$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft (raw, json) Hash identifier: ACfmfl4hIBw+bTcvmxolUCoNH7OQykysqhfLz6Gg66c= Subject key identifier: 83:3F:2A:CA:50:EE:AB:73:22:CA:2F:46:EA:23:8E:16:A8:D4:B4:24 Authority key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 Certificate issuer: /CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Certificate serial: 06A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft Manifest number: 0699 Signing time: Sat 18 Oct 2025 21:13:15 +0000 Manifest this update: Sat 18 Oct 2025 21:13:14 +0000 Manifest next update: Sat 25 Oct 2025 21:13:14 +0000 Files and hashes: 1: bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl (hash: kERlhgajNZDWK4BGpFfQ9NXEXwcJNKActP85zRn8phw=) 2: 815931708D5411EB9DA31875C4F9AE02.roa (hash: wkR9MpAoedittpXX5DyOaKSrmisF/2g7AwvLAD2b1Jc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1697 (0x6a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDDA7, serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Validity Not Before: Oct 18 21:13:14 2025 GMT Not After : Oct 25 21:13:14 2025 GMT Subject: CN=68f402ea-be57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e6:f0:3b:b8:7e:55:8f:cf:5d:ea:a6:42:21: 2f:78:31:37:3b:f1:54:3a:c4:e9:c6:72:2a:db:76: 4c:0c:fe:b5:b7:5f:a1:81:c7:9f:22:72:0f:b4:52: e0:26:4f:49:ae:b1:0f:e4:09:d9:15:32:50:0d:85: de:38:25:6c:78:c2:0e:00:13:20:23:33:d0:18:c7: f0:76:f5:7f:c0:48:33:7e:00:6b:ee:9e:ab:7a:91: 8c:16:dc:85:1a:ac:79:6c:73:4d:bc:53:88:46:46: fb:21:ac:d4:e5:01:8d:e7:9b:89:60:9f:4f:c9:e0: 79:68:38:cf:ae:a0:2c:bb:60:7a:2b:39:09:b2:5e: 5d:0a:e2:9c:9f:44:bc:c4:b4:32:f1:05:81:c3:28: 66:d6:e7:98:ca:f9:4e:79:62:15:dd:99:68:ff:5b: 16:65:96:44:28:94:99:58:9f:13:b7:3c:bc:96:99: 9d:6a:b5:1d:22:1b:64:9a:3b:9b:7b:90:a8:78:7d: 87:95:29:81:67:d6:34:60:e6:b7:55:d3:25:15:49: c3:41:5f:78:7f:b2:39:c4:6e:6e:bc:52:e7:99:f8: 8b:f2:04:7a:0d:c7:6a:96:17:0b:77:2d:bc:07:71: c7:7a:36:81:6a:b4:9d:e1:38:67:a3:2c:23:04:49: 1a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3F:2A:CA:50:EE:AB:73:22:CA:2F:46:EA:23:8E:16:A8:D4:B4:24 X509v3 Authority Key Identifier: keyid:6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:bf:c1:b9:4b:83:16:1a:ac:02:10:8a:6b:70:63:e0:c2:dc: 7a:8e:ef:69:e2:85:08:ea:cb:3b:05:3e:23:82:79:8f:5b:ca: 61:e5:92:3a:44:c4:d5:c9:3e:16:5f:f8:30:05:ad:23:b9:13: f6:ee:9e:0b:1f:91:19:82:d1:d6:7b:2e:6c:a9:30:8d:10:cd: 35:57:3f:e2:24:ea:29:cc:21:ea:bf:5a:60:51:f2:b4:9c:f1: b8:95:d8:25:a4:94:57:9a:81:38:d8:d0:26:5b:61:42:9e:b5: bd:83:96:bb:fa:11:08:5e:f3:60:e0:c6:e6:98:f2:61:e7:6b: bc:f8:27:eb:ad:e7:e2:5a:ce:4c:7c:d6:1d:99:3b:dc:5c:42: 75:ef:d8:00:3e:92:fc:e8:bb:21:30:e2:b5:fa:29:b9:cd:71: 56:a3:b6:e2:43:2d:2c:bd:a9:73:4b:7e:24:13:9f:6b:ed:04: 64:31:ab:db:9b:2a:19:90:4a:09:47:06:69:19:90:25:83:60: 0f:08:23:62:26:6c:3c:fe:d4:69:b2:04:0e:f7:d7:a4:c7:ee: 3c:d2:4c:8f:0d:a9:11:9d:a1:ab:00:6c:40:84:e8:06:be:51: 06:67:4f:6a:e4:13:72:bb:20:9e:be:97:3a:db:8c:16:e1:07: d3:3e:d1:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REREQTcxMTAvBgNVBAUTKDZFM0Y2QTRDQkQyQzc2NTFCNDkwRUI2NDkwNEJCRkYx RjQ2MjAxRDUwHhcNMjUxMDE4MjExMzE0WhcNMjUxMDI1MjExMzE0WjAYMRYwFAYD VQQDEw02OGY0MDJlYS1iZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+bwO7h+VY/PXeqmQiEveDE3O/FUOsTpxnIq23ZMDP61t1+hgcefInIPtFLg Jk9JrrEP5AnZFTJQDYXeOCVseMIOABMgIzPQGMfwdvV/wEgzfgBr7p6repGMFtyF Gqx5bHNNvFOIRkb7IazU5QGN55uJYJ9PyeB5aDjPrqAsu2B6KzkJsl5dCuKcn0S8 xLQy8QWBwyhm1ueYyvlOeWIV3Zlo/1sWZZZEKJSZWJ8Ttzy8lpmdarUdIhtkmjub e5CoeH2HlSmBZ9Y0YOa3VdMlFUnDQV94f7I5xG5uvFLnmfiL8gR6DcdqlhcLdy28 B3HHejaBarSd4ThnoywjBEkaNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM/KspQ 7qtzIsovRuojjhao1LQkMB8GA1UdIwQYMBaAFG4/aky9LHZRtJDrZJBLv/H0YgHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERERBNy8zQzk1MzE5QzhE NTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2RsRzBrT3Rra0V1XzhmUmlB ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JqOXFUTDBzZGxHMGtPdGtrRXVfOGZSaUFkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RERBNy8zQzk1MzE5QzhENTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2Rs RzBrT3Rra0V1XzhmUmlBZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHv8G5S4MWGqwCEIprcGPgwtx6ju9p4oUI6ss7BT4jgnmPW8ph5ZI6 RMTVyT4WX/gwBa0juRP27p4LH5EZgtHWey5sqTCNEM01Vz/iJOopzCHqv1pgUfK0 nPG4ldglpJRXmoE42NAmW2FCnrW9g5a7+hEIXvNg4MbmmPJh52u8+CfrrefiWs5M fNYdmTvcXEJ179gAPpL86LshMOK1+im5zXFWo7biQy0svalzS34kE59r7QRkMavb myoZkEoJRwZpGZAlg2APCCNiJmw8/tRpsgQO99ekx+480kyPDakRnaGrAGxAhOgG vlEGZ09q5BNyuyCevpc624wW4QfTPtHF -----END CERTIFICATE-----Generated at Mon Oct 20 21:07:52 2025 by rpki-client