$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: X64qkYLq78I9aC5EPE4wk+Csu+YWZ4SyYgYnyTb+az0= Subject key identifier: E0:F6:5B:4C:CA:5A:F7:2A:CD:A1:5C:6C:08:98:BC:A3:9F:F7:57:34 Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 08DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 08D1 Signing time: Tue 04 Nov 2025 20:31:22 +0000 Manifest this update: Tue 04 Nov 2025 20:31:21 +0000 Manifest next update: Tue 11 Nov 2025 20:31:21 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: IyIYyBH4BYCn2vLNr9ECqlOvtfh/ZtVCdwg2OZrTVEA=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: XF3b1tsv84dWcHXBpSW6CLzdc6x4da3e9vI5g3fw1j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2266 (0x8da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Nov 4 20:31:21 2025 GMT Not After : Nov 11 20:31:21 2025 GMT Subject: CN=690a629a-e367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3c:07:cf:0e:05:a5:e4:27:fb:2d:7c:74:c7: f5:e1:d2:c0:80:50:e7:bb:1f:09:51:a3:54:19:f1: c1:fc:25:72:17:6c:02:29:03:ed:b3:c1:7b:a3:df: 90:fe:a2:df:fe:27:c1:07:76:5e:c2:c3:84:67:fd: 22:de:77:24:b0:8a:77:ec:ab:03:85:65:d0:de:19: 84:6a:8c:ed:63:09:84:8f:56:6c:15:77:c2:71:94: 5f:de:c1:91:a2:f7:37:63:42:3f:4a:8d:d9:8e:74: 54:8e:ce:34:5a:05:40:11:6b:8d:eb:50:43:a8:06: 6e:0d:39:c9:55:13:ec:bb:4a:a8:eb:65:a4:ce:a5: f8:7e:43:8c:9c:ac:a6:0f:b5:c7:02:98:5b:6f:e2: f3:61:60:1c:ee:0e:27:be:b9:cb:2b:f0:3f:9f:15: ab:83:44:20:6a:29:01:51:8d:83:2f:89:0b:04:12: a5:e7:ea:82:ce:aa:a8:7c:a5:92:19:ca:7e:50:51: 3f:d0:15:2a:1c:21:b3:42:a3:df:bb:9d:25:95:00: 63:c7:a0:c7:b3:7a:80:b9:48:aa:f7:d8:22:ac:d4: f9:a4:12:d4:7b:fe:73:5e:4b:db:9f:63:77:ef:aa: 55:da:78:9e:66:0b:8d:47:83:81:fd:53:a6:c5:e3: e3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F6:5B:4C:CA:5A:F7:2A:CD:A1:5C:6C:08:98:BC:A3:9F:F7:57:34 X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:38:78:c8:ef:51:72:ee:ff:c1:6c:93:5b:97:80:20:d5:c5: 16:85:73:a0:55:3c:2d:80:f6:b2:04:2e:58:a6:61:d4:1e:c7: 60:1f:5e:5a:76:52:63:fa:dc:86:8d:10:02:53:4f:77:72:5a: 30:1a:9f:4d:eb:9b:cf:7d:0b:c2:c2:3f:de:eb:81:62:04:08: 2e:4e:1f:79:d0:f4:62:41:0e:fc:a9:e1:c3:ad:65:7d:dc:84: 48:3a:e1:26:0e:94:28:00:21:81:90:71:9e:7a:8e:99:da:e1: ae:a7:33:d8:07:2c:5c:c3:d9:22:f6:90:7e:4b:55:03:21:9c: 22:65:fd:03:88:a0:24:6d:22:23:67:8d:53:ca:99:cf:42:62: e4:5c:94:e8:27:5f:c7:22:f8:02:87:cf:5e:e4:81:70:b8:1f: b9:63:f7:b3:60:d8:2f:00:f0:e7:1a:c3:01:62:a0:5f:bf:21: a5:65:94:17:43:b1:f7:bf:1a:82:db:41:cd:d7:23:61:c2:45: b9:8b:31:fa:49:80:1f:43:a0:41:49:7e:57:7d:5c:46:ac:a3: 9c:df:3d:c7:ff:08:fd:41:68:94:93:44:c3:71:d1:9c:4d:f0: 18:0b:7d:49:e3:81:d9:6c:56:35:44:d0:db:d8:9b:ae:31:bf: f6:78:13:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUxMTA0MjAzMTIxWhcNMjUxMTExMjAzMTIxWjAYMRYwFAYD VQQDEw02OTBhNjI5YS1lMzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zwHzw4FpeQn+y18dMf14dLAgFDnux8JUaNUGfHB/CVyF2wCKQPts8F7o9+Q /qLf/ifBB3ZewsOEZ/0i3ncksIp37KsDhWXQ3hmEaoztYwmEj1ZsFXfCcZRf3sGR ovc3Y0I/So3ZjnRUjs40WgVAEWuN61BDqAZuDTnJVRPsu0qo62WkzqX4fkOMnKym D7XHAphbb+LzYWAc7g4nvrnLK/A/nxWrg0QgaikBUY2DL4kLBBKl5+qCzqqofKWS Gcp+UFE/0BUqHCGzQqPfu50llQBjx6DHs3qAuUiq99girNT5pBLUe/5zXkvbn2N3 76pV2nieZguNR4OB/VOmxePjtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOD2W0zK WvcqzaFcbAiYvKOf91c0MB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbOHjI71Fy7v/BbJNbl4Ag1cUWhXOgVTwtgPayBC5YpmHUHsdgH15a dlJj+tyGjRACU093clowGp9N65vPfQvCwj/e64FiBAguTh950PRiQQ78qeHDrWV9 3IRIOuEmDpQoACGBkHGeeo6Z2uGupzPYByxcw9ki9pB+S1UDIZwiZf0DiKAkbSIj Z41TypnPQmLkXJToJ1/HIvgCh89e5IFwuB+5Y/ezYNgvAPDnGsMBYqBfvyGlZZQX Q7H3vxqC20HN1yNhwkW5izH6SYAfQ6BBSX5XfVxGrKOc3z3H/wj9QWiUk0TDcdGc TfAYC31J44HZbFY1RNDb2JuuMb/2eBPn -----END CERTIFICATE-----Generated at Wed Nov 5 10:28:26 2025 by rpki-client