$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: PZiInU6uPuKc7pB26AbB9U5mHfMIhmOcSThAdFCneu4= Subject key identifier: A2:3E:6B:5F:C4:B9:35:DB:9B:70:7F:4C:D2:DD:2F:11:6F:A4:3A:D3 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 017D Signing time: Sun 19 Oct 2025 06:19:10 +0000 Manifest this update: Sun 19 Oct 2025 06:19:09 +0000 Manifest next update: Sun 26 Oct 2025 06:19:09 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: MzOgJW0tMYRWvG7u9aFPlzwOzfXEJPmapmgpZqfNEIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Oct 19 06:19:09 2025 GMT Not After : Oct 26 06:19:09 2025 GMT Subject: CN=68f482dd-f30e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cf:32:1c:48:56:98:d7:a7:eb:76:28:e6:ec: 2a:14:6b:b6:8d:92:27:55:f4:42:b9:8b:b1:d4:1b: 73:25:72:e1:fe:5c:49:39:ce:9a:2e:67:22:ad:ba: b7:d1:92:63:bd:65:48:ea:19:f1:f8:0d:43:28:6b: f3:ff:98:64:fc:30:8e:ab:47:d3:17:55:c8:1f:44: 4a:69:eb:0c:59:6c:e7:8d:1b:ee:a2:31:0a:f2:7a: 04:e0:40:d6:6b:3e:28:75:65:7d:a8:5b:35:a3:dc: 0b:80:97:44:51:93:f8:80:12:1d:e0:aa:8e:b4:84: ee:d5:c2:96:ea:a4:70:72:33:20:84:27:c1:36:e8: 7a:2b:54:58:e5:d3:cf:af:c0:02:6c:2f:e2:98:89: de:6c:06:c2:37:25:f1:a5:d0:87:52:6d:c8:28:c3: cb:5d:a0:c4:1a:27:8a:e2:cf:33:73:38:d2:97:c2: 65:cf:19:e6:d4:c1:72:2e:04:e3:c2:5c:a1:c6:b7: 25:12:e6:9f:6f:8a:b3:31:87:66:6f:15:8c:5b:c2: c4:83:ab:da:de:79:93:3b:d7:b3:27:91:9f:4d:a0: e3:09:17:2d:54:18:c4:7e:29:d5:d8:4c:ef:2e:cd: 0b:60:68:3e:06:2e:2b:30:7f:84:13:9b:8d:23:3b: e5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:3E:6B:5F:C4:B9:35:DB:9B:70:7F:4C:D2:DD:2F:11:6F:A4:3A:D3 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:9a:76:1c:c0:a4:c6:93:2c:f5:dc:26:10:cd:16:90:ea:f4: 0c:ca:71:10:4d:87:f5:19:5b:da:f9:56:84:47:ef:d4:3b:ae: 6f:e5:99:97:27:80:5d:d9:17:44:60:52:ae:7b:d0:96:ac:6f: c9:2a:d6:96:59:c0:bd:43:2f:38:86:55:2b:3b:6e:05:76:ac: b2:74:35:94:eb:85:c9:7f:90:43:1d:d9:47:6c:f3:e8:3a:eb: 6c:f6:23:95:a1:78:72:b2:5f:e0:c0:05:06:1c:de:f5:96:a8: 72:d9:0f:3b:23:a2:a3:54:69:37:74:91:5d:24:90:08:ef:23: 86:ba:85:ab:b1:c6:08:99:64:85:a0:27:a0:ff:1b:57:9e:bb: ac:38:60:2d:f6:14:32:73:31:63:21:df:66:12:a2:0b:b7:0b: d8:f8:20:d0:6e:0a:12:30:99:11:73:f8:dd:43:6e:21:99:91: 5a:09:58:96:69:cc:e2:39:f6:66:6f:d2:17:0e:a0:87:1e:8d: dc:1d:67:4c:d8:e5:a7:91:24:04:b7:4b:a6:2f:10:08:6c:d5: 37:2e:3e:ab:64:55:16:bc:c9:66:b4:20:ca:3a:f1:4f:f2:b9: d8:34:ab:ec:6b:d9:63:f7:29:ca:97:db:41:66:bc:6f:a8:60: c8:61:a1:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUxMDE5MDYxOTA5WhcNMjUxMDI2MDYxOTA5WjAYMRYwFAYD VQQDEw02OGY0ODJkZC1mMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss8yHEhWmNen63Yo5uwqFGu2jZInVfRCuYux1BtzJXLh/lxJOc6aLmcirbq3 0ZJjvWVI6hnx+A1DKGvz/5hk/DCOq0fTF1XIH0RKaesMWWznjRvuojEK8noE4EDW az4odWV9qFs1o9wLgJdEUZP4gBId4KqOtITu1cKW6qRwcjMghCfBNuh6K1RY5dPP r8ACbC/imInebAbCNyXxpdCHUm3IKMPLXaDEGieK4s8zczjSl8Jlzxnm1MFyLgTj wlyhxrclEuafb4qzMYdmbxWMW8LEg6va3nmTO9ezJ5GfTaDjCRctVBjEfinV2Ezv Ls0LYGg+Bi4rMH+EE5uNIzvluwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKI+a1/E uTXbm3B/TNLdLxFvpDrTMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBemnYcwKTGkyz13CYQzRaQ6vQMynEQTYf1GVva+VaER+/UO65v5ZmX J4Bd2RdEYFKue9CWrG/JKtaWWcC9Qy84hlUrO24FdqyydDWU64XJf5BDHdlHbPPo Outs9iOVoXhysl/gwAUGHN71lqhy2Q87I6KjVGk3dJFdJJAI7yOGuoWrscYImWSF oCeg/xtXnrusOGAt9hQyczFjId9mEqILtwvY+CDQbgoSMJkRc/jdQ24hmZFaCViW acziOfZmb9IXDqCHHo3cHWdM2OWnkSQEt0umLxAIbNU3Lj6rZFUWvMlmtCDKOvFP 8rnYNKvsa9lj9ynKl9tBZrxvqGDIYaF8 -----END CERTIFICATE-----Generated at Mon Oct 20 04:05:07 2025 by rpki-client