$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: GYAfGDZN+LJmKBQIVSbV4ztioxg0JBZizPBHwyjmlKo= Subject key identifier: 31:81:44:5A:01:03:7E:5F:5A:24:7B:1B:36:EE:17:77:81:48:41:EC Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 130F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 1303 Signing time: Sun 02 Nov 2025 17:02:13 +0000 Manifest this update: Sun 02 Nov 2025 17:02:12 +0000 Manifest next update: Sun 09 Nov 2025 17:02:12 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: 2DCfXIxTUoULPzYJGn0vt0d/c7GVQy/k2Yn4Azvm4hc=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zpfEObk6bGVxgP9cE546XnlUvOzTcNHctZB0k7/qSd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4879 (0x130f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Nov 2 17:02:12 2025 GMT Not After : Nov 9 17:02:12 2025 GMT Subject: CN=69078e95-bc38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b5:c6:49:3b:e4:c1:46:2e:ad:ba:d8:6e:63: f7:6e:3f:75:2c:c9:f0:25:d1:a9:fc:41:2e:12:9e: 71:ae:06:16:90:fa:d1:b6:d3:37:a4:21:b5:42:a6: e7:a3:94:42:cc:6f:b7:5a:65:ab:b4:db:6b:ff:7d: 2d:17:31:b8:6e:f9:7e:3c:93:3f:15:e1:3c:9c:08: d1:41:f1:df:24:d3:6a:ee:90:e8:00:d9:53:d4:ee: 52:9d:2e:db:c8:c8:a6:f0:82:50:b5:82:5b:bf:61: 48:9d:b0:68:83:1a:c3:79:f0:1f:fd:e6:01:52:be: 97:b9:de:64:f0:30:46:64:98:6b:b8:51:10:c8:98: 3a:27:ee:41:81:02:04:ae:d3:16:91:37:81:03:3e: d3:17:4d:a0:df:89:f6:88:53:cd:5e:ee:ae:b1:ed: 8f:23:6c:5e:b0:66:2f:93:d4:4b:fe:b3:66:51:92: c9:61:ac:c6:26:c5:54:89:a2:84:69:83:db:50:10: 49:7c:7b:aa:65:7a:7e:29:71:29:bc:e4:2d:23:ea: 9f:ba:7e:ae:2d:52:3c:ca:a2:56:82:01:41:04:fa: af:29:4d:d3:2d:1a:c0:6e:cc:f0:56:48:c0:45:d2: d4:c8:c6:53:49:38:8b:ba:5b:5e:d8:91:08:46:b6: fc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:81:44:5A:01:03:7E:5F:5A:24:7B:1B:36:EE:17:77:81:48:41:EC X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ca:43:07:8d:60:ef:d3:0f:c2:e9:51:f2:b0:53:66:c4:d0: 93:42:19:61:11:50:e0:42:d2:4a:6c:d4:d3:1b:09:f2:62:1d: 15:40:72:40:c5:eb:74:0e:bf:73:37:23:e0:da:d6:f6:11:1a: ce:ff:05:c2:c8:9a:c4:80:23:6d:50:34:37:0f:a1:4b:86:ca: 80:05:ef:21:55:70:93:c3:3c:c7:bb:6f:bd:22:fc:17:87:3f: e8:4f:70:b2:ff:56:31:c9:0b:ef:d8:62:e6:4c:d2:6a:02:9a: 52:4b:e2:67:a2:2c:38:a6:62:09:7c:66:f7:cb:26:9a:33:a4: 82:8e:71:f8:a3:d9:e5:e1:57:2a:c9:da:21:e4:a7:a2:63:66: 1b:83:21:18:26:9b:e5:35:3f:f4:af:1f:5b:b4:9f:7e:81:ce: ba:7f:e5:a4:aa:e6:89:42:15:46:83:04:19:92:7c:fb:71:9c: 96:80:f3:0c:1f:8d:40:e6:ce:42:b7:dc:ff:48:c6:ab:6b:30: d6:9c:d2:13:11:96:e1:fb:4b:28:41:d5:e6:96:e2:99:d2:23: b9:96:90:30:f8:26:5e:47:61:73:91:b4:a2:6a:d5:d2:69:fd: 00:c3:ef:c5:9b:69:93:83:23:29:64:9f:55:5f:12:fb:4b:8d: 84:1f:e0:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUxMTAyMTcwMjEyWhcNMjUxMTA5MTcwMjEyWjAYMRYwFAYD VQQDEw02OTA3OGU5NS1iYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7XGSTvkwUYurbrYbmP3bj91LMnwJdGp/EEuEp5xrgYWkPrRttM3pCG1Qqbn o5RCzG+3WmWrtNtr/30tFzG4bvl+PJM/FeE8nAjRQfHfJNNq7pDoANlT1O5SnS7b yMim8IJQtYJbv2FInbBogxrDefAf/eYBUr6Xud5k8DBGZJhruFEQyJg6J+5BgQIE rtMWkTeBAz7TF02g34n2iFPNXu6use2PI2xesGYvk9RL/rNmUZLJYazGJsVUiaKE aYPbUBBJfHuqZXp+KXEpvOQtI+qfun6uLVI8yqJWggFBBPqvKU3TLRrAbszwVkjA RdLUyMZTSTiLulte2JEIRrb8cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGBRFoB A35fWiR7GzbuF3eBSEHsMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+ykMHjWDv0w/C6VHysFNmxNCTQhlhEVDgQtJKbNTTGwnyYh0VQHJA xet0Dr9zNyPg2tb2ERrO/wXCyJrEgCNtUDQ3D6FLhsqABe8hVXCTwzzHu2+9IvwX hz/oT3Cy/1YxyQvv2GLmTNJqAppSS+Jnoiw4pmIJfGb3yyaaM6SCjnH4o9nl4Vcq ydoh5KeiY2YbgyEYJpvlNT/0rx9btJ9+gc66f+WkquaJQhVGgwQZknz7cZyWgPMM H41A5s5Ct9z/SMarazDWnNITEZbh+0soQdXmluKZ0iO5lpAw+CZeR2FzkbSiatXS af0Aw+/Fm2mTgyMpZJ9VXxL7S42EH+Da -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:32 2025 by rpki-client