$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: 59cvnXLfrRzULDCj7iSwoN8bs4kKu5TNgJ2ejCtMJeM= Subject key identifier: 9F:A1:11:29:9E:32:BE:B4:2E:7E:1A:81:1F:E2:CA:42:45:0D:F2:00 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0D9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0D79 Signing time: Sat 18 Oct 2025 18:38:36 +0000 Manifest this update: Sat 18 Oct 2025 18:38:36 +0000 Manifest next update: Sat 25 Oct 2025 18:38:36 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: pJ7zgbjESIdTPklb6+Mk/eDO0iYNzV90KHzZr/LgK1A=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: tsWCAJh3hDUuF0jt3mDhnNo48pJ1cTxWnbkE+ZQXBxw=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: BThAKf2icEZsZqpXgnFl9VpqvpRKYGs7e0515Blb0yw=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: zpETj3vTU+4JGJFNH2bJangxDJpoV//my0UXRjaLeMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3483 (0xd9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Oct 18 18:38:36 2025 GMT Not After : Oct 25 18:38:36 2025 GMT Subject: CN=68f3deac-9dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:62:d2:a4:35:f2:f5:cf:d6:8b:04:4c:10: 42:ff:7a:d4:4b:e1:c4:f0:2e:15:93:9c:e2:e2:8b: 98:ce:77:fb:3e:bb:6f:ba:c5:2e:b6:00:5c:c9:2c: d2:d1:9c:46:83:86:e1:7d:f7:40:bb:0e:7d:51:12: 4f:2d:ae:64:15:d2:3a:95:58:98:d6:6b:e7:51:f3: 60:ec:b0:29:a0:4b:b6:17:d3:5d:3e:e2:21:02:4e: bb:cf:9c:b0:ca:7b:51:c1:9b:ab:cd:9a:07:90:ec: af:cf:17:ae:6f:c5:a6:83:ed:2c:ac:47:b9:6f:9a: 50:9a:07:bc:fc:c4:53:82:60:3a:a4:c1:44:5f:82: 0e:33:2e:80:75:4d:c0:27:70:5d:a9:52:ae:b8:dc: 86:67:6b:22:1e:e5:48:e3:4e:6d:1c:53:0f:dc:7d: 55:d3:9d:0e:3d:be:b1:56:87:85:07:30:25:b2:ba: 14:69:9d:71:e5:9d:f6:f6:2d:d9:c0:d3:4b:0f:79: 12:27:b3:16:f2:2b:1c:92:8e:0a:4f:ba:32:06:96: 2e:81:01:c8:91:92:3b:e9:a0:a1:11:3b:d7:ea:68: 54:18:bd:f3:11:13:fe:0d:db:a2:36:1c:1e:45:c6: 9f:f9:a1:13:b1:a9:50:96:90:71:c5:50:d3:8d:b3: f8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A1:11:29:9E:32:BE:B4:2E:7E:1A:81:1F:E2:CA:42:45:0D:F2:00 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:9d:b0:a3:2a:1b:fd:26:22:5e:b2:c4:09:95:61:2f:cb:5e: ea:3f:16:8c:56:92:69:71:d9:d1:a7:a0:82:66:01:35:b1:dd: 2a:3f:97:8f:25:c1:1e:4f:9f:b7:62:e6:90:3e:3a:58:35:29: 7c:d1:f1:59:f3:dc:5c:6d:fa:2f:75:08:7d:62:54:57:f3:c9: 3d:68:bd:0e:89:48:fa:f5:4c:dc:06:34:24:76:71:23:c8:e9: 80:61:6f:d1:ce:e4:39:3a:2e:3c:50:75:d4:6e:d5:1e:53:ac: 6b:c5:51:e8:49:17:e6:e4:b4:40:e8:af:c2:a0:62:34:5c:21: 64:03:3d:2e:60:47:de:36:43:bc:b9:38:8c:74:d5:84:04:66: 13:d7:87:9d:0b:1d:bb:d9:f6:57:17:c0:71:41:8c:af:02:5c: 29:7f:15:99:e3:04:ab:8f:13:d0:60:e9:7b:e7:fa:af:f7:4d: ed:ad:fa:3b:a6:bf:8a:7a:9c:7f:fb:49:9a:d8:d4:47:ab:b2: f7:1f:0a:b1:c2:d5:8c:50:43:71:8f:90:64:01:31:80:27:3f: b3:bc:a9:77:d7:c3:3a:da:65:0f:a0:8c:73:27:46:1d:d2:36: 18:2e:21:08:48:5d:9f:c7:34:67:ae:34:c7:d8:74:8b:76:1a: 24:63:9a:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUxMDE4MTgzODM2WhcNMjUxMDI1MTgzODM2WjAYMRYwFAYD VQQDEw02OGYzZGVhYy05ZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfJi0qQ18vXP1osETBBC/3rUS+HE8C4Vk5zi4ouYznf7PrtvusUutgBcySzS 0ZxGg4bhffdAuw59URJPLa5kFdI6lViY1mvnUfNg7LApoEu2F9NdPuIhAk67z5yw yntRwZurzZoHkOyvzxeub8Wmg+0srEe5b5pQmge8/MRTgmA6pMFEX4IOMy6AdU3A J3BdqVKuuNyGZ2siHuVI405tHFMP3H1V050OPb6xVoeFBzAlsroUaZ1x5Z329i3Z wNNLD3kSJ7MW8iscko4KT7oyBpYugQHIkZI76aChETvX6mhUGL3zERP+DduiNhwe Rcaf+aETsalQlpBxxVDTjbP4KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+hESme Mr60Ln4agR/iykJFDfIAMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAinbCjKhv9JiJessQJlWEvy17qPxaMVpJpcdnRp6CCZgE1sd0qP5eP JcEeT5+3YuaQPjpYNSl80fFZ89xcbfovdQh9YlRX88k9aL0OiUj69UzcBjQkdnEj yOmAYW/RzuQ5Oi48UHXUbtUeU6xrxVHoSRfm5LRA6K/CoGI0XCFkAz0uYEfeNkO8 uTiMdNWEBGYT14edCx272fZXF8BxQYyvAlwpfxWZ4wSrjxPQYOl75/qv903trfo7 pr+Kepx/+0ma2NRHq7L3HwqxwtWMUENxj5BkATGAJz+zvKl318M62mUPoIxzJ0Yd 0jYYLiEISF2fxzRnrjTH2HSLdhokY5qc -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:46 2025 by rpki-client