$ rpki-client -vvf rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft File: BXtTd0A4JnigePW_KExyZ5S50TQ.mft (raw, json) Hash identifier: KdHDIRe+Wbv+Wjj9BmGeJ+AhRnou3WGc/Ze6ThFdDN0= Subject key identifier: 0A:87:72:95:C5:93:A1:AC:A3:F5:35:0F:67:F1:C9:3E:F2:C1:5F:2B Authority key identifier: 05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 Certificate issuer: /CN=A91992FA/serialNumber=057B537740382678A078F5BF284C726794B9D134 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft Manifest number: 85 Signing time: Mon 03 Nov 2025 06:39:05 +0000 Manifest this update: Mon 03 Nov 2025 06:39:05 +0000 Manifest next update: Mon 10 Nov 2025 06:39:05 +0000 Files and hashes: 1: BXtTd0A4JnigePW_KExyZ5S50TQ.crl (hash: tAl5VRm1pM3X7xOTAC/hJOYiCgT+GCtA5vS7SgsGHZ4=) 2: CF5EEDA6894411F0BE628977C4F9AE02.roa (hash: 17QpSjP3T4fN2iFoeGDXqVvnkQ3k4lIOqR9Kwrs2UKY=) 3: 44A28FACEFEC11EF80EC123DC4F9AE02.roa (hash: kIHtM5yk/7E77z9qFDfBUJpQm2RMukSPxAc1zKCnuxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91992FA, serialNumber=057B537740382678A078F5BF284C726794B9D134 Validity Not Before: Nov 3 06:39:05 2025 GMT Not After : Nov 10 06:39:05 2025 GMT Subject: CN=69084e09-1140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:66:d7:00:07:77:b8:2c:ad:5d:a7:db:61:9a: ee:6a:03:b4:41:1b:50:10:df:49:ff:97:dc:01:a4: 09:c4:e0:70:03:49:8c:24:84:6c:19:33:1f:cf:76: 5f:fb:e0:0d:44:31:a2:e6:aa:71:2e:d5:06:06:1d: 9d:d6:95:2e:2b:5b:e0:6e:1a:31:12:8c:fd:b8:a0: f6:63:ef:6c:01:36:1a:ab:67:7e:96:97:33:d1:c3: f4:a3:a9:ef:53:5d:37:c1:dc:4d:7d:5a:9d:88:8c: b6:ad:51:ce:28:71:e5:99:bc:f7:37:4f:5e:cf:ac: c5:75:ad:b8:e5:ac:42:94:f8:74:f8:94:49:2e:73: 71:8c:be:b4:4a:9c:53:ed:9e:fd:63:9f:7f:27:60: 5b:9d:a4:f9:c6:48:32:d4:ca:2b:18:45:05:35:b9: f7:e9:27:79:e4:7d:01:25:0d:bc:70:68:8b:73:41: 35:d0:ce:e1:d0:46:e3:2b:69:d8:e9:d1:30:4d:4f: 04:9e:dc:be:86:fc:f8:d7:4c:a0:1e:76:c8:c8:14: 21:78:92:70:35:0f:42:97:91:5d:8c:bb:2e:16:14: 9b:f8:9d:82:6a:ae:16:7d:6c:d1:ea:2a:1a:64:bc: ae:71:29:5b:a8:40:78:fe:4c:de:09:84:62:f5:37: a8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:87:72:95:C5:93:A1:AC:A3:F5:35:0F:67:F1:C9:3E:F2:C1:5F:2B X509v3 Authority Key Identifier: keyid:05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:71:38:54:87:2f:de:e4:de:99:36:8d:92:58:75:1a:88:5e: c4:9c:4e:c0:37:f0:5f:dc:7b:ee:e7:d5:07:e1:f7:3d:7b:0c: 5e:fd:9b:5d:49:24:c3:ca:de:84:46:6c:9d:8c:d6:0b:b2:34: 60:49:08:be:40:97:9b:ab:bf:2d:08:28:31:b9:54:bf:9f:36: ee:dc:a1:b7:a3:fc:d0:3e:73:1b:08:74:48:1d:18:29:09:ed: 10:e4:9a:7e:56:85:30:62:bf:ea:92:3f:b9:81:37:84:74:23: dc:5c:2a:91:f9:61:2f:8c:94:27:db:2d:4e:da:af:63:30:70: dc:b0:e2:70:88:9a:1c:a0:02:82:64:6d:c5:23:0d:fb:93:67: 44:06:c7:76:67:f0:0a:76:70:65:e5:64:e3:a1:f2:2d:2f:e9: 37:77:b1:d6:3f:fd:d9:34:4b:88:2e:18:c4:c0:ad:d3:de:6b: d3:07:4b:aa:ee:e5:78:d8:63:4b:1c:6b:c5:88:ea:f0:94:58: 94:ad:c4:20:90:be:61:93:d9:cc:10:9c:ab:6d:5e:db:20:c3: dd:86:c4:12:07:77:22:cb:cc:e4:d6:ab:c7:1f:65:28:d6:2d: fc:5b:dd:49:fc:9e:f1:7c:f4:8e:ae:4d:b0:3f:be:0e:5a:76: 43:bc:d3:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyRkExMTAvBgNVBAUTKDA1N0I1Mzc3NDAzODI2NzhBMDc4RjVCRjI4NEM3MjY3 OTRCOUQxMzQwHhcNMjUxMTAzMDYzOTA1WhcNMjUxMTEwMDYzOTA1WjAYMRYwFAYD VQQDEw02OTA4NGUwOS0xMTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2bXAAd3uCytXafbYZruagO0QRtQEN9J/5fcAaQJxOBwA0mMJIRsGTMfz3Zf ++ANRDGi5qpxLtUGBh2d1pUuK1vgbhoxEoz9uKD2Y+9sATYaq2d+lpcz0cP0o6nv U103wdxNfVqdiIy2rVHOKHHlmbz3N09ez6zFda245axClPh0+JRJLnNxjL60SpxT 7Z79Y59/J2BbnaT5xkgy1MorGEUFNbn36Sd55H0BJQ28cGiLc0E10M7h0EbjK2nY 6dEwTU8Enty+hvz410ygHnbIyBQheJJwNQ9Cl5FdjLsuFhSb+J2Caq4WfWzR6ioa ZLyucSlbqEB4/kzeCYRi9TeolQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqHcpXF k6Gso/U1D2fxyT7ywV8rMB8GA1UdIwQYMBaAFAV7U3dAOCZ4oHj1vyhMcmeUudE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTJGQS9GQTQ2RTBEMkVF MDMxMUVGOUMyQjhBNDlDNEY5QUUwMi9CWHRUZDBBNEpuaWdlUFdfS0V4eVo1UzUw VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYdFRkMEE0Sm5pZ2VQV19LRXh5WjVTNTBUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTJGQS9GQTQ2RTBEMkVFMDMxMUVGOUMyQjhBNDlDNEY5QUUwMi9CWHRUZDBBNEpu aWdlUFdfS0V4eVo1UzUwVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgcThUhy/e5N6ZNo2SWHUaiF7EnE7AN/Bf3Hvu59UH4fc9ewxe/Ztd SSTDyt6ERmydjNYLsjRgSQi+QJebq78tCCgxuVS/nzbu3KG3o/zQPnMbCHRIHRgp Ce0Q5Jp+VoUwYr/qkj+5gTeEdCPcXCqR+WEvjJQn2y1O2q9jMHDcsOJwiJocoAKC ZG3FIw37k2dEBsd2Z/AKdnBl5WTjofItL+k3d7HWP/3ZNEuILhjEwK3T3mvTB0uq 7uV42GNLHGvFiOrwlFiUrcQgkL5hk9nMEJyrbV7bIMPdhsQSB3ciy8zk1qvHH2Uo 1i38W91J/J7xfPSOrk2wP74OWnZDvNP1 -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:54 2025 by rpki-client