$ rpki-client -vvf rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft File: BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft (raw, json) Hash identifier: ZnpI+QZP+keEtMKWYGpsO0wVxs4PilGxElkSG88mQUc= Subject key identifier: 39:7E:F0:31:B5:2D:8B:59:46:51:5C:5B:EB:9A:E0:5F:88:0C:80:27 Authority key identifier: 04:F0:74:A0:BA:87:80:5C:50:FC:79:93:D4:04:10:B8:4A:11:D2:F6 Certificate issuer: /CN=A9126B7C/serialNumber=04F074A0BA87805C50FC7993D40410B84A11D2F6 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft Manifest number: 01DC Signing time: Mon 03 Nov 2025 02:42:28 +0000 Manifest this update: Mon 03 Nov 2025 02:42:27 +0000 Manifest next update: Mon 10 Nov 2025 02:42:27 +0000 Files and hashes: 1: BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl (hash: rQoix4K/+BbmYN2R3PbUqSjsS0MP+KoTfbt2KclBTUw=) 2: F57CB8F6DF8C11ED9EAE5884C4F9AE02.roa (hash: JW1dKstiHv1728tfD/7nx2W9fc+YXOuPr0l8dOY2HWI=) 3: F607A6C8DF8C11ED9EAE5884C4F9AE02.roa (hash: 0kmwTMLlfi4JUkvLZl5hjiEibE5pPoiG3TS5y+XQg4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126B7C, serialNumber=04F074A0BA87805C50FC7993D40410B84A11D2F6 Validity Not Before: Nov 3 02:42:27 2025 GMT Not After : Nov 10 02:42:27 2025 GMT Subject: CN=69081694-cd99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9a:e5:48:3f:7f:23:66:13:2a:19:86:8e:72: fd:f1:eb:5a:31:df:44:ed:09:75:e3:84:4c:25:b7: 30:3c:92:99:24:8e:51:7e:2f:6f:60:0f:4f:e3:1b: 49:8c:a9:d6:da:ba:e0:97:e2:fb:47:86:aa:3c:e5: 42:34:63:b6:a7:a2:32:c4:19:b6:87:39:9b:e8:56: 3d:0f:a7:1f:40:a2:d2:b0:cf:b3:ff:6a:c5:8b:2d: ac:4c:af:ab:7c:1d:be:55:33:4d:8e:6e:a5:31:f1: 9a:bd:30:da:25:2a:5c:4d:43:cc:b6:1c:0d:cf:4d: cd:e0:c6:bb:44:91:79:f5:02:65:92:ea:63:32:40: 12:9a:fc:fa:eb:8f:60:7c:0a:a8:b9:43:8b:f3:68: 47:02:bc:88:fe:76:30:5e:a7:02:51:bc:d2:81:0f: ea:62:3d:5a:62:4b:43:49:a6:8e:99:b1:33:5c:44: 9f:28:80:ac:aa:d7:da:ad:88:ad:56:d5:1b:ab:14: 4b:75:39:f2:21:d0:7e:b3:10:53:e6:f8:25:fd:53: ef:88:83:2e:74:91:ad:e5:97:20:f0:cc:9f:8e:d2: e3:c0:ea:93:f7:b7:29:79:53:8c:f0:d0:3e:43:c6: 13:05:ce:03:b2:e6:a7:49:84:cd:11:7c:b2:52:51: 3a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7E:F0:31:B5:2D:8B:59:46:51:5C:5B:EB:9A:E0:5F:88:0C:80:27 X509v3 Authority Key Identifier: keyid:04:F0:74:A0:BA:87:80:5C:50:FC:79:93:D4:04:10:B8:4A:11:D2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:be:bf:f5:48:3f:c7:b8:16:fb:60:ac:43:50:8e:a9:3f:59: a0:50:67:e6:29:dd:40:01:55:e3:ca:dd:29:81:bd:7f:de:21: 53:d7:d1:7e:5a:b9:23:ce:ea:07:f4:02:49:c9:14:9b:ad:41: da:80:ab:57:b5:bd:d3:eb:5f:76:b3:bc:0f:4d:1f:c3:31:37: 76:dd:9d:6f:2a:05:e0:90:1c:0c:84:fd:9f:4b:28:2a:e6:ed: e5:76:4a:31:d5:73:80:4f:03:c5:c1:e0:c4:4a:82:f6:36:73: c8:27:f9:59:8f:67:6c:ed:00:64:bb:ff:ec:99:96:27:9d:44: c9:7f:af:24:df:b9:3d:eb:66:ac:2a:a2:cd:67:c9:5c:2d:3c: 84:ff:33:7c:4c:85:79:1c:45:e9:ab:47:2c:f7:86:7b:d1:2b: 94:7e:64:23:cb:ed:93:11:73:64:c2:d8:38:e3:44:24:71:da: e5:fe:a5:b0:07:b4:74:d3:10:c0:15:a4:eb:8a:b4:a7:12:e8: e9:cd:7b:75:57:14:af:aa:21:9b:8f:91:da:e8:49:34:ea:18: c6:4c:f5:ce:e9:6a:20:ec:da:12:47:77:7f:67:60:00:1e:11: fa:bc:f8:a9:53:12:b6:72:5b:76:0c:5d:cb:cd:b6:c1:07:a5: b8:c9:8a:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZCN0MxMTAvBgNVBAUTKDA0RjA3NEEwQkE4NzgwNUM1MEZDNzk5M0Q0MDQxMEI4 NEExMUQyRjYwHhcNMjUxMTAzMDI0MjI3WhcNMjUxMTEwMDI0MjI3WjAYMRYwFAYD VQQDEw02OTA4MTY5NC1jZDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJrlSD9/I2YTKhmGjnL98etaMd9E7Ql144RMJbcwPJKZJI5Rfi9vYA9P4xtJ jKnW2rrgl+L7R4aqPOVCNGO2p6IyxBm2hzmb6FY9D6cfQKLSsM+z/2rFiy2sTK+r fB2+VTNNjm6lMfGavTDaJSpcTUPMthwNz03N4Ma7RJF59QJlkupjMkASmvz6649g fAqouUOL82hHAryI/nYwXqcCUbzSgQ/qYj1aYktDSaaOmbEzXESfKICsqtfarYit VtUbqxRLdTnyIdB+sxBT5vgl/VPviIMudJGt5Zcg8MyfjtLjwOqT97cpeVOM8NA+ Q8YTBc4DsuanSYTNEXyyUlE6mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDl+8DG1 LYtZRlFcW+ua4F+IDIAnMB8GA1UdIwQYMBaAFATwdKC6h4BcUPx5k9QEELhKEdL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkI3Qy81MUE5NDQ1QURG ODgxMUVEQUZCRjJCN0ZDNEY5QUUwMi9CUEIwb0xxSGdGeFFfSG1UMUFRUXVFb1Iw dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQQjBvTHFIZ0Z4UV9IbVQxQVFRdUVvUjB2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkI3Qy81MUE5NDQ1QURGODgxMUVEQUZCRjJCN0ZDNEY5QUUwMi9CUEIwb0xxSGdG eFFfSG1UMUFRUXVFb1IwdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOvr/1SD/HuBb7YKxDUI6pP1mgUGfmKd1AAVXjyt0pgb1/3iFT19F+ WrkjzuoH9AJJyRSbrUHagKtXtb3T6192s7wPTR/DMTd23Z1vKgXgkBwMhP2fSygq 5u3ldkox1XOATwPFweDESoL2NnPIJ/lZj2ds7QBku//smZYnnUTJf68k37k962as KqLNZ8lcLTyE/zN8TIV5HEXpq0cs94Z70SuUfmQjy+2TEXNkwtg440Qkcdrl/qWw B7R00xDAFaTrirSnEujpzXt1VxSvqiGbj5Ha6Ek06hjGTPXO6Wog7NoSR3d/Z2AA HhH6vPipUxK2clt2DF3LzbbBB6W4yYre -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:48 2025 by rpki-client