07:66:b8:5c:26:9a:20:b4: da:56:96:5a:d1:26:db:92:3b:5d:7b:11:4c:c2:09:60:61:2c: 68:b5:a8:17:e4:0f:df:86:7f:a7:62:c3:e2:b9:05:cc:02:73: 9e:4a:c5:30:52:88:aa:d5:23:d1:a2:84:41:55:67:b1:83:80: f5:7c:8e:4f:2d:20:ba:86:78:79:2e:b0:05:0a:7d:96:3e:f4: 42:ec:e4:d9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMDI0RDhGMTVBQTM5NzcyMTc1ODgzQTJFREMxNjUwMTRF MTkyOEExQTAeFw0yNTExMDUwMjUxNTBaFw0yNTExMTIwMjUxNTBaMBgxFjAUBgNV BAMTDTY5MGFiYmM3LTk5YzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx6lgXkktgSBP3/odJGmRgMiuZ6KocxOzkutfU7u4y34pEIiLWvtwCdbqdlEN/ hFLwntLpy0LnMVSPwO4ND2rQJQP1qKXG3r4HHYiZ/4wVyV2W5UsNAK863nh4T1ow MJgZjPnzrkNKWTGIg/ZRQ/hYrh5dLZMSq+CWaamVFvaGQB7Qo648kvFMCrJ3dr7I iZ4ks2VycVmhmfPrSx/PN9o01Y+NofZWKeZCA9n3Hglkjv1aO67WguXYHrq0qv5I GcH9aYswQBc6BuBatthuB+VJ+jPAdtAMWXkzP1Iv0fZWORi8u5WpzJ3LeppFVycb dEm/z+Z4xrm9Bo+PWmabpaSzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUf9RW+eKj iUOWgfC+zPPrNC7CuJ8wHwYDVR0jBBgwFoAUAk2PFao5dyF1iDou3BZQFOGSihow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRBMTJBMzNDODJG NDExRjA5Qjc0MzU0RUM0RjlBRTAyL0FrMlBGYW81ZHlGMWlEb3UzQlpRRk9HU2lo by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjRBMUJFQTYxRDY2MTFFMkIyQ0Q4QjdDNzJG RDFGRjIvQWsyUEZhbzVkeUYxaURvdTNCWlFGT0dTaWhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRBMTJBMzNDODJGNDExRjA5Qjc0MzU0RUM0RjlBRTAyL0FrMlBGYW81ZHlG MWlEb3UzQlpRRk9HU2loby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF42uMPvzS5ci1NhrIy8ytJee/uISKU4xK1LTb1vAys1v6oCtvwlDD+M HMrdIg1Y16liN6f4NfvEy8cny3CvWhEXvLFn0fcJOh3OsqoAZQOig22fcYUYdbRJ m0XtDKiRGw3ASSPUTlQKYXtvQ62nPQYrYde/BV84bC26oHLtqBUjaq3yNg69m7Bo Ju0kMv7Zr2rFoa9F0NdNYPW/IDpWIqPfeqzjfpjtbWYl93oHZrhcJpogtNpWllrR JtuSO117EUzCCWBhLGi1qBfkD9+Gf6diw+K5BcwCc55KxTBSiKrVI9GihEFVZ7GD gPV8jk8tILqGeHkusAUKfZY+9ELs5Nk= -----END CERTIFICATE-----Generated at Wed Nov 5 21:04:25 2025 by rpki-client