$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: XHsy3+OIf/KtBBYLBZF7qSd2bqJ0qn7Z/d/oOIGvcu8= Subject key identifier: 45:4B:64:DE:82:43:25:32:69:C3:40:0A:57:76:76:D6:25:1E:16:1B Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: C0 Signing time: Sun 19 Oct 2025 09:01:29 +0000 Manifest this update: Sun 19 Oct 2025 09:01:28 +0000 Manifest next update: Sun 26 Oct 2025 09:01:28 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: sRm77PSw295x4pldYw5AtZHojgVZIoCwG6Oem8mhjJg=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 2f3u95lJSNskCNREu+ioXj6oMF+zHFPqIr2DagPPIWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Oct 19 09:01:28 2025 GMT Not After : Oct 26 09:01:28 2025 GMT Subject: CN=68f4a8e9-4180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:48:33:3b:da:f1:f6:5b:87:5f:41:f8:fd:65: e1:a2:b2:e5:fb:d6:67:68:ae:f2:2c:5a:1d:a1:5e: 34:7a:c5:67:1b:2c:a8:40:9f:87:47:5a:cb:16:21: fa:cb:8f:cc:0a:6b:bb:41:e4:be:62:1d:cb:c0:f6: a7:bc:89:41:2f:63:5b:6f:37:a2:9a:d9:27:51:84: 2b:53:25:6e:a3:35:2c:34:46:ee:58:ab:48:aa:42: 32:14:1c:db:1f:bc:ad:53:e0:15:9d:56:25:e4:dc: 0c:45:88:6e:5c:5d:c7:40:54:ec:93:ac:6a:2f:75: ce:4e:a6:d2:52:c3:2f:d2:e3:70:ae:c5:ce:fe:f5: 86:f5:55:92:8c:c0:bb:9e:e2:fe:16:e8:7d:f4:90: c2:36:ba:53:c3:da:a5:d6:5b:a8:14:a9:d4:ce:b3: 20:d1:8b:9c:d0:db:4e:af:29:f5:58:31:15:bb:0e: fd:41:2e:3e:87:e2:7a:49:19:4a:c0:31:01:27:ce: 20:97:83:ff:b7:c6:56:cd:be:83:1e:46:c5:38:2b: d4:d9:62:06:db:ec:07:9b:70:44:45:ee:82:86:9b: 9b:f3:79:14:a7:73:9d:63:fa:31:2b:64:47:03:85: 00:91:02:4f:ae:d3:b3:f7:7b:96:71:3c:62:6d:28: 13:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:4B:64:DE:82:43:25:32:69:C3:40:0A:57:76:76:D6:25:1E:16:1B X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:54:5a:d5:3c:ca:26:03:89:38:63:0b:47:0b:47:16:dc:7f: ce:5a:50:35:c4:de:0a:9a:09:bd:25:81:c3:ed:7e:73:77:08: 0d:99:c2:97:64:9f:d5:ce:31:7c:e3:5c:04:d0:b1:5f:af:c1: f8:89:a4:a3:61:9b:da:b4:08:a8:19:cc:1b:d3:26:71:0f:9a: 0c:be:ea:c7:4a:88:00:2f:77:f4:f5:fd:90:c9:71:83:8e:3c: 1a:48:1f:62:25:d4:41:bf:23:d0:8d:d4:d0:47:1b:3c:c3:e2: 0b:c3:21:f2:21:79:15:ef:3f:56:35:be:bc:4b:db:2a:59:09: 51:c3:3c:c4:2e:55:6f:64:45:0a:18:ea:8c:7a:18:c3:70:a3: 40:63:a3:8e:81:ab:b7:69:46:07:0e:00:6f:3f:b1:95:4d:97: 1c:29:55:4b:89:62:3a:96:28:fd:04:1c:dd:0c:7a:d5:72:8e: b0:a0:c9:05:f0:ae:29:56:d9:3e:1a:22:fc:19:0a:d1:07:0e: 2a:f4:73:27:63:5d:b2:73:9f:36:c9:02:a7:4f:db:ec:bd:4a: bc:49:13:21:17:1d:50:02:aa:f7:26:2a:0f:11:15:43:4c:65: dc:39:d1:48:ff:a3:fe:bf:e3:73:31:48:2c:35:18:60:9a:97: 62:1e:47:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUxMDE5MDkwMTI4WhcNMjUxMDI2MDkwMTI4WjAYMRYwFAYD VQQDEw02OGY0YThlOS00MTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEgzO9rx9luHX0H4/WXhorLl+9ZnaK7yLFodoV40esVnGyyoQJ+HR1rLFiH6 y4/MCmu7QeS+Yh3LwPanvIlBL2NbbzeimtknUYQrUyVuozUsNEbuWKtIqkIyFBzb H7ytU+AVnVYl5NwMRYhuXF3HQFTsk6xqL3XOTqbSUsMv0uNwrsXO/vWG9VWSjMC7 nuL+Fuh99JDCNrpTw9ql1luoFKnUzrMg0Yuc0NtOryn1WDEVuw79QS4+h+J6SRlK wDEBJ84gl4P/t8ZWzb6DHkbFOCvU2WIG2+wHm3BERe6Chpub83kUp3OdY/oxK2RH A4UAkQJPrtOz93uWcTxibSgTbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVLZN6C QyUyacNACld2dtYlHhYbMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEVFrVPMomA4k4YwtHC0cW3H/OWlA1xN4Kmgm9JYHD7X5zdwgNmcKX ZJ/VzjF841wE0LFfr8H4iaSjYZvatAioGcwb0yZxD5oMvurHSogAL3f09f2QyXGD jjwaSB9iJdRBvyPQjdTQRxs8w+ILwyHyIXkV7z9WNb68S9sqWQlRwzzELlVvZEUK GOqMehjDcKNAY6OOgau3aUYHDgBvP7GVTZccKVVLiWI6lij9BBzdDHrVco6woMkF 8K4pVtk+GiL8GQrRBw4q9HMnY12yc582yQKnT9vsvUq8SRMhFx1QAqr3JioPERVD TGXcOdFI/6P+v+NzMUgsNRhgmpdiHkeG -----END CERTIFICATE-----Generated at Mon Oct 20 04:11:14 2025 by rpki-client