$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft File: tBFqjm2pkf3PcWJue-oR_2nLqEY.mft (raw, json) Hash identifier: 3ONjnpfiIa4kTzH8BQ31uwl5Obg2pIbFhjl9B/6UwE0= Subject key identifier: BB:32:1B:84:9C:3E:CE:66:A7:C5:DE:54:28:0C:AB:F1:2F:57:4E:54 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft Manifest number: 0BFE Signing time: Sat 18 Oct 2025 19:57:04 +0000 Manifest this update: Sat 18 Oct 2025 19:57:03 +0000 Manifest next update: Sat 25 Oct 2025 19:57:03 +0000 Files and hashes: 1: tBFqjm2pkf3PcWJue-oR_2nLqEY.crl (hash: uvZZpExee7AWAKn3NbZ6OjEpkcJ3Co5s7QG3HyEomIs=) 2: 234D0D6C500611F08771CE55C4F9AE02.roa (hash: tT6wpY26Z4BuIfJge3UrKFFEij5wdhpGksDHGEKyueE=) 3: F3B9AEC4740A11F09DAF2A29C4F9AE02.roa (hash: BAnbwoxPeN/akyQ4VZTfLI7vBW7dc5W2AtRL8aSNk8w=) 4: C3CFE8A06B7B11F0B6D16E2AC4F9AE02.roa (hash: FuJ+0zC5emsysfIUM1yM5haaZPmnTrgVqP1fYVReGjo=) 5: 6CAE0142092E11F094B4703FC4F9AE02.roa (hash: dAr5iBEgksscApG/hnOmTYygVomN/E/w8I2tDgWWF54=) 6: 52636904771911F083181320C4F9AE02.roa (hash: 1KusZBNNW/qOCnR0kl7JmRQp5eJkrJEh2HYRqvBUy6w=) 7: 76BF01E88EF511F0BA815369C4F9AE02.roa (hash: IWHAsp5GSTIoMqNKo0F2rFXfmQxpgUta2Oi8tYKu1uo=) 8: B43088B457F311F099129754C4F9AE02.roa (hash: G/js9Bvm1ldv3EUjoboyUhcQNgg/29Bat68H2Q8xFls=) 9: 8B5ED70E821611F0B778F47DC4F9AE02.roa (hash: ec9OX9UoLwyn7wN5VObF9v2iz3RI0N5kTbWroMU/2/c=) 10: 266FDBAE7CA811F099F0EC6BC4F9AE02.roa (hash: bzHe5eQXvAgJqQB53X3rSQRyXfwO/6bU3D4zIt0omyE=) 11: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (hash: EDVStKKxG06lw8JN0F9X4jCTKiN0LdF9zVSZbm6YceU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Oct 18 19:57:03 2025 GMT Not After : Oct 25 19:57:03 2025 GMT Subject: CN=68f3f110-6a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8c:d3:7f:86:c8:e4:73:e5:fa:57:d7:40:00: a2:e8:26:66:c1:27:ae:34:2a:58:d8:c3:b0:4a:19: 41:60:9a:7c:1b:0a:c7:14:ae:3c:b5:ff:7e:bf:e4: 38:b2:b5:3a:1e:cc:2a:16:05:f8:a3:b8:20:e4:bd: 16:22:96:bb:19:5b:ed:87:76:2c:9d:fa:e4:14:67: 53:2d:2f:fe:07:19:83:ba:53:9f:4d:6f:67:35:1c: 34:06:ea:57:03:43:c0:d1:e2:c7:4a:83:f2:e6:07: 23:ab:52:44:d1:7f:fd:8e:85:f5:dd:68:61:1c:b7: 8d:2d:de:4c:55:c1:da:69:3f:0f:fb:48:f4:11:3f: 6d:0f:d9:58:b8:d4:d1:42:73:fb:99:70:8b:6c:77: e4:12:ab:8a:33:69:c2:87:b2:17:34:49:a6:e7:ab: c9:96:03:af:af:15:17:50:95:f2:64:c8:d0:d9:67: 63:39:c8:22:bb:1d:dd:c2:0c:f0:00:61:0b:b0:3d: 06:18:ff:79:38:02:22:02:6a:fd:eb:1c:f6:15:97: 52:ef:ad:3c:20:b2:ff:de:0e:42:72:3d:13:b4:f4: bc:41:55:65:17:a7:d1:05:ee:39:68:04:87:72:16: 18:dd:35:5c:75:bb:90:b4:0d:66:5e:68:2c:58:a6: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:32:1B:84:9C:3E:CE:66:A7:C5:DE:54:28:0C:AB:F1:2F:57:4E:54 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f5:e7:3f:39:5c:02:40:6c:25:29:16:8b:9e:a1:e4:29:f3: ff:23:1f:9e:fc:ae:8d:6b:b9:0c:d2:7c:59:9c:fb:40:9a:7b: 56:70:4c:e3:1f:8c:a7:32:8f:99:36:2f:db:c3:f7:91:c0:6d: a9:42:3e:9d:5b:90:e7:f7:9d:7b:65:ac:d5:4b:a2:78:70:4d: d0:ab:97:4b:32:c4:51:8f:e1:3e:b4:d7:56:13:bb:04:e1:1b: 47:0d:64:d4:62:4f:80:71:39:82:21:1e:12:32:2e:e9:43:1f: 2e:ce:3c:ef:7c:1d:1e:97:11:c9:f9:58:0e:d1:e5:d0:3f:70: 24:fa:27:4e:9a:63:7a:68:21:a5:f9:2c:ac:4d:84:61:c1:b7: 4a:8c:e5:1c:66:6c:2e:dc:f4:61:80:30:8d:6e:58:5c:fd:0a: 5b:e5:b3:04:4a:a5:b4:a8:54:76:67:7e:f2:5c:d6:1a:cc:ab: 40:ce:6e:74:b7:66:e9:32:19:bd:1c:f8:0c:61:56:31:62:28: 3b:92:63:2e:19:2b:df:f0:61:c2:a2:8c:a3:f8:ca:47:c8:51: cd:73:ba:c3:1e:c4:0d:27:c7:3f:b2:c4:d6:5d:c6:88:0e:80: 7a:88:1b:ca:32:5e:d7:52:83:0b:bf:07:11:36:46:0d:a1:3a: 90:5f:df:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUxMDE4MTk1NzAzWhcNMjUxMDI1MTk1NzAzWjAYMRYwFAYD VQQDEw02OGYzZjExMC02YTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIzTf4bI5HPl+lfXQACi6CZmwSeuNCpY2MOwShlBYJp8GwrHFK48tf9+v+Q4 srU6HswqFgX4o7gg5L0WIpa7GVvth3YsnfrkFGdTLS/+BxmDulOfTW9nNRw0BupX A0PA0eLHSoPy5gcjq1JE0X/9joX13WhhHLeNLd5MVcHaaT8P+0j0ET9tD9lYuNTR QnP7mXCLbHfkEquKM2nCh7IXNEmm56vJlgOvrxUXUJXyZMjQ2WdjOcgiux3dwgzw AGELsD0GGP95OAIiAmr96xz2FZdS7608ILL/3g5Ccj0TtPS8QVVlF6fRBe45aASH chYY3TVcdbuQtA1mXmgsWKbjmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsyG4Sc Ps5mp8XeVCgMq/EvV05UMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQwMi9GREJGRDAyMDNEOTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtm M1BjV0p1ZS1vUl8ybkxxRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB9ec/OVwCQGwlKRaLnqHkKfP/Ix+e/K6Na7kM0nxZnPtAmntWcEzj H4ynMo+ZNi/bw/eRwG2pQj6dW5Dn9517ZazVS6J4cE3Qq5dLMsRRj+E+tNdWE7sE 4RtHDWTUYk+AcTmCIR4SMi7pQx8uzjzvfB0elxHJ+VgO0eXQP3Ak+idOmmN6aCGl +SysTYRhwbdKjOUcZmwu3PRhgDCNblhc/Qpb5bMESqW0qFR2Z37yXNYazKtAzm50 t2bpMhm9HPgMYVYxYig7kmMuGSvf8GHCooyj+MpHyFHNc7rDHsQNJ8c/ssTWXcaI DoB6iBvKMl7XUoMLvwcRNkYNoTqQX9+X -----END CERTIFICATE-----Generated at Mon Oct 20 04:19:30 2025 by rpki-client