$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft File: bLOCDaWkqEstlAm98H8lRf5tCxE.mft (raw, json) Hash identifier: JBZZnsNZlf38BT3UcaBt43z2MBLA9VAI9IARBYbgl90= Subject key identifier: C0:7F:62:78:CE:E9:66:7B:DF:21:21:BF:AA:50:FA:92:1D:58:C4:2D Authority key identifier: 6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 Certificate issuer: /CN=A91CB063/serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft Manifest number: 8C Signing time: Sun 19 Oct 2025 09:49:13 +0000 Manifest this update: Sun 19 Oct 2025 09:49:12 +0000 Manifest next update: Sun 26 Oct 2025 09:49:12 +0000 Files and hashes: 1: bLOCDaWkqEstlAm98H8lRf5tCxE.crl (hash: VqyqbFjIExZKf/rjU1KJN01BEM7Ebnw2eurbfWa4k34=) 2: 3D3827F2D6EE11EFB955866CC4F9AE02.roa (hash: 4d4Ou4cSb0acdXH9Bn2waQ4IMkbvtakYfcIPMGQdXao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Validity Not Before: Oct 19 09:49:12 2025 GMT Not After : Oct 26 09:49:12 2025 GMT Subject: CN=68f4b418-8dc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:41:11:e9:b7:d7:12:e2:b3:a7:4e:39:87:46: 59:4e:8a:f2:33:56:bc:dc:98:cd:f6:76:1a:79:25: 55:cf:07:20:37:2f:65:58:0f:ec:21:95:82:3c:36: 85:33:d8:fa:17:94:73:1c:cb:2e:d0:86:02:1f:e3: 43:a9:77:cb:1a:94:98:59:26:79:89:3c:1f:db:d7: 35:72:25:e8:57:54:f5:e9:5c:2c:f5:dc:55:4f:b4: 8f:93:1c:43:24:aa:89:36:48:1f:e3:34:8d:2d:39: 23:34:0a:e8:8d:c4:65:e4:b5:60:19:22:ed:3e:b0: 2c:fc:e2:b0:6a:54:c3:05:c1:7f:41:2c:b9:a3:b6: 57:68:ba:86:7b:26:7d:07:fc:53:e3:55:e5:53:3d: b9:58:64:46:2d:3e:7c:73:90:fc:ae:96:e1:eb:c1: 91:07:8e:c0:d5:69:66:76:6b:53:37:b6:d8:43:1e: 58:c5:f5:ef:d0:a4:35:88:82:8d:9e:81:87:d5:28: dd:be:c0:18:3a:1b:02:3d:d6:6e:ab:fa:78:24:22: ae:b7:0e:48:d2:fd:9c:2c:c1:fd:e8:66:22:f7:ef: ac:5a:68:17:98:78:0d:3c:23:73:b0:28:6f:90:bf: 01:a7:b7:67:10:b9:2f:c4:08:14:fd:01:74:28:f6: 4d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:7F:62:78:CE:E9:66:7B:DF:21:21:BF:AA:50:FA:92:1D:58:C4:2D X509v3 Authority Key Identifier: keyid:6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:3f:d8:31:cc:05:73:b2:70:f4:1d:56:a8:34:03:d6:e9:bf: 8a:02:c4:26:80:c6:ca:23:5d:9e:06:9e:a8:b8:8b:2f:a2:a8: 13:dc:4b:c1:76:6e:45:c2:39:42:db:19:ff:71:fb:40:2c:1e: 0c:80:84:26:96:b5:f8:ab:5a:5a:6e:65:25:09:70:03:c1:45: 26:0d:5b:d4:47:28:ee:b6:a5:c7:31:fc:3c:1f:55:c9:e3:df: f5:53:d8:73:8a:c7:00:40:c4:9b:4e:ab:0d:4c:6c:27:30:cc: ba:b8:8a:a2:4e:58:88:05:20:88:ca:e8:08:3d:b7:b0:18:bb: d8:02:ae:5f:1d:86:6e:83:9d:0a:2c:2e:d9:cc:0d:16:d2:fa: b4:23:1f:08:15:f3:7b:09:19:93:32:6e:5c:49:8b:0b:d2:e9: c1:08:b9:f0:96:b6:8f:b4:f0:1a:68:72:75:00:65:d6:0e:69: d0:7a:b2:af:49:a5:23:91:f3:5b:b2:ae:f5:7a:6a:d7:6e:45: cc:65:35:01:41:5e:90:8e:94:fe:1f:7b:84:10:30:c8:f7:9d: 44:66:97:65:cf:ae:85:fd:41:02:3b:27:fe:5b:18:c5:40:aa: 4a:4c:e3:bf:04:98:ea:7d:7e:f6:7d:22:89:00:d1:af:ef:04: 6f:5f:4e:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IwNjMxMTAvBgNVBAUTKDZDQjM4MjBEQTVBNEE4NEIyRDk0MDlCREYwN0YyNTQ1 RkU2RDBCMTEwHhcNMjUxMDE5MDk0OTEyWhcNMjUxMDI2MDk0OTEyWjAYMRYwFAYD VQQDEw02OGY0YjQxOC04ZGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EER6bfXEuKzp045h0ZZToryM1a83JjN9nYaeSVVzwcgNy9lWA/sIZWCPDaF M9j6F5RzHMsu0IYCH+NDqXfLGpSYWSZ5iTwf29c1ciXoV1T16Vws9dxVT7SPkxxD JKqJNkgf4zSNLTkjNArojcRl5LVgGSLtPrAs/OKwalTDBcF/QSy5o7ZXaLqGeyZ9 B/xT41XlUz25WGRGLT58c5D8rpbh68GRB47A1WlmdmtTN7bYQx5YxfXv0KQ1iIKN noGH1SjdvsAYOhsCPdZuq/p4JCKutw5I0v2cLMH96GYi9++sWmgXmHgNPCNzsChv kL8Bp7dnELkvxAgU/QF0KPZNmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMB/YnjO 6WZ73yEhv6pQ+pIdWMQtMB8GA1UdIwQYMBaAFGyzgg2lpKhLLZQJvfB/JUX+bQsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjA2My82QzBGOTYxMEQ2 RUQxMUVGOUQ5QkYzNkFDNEY5QUUwMi9iTE9DRGFXa3FFc3RsQW05OEg4bFJmNXRD eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMT0NEYVdrcUVzdGxBbTk4SDhsUmY1dEN4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjA2My82QzBGOTYxMEQ2RUQxMUVGOUQ5QkYzNkFDNEY5QUUwMi9iTE9DRGFXa3FF c3RsQW05OEg4bFJmNXRDeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQP9gxzAVzsnD0HVaoNAPW6b+KAsQmgMbKI12eBp6ouIsvoqgT3EvB dm5FwjlC2xn/cftALB4MgIQmlrX4q1pabmUlCXADwUUmDVvURyjutqXHMfw8H1XJ 49/1U9hziscAQMSbTqsNTGwnMMy6uIqiTliIBSCIyugIPbewGLvYAq5fHYZug50K LC7ZzA0W0vq0Ix8IFfN7CRmTMm5cSYsL0unBCLnwlraPtPAaaHJ1AGXWDmnQerKv SaUjkfNbsq71emrXbkXMZTUBQV6QjpT+H3uEEDDI951EZpdlz66F/UECOyf+WxjF QKpKTOO/BJjqfX72fSKJANGv7wRvX06/ -----END CERTIFICATE-----Generated at Mon Oct 20 21:40:37 2025 by rpki-client