$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: m7pzr0v8Lj/N1FgAuv/Txxeyjm3L6R+ZeMcQ+oHPPOo= Subject key identifier: 72:24:4D:85:F8:BA:8B:F5:86:A2:13:60:36:0A:C3:EA:89:EA:A3:4C Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 1796 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 177B Signing time: Sun 02 Nov 2025 16:35:52 +0000 Manifest this update: Sun 02 Nov 2025 16:35:52 +0000 Manifest next update: Sun 09 Nov 2025 16:35:52 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: nHGZ6KtJBgpPf+thD+rg31OnKzNTyWWSWNv5uf/HZwI=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6038 (0x1796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Nov 2 16:35:52 2025 GMT Not After : Nov 9 16:35:52 2025 GMT Subject: CN=69078868-21bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d3:b4:d3:a4:85:c7:4c:09:5c:84:e2:61:c1: c0:86:7f:c5:31:a8:9e:77:94:4f:db:d8:c5:2b:15: e2:52:95:64:cb:32:84:8c:9a:0d:00:4b:23:16:e5: 21:18:80:8d:43:56:9c:97:2a:d3:03:2c:0a:17:36: 5b:ec:7a:8e:00:03:c8:95:43:d1:cf:92:50:df:1e: 94:3b:96:ab:af:e4:cf:7f:3f:dc:7b:3b:f9:dc:ed: 7e:37:92:2d:23:1c:c5:e1:d7:45:15:aa:46:1c:a9: f5:bb:6d:b7:23:5d:80:c0:cd:eb:52:ee:b7:f2:4e: ef:7f:c7:fe:fa:c9:0b:de:f3:69:5e:71:dd:15:a1: e1:8c:9c:b6:99:c9:c6:5d:73:70:b4:11:5e:c6:f0: e0:9b:b0:4a:b2:c4:18:3c:3e:8d:e5:e8:83:4f:bf: 12:3f:bd:22:74:cd:b2:f0:8e:1c:6d:d2:9a:b0:6b: 20:02:57:40:42:ce:a8:77:5c:a6:d4:75:56:1e:d7: 1f:b8:3b:a0:d8:c6:78:2e:d7:c0:13:89:25:2c:f4: 0f:1d:e9:5d:64:61:5d:1a:34:12:16:c3:2e:cf:93: ef:af:ba:79:ae:c6:53:8c:ff:e8:5f:5d:6e:34:43: 1e:1e:ed:2c:55:4d:88:6f:bf:6c:6e:e4:63:1c:dc: 54:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:24:4D:85:F8:BA:8B:F5:86:A2:13:60:36:0A:C3:EA:89:EA:A3:4C X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:1d:68:62:f7:75:50:43:44:9a:ec:b1:dc:10:86:2b:e2:ce: c4:d0:c5:93:a6:c3:14:73:b8:70:12:bb:c6:74:91:34:94:11: 3b:c4:e2:3e:99:38:67:77:7d:da:64:3b:aa:02:c6:85:f1:d2: 94:35:db:0e:96:e3:aa:ae:36:03:5e:47:ff:e3:31:17:cc:2e: c9:d9:79:12:b5:f5:78:66:8e:20:f1:25:3c:b0:ea:c9:bc:bd: a5:98:fb:46:76:06:07:f4:bd:49:48:eb:25:68:a0:b8:4d:ed: 48:38:83:a7:7f:f1:ac:e3:c4:cd:00:e7:dc:18:d8:fd:6f:0a: bc:b8:7c:22:f8:7e:76:a3:82:55:5c:24:c2:2e:5a:f2:7b:7d: 4d:b1:fd:57:78:9f:de:1b:a9:63:b2:f6:05:f0:8f:17:fd:be: a1:bc:8b:9a:8e:24:f2:8b:c3:f2:92:f4:8b:1c:78:57:10:e1: 53:31:d6:18:75:13:4e:4b:ce:06:f3:9a:c6:de:50:ca:e4:b7: 05:88:2d:ae:2e:7e:6c:12:40:17:b4:92:9b:a8:55:37:d8:a7: 44:76:0e:9d:ed:d4:f7:c9:57:88:f3:8f:b3:79:9c:23:14:b8: b6:e1:9d:3f:e5:51:b3:6c:62:0b:a9:66:e8:37:a7:2c:7f:32: 08:57:aa:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUxMTAyMTYzNTUyWhcNMjUxMTA5MTYzNTUyWjAYMRYwFAYD VQQDEw02OTA3ODg2OC0yMWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dO006SFx0wJXITiYcHAhn/FMaied5RP29jFKxXiUpVkyzKEjJoNAEsjFuUh GICNQ1aclyrTAywKFzZb7HqOAAPIlUPRz5JQ3x6UO5arr+TPfz/cezv53O1+N5It IxzF4ddFFapGHKn1u223I12AwM3rUu638k7vf8f++skL3vNpXnHdFaHhjJy2mcnG XXNwtBFexvDgm7BKssQYPD6N5eiDT78SP70idM2y8I4cbdKasGsgAldAQs6od1ym 1HVWHtcfuDug2MZ4LtfAE4klLPQPHeldZGFdGjQSFsMuz5Pvr7p5rsZTjP/oX11u NEMeHu0sVU2Ib79sbuRjHNxUaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIkTYX4 uov1hqITYDYKw+qJ6qNMMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4HWhi93VQQ0Sa7LHcEIYr4s7E0MWTpsMUc7hwErvGdJE0lBE7xOI+ mThnd33aZDuqAsaF8dKUNdsOluOqrjYDXkf/4zEXzC7J2XkStfV4Zo4g8SU8sOrJ vL2lmPtGdgYH9L1JSOslaKC4Te1IOIOnf/Gs48TNAOfcGNj9bwq8uHwi+H52o4JV XCTCLlrye31Nsf1XeJ/eG6ljsvYF8I8X/b6hvIuajiTyi8PykvSLHHhXEOFTMdYY dRNOS84G85rG3lDK5LcFiC2uLn5sEkAXtJKbqFU32KdEdg6d7dT3yVeI84+zeZwj FLi24Z0/5VGzbGILqWboN6csfzIIV6oA -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:03 2025 by rpki-client