$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: QzyjO6pLMssewNdySeiLygzxw1NYFB+bFljioM6ru7s= Subject key identifier: E7:E2:82:A4:BA:BD:EC:35:5F:0D:5D:51:82:50:F0:3E:64:4D:B1:4C Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 2667 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 264D Signing time: Mon 20 Oct 2025 15:53:13 +0000 Manifest this update: Mon 20 Oct 2025 15:53:12 +0000 Manifest next update: Mon 27 Oct 2025 15:53:12 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: oM4Z9Uh1j0jMO5yNIeL4pAJs5mCmDNnmJb+JYeQIcKg=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: IwUXo20n+V2B2SbXh2brhMIgczh2mlcm0AjnKKmeoo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:53:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9831 (0x2667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Oct 20 15:53:12 2025 GMT Not After : Oct 27 15:53:12 2025 GMT Subject: CN=68f65ae8-a06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ce:2f:64:92:56:e1:a3:bb:fa:90:f8:ad:b7: 73:89:2f:2d:c2:34:19:87:b6:0f:db:b7:b2:ee:d1: 5f:4b:bc:30:bc:e4:d3:12:92:8b:7a:d0:4b:01:b3: 3b:57:d6:c6:b0:7e:4e:0f:c2:61:36:9f:37:7e:e2: df:b2:f1:03:7b:08:78:8d:cb:d4:ef:a2:96:e0:90: 4f:d6:6d:3d:87:54:da:ca:d6:4d:b5:9d:a9:b4:91: e0:a5:e0:5f:ac:c0:b2:a9:d0:24:03:eb:83:f4:9b: 2c:8d:d0:c2:fe:2c:93:0f:f4:cf:14:79:1b:0b:3b: bc:16:8c:d2:bd:b6:ab:57:62:f9:88:03:d6:7b:79: 8b:04:36:06:a4:de:e2:cb:31:ba:ac:fb:22:48:dd: d0:ff:d8:8e:9a:6b:f2:d8:02:5a:e0:7b:4f:f0:7d: c3:a6:fe:eb:7e:3f:ba:e6:87:74:6a:eb:be:0c:96: 33:14:c5:ea:ee:12:8c:93:a4:be:a0:f0:53:61:84: 0c:36:5a:43:24:e9:9c:ec:af:9e:03:46:b8:73:20: 92:ed:36:62:25:29:41:3d:9f:1a:56:0f:73:f8:9d: cd:cf:da:d0:84:58:8d:1c:8b:72:80:3f:bc:84:2d: 4c:a4:d6:8d:57:f8:49:4c:40:00:76:7f:85:db:84: 6e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E2:82:A4:BA:BD:EC:35:5F:0D:5D:51:82:50:F0:3E:64:4D:B1:4C X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:df:60:03:5d:54:12:89:65:cf:32:16:b0:e6:3c:e8:da:84: ff:b7:ca:d3:e7:b8:cb:e6:69:84:fa:ae:c9:6d:51:57:9d:cb: 0d:1b:b4:97:cd:76:22:52:f7:b7:61:f1:d2:c3:8a:73:49:40: 4f:23:26:d8:e8:ad:3f:82:bc:5b:fd:15:ed:b2:f4:74:39:da: 68:45:f9:ea:76:02:e8:e6:37:8c:7b:51:96:59:e0:11:d8:94: cb:91:87:7c:28:c5:ec:d6:89:44:de:e8:67:0e:39:c8:61:6a: 7f:25:90:ff:a1:fd:e1:af:3b:f8:7c:03:b7:9c:5a:47:cd:4f: c2:37:ce:e1:0b:e7:e9:7c:b6:af:67:22:8e:d8:20:77:c5:10: 85:21:ad:0b:52:b4:85:95:4e:49:29:38:52:94:46:c0:28:9c: 27:a8:d4:a5:8d:02:26:27:3c:56:75:04:4a:8d:a8:24:2a:35: c7:1f:a7:b9:5d:8a:fc:60:1b:24:3c:07:e7:df:11:2a:8b:2f: 20:f0:1f:0a:b6:18:51:64:55:0a:9b:65:bc:62:30:f3:7d:a3: 1b:af:86:33:86:f3:55:fb:65:4c:ea:a4:c6:3e:37:05:7d:a7: be:30:4a:5d:94:3d:cd:df:0e:a0:9d:6b:8e:ca:56:ae:6d:18: ad:0c:a9:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUxMDIwMTU1MzEyWhcNMjUxMDI3MTU1MzEyWjAYMRYwFAYD VQQDEw02OGY2NWFlOC1hMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0c4vZJJW4aO7+pD4rbdziS8twjQZh7YP27ey7tFfS7wwvOTTEpKLetBLAbM7 V9bGsH5OD8JhNp83fuLfsvEDewh4jcvU76KW4JBP1m09h1TaytZNtZ2ptJHgpeBf rMCyqdAkA+uD9JssjdDC/iyTD/TPFHkbCzu8FozSvbarV2L5iAPWe3mLBDYGpN7i yzG6rPsiSN3Q/9iOmmvy2AJa4HtP8H3Dpv7rfj+65od0auu+DJYzFMXq7hKMk6S+ oPBTYYQMNlpDJOmc7K+eA0a4cyCS7TZiJSlBPZ8aVg9z+J3Nz9rQhFiNHItygD+8 hC1MpNaNV/hJTEAAdn+F24RukQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfigqS6 vew1Xw1dUYJQ8D5kTbFMMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP32ADXVQSiWXPMhaw5jzo2oT/t8rT57jL5mmE+q7JbVFXncsNG7SX zXYiUve3YfHSw4pzSUBPIybY6K0/grxb/RXtsvR0OdpoRfnqdgLo5jeMe1GWWeAR 2JTLkYd8KMXs1olE3uhnDjnIYWp/JZD/of3hrzv4fAO3nFpHzU/CN87hC+fpfLav ZyKO2CB3xRCFIa0LUrSFlU5JKThSlEbAKJwnqNSljQImJzxWdQRKjagkKjXHH6e5 XYr8YBskPAfn3xEqiy8g8B8KthhRZFUKm2W8YjDzfaMbr4YzhvNV+2VM6qTGPjcF fae+MEpdlD3N3w6gnWuOylaubRitDKmG -----END CERTIFICATE-----Generated at Tue Oct 21 11:34:39 2025 by rpki-client