$ rpki-client -vvf rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft File: bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft (raw, json) Hash identifier: jaOYbNg+Kjn9iSq5MBG5+5AtycnjFsfxnXFSvt4Z298= Subject key identifier: D8:F8:DC:25:CB:28:A6:2D:CB:E3:BC:D1:4B:2C:16:8C:EB:82:D9:FC Authority key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 Certificate issuer: /CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft Manifest number: 0113 Signing time: Wed 05 Nov 2025 05:00:52 +0000 Manifest this update: Wed 05 Nov 2025 05:00:52 +0000 Manifest next update: Wed 12 Nov 2025 05:00:52 +0000 Files and hashes: 1: bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl (hash: AS+5heOUrQyJzaCMDfypf3vDhM93FH5aDp4i70nXIeg=) 2: 8093CCBA13F611EF8ED7D71EC4F9AE02.roa (hash: J6cm0tDS7Sdy7/sJGsGgF8rSkOKz7v9OX913NFApE9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626D2, serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Validity Not Before: Nov 5 05:00:52 2025 GMT Not After : Nov 12 05:00:52 2025 GMT Subject: CN=690ada04-0ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:52:62:2b:19:77:01:a2:de:68:cc:cc:e0:14: 1b:67:8b:f2:75:07:a7:7c:b6:f6:23:ed:8c:9f:33: 53:68:be:08:58:fe:2a:e3:01:5a:77:3a:8b:04:65: 18:fe:1e:8d:fb:29:69:a9:93:1a:54:49:b9:9b:41: 58:aa:5d:5c:f4:92:3b:34:46:2b:42:3d:49:ea:1a: f7:79:61:f0:da:d3:f8:fc:ad:5a:31:1b:42:f0:23: 81:49:62:c9:bb:8d:40:d4:fb:aa:22:d3:e8:38:b4: 00:ab:27:51:eb:6a:7c:d0:32:67:c4:e8:49:6d:4c: 2a:3a:7d:33:aa:7c:17:98:3f:51:56:02:ab:8f:c0: ca:54:a4:91:88:db:d5:88:57:df:c3:a5:41:85:b5: 12:4e:fb:8a:5f:ea:1b:45:b5:31:2c:20:9c:04:ee: 14:76:d6:ba:c1:e7:99:30:41:93:f0:ed:82:91:be: ab:24:82:a7:98:a6:04:83:d0:83:b6:6a:fe:c8:a3: 5b:8f:40:9a:3b:f9:37:88:0b:0e:00:63:7f:b7:ee: 6b:03:7c:37:d0:f0:7f:93:36:c3:b9:98:ff:64:32: 25:8d:7e:b4:52:3f:4e:ff:78:f2:86:3e:5c:aa:9e: b7:35:2d:ea:6d:ed:92:c5:6b:5a:c7:4e:68:5d:86: 58:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:F8:DC:25:CB:28:A6:2D:CB:E3:BC:D1:4B:2C:16:8C:EB:82:D9:FC X509v3 Authority Key Identifier: keyid:6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:b1:e4:d1:d6:f5:e9:ca:fd:ea:f1:98:f5:fc:f0:cd:f9:bb: 97:4d:47:76:2a:b5:e3:7c:42:9b:1a:43:0f:ac:85:2c:61:ce: 45:2d:ca:c1:46:4c:eb:4d:a6:a4:60:f4:77:d2:a9:03:23:62: f1:69:6d:16:21:c0:d6:3e:ce:4d:5f:79:90:c2:c6:84:b0:d8: be:46:6c:8f:2c:23:48:f4:93:1b:79:46:d3:87:ce:b0:94:62: 53:e2:4c:66:e9:e3:3e:df:a3:ee:ec:07:60:d9:15:28:d7:c9: 6c:22:80:3b:66:7d:6b:78:e5:d3:7a:22:ba:bf:05:62:52:ce: 18:8c:7a:9f:ff:bc:79:a1:a2:1d:41:53:d3:cf:12:2e:ba:17: 44:da:03:ab:53:92:4a:b2:4e:36:ef:6d:ff:81:b3:22:47:47: 56:59:01:4c:a1:dc:dc:08:8c:ce:a5:74:b5:27:67:79:c8:4c: fb:ed:41:d6:4d:37:b6:25:28:9b:69:f3:15:47:cb:f0:0d:2b: 06:d5:5e:02:d8:a7:02:5a:a9:08:73:9f:be:49:2c:74:4d:4d: cd:c8:7c:9b:c3:f6:85:74:fc:8c:ab:c0:6c:57:ca:52:ce:5a: 2b:41:1e:24:19:f1:b2:07:e3:78:33:ea:68:3d:c7:55:ff:65: 9d:3d:e1:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RDIxMTAvBgNVBAUTKDZDM0I3RjFDMTMzREE5QzUxRDQ0NERBODVFNjAyQTk2 ODQ1MUZFNTQwHhcNMjUxMTA1MDUwMDUyWhcNMjUxMTEyMDUwMDUyWjAYMRYwFAYD VQQDEw02OTBhZGEwNC0wYWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlJiKxl3AaLeaMzM4BQbZ4vydQenfLb2I+2MnzNTaL4IWP4q4wFadzqLBGUY /h6N+ylpqZMaVEm5m0FYql1c9JI7NEYrQj1J6hr3eWHw2tP4/K1aMRtC8COBSWLJ u41A1PuqItPoOLQAqydR62p80DJnxOhJbUwqOn0zqnwXmD9RVgKrj8DKVKSRiNvV iFffw6VBhbUSTvuKX+obRbUxLCCcBO4Udta6weeZMEGT8O2Ckb6rJIKnmKYEg9CD tmr+yKNbj0CaO/k3iAsOAGN/t+5rA3w30PB/kzbDuZj/ZDIljX60Uj9O/3jyhj5c qp63NS3qbe2SxWtax05oXYZY2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNj43CXL KKYty+O80UssFozrgtn8MB8GA1UdIwQYMBaAFGw7fxwTPanFHURNqF5gKpaEUf5U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZEMi9BRjIwODM0RTEz RjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFjVWRSRTJvWG1BcWxvUlJf bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JEdF9IQk05cWNVZFJFMm9YbUFxbG9SUl9sUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZEMi9BRjIwODM0RTEzRjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFj VWRSRTJvWG1BcWxvUlJfbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnseTR1vXpyv3q8Zj1/PDN+buXTUd2KrXjfEKbGkMPrIUsYc5FLcrB RkzrTaakYPR30qkDI2LxaW0WIcDWPs5NX3mQwsaEsNi+RmyPLCNI9JMbeUbTh86w lGJT4kxm6eM+36Pu7Adg2RUo18lsIoA7Zn1reOXTeiK6vwViUs4YjHqf/7x5oaId QVPTzxIuuhdE2gOrU5JKsk42723/gbMiR0dWWQFModzcCIzOpXS1J2d5yEz77UHW TTe2JSibafMVR8vwDSsG1V4C2KcCWqkIc5++SSx0TU3NyHybw/aFdPyMq8BsV8pS zlorQR4kGfGyB+N4M+poPcdV/2WdPeFU -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:22 2025 by rpki-client