$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: Gl3mTmIQAe9yihLkp9B9YniD7Ov5MgyTekESaqk/2i8= Subject key identifier: 1A:34:82:F3:AA:31:40:05:32:F1:29:2A:57:ED:DE:60:89:D3:DA:6B Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F73 Signing time: Sat 18 Oct 2025 18:10:17 +0000 Manifest this update: Sat 18 Oct 2025 18:10:16 +0000 Manifest next update: Sat 25 Oct 2025 18:10:16 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: HuukjO9PgTAmLyAWT6PTopDnqhmiR1Dnu4ics4RCo5w=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3964 (0xf7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Oct 18 18:10:16 2025 GMT Not After : Oct 25 18:10:16 2025 GMT Subject: CN=68f3d809-fc84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:59:cd:79:fd:a1:17:48:f5:30:56:a6:18:c4: 6e:7a:89:0a:a4:b8:7b:d0:1f:c9:4e:b0:85:70:c3: 45:e0:22:85:0d:56:c6:b8:a4:3f:b1:9f:8e:59:0f: a7:7a:bf:3e:fc:70:ae:e9:31:31:e4:1a:af:66:a7: cc:5c:32:67:f0:56:30:cb:89:02:21:8e:74:2d:1d: 1e:40:c6:1b:6e:b4:c8:2f:8d:ae:6a:8d:c2:2c:d3: 65:e6:4c:4a:c7:5a:11:3e:14:c9:ff:74:0f:f7:ae: 8b:5c:96:48:47:c6:9d:a9:4b:b9:84:64:de:36:9d: 37:ed:e2:4a:c2:d5:4d:17:17:3e:10:63:fe:db:c6: ce:e3:05:f3:5c:92:4c:e2:2b:90:2c:6c:10:26:05: 29:f0:ab:04:71:7c:00:20:98:03:20:11:23:86:ac: 72:20:f9:7b:eb:90:78:07:f8:21:57:11:10:84:16: 83:a2:8b:95:7c:95:71:7c:c7:dc:00:78:14:5a:ec: d0:e1:e6:ed:6f:9c:3a:de:0c:93:85:d2:2a:50:f2: 0e:b0:75:04:3b:b6:f9:2e:64:5c:77:b8:62:6b:d9: 7a:70:23:a3:44:60:a3:d3:d2:23:9f:09:0e:cd:27: f6:65:e2:9d:0a:9d:57:b1:cd:fb:59:d5:66:21:1e: 15:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:34:82:F3:AA:31:40:05:32:F1:29:2A:57:ED:DE:60:89:D3:DA:6B X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:fd:51:21:c9:f5:38:ad:38:a8:9d:af:62:3e:2b:14:4a:71: f9:73:c2:3e:ad:6c:a1:19:d5:52:56:b6:15:5e:77:8d:c0:4b: 77:46:dc:48:32:d0:ec:d3:98:f0:3f:ab:bb:d3:79:39:3b:e1: fb:21:c2:fb:3b:b2:11:53:37:b5:78:9c:70:c2:14:ad:20:00: b2:ab:15:52:2e:a0:13:4a:e9:38:64:b0:1b:f7:12:08:70:58: fc:ec:5e:ff:9f:ca:19:a5:6e:1e:8f:71:a1:0a:bf:a4:e7:86: 8e:b6:e8:7e:43:c2:4d:ea:71:07:6e:89:e7:14:13:0c:e7:6c: db:3a:48:1f:39:55:e5:49:50:25:8a:8b:6b:60:62:bc:c2:b1: 28:8a:e0:ca:bb:70:e2:15:30:32:40:28:b6:45:3f:d5:58:05: ac:b2:4d:42:18:fb:3c:f3:88:9c:0a:b6:56:c7:b0:9a:87:a4: 66:7a:12:cf:2d:ca:4f:76:e2:b3:49:4f:e3:d0:78:5d:0c:cd: 98:a7:7a:8c:94:4e:35:22:cb:7e:fc:0c:24:84:eb:be:4c:26: c8:51:38:73:36:7e:b5:16:88:9b:fe:67:30:a2:d5:9a:7b:f9: e0:8e:a8:c5:4f:c8:5f:98:38:28:e1:cd:6c:e8:43:8a:79:29: 66:15:25:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUxMDE4MTgxMDE2WhcNMjUxMDI1MTgxMDE2WjAYMRYwFAYD VQQDEw02OGYzZDgwOS1mYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVnNef2hF0j1MFamGMRueokKpLh70B/JTrCFcMNF4CKFDVbGuKQ/sZ+OWQ+n er8+/HCu6TEx5BqvZqfMXDJn8FYwy4kCIY50LR0eQMYbbrTIL42uao3CLNNl5kxK x1oRPhTJ/3QP966LXJZIR8adqUu5hGTeNp037eJKwtVNFxc+EGP+28bO4wXzXJJM 4iuQLGwQJgUp8KsEcXwAIJgDIBEjhqxyIPl765B4B/ghVxEQhBaDoouVfJVxfMfc AHgUWuzQ4ebtb5w63gyThdIqUPIOsHUEO7b5LmRcd7hia9l6cCOjRGCj09IjnwkO zSf2ZeKdCp1Xsc37WdVmIR4VLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBo0gvOq MUAFMvEpKlft3mCJ09prMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc/VEhyfU4rTiona9iPisUSnH5c8I+rWyhGdVSVrYVXneNwEt3RtxI MtDs05jwP6u703k5O+H7IcL7O7IRUze1eJxwwhStIACyqxVSLqATSuk4ZLAb9xII cFj87F7/n8oZpW4ej3GhCr+k54aOtuh+Q8JN6nEHbonnFBMM52zbOkgfOVXlSVAl iotrYGK8wrEoiuDKu3DiFTAyQCi2RT/VWAWssk1CGPs884icCrZWx7Cah6RmehLP LcpPduKzSU/j0HhdDM2Yp3qMlE41Ist+/AwkhOu+TCbIUThzNn61Foib/mcwotWa e/ngjqjFT8hfmDgo4c1s6EOKeSlmFSWH -----END CERTIFICATE-----Generated at Mon Oct 20 09:24:58 2025 by rpki-client