$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: 60sBSaHMS+aDY84zNYfi4V2JdvktDV8pu/79+EAQWWs= Subject key identifier: 33:0D:2A:35:64:88:6B:B9:85:32:AB:E8:3A:E4:4A:9D:DE:FD:FE:C7 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0EDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0ED7 Signing time: Sat 18 Oct 2025 18:15:11 +0000 Manifest this update: Sat 18 Oct 2025 18:15:10 +0000 Manifest next update: Sat 25 Oct 2025 18:15:10 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: VKLVlV9YpVGC6cVK+v+GnEM7nuCvi4dc/nDcc7sAjOg=) 2: 4E150C0890FD11E98DB54881C4F9AE02.roa (hash: dB+hpclNcZTfVrplk+B2uDeZoqPu8XwgAkOEwxQUS0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:15:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3807 (0xedf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Oct 18 18:15:10 2025 GMT Not After : Oct 25 18:15:10 2025 GMT Subject: CN=68f3d92e-21ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:18:40:a5:1c:52:da:12:d3:68:c5:de:d9:57: c8:e9:a2:43:e2:06:c1:45:61:ba:a9:b0:f8:3e:ff: d4:a7:1e:10:e0:2f:4b:82:c0:ed:50:f6:64:b4:56: 3d:5a:58:4c:9e:f6:13:11:7e:2a:2a:9b:aa:69:8c: 37:41:b0:e2:83:4b:29:43:32:db:95:6c:06:1c:5c: a7:19:ea:08:96:f7:73:d8:cb:ce:fa:54:2e:72:61: 9b:93:d8:ff:70:56:b6:7b:cd:4b:95:f6:fb:7b:aa: 11:fd:c7:20:75:a3:af:72:a2:9f:e2:bc:e3:0e:95: b0:66:19:9b:61:98:ce:ae:cc:70:d1:95:2a:dd:f3: 4c:87:0a:01:18:e2:3a:15:59:3b:6e:ed:14:28:3c: e5:01:c9:eb:80:cf:8f:74:a2:ae:74:5a:42:b0:ce: be:4a:4f:6f:40:05:a3:85:43:2d:8d:b6:39:2a:1f: 13:46:4d:0a:36:67:bf:c6:30:0f:e5:49:44:bc:0f: da:57:b7:46:ce:7c:b4:5c:62:2a:6a:9e:28:b6:ba: 62:a9:3b:45:00:77:42:47:d1:4c:8c:a3:f0:b7:d3: ad:d9:f5:8f:60:6d:a3:61:31:a9:18:bc:64:ae:5c: 01:30:db:a2:37:ef:37:a0:2c:ac:68:ff:13:23:d0: f7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:0D:2A:35:64:88:6B:B9:85:32:AB:E8:3A:E4:4A:9D:DE:FD:FE:C7 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:7e:4b:ed:40:03:0d:e1:eb:dc:ed:3e:ec:ac:f1:a6:0a:f5: 66:0d:e0:73:37:c7:80:6c:c0:0d:68:bc:52:33:c7:05:a3:29: 0e:b3:a1:77:fa:38:91:4b:31:fa:2b:64:bc:21:17:30:9b:5a: b0:38:78:f3:5f:66:4a:00:c1:bd:e2:67:9f:db:91:27:9e:a5: 1a:72:8a:0a:0f:ff:21:92:19:ef:c5:7d:97:80:81:13:1a:f9: e8:32:a6:d5:1f:7a:af:05:81:d1:f8:13:dd:38:51:73:4c:f7: 4a:a9:be:64:d4:24:db:3c:df:97:40:c2:9b:62:b6:07:b0:65: 48:97:56:c4:8d:d3:94:04:83:60:f7:29:b1:aa:bc:b9:90:91: 07:12:59:47:77:05:6d:78:44:4b:2b:e0:d1:56:ec:fd:eb:06: b7:d4:6d:06:5e:30:83:2a:fb:fc:33:f7:a6:b0:82:57:7d:52: 05:6f:39:be:c7:5a:e2:e6:ca:22:12:cd:11:18:6c:2f:de:db: 84:c4:55:bb:75:4e:27:b1:26:37:e4:cd:fc:8c:47:21:3f:7b: f2:9b:53:e1:a0:cb:c0:76:f9:49:bf:17:59:60:da:60:10:cf: 58:38:a3:ea:d8:c5:27:7a:be:32:3e:dc:83:6f:af:ce:12:de: 40:b3:72:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUxMDE4MTgxNTEwWhcNMjUxMDI1MTgxNTEwWjAYMRYwFAYD VQQDEw02OGYzZDkyZS0yMWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxhApRxS2hLTaMXe2VfI6aJD4gbBRWG6qbD4Pv/Upx4Q4C9LgsDtUPZktFY9 WlhMnvYTEX4qKpuqaYw3QbDig0spQzLblWwGHFynGeoIlvdz2MvO+lQucmGbk9j/ cFa2e81Llfb7e6oR/ccgdaOvcqKf4rzjDpWwZhmbYZjOrsxw0ZUq3fNMhwoBGOI6 FVk7bu0UKDzlAcnrgM+PdKKudFpCsM6+Sk9vQAWjhUMtjbY5Kh8TRk0KNme/xjAP 5UlEvA/aV7dGzny0XGIqap4otrpiqTtFAHdCR9FMjKPwt9Ot2fWPYG2jYTGpGLxk rlwBMNuiN+83oCysaP8TI9D35QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMNKjVk iGu5hTKr6DrkSp3e/f7HMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBfkvtQAMN4evc7T7srPGmCvVmDeBzN8eAbMANaLxSM8cFoykOs6F3 +jiRSzH6K2S8IRcwm1qwOHjzX2ZKAMG94mef25EnnqUacooKD/8hkhnvxX2XgIET GvnoMqbVH3qvBYHR+BPdOFFzTPdKqb5k1CTbPN+XQMKbYrYHsGVIl1bEjdOUBINg 9ymxqry5kJEHEllHdwVteERLK+DRVuz96wa31G0GXjCDKvv8M/emsIJXfVIFbzm+ x1ri5soiEs0RGGwv3tuExFW7dU4nsSY35M38jEchP3vym1PhoMvAdvlJvxdZYNpg EM9YOKPq2MUner4yPtyDb6/OEt5As3LX -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:24 2025 by rpki-client