$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: LN8n1OEFsWZPOlh+LuJ0q9bsIEu679NFBmYK5T+yoTY= Subject key identifier: C7:E5:C3:98:D9:16:09:15:57:02:94:5A:14:81:10:37:49:2D:3D:0E Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 05D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 05CD Signing time: Sun 19 Oct 2025 00:40:40 +0000 Manifest this update: Sun 19 Oct 2025 00:40:40 +0000 Manifest next update: Sun 26 Oct 2025 00:40:40 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: aFhc51azhKVeaOsA1rlQ788Kasw6PY3Vzw0FkLhoqcc=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: /8hy3Bbn1TLOvORzZ60crKTvCR9C6tYBcsWimqCiQa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: Oct 19 00:40:40 2025 GMT Not After : Oct 26 00:40:40 2025 GMT Subject: CN=68f43388-6d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:99:3c:14:35:d3:7f:9f:3f:4a:a4:24:6e:e3: 01:88:fe:53:d4:36:13:8f:14:32:6f:ba:0e:c7:eb: 5a:97:07:c4:82:3f:29:fd:f5:07:3e:8b:c7:ac:bd: bf:63:f4:2d:0e:df:f3:b5:98:46:7b:d4:10:db:62: f1:72:5f:86:fc:6e:06:86:44:61:81:dd:66:be:31: 68:66:cb:8e:bb:66:0d:ea:1f:9a:2b:e7:4a:b8:42: ea:2a:23:75:92:96:99:5c:1c:33:9d:30:10:27:d9: 8e:e1:35:a8:45:fc:46:a5:73:bd:54:19:27:60:1f: 3c:53:38:7a:9f:a4:a2:25:d7:40:89:24:81:46:7a: 36:9d:01:66:e2:df:9f:b7:3b:67:50:15:e5:4e:81: df:e2:40:54:68:ee:5a:d5:c4:1a:f2:aa:bd:b1:db: c3:53:8d:1b:ba:f4:31:a7:62:67:63:8b:17:a0:93: 67:80:ff:3e:2f:fe:3e:08:77:36:a8:47:a0:b2:9d: 65:19:fe:28:ec:40:77:5d:00:d0:32:c7:e7:39:cb: 19:2e:79:0a:4e:70:b7:6e:9d:7d:ac:22:31:a7:f8: aa:83:e8:62:3c:09:57:79:b4:52:5a:a5:58:d7:35: b7:2e:47:8f:52:ff:43:a0:45:97:2f:84:3f:d3:46: 16:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E5:C3:98:D9:16:09:15:57:02:94:5A:14:81:10:37:49:2D:3D:0E X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:34:c2:34:4f:50:fd:4f:78:93:71:b9:9b:a3:37:79:d4:b5: 05:09:f2:e1:b2:25:84:b6:d4:d1:de:3a:f6:4e:21:02:5b:77: c9:93:8e:4d:00:b1:62:88:97:72:f2:78:73:af:e6:3b:b9:db: 19:c4:7a:52:33:d5:c7:45:35:50:78:00:eb:15:14:fc:6b:e9: ab:5f:51:4d:cc:44:25:17:a2:f4:a9:54:c8:d4:9f:e3:22:3a: 76:84:e0:7e:99:18:8c:9c:47:cf:cd:97:2f:a1:b5:e6:bf:c3: e8:44:5a:65:78:ea:26:e7:23:cb:a9:6a:78:84:c0:ea:57:4b: db:15:8d:3e:5d:d7:51:2e:a2:a3:2e:2a:7c:27:30:32:10:41: 90:0b:72:a8:d4:73:5e:23:0e:62:99:b1:b3:fd:38:e4:ae:cb: e8:80:03:08:e0:f0:99:ca:16:1b:27:ed:09:33:f5:76:45:b6: 0e:98:cb:2d:7d:5d:6e:4d:ff:4b:c2:f8:91:1f:4b:d1:d2:7d: 4f:21:0f:d4:a9:61:99:19:05:ff:44:ec:65:6c:55:81:4c:38: 98:28:a1:c4:1a:a1:06:e6:e8:0a:de:d5:0f:4d:5f:67:02:6b: b2:83:e8:28:32:4c:6a:ae:c0:99:01:a4:d4:e4:4d:22:63:67: 58:be:52:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUxMDE5MDA0MDQwWhcNMjUxMDI2MDA0MDQwWjAYMRYwFAYD VQQDEw02OGY0MzM4OC02ZDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpk8FDXTf58/SqQkbuMBiP5T1DYTjxQyb7oOx+talwfEgj8p/fUHPovHrL2/ Y/QtDt/ztZhGe9QQ22Lxcl+G/G4GhkRhgd1mvjFoZsuOu2YN6h+aK+dKuELqKiN1 kpaZXBwznTAQJ9mO4TWoRfxGpXO9VBknYB88Uzh6n6SiJddAiSSBRno2nQFm4t+f tztnUBXlToHf4kBUaO5a1cQa8qq9sdvDU40buvQxp2JnY4sXoJNngP8+L/4+CHc2 qEegsp1lGf4o7EB3XQDQMsfnOcsZLnkKTnC3bp19rCIxp/iqg+hiPAlXebRSWqVY 1zW3LkePUv9DoEWXL4Q/00YWXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMflw5jZ FgkVVwKUWhSBEDdJLT0OMB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/NMI0T1D9T3iTcbmbozd51LUFCfLhsiWEttTR3jr2TiECW3fJk45N ALFiiJdy8nhzr+Y7udsZxHpSM9XHRTVQeADrFRT8a+mrX1FNzEQlF6L0qVTI1J/j Ijp2hOB+mRiMnEfPzZcvobXmv8PoRFpleOom5yPLqWp4hMDqV0vbFY0+XddRLqKj Lip8JzAyEEGQC3Ko1HNeIw5imbGz/TjkrsvogAMI4PCZyhYbJ+0JM/V2RbYOmMst fV1uTf9LwviRH0vR0n1PIQ/UqWGZGQX/ROxlbFWBTDiYKKHEGqEG5ugK3tUPTV9n Amuyg+goMkxqrsCZAaTU5E0iY2dYvlKG -----END CERTIFICATE-----Generated at Mon Oct 20 09:23:48 2025 by rpki-client