$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft File: Bst2YhlvZE7eydz72HmbjHPjlwk.mft (raw, json) Hash identifier: QkaD4p1uFIdQllaYHTdBdRj2ECthaas9NAdAMGZBN0c= Subject key identifier: 4E:2C:29:E9:77:49:33:23:07:E2:DA:9C:31:C6:94:AD:60:12:2D:F5 Authority key identifier: 06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 Certificate issuer: /CN=A9127C93/serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft Manifest number: 0233 Signing time: Mon 03 Nov 2025 01:52:30 +0000 Manifest this update: Mon 03 Nov 2025 01:52:30 +0000 Manifest next update: Mon 10 Nov 2025 01:52:30 +0000 Files and hashes: 1: Bst2YhlvZE7eydz72HmbjHPjlwk.crl (hash: LlXPjAmf86qOkDH7/VwCt4T9ti73+VSyS8HoTfF+7f4=) 2: 2965791E5F4011ED9361C246C4F9AE02.roa (hash: giH1vIhIIPvv5hJDOK02Raj/lgCr3oz3hTTRlbexHIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C93, serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Validity Not Before: Nov 3 01:52:30 2025 GMT Not After : Nov 10 01:52:30 2025 GMT Subject: CN=69080ade-70d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:05:52:f9:90:38:7d:7a:34:57:d3:bb:f3:52: 0a:64:8e:c1:90:de:fc:aa:3d:a9:a7:03:0d:f4:b9: 0f:a7:63:e8:18:93:c0:72:30:a8:20:97:d5:40:22: 06:f0:cd:fc:80:0a:ce:37:b3:10:69:db:d9:83:ad: aa:cb:80:e4:f3:81:83:cb:f5:6c:63:34:5a:d2:ee: d8:75:ae:eb:bc:4e:20:f1:e5:2b:36:90:6f:21:c1: 09:64:0d:ad:81:11:a3:e8:7d:da:e1:2f:85:34:1a: 8b:92:22:ee:db:a3:f2:0f:21:aa:92:0f:ff:c8:18: c5:72:25:5f:cf:b2:71:a9:9a:5b:68:6f:f7:77:e3: 85:53:77:13:69:ec:a7:42:a0:80:71:92:a2:b6:7c: aa:1e:ba:45:7c:0d:fb:11:d4:7b:57:79:d2:5c:65: 26:d0:49:70:ca:92:9e:70:05:4d:38:c4:54:47:31: e6:73:1a:e7:e8:a5:10:d1:37:b7:2b:c2:53:57:b4: 37:d4:2b:06:4c:f1:29:ce:32:0a:ac:86:f2:de:41: ea:56:4d:35:e9:76:0b:87:69:db:a0:1b:98:96:82: f6:69:32:12:20:7b:f1:5a:7b:8e:f5:22:f6:9a:60: 5f:25:02:a0:fc:da:8c:7e:c0:f3:aa:96:95:65:7f: ac:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2C:29:E9:77:49:33:23:07:E2:DA:9C:31:C6:94:AD:60:12:2D:F5 X509v3 Authority Key Identifier: keyid:06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:22:29:54:fb:39:07:28:2b:cd:c0:30:1f:c8:10:55:1b:d7: 28:3e:54:41:54:c9:62:94:51:3d:16:02:c4:72:5d:a6:80:32: f8:64:7b:b1:31:ad:94:91:87:96:b5:2f:99:fa:37:3c:58:34: a1:4e:76:bf:af:0f:4a:db:e0:44:50:46:27:1e:c8:ed:15:3d: 49:ed:a1:ec:5a:f7:f7:b2:0c:d2:ac:c3:6c:00:04:ff:71:23: e1:8c:aa:26:31:c9:8a:49:41:a1:02:f9:cb:9d:62:85:19:70: 5c:3d:4f:6c:78:0c:44:cd:7a:ba:32:3b:1b:02:f6:ad:ef:01: 0a:c3:7b:8d:28:c7:fc:09:c4:99:02:77:6c:c6:cc:7d:b0:a3: 1d:dd:4c:fd:a8:80:5d:0d:0d:6a:36:d6:a0:39:27:6d:a4:74: 19:64:fb:bd:6c:e7:0f:83:e3:17:b5:50:04:9f:26:9e:d3:96: d2:98:51:ec:1a:36:54:28:85:e5:dd:f5:87:2b:f9:8d:a1:51: 96:c4:5a:b0:e9:d5:2e:e9:64:0e:68:2d:68:47:a0:16:a7:14: 92:fb:71:12:4f:d2:a7:2c:69:86:a3:6b:3c:9e:1f:f5:40:14: 94:45:32:bc:6c:8b:39:d4:7f:cc:28:7e:ff:04:14:eb:23:23: b5:72:24:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdDOTMxMTAvBgNVBAUTKDA2Q0I3NjYyMTk2RjY0NEVERUM5RENGQkQ4Nzk5QjhD NzNFMzk3MDkwHhcNMjUxMTAzMDE1MjMwWhcNMjUxMTEwMDE1MjMwWjAYMRYwFAYD VQQDEw02OTA4MGFkZS03MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwVS+ZA4fXo0V9O781IKZI7BkN78qj2ppwMN9LkPp2PoGJPAcjCoIJfVQCIG 8M38gArON7MQadvZg62qy4Dk84GDy/VsYzRa0u7Yda7rvE4g8eUrNpBvIcEJZA2t gRGj6H3a4S+FNBqLkiLu26PyDyGqkg//yBjFciVfz7JxqZpbaG/3d+OFU3cTaeyn QqCAcZKitnyqHrpFfA37EdR7V3nSXGUm0ElwypKecAVNOMRURzHmcxrn6KUQ0Te3 K8JTV7Q31CsGTPEpzjIKrIby3kHqVk016XYLh2nboBuYloL2aTISIHvxWnuO9SL2 mmBfJQKg/NqMfsDzqpaVZX+skQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4sKel3 STMjB+LanDHGlK1gEi31MB8GA1UdIwQYMBaAFAbLdmIZb2RO3snc+9h5m4xz45cJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0M5My80MDIxQTRFNjVG MjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpFN2V5ZHo3MkhtYmpIUGps d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzdDJZaGx2WkU3ZXlkejcySG1iakhQamx3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0M5My80MDIxQTRFNjVGMjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpF N2V5ZHo3MkhtYmpIUGpsd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCIilU+zkHKCvNwDAfyBBVG9coPlRBVMlilFE9FgLEcl2mgDL4ZHux Ma2UkYeWtS+Z+jc8WDShTna/rw9K2+BEUEYnHsjtFT1J7aHsWvf3sgzSrMNsAAT/ cSPhjKomMcmKSUGhAvnLnWKFGXBcPU9seAxEzXq6MjsbAvat7wEKw3uNKMf8CcSZ Andsxsx9sKMd3Uz9qIBdDQ1qNtagOSdtpHQZZPu9bOcPg+MXtVAEnyae05bSmFHs GjZUKIXl3fWHK/mNoVGWxFqw6dUu6WQOaC1oR6AWpxSS+3EST9KnLGmGo2s8nh/1 QBSURTK8bIs51H/MKH7/BBTrIyO1ciQs -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:15 2025 by rpki-client