$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: J08PcWuJYEFCociEB/rOcejCBDyuadpYcKNqA4n5uTg= Subject key identifier: 24:F6:24:54:79:CE:06:C0:5A:9D:C5:CE:4B:E8:28:13:0E:5F:26:39 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: F9 Signing time: Mon 03 Nov 2025 05:08:24 +0000 Manifest this update: Mon 03 Nov 2025 05:08:23 +0000 Manifest next update: Mon 10 Nov 2025 05:08:23 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: XLoryGM+b3ivyiYRc29cF2Z4dZj4APgH1n65VGKvfGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: Nov 3 05:08:23 2025 GMT Not After : Nov 10 05:08:23 2025 GMT Subject: CN=690838c7-1f18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:19:79:62:52:cc:10:b8:76:fb:8b:4c:4c: 14:8c:6d:c0:1d:6a:f6:69:8b:ea:0e:0e:cf:27:3e: 15:47:a0:d2:38:d2:ae:04:e3:59:07:60:56:d1:2f: 9d:71:b1:5c:69:32:96:59:d3:7a:83:c0:2d:44:56: f1:a5:bd:af:9c:80:5e:f5:8c:9c:cf:b5:6b:99:60: 44:9b:45:03:a3:78:cb:42:9e:db:45:47:a9:0f:de: 69:fc:ff:2e:14:ae:4a:2e:09:5a:60:c4:09:6b:85: c3:22:ad:31:e1:19:70:5f:75:15:e9:1e:12:08:72: 0c:1a:5a:b2:41:32:a0:71:cb:6a:80:82:a3:74:fd: 98:f7:95:93:a7:21:d9:be:db:f4:5a:c4:5e:e8:2f: ba:db:b8:13:d5:c8:e2:46:9f:42:b1:08:9c:bb:b4: 84:94:2c:af:80:49:21:f0:4d:02:4f:6b:20:b9:d4: ab:54:1d:06:fa:ae:d4:08:2a:ce:91:56:47:ab:2c: fe:0f:ed:4c:4e:2a:46:ad:59:75:d7:38:af:c5:0e: 67:da:50:2f:a4:e1:9e:d1:39:d2:38:0a:46:47:3d: 60:76:04:08:d5:47:a2:fb:f1:19:bc:38:e0:e7:0f: 76:51:f1:00:60:b6:f7:6c:45:0a:84:13:0d:7d:a6: 6b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F6:24:54:79:CE:06:C0:5A:9D:C5:CE:4B:E8:28:13:0E:5F:26:39 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:7f:27:19:a8:8a:b4:6c:c2:08:23:9e:4f:d6:7c:88:84:ee: 19:89:78:15:cc:25:21:09:23:2c:6b:b2:89:3c:ed:7e:7b:3b: 2c:f9:33:a5:4a:bb:18:88:0e:94:d4:8c:2d:0e:aa:1f:4c:9e: 02:d2:8a:26:a6:14:99:c1:0d:96:49:78:c0:e6:7f:04:a3:b8: 09:ef:69:de:22:1e:58:2e:10:b0:7a:9f:0d:92:30:40:32:02: e5:8d:be:62:b9:32:e3:09:97:23:b6:a6:56:94:ec:d9:57:7c: d0:0a:c5:34:4e:68:6e:0a:78:d3:49:1f:8e:88:5d:6d:79:5a: d3:de:2f:28:20:c1:08:11:b6:08:d5:88:9b:f5:0c:0b:44:bf: da:13:6a:29:d8:fa:bf:35:85:d0:b1:0e:30:9a:9a:8f:ea:34: a3:47:39:82:9e:3d:dd:a8:70:cb:05:aa:32:24:7e:21:7f:fe: de:06:f9:00:c4:ff:68:f1:1e:12:82:86:ff:cf:39:0c:2e:15: a0:5d:bb:9a:a7:7d:80:22:5b:d4:6d:a6:99:62:4b:a2:bf:5c: aa:5c:59:bd:bb:3c:49:7f:27:b0:68:51:c6:d9:3b:f7:63:e8: a2:28:9e:ea:04:77:6b:f7:f6:5c:6c:39:68:df:f2:fa:62:6d: 88:5f:6a:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKDZERDA3NUMwNzBDRDE5NDA1QzA5NEQ0RDNENEJEQTE2 MzQwQ0VFRkMwHhcNMjUxMTAzMDUwODIzWhcNMjUxMTEwMDUwODIzWjAYMRYwFAYD VQQDEw02OTA4MzhjNy0xZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTQZeWJSzBC4dvuLTEwUjG3AHWr2aYvqDg7PJz4VR6DSONKuBONZB2BW0S+d cbFcaTKWWdN6g8AtRFbxpb2vnIBe9Yycz7VrmWBEm0UDo3jLQp7bRUepD95p/P8u FK5KLglaYMQJa4XDIq0x4RlwX3UV6R4SCHIMGlqyQTKgcctqgIKjdP2Y95WTpyHZ vtv0WsRe6C+627gT1cjiRp9CsQicu7SElCyvgEkh8E0CT2sgudSrVB0G+q7UCCrO kVZHqyz+D+1MTipGrVl11zivxQ5n2lAvpOGe0TnSOApGRz1gdgQI1Uei+/EZvDjg 5w92UfEAYLb3bEUKhBMNfaZrKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCT2JFR5 zgbAWp3FzkvoKBMOXyY5MB8GA1UdIwQYMBaAFG3QdcBwzRlAXAlNTT1L2hY0DO78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My81NkE1QjJBRTM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdVQmNDVTFOUFV2YUZqUU03 dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My81NkE1QjJBRTM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdV QmNDVTFOUFV2YUZqUU03dncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAfycZqIq0bMIII55P1nyIhO4ZiXgVzCUhCSMsa7KJPO1+ezss+TOl SrsYiA6U1IwtDqofTJ4C0oomphSZwQ2WSXjA5n8Eo7gJ72neIh5YLhCwep8NkjBA MgLljb5iuTLjCZcjtqZWlOzZV3zQCsU0TmhuCnjTSR+OiF1teVrT3i8oIMEIEbYI 1Yib9QwLRL/aE2op2Pq/NYXQsQ4wmpqP6jSjRzmCnj3dqHDLBaoyJH4hf/7eBvkA xP9o8R4Sgob/zzkMLhWgXbuap32AIlvUbaaZYkuiv1yqXFm9uzxJfyewaFHG2Tv3 Y+iiKJ7qBHdr9/ZcbDlo3/L6Ym2IX2rR -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:20 2025 by rpki-client