$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: UFbH/TdkGLvqqLvB96mmAZH6XOd8iNkfDy3rjjyO7/Y= Subject key identifier: 32:5E:CC:C3:5D:E8:04:78:B5:99:22:1A:DA:E1:D7:89:D9:F2:12:CF Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 08A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0AC1 Signing time: Sat 18 Oct 2025 21:40:47 +0000 Manifest this update: Sat 18 Oct 2025 21:40:46 +0000 Manifest next update: Sat 25 Oct 2025 21:40:46 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: th3wpS5t5DRImGACJas7XBZVhUhYfWE5YQiPfRls+Wg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2217 (0x8a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: Oct 18 21:40:46 2025 GMT Not After : Oct 25 21:40:46 2025 GMT Subject: CN=68f4095f-11b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dd:b7:13:47:68:f6:1e:d7:69:79:35:0c:56: 96:98:ec:bf:cb:08:9c:fa:96:82:be:4c:24:e1:21: f9:a1:6f:85:ec:8d:eb:21:71:0e:34:38:c5:7d:23: 22:68:77:09:e7:d4:bc:21:58:5e:c2:4a:70:b4:a8: 0c:bf:7b:36:d8:c2:ff:0d:49:9b:a9:d4:f8:34:af: 2b:60:0f:32:49:fa:dd:78:d3:ad:d0:cf:07:8d:0e: 40:25:4c:8f:46:57:cc:df:44:ac:a3:03:cc:9d:37: 75:bc:9d:63:ee:c2:96:b3:19:4c:8c:3a:da:2b:81: 8f:3f:92:df:9e:d8:a1:5c:4b:a5:d4:0e:14:e5:b1: b6:d9:75:98:34:f6:0b:03:6a:e0:1b:60:20:d2:63: 4f:3d:ad:56:88:04:0e:3f:33:6f:d3:5a:17:4d:d9: 7e:16:bc:bd:da:fb:1f:69:c8:8c:67:1a:f2:14:04: 6a:41:4b:19:eb:b7:90:ff:ae:95:67:e1:f9:43:94: e7:29:60:fc:c3:79:58:b3:63:4b:fb:58:4f:3d:6d: ef:19:9a:bd:e6:0d:1e:6c:4a:13:e1:8c:20:cf:8a: c3:be:25:82:45:c9:c8:92:ef:1e:c3:80:ff:41:b2: b3:2a:7e:35:1b:a7:cf:37:ee:74:a4:22:84:bd:49: 46:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:5E:CC:C3:5D:E8:04:78:B5:99:22:1A:DA:E1:D7:89:D9:F2:12:CF X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:be:e9:63:7d:9b:20:f7:b5:81:d6:4c:a5:25:ac:bd:36:9c: e0:3e:17:f8:c2:33:5c:30:e3:e2:40:7a:7a:4b:ad:4e:4d:79: b4:ba:c0:df:6a:6b:c4:44:82:ce:e1:35:24:97:e4:fe:3a:0d: 0c:7a:d5:c0:09:6c:4e:be:9f:ec:02:25:7e:b9:3c:fa:96:de: e6:0c:4e:b4:df:9e:9d:70:d5:3a:55:c7:51:3a:c7:82:6f:01: 30:ba:14:11:e2:6d:e3:55:35:5f:ed:2a:ce:17:39:ec:69:46: 5a:f2:b1:86:49:61:70:fb:99:c2:1a:9d:cd:2f:48:84:96:3b: 7b:9c:4b:e4:ce:1a:0e:c5:bd:70:ae:02:ba:23:44:f9:ca:92: bf:27:f2:96:bb:c8:ee:e1:e0:07:c5:bb:62:9f:ab:5c:16:8f: b1:c1:71:aa:db:2e:21:2a:5e:db:94:1f:a7:73:63:65:82:3a: c2:ac:03:46:37:03:9a:c5:73:dd:3a:31:62:5b:f5:9f:6b:3a: eb:72:bd:78:31:8e:73:19:62:23:26:53:a0:3f:06:bc:68:21: eb:01:6c:34:10:f4:ef:29:62:8d:90:5d:a7:60:a6:cf:df:de: ba:c0:2d:c5:2c:cd:7c:65:e9:02:1b:69:ef:03:88:3d:b6:d6: 1c:6f:3a:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjUxMDE4MjE0MDQ2WhcNMjUxMDI1MjE0MDQ2WjAYMRYwFAYD VQQDEw02OGY0MDk1Zi0xMWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAut23E0do9h7XaXk1DFaWmOy/ywic+paCvkwk4SH5oW+F7I3rIXEONDjFfSMi aHcJ59S8IVhewkpwtKgMv3s22ML/DUmbqdT4NK8rYA8ySfrdeNOt0M8HjQ5AJUyP RlfM30SsowPMnTd1vJ1j7sKWsxlMjDraK4GPP5LfntihXEul1A4U5bG22XWYNPYL A2rgG2Ag0mNPPa1WiAQOPzNv01oXTdl+Fry92vsfaciMZxryFARqQUsZ67eQ/66V Z+H5Q5TnKWD8w3lYs2NL+1hPPW3vGZq95g0ebEoT4Ywgz4rDviWCRcnIku8ew4D/ QbKzKn41G6fPN+50pCKEvUlG7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJezMNd 6AR4tZkiGtrh14nZ8hLPMB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrvuljfZsg97WB1kylJay9NpzgPhf4wjNcMOPiQHp6S61OTXm0usDf amvERILO4TUkl+T+Og0MetXACWxOvp/sAiV+uTz6lt7mDE60356dcNU6VcdROseC bwEwuhQR4m3jVTVf7SrOFznsaUZa8rGGSWFw+5nCGp3NL0iEljt7nEvkzhoOxb1w rgK6I0T5ypK/J/KWu8ju4eAHxbtin6tcFo+xwXGq2y4hKl7blB+nc2NlgjrCrANG NwOaxXPdOjFiW/Wfazrrcr14MY5zGWIjJlOgPwa8aCHrAWw0EPTvKWKNkF2nYKbP 3966wC3FLM18ZekCG2nvA4g9ttYcbzpk -----END CERTIFICATE-----Generated at Mon Oct 20 04:48:39 2025 by rpki-client