$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft File: BKfrBJqTf9nyuG4Vnd310sma1B4.mft (raw, json) Hash identifier: KPBhwkrcSgglp5CTrXWjiO/iPW2s3kqChhdAj5VY6Uc= Subject key identifier: C8:26:29:6B:F0:3E:A4:A0:B0:40:93:2E:E2:95:B8:5A:D4:77:2F:DF Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 0542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft Manifest number: 053C Signing time: Sun 19 Oct 2025 01:13:32 +0000 Manifest this update: Sun 19 Oct 2025 01:13:31 +0000 Manifest next update: Sun 26 Oct 2025 01:13:31 +0000 Files and hashes: 1: BKfrBJqTf9nyuG4Vnd310sma1B4.crl (hash: rGmI+HDn2GftSl0d7wRIaDOwagFyNTt9NYN0ItXGKBg=) 2: 709F3B2E145C11EC9A902165C4F9AE02.roa (hash: UibVZP54wNfnJM5fmfROJ4sssLQa2oOrL7RimgDBnPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB, serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: Oct 19 01:13:31 2025 GMT Not After : Oct 26 01:13:31 2025 GMT Subject: CN=68f43b3c-af91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:57:03:56:cf:bf:fc:be:88:78:2e:a0:55:61: ac:f8:8e:bf:cf:c9:e9:a4:71:6f:03:92:07:c6:2e: c0:a8:e6:7a:0d:45:b6:88:be:6f:df:5a:e5:e5:ec: a5:ac:67:c1:3b:13:a5:b3:c0:13:4f:e9:66:3c:18: e8:17:ad:29:13:03:fc:78:4c:ad:08:ec:8a:eb:44: 9d:85:3d:6d:da:fe:6a:48:9c:a0:43:e1:b6:e7:1f: 6e:d7:19:b3:f1:3f:75:1c:3f:b7:06:3b:43:e6:a6: 75:df:9d:d6:1b:76:46:67:34:04:83:7a:17:4f:e1: e1:95:37:c7:8d:52:c6:92:08:4f:1b:fe:1e:40:79: 6e:6d:da:31:92:50:a6:7a:b9:2e:9d:f4:44:fe:9d: b1:f3:c7:7b:7a:1c:74:d0:82:bb:ad:e5:da:f2:8e: fa:d3:5d:03:f5:d9:82:78:b8:09:dc:e5:4a:98:52: 07:c7:9f:e5:61:c0:b1:70:2a:08:c2:18:78:15:1c: 8e:7c:73:27:ed:7b:6b:e7:f7:30:37:b0:b4:23:e7: 8a:a9:5d:96:50:cd:b0:0c:7e:c5:27:b8:b9:2f:19: f7:be:11:1d:87:29:1b:10:21:45:7b:45:eb:28:73: 44:78:b0:e4:3e:07:11:e4:b8:cc:58:ba:16:dc:6a: b5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:26:29:6B:F0:3E:A4:A0:B0:40:93:2E:E2:95:B8:5A:D4:77:2F:DF X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:40:72:9b:8a:fc:27:06:5f:59:47:3c:94:a9:0e:78:16:7a: b1:cf:b6:61:e3:f5:1e:47:5f:38:67:93:45:9d:48:ac:e7:3d: 09:73:c4:a7:26:46:7e:b0:2f:54:b8:47:74:7b:c6:0c:6a:7a: 26:65:77:ae:89:05:9a:f0:a0:1e:b4:93:96:32:f0:63:5c:0b: 6b:03:0b:37:3d:f6:a3:b2:ea:31:bc:d2:40:cf:d5:d1:e7:08: 2f:14:a2:e2:04:92:1b:9f:14:4d:4f:16:eb:2f:b9:d4:5a:cb: 44:08:4b:03:be:81:88:5f:01:1d:81:6c:ec:9a:a6:69:38:4b: 61:00:6a:70:73:3a:77:3b:45:48:7a:ea:df:dc:e1:0c:c1:fe: 04:75:9f:e2:fc:d8:0e:46:30:a0:5f:ea:6c:3f:1a:10:cb:7e: 06:2e:6a:09:71:2b:59:ce:79:fe:e2:26:ce:91:80:00:1f:af: 52:f4:7f:e4:99:0c:56:8f:d1:1b:22:af:df:f5:15:e2:21:db: 60:68:8c:cc:ec:9e:7c:11:e0:69:fd:be:70:74:31:0d:8b:8d: 78:c2:0f:ec:e0:d2:ad:e0:58:43:0e:70:6d:be:a2:e2:55:89: c0:0c:d8:73:29:94:1f:ff:1e:97:45:f6:1c:3f:0f:68:bb:83: 49:db:27:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjUxMDE5MDExMzMxWhcNMjUxMDI2MDExMzMxWjAYMRYwFAYD VQQDEw02OGY0M2IzYy1hZjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1cDVs+//L6IeC6gVWGs+I6/z8nppHFvA5IHxi7AqOZ6DUW2iL5v31rl5eyl rGfBOxOls8ATT+lmPBjoF60pEwP8eEytCOyK60SdhT1t2v5qSJygQ+G25x9u1xmz 8T91HD+3BjtD5qZ1353WG3ZGZzQEg3oXT+HhlTfHjVLGkghPG/4eQHlubdoxklCm erkunfRE/p2x88d7ehx00IK7reXa8o76010D9dmCeLgJ3OVKmFIHx5/lYcCxcCoI whh4FRyOfHMn7Xtr5/cwN7C0I+eKqV2WUM2wDH7FJ7i5Lxn3vhEdhykbECFFe0Xr KHNEeLDkPgcR5LjMWLoW3Gq1owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgmKWvw PqSgsECTLuKVuFrUdy/fMB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODdBQi85MTZCMDY2NjE0NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5 bnl1RzRWbmQzMTBzbWExQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHQHKbivwnBl9ZRzyUqQ54Fnqxz7Zh4/UeR184Z5NFnUis5z0Jc8Sn JkZ+sC9UuEd0e8YManomZXeuiQWa8KAetJOWMvBjXAtrAws3PfajsuoxvNJAz9XR 5wgvFKLiBJIbnxRNTxbrL7nUWstECEsDvoGIXwEdgWzsmqZpOEthAGpwczp3O0VI eurf3OEMwf4EdZ/i/NgORjCgX+psPxoQy34GLmoJcStZznn+4ibOkYAAH69S9H/k mQxWj9EbIq/f9RXiIdtgaIzM7J58EeBp/b5wdDENi414wg/s4NKt4FhDDnBtvqLi VYnADNhzKZQf/x6XRfYcPw9ou4NJ2ycY -----END CERTIFICATE-----Generated at Mon Oct 20 06:49:35 2025 by rpki-client