$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: CyWDX1EUD99vHOzzNJPzc1REd3BNg8xI82KJBgHFwQ4= Subject key identifier: 80:F3:D1:2D:BF:6B:91:DF:F8:C3:B8:97:CD:5A:AA:34:7B:0C:49:CC Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: 0140 Signing time: Sun 19 Oct 2025 07:10:53 +0000 Manifest this update: Sun 19 Oct 2025 07:10:53 +0000 Manifest next update: Sun 26 Oct 2025 07:10:53 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: PevZ47DTjFDi98y3pb0IYXqbIfkDHSpjvNIqnD/E568=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: pARn59mvC3EFmnc54zsYhH0vh0pFsHJXtSQmvirMetQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: Oct 19 07:10:53 2025 GMT Not After : Oct 26 07:10:53 2025 GMT Subject: CN=68f48efd-7937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:09:24:bd:d3:e0:56:ca:3c:ac:9a:3d:8a:34: a0:13:69:23:c9:5d:f3:60:72:76:0c:3a:10:e9:ed: 5f:7e:8a:bd:3d:9a:e6:0b:5d:d6:d0:6b:0c:e5:52: 11:7b:95:60:df:22:41:73:92:da:82:24:a6:86:c4: 6e:f4:a6:8b:44:af:08:18:4b:61:2b:bd:76:e7:25: 10:23:11:2d:f9:08:8c:4e:65:11:49:d2:93:fd:a8: 2f:7e:c7:8c:e3:86:a6:d8:93:15:84:f2:15:ed:a9: 3a:ee:fe:c3:57:3e:4c:0c:3f:56:02:95:fa:02:de: af:20:15:8f:cf:2d:69:10:84:12:e5:ba:63:c5:d3: ce:69:e3:7c:47:0f:26:e2:0b:4d:ef:ea:f0:14:8a: e1:ad:8f:9d:cf:d0:e8:4f:58:ad:6c:5c:cd:72:83: ef:6b:9e:9b:a0:ed:9f:70:5d:8b:5f:23:6f:b5:c3: 8c:07:7b:96:bd:af:68:05:32:d0:23:08:95:a1:ba: 12:73:5f:a6:69:68:b3:17:17:5d:15:29:9c:7c:c4: 88:fd:4d:0f:f9:20:6c:54:17:b0:22:e9:e1:75:65: e8:ee:f5:9c:0a:dd:39:2f:7e:97:cf:e6:b9:da:c1: 75:6c:76:38:8c:3f:46:05:35:21:0e:ca:ac:2f:ec: d9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F3:D1:2D:BF:6B:91:DF:F8:C3:B8:97:CD:5A:AA:34:7B:0C:49:CC X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:be:00:7e:d3:54:d6:75:55:eb:96:8d:e5:0c:3e:07:d4:ec: 60:bc:a3:a9:c9:f9:3a:c2:a9:35:b4:2f:b0:05:d2:a7:13:b8: da:a8:e4:b9:73:9c:dc:25:1b:9f:f7:d9:c2:b5:dc:6c:ee:5d: cd:2e:7c:53:16:90:40:ca:c6:ce:12:8f:2c:d8:c1:cd:c7:f2: 3d:e2:9e:b1:34:b3:4a:49:55:f0:45:79:d6:72:c5:0b:21:0d: f0:77:1c:c9:2c:8e:b4:b2:43:ea:71:1c:99:3c:f6:20:21:5a: 2f:8f:f3:23:0f:96:c6:03:35:67:ff:7e:bf:a2:bf:ff:8f:07: 9e:5d:8b:8c:30:d6:59:0c:2a:4e:92:19:a7:86:f1:db:9e:c0: ca:8c:08:5a:00:62:20:2f:2b:d2:61:7f:7a:f4:27:1d:15:68: 9c:e3:0f:cc:5d:30:e9:b3:87:fa:ba:00:41:85:42:80:d2:1f: 49:ca:f9:54:aa:32:e7:f0:dd:12:fa:94:de:ca:12:b8:c2:ed: 30:76:06:17:c9:42:aa:ae:7e:64:a3:5a:b8:01:a3:c8:a7:35: bc:57:5d:b8:9d:b3:71:a3:71:27:d4:1a:f1:18:a3:41:c1:7f: f5:c0:a4:14:3c:0b:7b:4e:8a:c5:9c:bd:c0:65:09:24:c8:f2: 33:61:67:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjUxMDE5MDcxMDUzWhcNMjUxMDI2MDcxMDUzWjAYMRYwFAYD VQQDEw02OGY0OGVmZC03OTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAkkvdPgVso8rJo9ijSgE2kjyV3zYHJ2DDoQ6e1ffoq9PZrmC13W0GsM5VIR e5Vg3yJBc5LagiSmhsRu9KaLRK8IGEthK7125yUQIxEt+QiMTmURSdKT/agvfseM 44am2JMVhPIV7ak67v7DVz5MDD9WApX6At6vIBWPzy1pEIQS5bpjxdPOaeN8Rw8m 4gtN7+rwFIrhrY+dz9DoT1itbFzNcoPva56boO2fcF2LXyNvtcOMB3uWva9oBTLQ IwiVoboSc1+maWizFxddFSmcfMSI/U0P+SBsVBewIunhdWXo7vWcCt05L36Xz+a5 2sF1bHY4jD9GBTUhDsqsL+zZEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDz0S2/ a5Hf+MO4l81aqjR7DEnMMB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJvgB+01TWdVXrlo3lDD4H1OxgvKOpyfk6wqk1tC+wBdKnE7jaqOS5 c5zcJRuf99nCtdxs7l3NLnxTFpBAysbOEo8s2MHNx/I94p6xNLNKSVXwRXnWcsUL IQ3wdxzJLI60skPqcRyZPPYgIVovj/MjD5bGAzVn/36/or//jweeXYuMMNZZDCpO khmnhvHbnsDKjAhaAGIgLyvSYX969CcdFWic4w/MXTDps4f6ugBBhUKA0h9JyvlU qjLn8N0S+pTeyhK4wu0wdgYXyUKqrn5ko1q4AaPIpzW8V124nbNxo3En1BrxGKNB wX/1wKQUPAt7TorFnL3AZQkkyPIzYWcL -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:20 2025 by rpki-client