$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: eFv0tjCrx0LYkwKJktxZRIx4DOwTlhg5/Br8Yg0HUAY= Subject key identifier: 06:5A:AF:23:67:84:83:30:3B:34:19:F0:22:14:94:28:B2:4E:F9:36 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 01F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 01F3 Signing time: Sun 19 Oct 2025 04:51:05 +0000 Manifest this update: Sun 19 Oct 2025 04:51:04 +0000 Manifest next update: Sun 26 Oct 2025 04:51:04 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: 3czQBkbFaRYrkU6mNnGIZf/TKrJ9OUPKLgitgJObPeA=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: S0QCets6nYQwhXbRnwnSRy3OBYGEXLOm6h5sFxoClJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:51:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Oct 19 04:51:04 2025 GMT Not After : Oct 26 04:51:04 2025 GMT Subject: CN=68f46e39-99a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:59:64:00:66:f5:6b:58:09:c1:ab:32:27:5e: d1:b2:fa:17:e2:ca:27:53:98:5e:ea:77:f7:13:f6: 26:9d:a2:da:a8:e6:8d:af:48:9e:38:9e:89:ca:b1: a2:49:1a:1f:b4:c1:4e:5b:86:8a:d5:cb:e7:3a:c4: d2:e3:12:ec:1a:bc:13:73:83:ea:c1:1a:b5:01:df: 5f:8f:7a:18:40:7e:c4:17:f7:aa:5b:84:47:1e:6d: 8d:86:e2:aa:aa:9b:69:dc:56:76:4e:1e:f4:2c:c5: 71:59:91:08:9e:c6:4a:d1:e7:9d:57:93:d5:89:53: d1:c6:82:b7:ed:2d:7a:d4:b5:c8:0e:66:ba:ca:08: 94:31:c6:12:73:dc:37:b0:5b:ee:81:4d:c2:3e:94: 16:66:2a:ef:2b:5d:a2:99:0b:b4:8f:23:b0:c1:a5: 7f:7f:06:b3:e1:f4:30:14:f6:59:f6:1a:e1:e6:a5: 04:5f:fd:2a:99:d0:ff:4b:8e:9e:98:a8:89:65:0f: 4d:64:d5:76:58:83:bb:a9:3b:00:7f:cc:22:9e:e8: bb:08:45:3e:4f:0e:99:87:ec:7e:69:4a:06:2d:25: 16:ff:11:32:f2:90:ee:52:4d:29:3e:04:c7:90:d6: 47:9e:d0:70:22:cf:49:ab:2f:4a:66:96:d5:de:0a: c4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5A:AF:23:67:84:83:30:3B:34:19:F0:22:14:94:28:B2:4E:F9:36 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:26:b3:86:6d:1f:f2:f8:ab:d4:b0:39:c6:6a:ad:f6:ee:b4: 25:6f:1d:84:3c:7c:79:10:87:d3:6a:02:6e:a8:45:0e:b4:cc: dd:39:d9:96:0e:44:b9:05:f5:a8:37:76:2d:b1:3d:fa:7e:58: 66:53:9e:91:bd:b3:e6:e6:5f:a0:9b:89:40:da:d0:05:a9:1b: f2:4e:e5:61:55:b1:f9:41:dc:67:20:9b:6e:ee:af:54:ba:15: b6:60:33:34:84:fe:5d:8a:89:d2:8f:c0:48:b6:6d:da:d7:3c: 5e:65:0f:58:29:47:7b:bd:d5:59:a2:ad:32:22:dc:cf:28:9b: d5:c6:6b:8d:7e:99:08:3c:7b:40:36:6f:88:be:c2:56:4f:ef: 79:78:20:2d:97:cf:18:da:ec:f1:d0:c8:c4:2f:86:20:73:ef: 5c:41:b1:57:ef:ec:02:a0:ae:03:e6:87:d5:51:aa:44:1b:82: 03:d5:e5:8d:66:7a:9e:89:31:d7:97:23:c2:6c:32:cb:3d:b1: 16:eb:c6:56:37:cb:d1:34:e9:d5:6b:3f:ca:2e:7b:3e:a7:2a: 6d:16:dc:9c:dd:c9:4e:67:f6:39:7e:1a:d0:6a:53:14:e4:f1: cf:68:5d:c2:2d:97:78:fa:27:25:dc:40:65:59:2a:8a:4b:80: 6c:ac:4e:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUxMDE5MDQ1MTA0WhcNMjUxMDI2MDQ1MTA0WjAYMRYwFAYD VQQDEw02OGY0NmUzOS05OWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1lkAGb1a1gJwasyJ17RsvoX4sonU5he6nf3E/YmnaLaqOaNr0ieOJ6JyrGi SRoftMFOW4aK1cvnOsTS4xLsGrwTc4PqwRq1Ad9fj3oYQH7EF/eqW4RHHm2NhuKq qptp3FZ2Th70LMVxWZEInsZK0eedV5PViVPRxoK37S161LXIDma6ygiUMcYSc9w3 sFvugU3CPpQWZirvK12imQu0jyOwwaV/fwaz4fQwFPZZ9hrh5qUEX/0qmdD/S46e mKiJZQ9NZNV2WIO7qTsAf8winui7CEU+Tw6Zh+x+aUoGLSUW/xEy8pDuUk0pPgTH kNZHntBwIs9Jqy9KZpbV3grESQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZaryNn hIMwOzQZ8CIUlCiyTvk2MB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPJrOGbR/y+KvUsDnGaq327rQlbx2EPHx5EIfTagJuqEUOtMzdOdmW DkS5BfWoN3YtsT36flhmU56RvbPm5l+gm4lA2tAFqRvyTuVhVbH5QdxnIJtu7q9U uhW2YDM0hP5dionSj8BItm3a1zxeZQ9YKUd7vdVZoq0yItzPKJvVxmuNfpkIPHtA Nm+IvsJWT+95eCAtl88Y2uzx0MjEL4Ygc+9cQbFX7+wCoK4D5ofVUapEG4ID1eWN ZnqeiTHXlyPCbDLLPbEW68ZWN8vRNOnVaz/KLns+pyptFtyc3clOZ/Y5fhrQalMU 5PHPaF3CLZd4+icl3EBlWSqKS4BsrE4B -----END CERTIFICATE-----Generated at Mon Oct 20 15:55:06 2025 by rpki-client