$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: RJK6ECZOFLGejHRVJxO/Wu62YZiJbhV/rvde2Lp4APY= Subject key identifier: 3D:6F:9E:F0:54:FB:B6:68:D2:59:42:D8:41:90:90:38:C0:DA:73:73 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F7B Signing time: Sun 02 Nov 2025 17:34:47 +0000 Manifest this update: Sun 02 Nov 2025 17:34:46 +0000 Manifest next update: Sun 09 Nov 2025 17:34:46 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: UL108K9hbpW+3pYuhHqIBOycfsZV28iw8dW4h/R7OVs=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3972 (0xf84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Nov 2 17:34:46 2025 GMT Not After : Nov 9 17:34:46 2025 GMT Subject: CN=69079637-99ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:89:08:5c:cb:04:40:7d:ef:33:da:d7:2d:84: 31:4e:b3:b4:40:77:7f:bd:58:41:dc:7d:49:4a:c6: a2:2d:97:91:7a:ae:21:7b:d0:ac:ef:8e:b6:c0:85: 14:1f:4c:59:e6:e4:87:b1:e7:60:c6:06:2e:b4:f0: bc:11:52:ba:25:6b:f1:e5:cd:48:ab:67:88:07:21: 97:9b:7a:1b:48:0b:1d:00:43:c8:f3:17:7c:34:2e: 99:55:52:6b:93:e6:58:e0:9d:63:09:52:fd:f7:ee: 4d:2d:e4:54:38:42:88:14:90:c0:80:a9:7e:1e:a5: 13:a8:15:25:6c:99:d8:05:4b:b9:28:8b:60:12:59: 06:d2:83:b1:75:3f:7e:40:3b:12:86:52:d1:72:1e: 88:49:2c:5d:cb:83:91:36:21:76:b5:a6:60:a0:0f: e8:3e:45:99:36:9b:23:bb:da:8f:36:42:b2:27:c3: 8e:28:49:a4:6b:8c:52:50:75:f4:c7:0b:c8:01:ad: cd:8b:21:28:35:52:34:c6:90:e4:a5:af:dd:23:b0: 66:a6:c8:77:8e:10:40:d4:e2:67:af:ac:fc:a0:27: 6f:97:1e:82:db:fb:eb:a3:d3:18:78:81:a1:a5:98: 5e:c9:b5:46:6b:4c:c7:0f:97:4c:de:5d:8f:ea:70: 9c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:6F:9E:F0:54:FB:B6:68:D2:59:42:D8:41:90:90:38:C0:DA:73:73 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e5:67:e9:fa:91:99:f5:5c:7e:b5:43:10:7e:1f:2d:1a:1f: 8b:85:62:2f:c6:16:d3:98:55:06:2c:c8:98:1a:d3:47:6c:bf: a1:54:32:94:cd:72:0c:ce:1f:50:b2:17:31:77:75:74:35:77: f4:04:64:ce:7f:56:ae:d5:f1:3e:ff:80:75:f9:a5:0e:60:91: a3:74:6b:53:4b:57:a6:02:83:23:84:d3:73:f6:a7:0b:cb:ff: 71:cc:b2:1a:34:e9:51:16:d2:6a:e2:9f:ce:77:46:64:04:f3: 84:d6:0f:f2:3d:31:06:2c:07:25:5f:35:dc:34:52:6c:85:05: fe:b1:71:5f:e6:ee:2f:dc:c9:62:b5:38:c3:94:ee:c5:62:da: 18:3e:70:52:21:5b:b1:2c:fd:ce:d5:34:40:d6:e5:4c:43:ce: 35:bf:4e:93:ba:26:6f:84:21:68:1e:38:37:82:a5:af:2c:0f: c0:c8:09:be:5f:02:25:58:fb:3f:27:50:a7:4a:fa:75:26:c1: 87:b9:b2:5b:31:44:3d:09:1b:9e:ac:82:a6:7b:3c:03:bd:fa: 8a:88:64:77:21:b1:5b:3c:ae:5e:b8:b9:ed:bc:c5:64:20:1f: 99:15:42:12:15:29:2d:a7:8f:60:df:65:2f:52:8c:b0:c8:ec: 9a:87:c8:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUxMTAyMTczNDQ2WhcNMjUxMTA5MTczNDQ2WjAYMRYwFAYD VQQDEw02OTA3OTYzNy05OWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4kIXMsEQH3vM9rXLYQxTrO0QHd/vVhB3H1JSsaiLZeReq4he9Cs7462wIUU H0xZ5uSHsedgxgYutPC8EVK6JWvx5c1Iq2eIByGXm3obSAsdAEPI8xd8NC6ZVVJr k+ZY4J1jCVL99+5NLeRUOEKIFJDAgKl+HqUTqBUlbJnYBUu5KItgElkG0oOxdT9+ QDsShlLRch6ISSxdy4ORNiF2taZgoA/oPkWZNpsju9qPNkKyJ8OOKEmka4xSUHX0 xwvIAa3NiyEoNVI0xpDkpa/dI7Bmpsh3jhBA1OJnr6z8oCdvlx6C2/vro9MYeIGh pZheybVGa0zHD5dM3l2P6nCcBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1vnvBU +7Zo0llC2EGQkDjA2nNzMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb5Wfp+pGZ9Vx+tUMQfh8tGh+LhWIvxhbTmFUGLMiYGtNHbL+hVDKU zXIMzh9Qshcxd3V0NXf0BGTOf1au1fE+/4B1+aUOYJGjdGtTS1emAoMjhNNz9qcL y/9xzLIaNOlRFtJq4p/Od0ZkBPOE1g/yPTEGLAclXzXcNFJshQX+sXFf5u4v3Mli tTjDlO7FYtoYPnBSIVuxLP3O1TRA1uVMQ841v06TuiZvhCFoHjg3gqWvLA/AyAm+ XwIlWPs/J1CnSvp1JsGHubJbMUQ9CRuerIKmezwDvfqKiGR3IbFbPK5euLntvMVk IB+ZFUISFSktp49g32UvUoywyOyah8ie -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:09 2025 by rpki-client