$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: Jn7jtCC3tqwAW8Y0EiQZb7ya/5x/O4hja9dsAtQ6Yjk= Subject key identifier: C7:A1:C0:0B:F1:67:3A:D2:9A:6E:08:9C:35:F4:11:C5:8F:59:D6:43 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 0207 Signing time: Wed 05 Nov 2025 02:28:06 +0000 Manifest this update: Wed 05 Nov 2025 02:28:06 +0000 Manifest next update: Wed 12 Nov 2025 02:28:06 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: FgzWTlNQo3S0Fbe6d/jEx2yBvRnW1EKYhnSLrQ7oZdM=) 2: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: okvmN+fO8yeb8sv3bijRR7qzwb2TLJ+EV1o8F+ji/G8=) 3: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: lxKtarKsATY2wiXkVbh3EFTMWa9NQc/B8XJ8gCOAwlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Nov 5 02:28:06 2025 GMT Not After : Nov 12 02:28:06 2025 GMT Subject: CN=690ab636-1b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8e:10:b2:c7:0c:0b:46:6e:3a:56:df:34:fb: 09:51:27:bb:9b:bc:eb:93:bf:84:9a:7e:bb:f6:06: 0a:f4:00:1c:37:d8:dd:d8:44:19:1c:24:e5:6a:b3: c5:38:43:16:a3:72:42:aa:7f:88:19:cf:63:78:f3: 76:12:76:f3:3f:45:24:7e:a7:1b:c9:2b:a4:19:03: 88:7e:0f:d0:b4:73:09:82:66:e3:1a:45:41:33:38: d0:b7:ca:68:66:39:b8:35:54:62:58:ef:7d:a8:2d: 8b:f3:1c:8a:a4:b8:e1:ad:5a:2d:6a:86:09:8b:16: ad:f3:72:8f:38:4e:cc:45:f8:81:f8:17:2a:c6:62: 8d:dd:e8:03:1c:02:b2:fb:ed:64:a0:20:a8:e4:dd: c6:51:3b:e1:bf:0e:27:e4:21:46:ef:69:45:75:b3: d4:3d:70:15:d2:31:83:56:b9:3f:f9:b2:6d:71:c0: 2f:26:ed:3c:b8:22:84:52:f6:80:a6:a8:8f:ae:9c: 52:64:df:03:0a:f2:ea:58:3b:cc:8c:50:c3:0c:26: 92:3d:dd:e2:b6:91:36:b9:56:dc:87:17:e1:2b:d9: f5:9e:50:dd:d6:0d:be:ee:0e:28:18:10:07:93:85: b6:9e:f1:ed:fb:44:d7:88:f6:78:2e:41:1b:ab:5d: 96:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A1:C0:0B:F1:67:3A:D2:9A:6E:08:9C:35:F4:11:C5:8F:59:D6:43 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:9a:5e:1f:fa:64:ce:f2:02:24:65:67:aa:e5:1f:c3:96:05: 4a:44:a8:70:31:32:bf:69:6c:4c:28:99:91:91:6b:32:39:23: 17:5f:9c:15:7f:ad:d4:34:73:f5:5a:62:c7:11:9a:fb:83:aa: b2:1f:05:05:b9:f1:d7:b1:4c:a5:d3:ae:cd:0a:56:38:f8:02: db:02:ad:7d:37:f6:68:25:1f:06:bd:3c:df:ef:ae:0f:64:ca: e3:10:40:5e:f3:3e:2c:b6:ad:5e:2d:fe:e8:84:1f:21:94:20: da:c1:43:86:fe:3f:31:c8:0c:85:4c:c7:fb:5e:59:2d:35:1e: dd:8c:47:1e:af:2c:3a:5c:03:05:e2:58:78:8a:8b:0d:b6:c8: d2:c4:a0:fa:3f:c0:2e:0f:c1:3a:a9:a3:6a:1b:07:d3:49:d1: 1f:67:02:17:0e:b7:92:17:e9:97:f0:cf:31:66:64:73:8f:73: 15:5f:27:ee:03:d5:23:9b:f7:a7:0d:e5:87:11:3b:d9:f4:78: eb:19:e0:1d:c9:70:e6:1f:fd:fc:c8:f4:3e:15:0b:00:06:86: fd:de:82:f7:76:c5:dd:cc:53:c3:1a:40:d9:c5:10:01:6a:dc: ac:8c:6b:b3:96:dc:10:2c:ce:0c:53:c8:e2:3e:28:1a:e3:2d: c8:b3:86:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjUxMTA1MDIyODA2WhcNMjUxMTEyMDIyODA2WjAYMRYwFAYD VQQDEw02OTBhYjYzNi0xYjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtI4QsscMC0ZuOlbfNPsJUSe7m7zrk7+Emn679gYK9AAcN9jd2EQZHCTlarPF OEMWo3JCqn+IGc9jePN2EnbzP0UkfqcbySukGQOIfg/QtHMJgmbjGkVBMzjQt8po Zjm4NVRiWO99qC2L8xyKpLjhrVotaoYJixat83KPOE7MRfiB+BcqxmKN3egDHAKy ++1koCCo5N3GUTvhvw4n5CFG72lFdbPUPXAV0jGDVrk/+bJtccAvJu08uCKEUvaA pqiPrpxSZN8DCvLqWDvMjFDDDCaSPd3itpE2uVbchxfhK9n1nlDd1g2+7g4oGBAH k4W2nvHt+0TXiPZ4LkEbq12WeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMehwAvx ZzrSmm4InDX0EcWPWdZDMB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZml4f+mTO8gIkZWeq5R/DlgVKRKhwMTK/aWxMKJmRkWsyOSMXX5wV f63UNHP1WmLHEZr7g6qyHwUFufHXsUyl067NClY4+ALbAq19N/ZoJR8GvTzf764P ZMrjEEBe8z4stq1eLf7ohB8hlCDawUOG/j8xyAyFTMf7XlktNR7djEceryw6XAMF 4lh4iosNtsjSxKD6P8AuD8E6qaNqGwfTSdEfZwIXDreSF+mX8M8xZmRzj3MVXyfu A9Ujm/enDeWHETvZ9HjrGeAdyXDmH/38yPQ+FQsABob93oL3dsXdzFPDGkDZxRAB atysjGuzltwQLM4MU8jiPiga4y3Is4bp -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:46 2025 by rpki-client