$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: MDA/SxVqt42T44VF3V5t64l54VRsBsNSwS5QQvlI7Pc= Subject key identifier: D2:32:01:0A:5A:4C:0B:7E:B8:E1:78:C1:F4:C2:69:62:7D:78:96:FC Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 1307 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 12FB Signing time: Sat 18 Oct 2025 17:32:33 +0000 Manifest this update: Sat 18 Oct 2025 17:32:32 +0000 Manifest next update: Sat 25 Oct 2025 17:32:32 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: mpxqodrUQL4xZuH2gcPQHa3qgzUy6DtTDAyPIwCy1Wo=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zpfEObk6bGVxgP9cE546XnlUvOzTcNHctZB0k7/qSd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4871 (0x1307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Oct 18 17:32:32 2025 GMT Not After : Oct 25 17:32:32 2025 GMT Subject: CN=68f3cf30-1de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f2:a7:ef:8c:31:01:a5:00:b9:49:52:ec:54: 59:0d:08:ee:f3:87:72:4b:2b:c1:1f:b3:7d:e8:2c: 87:5a:9e:eb:e3:de:20:60:6a:34:79:fa:ba:41:c2: b5:64:b7:e4:68:3a:4f:d2:09:77:be:d3:0d:4e:84: dc:68:1b:95:93:a1:e7:d6:1d:b2:a1:63:04:b6:af: b7:72:bc:04:06:ae:a6:ce:20:85:b4:00:9d:ce:9c: 18:8c:39:42:e2:64:97:5f:06:19:ee:49:46:2c:92: 92:f4:59:97:f2:c2:ed:43:3a:0c:d3:f2:3d:20:f7: e3:77:13:71:0a:ec:84:86:81:4f:44:b5:09:9c:8d: fe:dc:84:ac:5b:b0:b2:da:40:e5:e1:2e:15:71:df: 80:bc:f0:36:38:d8:3d:df:5d:46:63:b6:0c:8e:73: a4:42:7d:85:38:47:56:b7:f2:77:82:ef:4a:3c:04: 79:dd:94:bf:a7:3e:f6:55:6c:da:8c:ac:a5:d7:0d: b5:f8:38:1c:3c:e1:40:02:71:b7:da:bd:64:15:3f: 4f:c0:30:8f:4f:61:c9:7b:72:78:bd:a1:0e:6d:85: b7:48:9a:dd:e8:e0:1d:cd:5d:2d:d0:5d:48:71:cc: b1:83:66:be:ec:af:e9:a8:37:8f:9a:ac:8d:d9:c9: c4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:32:01:0A:5A:4C:0B:7E:B8:E1:78:C1:F4:C2:69:62:7D:78:96:FC X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:d4:ab:f4:ed:5c:7f:ca:b0:35:c1:a4:11:f8:97:50:99:ea: 9c:f4:7a:f8:d9:e0:bf:82:24:7d:03:56:7b:1f:d6:0b:7f:77: c3:73:ea:54:eb:53:b3:82:7a:79:b7:68:66:02:ad:c2:cd:0a: 3c:ff:50:fd:18:f5:ca:1c:b1:24:db:34:69:4c:2b:c6:f3:4a: 62:77:3c:cd:a2:0a:69:3f:2a:20:ce:33:a2:c1:8c:c5:dc:4c: 5f:79:e1:64:c9:9d:fa:2a:45:db:6c:13:b0:c6:4b:1f:7d:81: 26:d0:b0:45:72:c1:76:c5:19:4d:31:f7:2a:55:5b:73:14:d2: dc:2f:b0:3c:80:4c:5c:2f:ac:00:fe:3e:dc:5c:6d:1f:85:69: cc:78:2a:68:b2:2a:22:e2:db:e0:50:a4:99:30:60:5c:3e:d3: 1a:a3:a7:aa:66:f6:e1:6a:7d:df:87:f7:62:08:2e:5a:7b:3d: 75:27:4c:80:c6:02:0f:35:a2:89:63:eb:85:16:9a:87:66:41: e5:ab:21:5d:89:e6:9b:45:0b:79:85:57:14:96:e5:2d:a8:a4: 7a:12:4c:ba:a8:bd:18:86:b0:21:1e:58:aa:c6:3a:87:f9:d6: ee:9f:56:5a:ac:2b:c8:81:9d:e7:c6:af:7e:ec:49:5e:23:ee: 3f:ff:f5:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUxMDE4MTczMjMyWhcNMjUxMDI1MTczMjMyWjAYMRYwFAYD VQQDEw02OGYzY2YzMC0xZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvKn74wxAaUAuUlS7FRZDQju84dySyvBH7N96CyHWp7r494gYGo0efq6QcK1 ZLfkaDpP0gl3vtMNToTcaBuVk6Hn1h2yoWMEtq+3crwEBq6mziCFtACdzpwYjDlC 4mSXXwYZ7klGLJKS9FmX8sLtQzoM0/I9IPfjdxNxCuyEhoFPRLUJnI3+3ISsW7Cy 2kDl4S4Vcd+AvPA2ONg9311GY7YMjnOkQn2FOEdWt/J3gu9KPAR53ZS/pz72VWza jKyl1w21+DgcPOFAAnG32r1kFT9PwDCPT2HJe3J4vaEObYW3SJrd6OAdzV0t0F1I ccyxg2a+7K/pqDePmqyN2cnECQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIyAQpa TAt+uOF4wfTCaWJ9eJb8MB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu1Kv07Vx/yrA1waQR+JdQmeqc9Hr42eC/giR9A1Z7H9YLf3fDc+pU 61Ozgnp5t2hmAq3CzQo8/1D9GPXKHLEk2zRpTCvG80pidzzNogppPyogzjOiwYzF 3ExfeeFkyZ36KkXbbBOwxksffYEm0LBFcsF2xRlNMfcqVVtzFNLcL7A8gExcL6wA /j7cXG0fhWnMeCposioi4tvgUKSZMGBcPtMao6eqZvbhan3fh/diCC5aez11J0yA xgIPNaKJY+uFFpqHZkHlqyFdieabRQt5hVcUluUtqKR6Eky6qL0YhrAhHliqxjqH +dbun1ZarCvIgZ3nxq9+7EleI+4///Vl -----END CERTIFICATE-----Generated at Mon Oct 20 16:05:02 2025 by rpki-client