$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: 1vctpohBiD5kPryt8X7KWUnMOAsZl8WYzHo60HykQBU= Subject key identifier: 74:A7:3B:ED:46:D0:61:31:83:F9:99:68:96:09:A1:74:A7:0A:85:39 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 0948 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 0935 Signing time: Sat 18 Oct 2025 21:20:43 +0000 Manifest this update: Sat 18 Oct 2025 21:20:42 +0000 Manifest next update: Sat 25 Oct 2025 21:20:42 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: cBBdKtju5XFaFk+XlijT+ELi146pzwCl2LNGxiMqk7E=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2376 (0x948) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Oct 18 21:20:42 2025 GMT Not After : Oct 25 21:20:42 2025 GMT Subject: CN=68f404ab-f076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:eb:da:f6:df:35:85:79:56:da:f5:71:9d:e2: e7:50:de:f1:b5:3e:5e:c0:fb:be:52:02:a4:c1:e1: d4:c8:91:70:3f:c3:a7:03:86:91:e4:f3:2b:07:90: 53:f9:65:1c:db:f5:bc:e6:b1:e3:d2:83:f2:07:9b: 81:05:db:10:a4:22:7b:d8:21:05:78:43:7e:49:20: d1:79:b9:55:dd:5e:6d:4f:3c:fc:6c:36:1a:49:6a: 1c:f1:20:fa:06:a9:55:55:6b:a0:bf:f5:25:6d:60: 5d:65:7f:11:f7:32:fc:8e:d9:d6:1e:25:f9:98:5a: ba:d8:5c:3d:8c:1a:55:a5:29:91:dd:de:d6:a3:c3: 65:03:44:f5:f7:4d:27:3d:69:35:86:5f:0c:db:c6: 9e:76:e3:05:95:06:f1:45:0e:0c:54:6b:e3:6d:dc: 2b:26:3c:61:da:bf:cd:97:6f:03:6f:71:c1:5c:48: 61:a2:c3:bd:a0:cb:21:e0:75:aa:87:57:a3:76:df: c0:37:67:ef:f9:8c:45:41:72:fe:34:0b:ce:a8:ad: ea:7d:60:66:e4:d2:36:5d:1d:be:de:b7:1a:9b:e2: 85:64:36:dd:04:e0:5e:44:a9:e0:22:97:65:39:10: 4a:98:af:db:fa:66:89:10:4a:ce:6e:07:52:1a:f6: 63:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A7:3B:ED:46:D0:61:31:83:F9:99:68:96:09:A1:74:A7:0A:85:39 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:8d:5a:02:01:e1:57:18:a1:17:c8:82:7b:b8:4c:c8:7a:53: 97:16:85:eb:f8:02:fc:49:e8:0d:e7:65:99:83:da:a8:23:4e: 6f:4a:d7:96:c3:47:fe:79:e1:5c:53:58:9a:e5:30:06:4e:c8: 29:ef:36:a8:3e:99:dc:b8:48:7a:34:75:21:06:cc:63:ce:83: 2d:c6:d9:db:2c:d1:58:d6:ec:68:bf:c7:3d:09:80:4e:79:ff: 4a:3b:9d:80:66:ff:fb:e7:49:5b:c2:2a:d4:0f:c2:c8:47:1f: 48:f2:70:46:39:e9:60:5b:4f:ad:05:ec:9b:d5:56:8b:91:57: 77:8a:de:f3:5a:80:44:83:d7:e6:ca:2f:a2:d5:07:94:80:c4: dc:ab:96:ca:f5:eb:97:42:ae:cf:82:16:43:90:3b:c8:80:da: c9:b2:fb:ee:73:bd:c1:5e:54:d8:09:4d:e0:9a:71:70:05:04: 1e:be:7d:07:f3:e1:43:14:75:94:50:c4:d5:02:d2:a1:55:d9: b7:85:28:71:d6:7c:57:39:2e:b4:a1:a2:4a:58:eb:2d:12:12: 19:79:7f:c4:a4:18:74:39:ce:84:c6:0f:b7:d2:33:64:ae:9b: c8:53:6e:e8:74:81:6c:30:87:d8:b6:3b:85:b2:42:df:29:aa: 72:81:f3:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUxMDE4MjEyMDQyWhcNMjUxMDI1MjEyMDQyWjAYMRYwFAYD VQQDEw02OGY0MDRhYi1mMDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+va9t81hXlW2vVxneLnUN7xtT5ewPu+UgKkweHUyJFwP8OnA4aR5PMrB5BT +WUc2/W85rHj0oPyB5uBBdsQpCJ72CEFeEN+SSDReblV3V5tTzz8bDYaSWoc8SD6 BqlVVWugv/UlbWBdZX8R9zL8jtnWHiX5mFq62Fw9jBpVpSmR3d7Wo8NlA0T1900n PWk1hl8M28aeduMFlQbxRQ4MVGvjbdwrJjxh2r/Nl28Db3HBXEhhosO9oMsh4HWq h1ejdt/AN2fv+YxFQXL+NAvOqK3qfWBm5NI2XR2+3rcam+KFZDbdBOBeRKngIpdl ORBKmK/b+maJEErObgdSGvZjbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSnO+1G 0GExg/mZaJYJoXSnCoU5MB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKjVoCAeFXGKEXyIJ7uEzIelOXFoXr+AL8SegN52WZg9qoI05vSteW w0f+eeFcU1ia5TAGTsgp7zaoPpncuEh6NHUhBsxjzoMtxtnbLNFY1uxov8c9CYBO ef9KO52AZv/750lbwirUD8LIRx9I8nBGOelgW0+tBeyb1VaLkVd3it7zWoBEg9fm yi+i1QeUgMTcq5bK9euXQq7PghZDkDvIgNrJsvvuc73BXlTYCU3gmnFwBQQevn0H 8+FDFHWUUMTVAtKhVdm3hShx1nxXOS60oaJKWOstEhIZeX/EpBh0Oc6Exg+30jNk rpvIU27odIFsMIfYtjuFskLfKapygfPx -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:19 2025 by rpki-client