$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft File: bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json) Hash identifier: pkM83u13HE0OOSyF0duo0kaPo/WqTWJc5pQiu8kzwmA= Subject key identifier: 89:49:9D:75:58:1A:74:ED:32:E3:79:B6:52:DC:D0:9D:32:34:68:75 Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft Manifest number: 0121 Signing time: Mon 03 Nov 2025 04:49:49 +0000 Manifest this update: Mon 03 Nov 2025 04:49:48 +0000 Manifest next update: Mon 10 Nov 2025 04:49:48 +0000 Files and hashes: 1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: bFIyj9Hq/RbE6tCR0Vh8faqA9tbIzMpfXp8bJB33GJc=) 2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: svWCFcB6b/XkbZIPeHevXUk9kvL6MAqPQu9nAp05skM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F, serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Validity Not Before: Nov 3 04:49:48 2025 GMT Not After : Nov 10 04:49:48 2025 GMT Subject: CN=6908346c-56ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:14:1e:72:63:6d:11:da:d2:3d:69:e0:0f:16: 6f:5b:fe:b6:06:ac:8c:d9:03:ff:d1:3f:02:22:d0: 5d:a4:57:b0:56:28:d9:d4:3e:c7:10:d2:45:dc:a0: 3d:7f:5e:b3:ec:58:ad:d5:7e:a7:ac:0b:ab:1c:50: 5b:7e:c3:f3:c8:1f:ee:61:97:0d:15:8a:54:fc:5f: 2d:cd:ea:d0:93:63:e6:16:a0:5e:08:c1:83:27:c6: 1c:38:f9:fb:d9:3a:36:68:49:89:0a:19:31:4e:83: 3c:a8:0f:8e:48:07:07:c1:3b:25:e7:7f:7e:14:70: 8b:47:b2:95:a5:73:29:67:64:c4:96:e7:55:97:20: 5d:cd:c3:a1:c4:f9:8b:63:d0:e7:77:06:3e:fb:2c: d9:64:d0:ce:77:85:2d:f0:57:68:9d:67:04:27:c0: 1a:63:a1:5c:ad:ef:8b:ee:44:3c:3a:cf:6e:dd:69: dd:70:3b:56:33:f6:35:68:79:91:39:f4:8c:5b:6d: 84:79:2d:78:1b:ff:ba:5c:71:32:1a:89:7f:aa:94: ee:8c:13:cb:f6:af:55:69:02:6c:08:cd:88:e3:fb: 0b:aa:ab:b0:b8:b2:af:a5:55:d1:0e:ae:e0:f8:6e: e3:1a:ef:17:c6:f1:7f:60:1e:12:1e:2b:6c:4a:d3: 34:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:49:9D:75:58:1A:74:ED:32:E3:79:B6:52:DC:D0:9D:32:34:68:75 X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:c5:43:5a:cd:f0:49:63:d0:30:44:09:3d:5d:3d:8d:f3:42: 18:f9:fb:4a:6d:64:8a:75:c1:be:5d:ad:ec:e2:53:8c:55:40: 73:54:ca:06:a7:d6:de:1f:41:3b:bc:f3:56:1f:c4:5e:60:68: 16:4c:e0:2c:de:82:5d:ec:26:3a:6f:5d:95:35:54:41:c7:02: 81:bd:96:58:0d:33:d7:bd:ab:37:cf:55:f9:be:37:49:1a:3c: 43:c2:ed:f6:cc:d0:d7:75:c9:1c:c7:90:a8:c5:24:8d:08:f5: 11:f1:d2:42:76:cb:48:a1:89:9a:ec:d5:ce:7d:70:aa:88:d9: f5:d9:f0:51:1b:da:a9:c1:37:a8:3f:21:d9:ae:86:c1:78:11: 03:f3:85:e3:de:ce:40:e9:02:d3:85:a8:44:d3:f8:77:de:e5: 6d:af:27:be:7a:5a:ca:3a:fa:25:a0:5a:43:cf:a9:3e:96:b4: 26:13:b4:30:d3:07:80:a1:dd:49:6b:0b:a1:40:9b:4d:ab:e8: 94:49:8f:8a:a5:20:e5:56:54:4e:28:b7:2b:46:e3:73:41:7c: 1e:bd:39:bf:f7:25:90:2b:dc:47:93:e6:14:46:00:29:37:aa: e5:bc:15:2d:d3:5b:6f:68:69:f6:31:6e:0f:0a:e5:5f:d7:02: 0e:69:c5:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDM0YxMTAvBgNVBAUTKDZDRTBFOTQ5NzExQjIwM0U0QUNCMjJCNjgwRjNGRkY0 N0VEMTZDNjEwHhcNMjUxMTAzMDQ0OTQ4WhcNMjUxMTEwMDQ0OTQ4WjAYMRYwFAYD VQQDEw02OTA4MzQ2Yy01NmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xQecmNtEdrSPWngDxZvW/62BqyM2QP/0T8CItBdpFewVijZ1D7HENJF3KA9 f16z7Fit1X6nrAurHFBbfsPzyB/uYZcNFYpU/F8tzerQk2PmFqBeCMGDJ8YcOPn7 2To2aEmJChkxToM8qA+OSAcHwTsl539+FHCLR7KVpXMpZ2TEludVlyBdzcOhxPmL Y9DndwY++yzZZNDOd4Ut8FdonWcEJ8AaY6Fcre+L7kQ8Os9u3WndcDtWM/Y1aHmR OfSMW22EeS14G/+6XHEyGol/qpTujBPL9q9VaQJsCM2I4/sLqquwuLKvpVXRDq7g +G7jGu8XxvF/YB4SHitsStM0uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlJnXVY GnTtMuN5tlLc0J0yNGh1MB8GA1UdIwQYMBaAFGzg6UlxGyA+SssitoDz//R+0Wxh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREMzRi81Q0U4MTA0NjBF QjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklENUt5eUsyZ1BQXzlIN1Ji R0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJHRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REMzRi81Q0U4MTA0NjBFQjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklE NUt5eUsyZ1BQXzlIN1JiR0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNxUNazfBJY9AwRAk9XT2N80IY+ftKbWSKdcG+Xa3s4lOMVUBzVMoG p9beH0E7vPNWH8ReYGgWTOAs3oJd7CY6b12VNVRBxwKBvZZYDTPXvas3z1X5vjdJ GjxDwu32zNDXdckcx5CoxSSNCPUR8dJCdstIoYma7NXOfXCqiNn12fBRG9qpwTeo PyHZrobBeBED84Xj3s5A6QLThahE0/h33uVtrye+elrKOvoloFpDz6k+lrQmE7Qw 0weAod1JawuhQJtNq+iUSY+KpSDlVlROKLcrRuNzQXwevTm/9yWQK9xHk+YURgAp N6rlvBUt01tvaGn2MW4PCuVf1wIOacX5 -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:05 2025 by rpki-client