$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft File: BYQh3nB4BzBHPlzFRboK5dubTAo.mft (raw, json) Hash identifier: 1/YubWMOPtpcr7sPn3oER57Jl0KfnHGuooQvwi/aWkc= Subject key identifier: EF:AC:0A:C4:58:F0:01:A3:0D:C1:B8:47:16:27:10:B5:91:84:94:00 Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A Certificate issuer: /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Certificate serial: 09DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft Manifest number: 09CF Signing time: Mon 20 Oct 2025 17:44:51 +0000 Manifest this update: Mon 20 Oct 2025 17:44:50 +0000 Manifest next update: Mon 27 Oct 2025 17:44:50 +0000 Files and hashes: 1: BYQh3nB4BzBHPlzFRboK5dubTAo.crl (hash: Ic+PaezMv7LwOZQdpiQbddATN8yAQ5cCgwzI/eeZu0c=) 2: 0619825C2F2A11ED9F62040DC4F9AE02.roa (hash: kL+XFv+JIBMzJ5k9XXPNiC6YLDiIMa15JQqj4/UV838=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2523 (0x9db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F7, serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Validity Not Before: Oct 20 17:44:50 2025 GMT Not After : Oct 27 17:44:50 2025 GMT Subject: CN=68f67513-e3e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:42:a2:5b:98:aa:be:85:25:b0:26:3a:ce:c8: bb:cb:f5:56:f1:ea:30:bd:c1:40:8f:52:8e:79:24: e4:ee:41:99:97:cc:76:f8:68:10:60:46:56:92:a1: 37:6b:6a:f1:1d:1b:df:5e:a9:22:0f:00:15:34:73: 3e:9f:53:9f:51:c0:3e:3b:d1:29:b8:f2:52:e6:92: bb:fb:cc:bf:59:88:d0:f4:32:e8:fc:ff:7d:b9:e9: 43:1f:a6:dd:ba:bf:6b:d1:7f:cf:00:bd:8a:8b:6e: c5:bf:4e:3f:4c:01:08:47:c5:d1:31:3f:84:1a:ad: ea:28:21:e4:3d:f7:ce:3a:54:91:1b:ba:c8:15:91: c6:44:e0:91:df:c1:38:ef:46:24:87:e9:99:8b:e3: 1b:68:a3:f1:2f:72:04:c7:70:7e:bc:e4:af:d8:64: 0c:7a:09:72:78:71:71:59:f7:52:7f:01:e2:3b:83: c6:2a:17:09:2c:26:5c:bc:97:7b:22:e5:36:d6:95: 4f:b7:29:22:bb:01:53:82:9c:1b:21:13:c9:66:ee: 21:a8:5a:91:57:e6:c6:1c:0f:b5:65:5c:5e:13:31: 0f:9d:08:ad:7d:10:dc:99:a7:86:9c:b0:fe:89:4d: 18:40:c8:4d:67:9a:45:b2:81:68:a0:2a:0f:a1:c5: 58:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:AC:0A:C4:58:F0:01:A3:0D:C1:B8:47:16:27:10:B5:91:84:94:00 X509v3 Authority Key Identifier: keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:57:47:8e:4d:3b:50:8d:81:98:74:09:46:41:d4:5e:ff:02: 19:32:f7:6a:87:84:ed:eb:77:0c:4d:e3:fa:d0:78:dd:d7:fb: 62:f8:10:db:cd:fe:73:ab:1c:28:ca:fd:1e:1a:c1:6d:ed:7c: 00:39:57:43:38:71:2a:f9:00:55:ed:d2:b0:99:07:d6:3d:56: 4d:4b:30:6c:08:c6:92:6a:d7:bf:ba:cf:bf:84:37:6d:b8:b0: 61:35:42:83:e4:1b:c0:40:00:78:ba:fc:e5:da:ed:b9:6d:99: e3:83:71:77:50:6e:18:ff:72:9c:81:49:f9:4d:c0:fe:df:d4: 42:bd:75:17:63:71:34:62:c7:ed:10:08:fd:ed:51:7b:3d:0f: 64:cf:b3:a6:18:45:3f:09:88:da:38:47:fe:8c:de:32:37:40: 79:a7:91:c5:ac:4f:71:84:4d:c7:54:81:17:bf:89:24:fd:3d: 35:61:08:84:12:91:f6:fb:e2:12:5d:f9:5e:2f:6c:1d:6c:9d: e5:3f:2e:f2:e4:93:08:db:9e:47:75:69:ce:b2:56:3f:03:c2: 94:66:33:fb:a2:50:0f:79:43:1f:24:97:68:ad:59:29:14:f9: 9c:54:c1:c2:f7:67:2e:7e:16:ea:1e:90:26:13:0a:e6:ac:e0: 0b:e9:8e:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyRjcxMTAvBgNVBAUTKDA1ODQyMURFNzA3ODA3MzA0NzNFNUNDNTQ1QkEwQUU1 REI5QjRDMEEwHhcNMjUxMDIwMTc0NDUwWhcNMjUxMDI3MTc0NDUwWjAYMRYwFAYD VQQDEw02OGY2NzUxMy1lM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+kKiW5iqvoUlsCY6zsi7y/VW8eowvcFAj1KOeSTk7kGZl8x2+GgQYEZWkqE3 a2rxHRvfXqkiDwAVNHM+n1OfUcA+O9EpuPJS5pK7+8y/WYjQ9DLo/P99uelDH6bd ur9r0X/PAL2Ki27Fv04/TAEIR8XRMT+EGq3qKCHkPffOOlSRG7rIFZHGROCR38E4 70Ykh+mZi+MbaKPxL3IEx3B+vOSv2GQMeglyeHFxWfdSfwHiO4PGKhcJLCZcvJd7 IuU21pVPtykiuwFTgpwbIRPJZu4hqFqRV+bGHA+1ZVxeEzEPnQitfRDcmaeGnLD+ iU0YQMhNZ5pFsoFooCoPocVYXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+sCsRY 8AGjDcG4RxYnELWRhJQAMB8GA1UdIwQYMBaAFAWEId5weAcwRz5cxUW6CuXbm0wK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjJGNy81RUFDNjE0NDhG QTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6QkhQbHpGUmJvSzVkdWJU QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZUWgzbkI0QnpCSFBsekZSYm9LNWR1YlRBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjJGNy81RUFDNjE0NDhGQTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6 QkhQbHpGUmJvSzVkdWJUQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoV0eOTTtQjYGYdAlGQdRe/wIZMvdqh4Tt63cMTeP60Hjd1/ti+BDb zf5zqxwoyv0eGsFt7XwAOVdDOHEq+QBV7dKwmQfWPVZNSzBsCMaSate/us+/hDdt uLBhNUKD5BvAQAB4uvzl2u25bZnjg3F3UG4Y/3KcgUn5TcD+39RCvXUXY3E0Ysft EAj97VF7PQ9kz7OmGEU/CYjaOEf+jN4yN0B5p5HFrE9xhE3HVIEXv4kk/T01YQiE EpH2++ISXfleL2wdbJ3lPy7y5JMI255HdWnOslY/A8KUZjP7olAPeUMfJJdorVkp FPmcVMHC92cufhbqHpAmEwrmrOAL6Y4G -----END CERTIFICATE-----Generated at Mon Oct 20 19:57:48 2025 by rpki-client