$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft File: BZOGVctKEp6P3fsJQsICA-N-G8E.mft (raw, json) Hash identifier: HjAJ+wRhZZiiTLYxPmT9WwOud3/2w0j8tpIaVyzR+dw= Subject key identifier: 98:10:8F:1F:52:DF:D4:33:D8:46:D7:D9:12:14:BB:5E:0F:DD:DC:BB Authority key identifier: 05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 Certificate issuer: /CN=A91EF5AE/serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Certificate serial: 03EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft Manifest number: 03E5 Signing time: Sun 19 Oct 2025 02:29:26 +0000 Manifest this update: Sun 19 Oct 2025 02:29:26 +0000 Manifest next update: Sun 26 Oct 2025 02:29:26 +0000 Files and hashes: 1: BZOGVctKEp6P3fsJQsICA-N-G8E.crl (hash: 7op26jzyk7Q/gyn58ZPGhLrnvrrufYyJ6CC2/4/Kjm0=) 2: 1D45733C9AAB11ECBDD79E1EC4F9AE02.roa (hash: IDcKfjrcD970kwyhuo4LacbpxchYwfNjnBXBdXrdXbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:29:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF5AE, serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Validity Not Before: Oct 19 02:29:26 2025 GMT Not After : Oct 26 02:29:26 2025 GMT Subject: CN=68f44d06-dd1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b4:38:89:4b:23:3e:6d:d4:52:d6:54:77:80: 22:ce:fe:4e:1d:80:0d:ef:0b:e2:29:f3:41:b4:7e: 85:bf:95:95:20:e2:cc:28:aa:76:ed:24:dc:e6:9d: 04:15:b2:de:2b:a0:ed:65:32:91:35:a0:a6:c0:ef: 7d:69:43:36:17:eb:fe:87:5a:da:b1:0d:44:1f:83: 1b:70:75:ab:61:69:63:90:73:fe:8d:f2:4c:31:b2: 8c:b7:69:a4:bc:28:a0:8e:c3:16:e1:28:3e:c2:e0: dc:86:50:66:f9:56:24:29:82:98:25:23:df:bf:f9: 0f:b7:23:15:0c:87:5b:3c:f0:42:87:19:01:80:bd: 25:67:60:a5:fb:a0:b1:10:3b:53:eb:a4:05:ab:6d: 68:cd:ed:77:77:13:57:c0:56:48:25:c7:b2:cb:ef: e6:49:ee:37:28:71:71:8f:8a:54:df:5e:84:fd:f9: 21:c1:1c:cc:ed:62:52:b6:be:cd:08:91:fc:d4:90: 23:21:2f:d2:83:48:75:f1:98:09:66:86:06:a0:b6: 48:10:07:ba:b0:0b:ab:ec:23:78:28:8f:09:d2:dd: e4:e8:40:a9:7e:d7:ec:d8:d7:c6:da:c4:f4:af:af: 8a:af:03:38:7a:45:73:2e:ea:aa:6c:9b:5b:a4:2a: a2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:10:8F:1F:52:DF:D4:33:D8:46:D7:D9:12:14:BB:5E:0F:DD:DC:BB X509v3 Authority Key Identifier: keyid:05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:a7:fc:f3:bd:ce:57:6c:dd:5b:fb:39:3e:ce:9f:fb:5c:d9: a6:4c:ae:ea:db:f8:f7:fc:ab:ea:1e:4e:44:ba:fa:36:c4:6a: 04:d8:78:35:6f:35:29:f6:b4:93:4c:e3:02:45:56:f0:8d:b1: dc:0e:45:ce:df:2a:9a:df:2d:fa:85:1a:02:aa:f9:b0:70:bd: 1c:fb:b0:d3:f8:c2:05:38:88:01:74:c1:09:f9:bc:18:8c:55: 39:ca:92:46:47:06:ff:b5:ee:fa:55:fc:a1:46:f3:cd:fe:ec: a2:7c:4f:45:d9:cb:49:2b:71:a8:61:ef:60:0d:ac:9e:e9:80: b7:48:d8:20:b7:3d:17:aa:a5:ab:6b:cf:22:af:d6:8c:78:b4: f4:c3:90:3e:f9:d2:a3:68:0c:36:ab:e9:c6:3f:0c:aa:b2:1e: 40:6e:71:2c:26:84:80:f3:34:a0:0d:59:bc:1d:24:84:a2:2f: 7f:cf:5f:10:3d:56:b0:68:99:ae:c1:f2:d8:25:f3:5a:eb:17: fc:b6:b3:cc:74:d3:38:14:e7:56:be:fb:62:31:11:b7:46:bc: 3e:37:91:b7:9d:ab:e3:e3:07:9f:ec:17:6c:df:d0:ba:93:5a: ca:a1:da:a0:91:f0:15:f5:45:4e:79:c2:6c:65:d8:19:98:35: f7:b8:84:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1QUUxMTAvBgNVBAUTKDA1OTM4NjU1Q0I0QTEyOUU4RkRERkIwOTQyQzIwMjAz RTM3RTFCQzEwHhcNMjUxMDE5MDIyOTI2WhcNMjUxMDI2MDIyOTI2WjAYMRYwFAYD VQQDEw02OGY0NGQwNi1kZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrQ4iUsjPm3UUtZUd4Aizv5OHYAN7wviKfNBtH6Fv5WVIOLMKKp27STc5p0E FbLeK6DtZTKRNaCmwO99aUM2F+v+h1rasQ1EH4MbcHWrYWljkHP+jfJMMbKMt2mk vCigjsMW4Sg+wuDchlBm+VYkKYKYJSPfv/kPtyMVDIdbPPBChxkBgL0lZ2Cl+6Cx EDtT66QFq21oze13dxNXwFZIJceyy+/mSe43KHFxj4pU316E/fkhwRzM7WJStr7N CJH81JAjIS/Sg0h18ZgJZoYGoLZIEAe6sAur7CN4KI8J0t3k6ECpftfs2NfG2sT0 r6+KrwM4ekVzLuqqbJtbpCqiwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgQjx9S 39Qz2EbX2RIUu14P3dy7MB8GA1UdIwQYMBaAFAWThlXLShKej937CULCAgPjfhvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjVBRS81RTZFMjA3ODlB QTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0VwNlAzZnNKUXNJQ0EtTi1H OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JaT0dWY3RLRXA2UDNmc0pRc0lDQS1OLUc4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjVBRS81RTZFMjA3ODlBQTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0Vw NlAzZnNKUXNJQ0EtTi1HOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnp/zzvc5XbN1b+zk+zp/7XNmmTK7q2/j3/KvqHk5Euvo2xGoE2Hg1 bzUp9rSTTOMCRVbwjbHcDkXO3yqa3y36hRoCqvmwcL0c+7DT+MIFOIgBdMEJ+bwY jFU5ypJGRwb/te76VfyhRvPN/uyifE9F2ctJK3GoYe9gDaye6YC3SNggtz0XqqWr a88ir9aMeLT0w5A++dKjaAw2q+nGPwyqsh5AbnEsJoSA8zSgDVm8HSSEoi9/z18Q PVawaJmuwfLYJfNa6xf8trPMdNM4FOdWvvtiMRG3Rrw+N5G3navj4wef7Bds39C6 k1rKodqgkfAV9UVOecJsZdgZmDX3uITe -----END CERTIFICATE-----Generated at Mon Oct 20 19:45:38 2025 by rpki-client