$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft File: bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft (raw, json) Hash identifier: wMVhBO/AuGXXtiLdv5sWU9GBjEtb6egsM98i636JNkA= Subject key identifier: 52:3D:EB:D7:5D:AF:42:DC:E7:A4:38:6E:22:22:AE:AE:78:FA:6E:70 Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 0950 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft Manifest number: 0942 Signing time: Sun 02 Nov 2025 20:09:14 +0000 Manifest this update: Sun 02 Nov 2025 20:09:13 +0000 Manifest next update: Sun 09 Nov 2025 20:09:13 +0000 Files and hashes: 1: bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl (hash: q7B1BOvauXln8OK0QKtKE6uS4gVbD3vT/A2KNMZPsgY=) 2: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (hash: 9+lw98rdFugqdiBRyKbVp2oC9fkpMpQz4UV/k8IjCXg=) 3: F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa (hash: AF8iSINyYs/yviryAgwAaGDxt3e7QveTWxIVOikxElk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2384 (0x950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53, serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: Nov 2 20:09:13 2025 GMT Not After : Nov 9 20:09:13 2025 GMT Subject: CN=6907ba6a-7cd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:52:cc:4b:03:57:72:34:85:09:91:63:d5: 16:e4:f5:c2:42:fb:3d:16:82:e4:5b:99:2e:e5:27: ce:38:45:6d:3c:b1:8f:d8:ce:db:c6:34:30:7b:ad: b0:79:f6:4a:40:1e:23:af:f0:24:8b:1a:28:5e:e0: ff:ab:f4:92:8a:38:26:30:85:e1:06:e4:eb:98:a4: 8b:33:61:3c:2a:c3:ae:7a:b2:98:3b:fa:1d:11:b6: 09:cc:a0:ba:3a:95:2d:40:7e:8f:93:d6:a2:04:55: b0:fb:c0:26:d7:c6:e1:77:b3:87:01:5a:da:76:b6: 1f:a3:d4:46:63:9d:2f:50:b4:2c:dc:67:2e:d4:ca: 74:13:9f:70:37:01:38:b2:42:c9:3c:80:74:86:aa: fd:36:d5:a7:06:42:33:04:b0:d2:f9:94:21:a9:3a: f0:a8:ac:f5:5d:18:7c:65:23:eb:58:dd:ff:58:cb: 54:70:52:79:95:6a:af:5e:9e:21:36:72:95:fd:a2: 98:a9:21:0d:5c:30:17:d1:50:1b:ab:6c:6e:c7:46: 43:40:45:84:aa:4f:c5:02:83:c5:1d:66:03:99:6b: af:f2:9f:07:d9:fe:2e:ef:8c:48:7e:dc:da:d2:42: 2b:3f:8f:44:dc:4a:2e:52:b6:ea:2d:61:fd:f9:6f: 9f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:3D:EB:D7:5D:AF:42:DC:E7:A4:38:6E:22:22:AE:AE:78:FA:6E:70 X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c1:d3:af:68:37:8b:52:2f:9e:06:ca:c6:7f:6f:db:9c:7d: 1d:cf:4c:f7:13:c3:96:35:8b:19:f8:76:73:57:41:4b:ba:30: b6:27:17:41:94:53:ed:e1:29:2c:0c:10:5e:ba:ed:eb:a0:a8: 29:b3:15:bf:07:8d:3e:d8:f3:cd:9c:37:5f:89:cf:8b:ef:10: 63:44:17:c7:47:d6:2c:88:14:72:b0:84:d5:fa:a6:0c:08:05: 67:98:fd:5c:4d:19:a2:bb:7a:a9:5b:5b:97:b7:dc:16:c2:55: 92:b1:f6:b1:fe:aa:cc:d4:f9:08:23:df:9f:a9:79:9c:7a:d7: 37:0b:c3:58:b5:22:e8:1a:5f:0b:d2:da:d0:4d:d4:68:a1:82: c2:45:14:6f:ab:88:f5:37:d8:92:5d:e5:90:c4:7d:fd:f0:ac: b2:3e:10:d1:fe:d4:ff:c7:ea:79:c7:e6:e7:d0:b5:e1:25:45: 80:ef:dd:7d:9d:52:7b:81:53:81:1c:4e:3c:86:ad:37:f8:ba: 5f:49:fa:90:2b:25:42:f1:58:20:0a:02:c0:22:01:37:6d:de: 29:8f:5c:48:19:cf:dd:1e:cc:70:05:9f:bc:40:aa:7a:1a:38: d2:9a:b0:e0:ef:a0:9c:d4:32:33:12:f9:a1:1b:42:0b:04:77: 95:14:94:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjUxMTAyMjAwOTEzWhcNMjUxMTA5MjAwOTEzWjAYMRYwFAYD VQQDEw02OTA3YmE2YS03Y2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv79SzEsDV3I0hQmRY9UW5PXCQvs9FoLkW5ku5SfOOEVtPLGP2M7bxjQwe62w efZKQB4jr/AkixooXuD/q/SSijgmMIXhBuTrmKSLM2E8KsOuerKYO/odEbYJzKC6 OpUtQH6Pk9aiBFWw+8Am18bhd7OHAVradrYfo9RGY50vULQs3Gcu1Mp0E59wNwE4 skLJPIB0hqr9NtWnBkIzBLDS+ZQhqTrwqKz1XRh8ZSPrWN3/WMtUcFJ5lWqvXp4h NnKV/aKYqSENXDAX0VAbq2xux0ZDQEWEqk/FAoPFHWYDmWuv8p8H2f4u74xIftza 0kIrP49E3EouUrbqLWH9+W+fWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFI969dd r0Lc56Q4biIirq54+m5wMB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEE1My83MUI3RDQ3MEFCNEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2 Y0NkTURPZHpnNUlfRldKeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiwdOvaDeLUi+eBsrGf2/bnH0dz0z3E8OWNYsZ+HZzV0FLujC2JxdB lFPt4SksDBBeuu3roKgpsxW/B40+2PPNnDdfic+L7xBjRBfHR9YsiBRysITV+qYM CAVnmP1cTRmiu3qpW1uXt9wWwlWSsfax/qrM1PkII9+fqXmcetc3C8NYtSLoGl8L 0trQTdRooYLCRRRvq4j1N9iSXeWQxH398KyyPhDR/tT/x+p5x+bn0LXhJUWA7919 nVJ7gVOBHE48hq03+LpfSfqQKyVC8VggCgLAIgE3bd4pj1xIGc/dHsxwBZ+8QKp6 GjjSmrDg76Cc1DIzEvmhG0ILBHeVFJTq -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:42 2025 by rpki-client