$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: AffLxafQBDlkxqX+N9YYtbwix2Mf7W407xjI+lJYBaw= Subject key identifier: F0:E6:2B:29:38:0E:F4:CC:66:72:C2:13:47:B4:0D:C2:59:EA:38:9A Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 07FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 07F5 Signing time: Sat 18 Oct 2025 22:14:26 +0000 Manifest this update: Sat 18 Oct 2025 22:14:26 +0000 Manifest next update: Sat 25 Oct 2025 22:14:26 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: 5gJ5V1q1ZR/TThc50626rjTgep94UoKVLD6wnvFRMo0=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: Vn5biCjexx3cjiQ4QgNEGs4i33iiyVoqmR3L4tJPzNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881, serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Oct 18 22:14:26 2025 GMT Not After : Oct 25 22:14:26 2025 GMT Subject: CN=68f41142-aa29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:50:82:02:39:63:f2:ba:71:81:c2:96:75:b4: 63:fb:13:97:8d:ae:72:7f:e4:a4:39:b3:33:89:40: ec:9c:3e:b4:ff:b5:47:5b:ab:d1:ec:55:a3:f9:3e: b8:2c:7f:8e:c4:67:53:fd:92:49:3c:56:92:c1:ae: db:ed:00:85:c1:c3:d5:84:f7:7e:8b:a2:04:e0:6d: dc:ec:01:a4:be:c0:83:e1:0b:c9:36:06:5c:fe:70: 35:ff:a4:e0:8d:64:15:06:87:09:7a:89:75:b3:40: b1:31:3b:f1:ee:2a:fb:66:b5:af:45:57:2c:2f:de: 79:73:98:37:4c:4c:8b:b0:f0:60:12:7f:92:59:01: 60:19:88:0e:1c:ec:d3:bc:d0:c3:c5:0b:e4:64:24: f0:ee:e8:ee:8b:5f:97:c8:ba:f5:ea:da:f0:fa:5b: 66:95:8f:c6:82:17:8d:81:d2:45:9e:0b:f3:81:e5: 60:09:eb:17:a3:8b:63:e0:0e:af:45:77:43:35:e0: 15:36:ba:1c:6c:8e:d2:0e:3e:71:eb:0d:cb:95:32: a7:35:40:18:11:03:f3:fe:a2:d7:51:35:60:6e:1e: 2a:4b:1e:38:97:5d:75:dd:a7:48:96:2c:79:31:ef: d1:04:71:5a:8a:5b:82:7b:99:ad:8b:6c:46:93:24: 8e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E6:2B:29:38:0E:F4:CC:66:72:C2:13:47:B4:0D:C2:59:EA:38:9A X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:3b:c6:cb:86:04:3e:e6:64:ac:f1:05:d6:e9:34:df:15:6b: dd:88:58:d7:8e:55:dc:40:f0:9f:72:31:66:05:8c:9e:77:f9: 71:76:49:dd:f2:07:84:ba:b8:5c:c7:eb:5f:90:e0:3d:cb:50: 31:04:f3:0f:59:94:04:ae:6e:f2:10:de:86:21:8b:31:02:60: 87:47:90:5f:d0:b2:a8:a8:90:c5:cb:6e:0a:17:a5:e3:37:f8: 57:ec:9b:51:11:d5:b1:30:81:a3:96:10:d7:90:07:62:d9:d6: d9:76:1c:b8:ef:22:d7:93:e2:34:db:c5:9f:f9:c6:5e:1b:85: b4:4d:1b:6a:7e:b9:1e:f0:6b:2a:ac:24:87:06:40:d2:5d:6a: 9b:5c:dd:53:c0:56:3a:6d:7a:74:3a:26:4d:c6:dd:7f:f6:1e: 02:9f:21:de:b4:43:0e:fa:20:68:02:67:db:0e:d9:45:0e:41: 20:16:4d:b5:26:a6:25:65:31:9c:c4:44:ba:4b:9e:ba:31:4b: bd:9b:e1:2f:12:6e:d6:1b:f0:c8:d9:b6:80:d0:24:d9:1e:ef: 01:9b:72:28:fb:3a:58:ad:71:63:d4:eb:c7:81:91:6f:25:c8: 19:b8:6e:27:2d:3a:ba:2f:7c:9b:61:a7:70:14:2d:32:48:99: 73:58:49:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjUxMDE4MjIxNDI2WhcNMjUxMDI1MjIxNDI2WjAYMRYwFAYD VQQDEw02OGY0MTE0Mi1hYTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlCCAjlj8rpxgcKWdbRj+xOXja5yf+SkObMziUDsnD60/7VHW6vR7FWj+T64 LH+OxGdT/ZJJPFaSwa7b7QCFwcPVhPd+i6IE4G3c7AGkvsCD4QvJNgZc/nA1/6Tg jWQVBocJeol1s0CxMTvx7ir7ZrWvRVcsL955c5g3TEyLsPBgEn+SWQFgGYgOHOzT vNDDxQvkZCTw7ujui1+XyLr16trw+ltmlY/GgheNgdJFngvzgeVgCesXo4tj4A6v RXdDNeAVNrocbI7SDj5x6w3LlTKnNUAYEQPz/qLXUTVgbh4qSx44l1113adIlix5 Me/RBHFailuCe5mti2xGkySOPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDmKyk4 DvTMZnLCE0e0DcJZ6jiaMB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbO8bLhgQ+5mSs8QXW6TTfFWvdiFjXjlXcQPCfcjFmBYyed/lxdknd 8geEurhcx+tfkOA9y1AxBPMPWZQErm7yEN6GIYsxAmCHR5Bf0LKoqJDFy24KF6Xj N/hX7JtREdWxMIGjlhDXkAdi2dbZdhy47yLXk+I028Wf+cZeG4W0TRtqfrke8Gsq rCSHBkDSXWqbXN1TwFY6bXp0OiZNxt1/9h4CnyHetEMO+iBoAmfbDtlFDkEgFk21 JqYlZTGcxES6S566MUu9m+EvEm7WG/DI2baA0CTZHu8Bm3Io+zpYrXFj1OvHgZFv JcgZuG4nLTq6L3ybYadwFC0ySJlzWEk+ -----END CERTIFICATE-----Generated at Mon Oct 20 19:26:11 2025 by rpki-client