$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: hTPIZukUZzg5t5uQnqAvJwV+p+XHJ7ilKAXZbE4gR14= Subject key identifier: 60:62:0B:05:4E:BF:43:1C:AD:7A:7D:86:53:5C:38:94:BD:39:04:93 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: AB Signing time: Wed 05 Nov 2025 06:23:41 +0000 Manifest this update: Wed 05 Nov 2025 06:23:40 +0000 Manifest next update: Wed 12 Nov 2025 06:23:40 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: hpRBUy9D5WbGKo5cpmP9AddYYO4eyopveoZwNt0lUHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Nov 5 06:23:40 2025 GMT Not After : Nov 12 06:23:40 2025 GMT Subject: CN=690aed6d-b931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e8:83:3a:e5:9e:0d:28:19:d9:23:2b:a6:42: fa:14:d2:48:99:d0:25:4a:03:26:42:0f:05:0c:58: b9:4b:d6:8f:57:4d:a3:c2:a6:3c:d1:03:c2:ea:03: 6e:7a:06:0e:c0:87:87:22:4e:40:c7:1b:70:cb:fa: 2e:d2:6f:f1:41:fa:9b:c8:b5:c1:29:02:bd:10:21: 84:52:00:6a:44:31:f3:13:19:de:2f:70:96:83:14: f8:07:e0:f0:7e:3e:0f:27:ca:31:22:a7:cc:cf:09: a9:04:23:d6:c3:15:34:95:71:03:bc:4e:dd:7e:96: 73:32:d9:e0:bf:ba:d9:b1:1d:14:ed:18:8e:80:0b: c3:6e:f1:cd:9e:1a:4c:94:a2:32:74:0d:ad:c9:5c: af:c7:39:1d:a9:72:dc:f1:86:7e:48:ba:d7:7d:e8: 68:1c:cb:64:5f:70:6b:59:d4:7e:0b:9d:ab:b6:fd: 26:9a:c5:b8:41:0f:de:ee:f4:04:d0:ad:11:13:0c: 2c:a2:98:26:12:05:6b:26:24:80:57:36:75:7f:96: b1:f3:d8:a3:76:5d:fa:23:1d:2e:ad:85:5d:62:d4: 91:c6:0e:27:c9:52:fe:82:c3:d0:a7:8c:b2:91:37: 4e:26:ca:5c:61:9b:cd:6d:ab:4b:e7:6d:aa:ab:1b: ad:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:62:0B:05:4E:BF:43:1C:AD:7A:7D:86:53:5C:38:94:BD:39:04:93 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:fd:4a:fd:77:09:4d:2e:83:d3:8d:9f:bd:fc:63:16:79:6a: b5:82:19:9a:f1:7d:9b:38:05:e5:46:9e:a8:b5:a7:8a:49:f2: 46:db:a2:9e:b7:20:aa:ae:eb:65:49:9e:d0:ae:6e:c5:d5:45: ca:e4:1a:cc:83:aa:66:ab:21:15:2d:64:7c:41:e2:c0:ec:a2: e6:26:fd:fb:7a:39:8c:13:ff:3b:75:78:63:5a:38:a4:b3:0d: 3e:b8:7a:64:6e:3c:4e:db:d2:22:34:64:31:c2:b1:73:15:a9: 49:9a:f9:f9:42:24:41:73:45:8b:6f:64:f1:03:61:68:fc:d5: 59:93:ee:15:f6:62:60:33:96:ee:a8:08:59:9e:71:18:ba:01: 9d:95:d6:7b:30:73:4c:25:62:5e:2e:39:93:f1:f2:68:07:6e: 82:86:22:8b:65:57:ed:96:de:58:5c:c0:b9:92:d9:7b:bc:32: e5:1c:1f:4d:18:1b:42:25:13:d9:f9:99:ee:98:8b:90:ef:3d: b4:60:2d:dd:21:ea:4f:e1:de:6c:8f:87:34:52:ee:03:25:63: 60:8c:1b:d8:54:c0:8f:b4:51:32:eb:0d:cf:2d:f5:0c:c7:8d: 38:07:81:0a:23:b5:a1:7e:3d:f3:8c:ab:15:80:b2:b6:bc:1b: c8:9d:11:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDZDMTFGODNCOUE4Q0JERDIxNTMyRERGMEVBNjFERTkz ODhEMTNDNkIwHhcNMjUxMTA1MDYyMzQwWhcNMjUxMTEyMDYyMzQwWjAYMRYwFAYD VQQDEw02OTBhZWQ2ZC1iOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeiDOuWeDSgZ2SMrpkL6FNJImdAlSgMmQg8FDFi5S9aPV02jwqY80QPC6gNu egYOwIeHIk5Axxtwy/ou0m/xQfqbyLXBKQK9ECGEUgBqRDHzExneL3CWgxT4B+Dw fj4PJ8oxIqfMzwmpBCPWwxU0lXEDvE7dfpZzMtngv7rZsR0U7RiOgAvDbvHNnhpM lKIydA2tyVyvxzkdqXLc8YZ+SLrXfehoHMtkX3BrWdR+C52rtv0mmsW4QQ/e7vQE 0K0REwwsopgmEgVrJiSAVzZ1f5ax89ijdl36Ix0urYVdYtSRxg4nyVL+gsPQp4yy kTdOJspcYZvNbatL522qqxutmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBiCwVO v0McrXp9hlNcOJS9OQSTMB8GA1UdIwQYMBaAFGwR+DuajL3SFTLd8Oph3pOI0Txr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82RjYyODM4OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZkSVZNdDN3Nm1IZWs0alJQ R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82RjYyODM4OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZk SVZNdDN3Nm1IZWs0alJQR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX/Ur9dwlNLoPTjZ+9/GMWeWq1ghma8X2bOAXlRp6otaeKSfJG26Ke tyCqrutlSZ7Qrm7F1UXK5BrMg6pmqyEVLWR8QeLA7KLmJv37ejmME/87dXhjWjik sw0+uHpkbjxO29IiNGQxwrFzFalJmvn5QiRBc0WLb2TxA2Fo/NVZk+4V9mJgM5bu qAhZnnEYugGdldZ7MHNMJWJeLjmT8fJoB26ChiKLZVftlt5YXMC5ktl7vDLlHB9N GBtCJRPZ+ZnumIuQ7z20YC3dIepP4d5sj4c0Uu4DJWNgjBvYVMCPtFEy6w3PLfUM x404B4EKI7Whfj3zjKsVgLK2vBvInRH+ -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:17 2025 by rpki-client