$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: 4jP4EURuxRPW2zjq7D1rCe8ObZwk/rd16LKZMB37VoY= Subject key identifier: 57:AF:AF:D7:02:9E:C3:9E:AA:DF:26:A0:3E:55:CD:75:9A:E6:C0:64 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 0950 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 093D Signing time: Sun 02 Nov 2025 20:11:28 +0000 Manifest this update: Sun 02 Nov 2025 20:11:28 +0000 Manifest next update: Sun 09 Nov 2025 20:11:28 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: WWpSaHsOt8trPKrxsKYOkrhq0nygQm9LUsnXFNm+iko=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2384 (0x950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Nov 2 20:11:28 2025 GMT Not After : Nov 9 20:11:28 2025 GMT Subject: CN=6907baf0-4c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:36:13:56:3c:b8:7f:ae:ed:34:ba:74:3a:0e: 6f:ac:b3:84:30:38:34:bb:59:23:ff:4b:0c:3d:47: dc:d0:a0:b0:ed:82:98:1f:a6:68:eb:2a:26:19:87: 38:b1:ad:b4:5c:b8:2f:66:40:99:d3:27:51:02:78: 38:e2:55:90:7a:81:b6:d9:70:f7:32:55:83:53:65: 2e:3a:b4:38:32:bb:c4:26:05:29:38:39:7c:5a:59: a8:f9:3a:5f:05:90:24:6e:4e:a2:a8:77:3f:ed:bb: 56:c0:fe:95:aa:58:87:60:fe:5e:5e:66:55:0d:43: eb:78:da:0d:5f:60:f9:28:62:94:22:b2:78:4d:37: b0:63:d3:3c:58:54:96:f3:68:0b:2f:52:ce:1a:69: 5d:c1:e6:f9:33:ac:a4:d9:6b:72:52:c8:fe:ba:d3: 3d:9b:43:fa:cb:96:a4:9d:c9:e6:d5:31:c1:68:8e: f5:99:a4:8e:b9:6a:34:0b:f4:8d:55:c6:e1:2f:6d: 2a:e5:a6:77:c9:5b:e1:3d:85:ee:59:a0:98:f4:2d: db:b6:1a:b7:b7:b6:cf:e2:6f:f1:1b:50:4f:dd:a2: 24:60:09:96:8a:99:b6:81:c3:e7:41:73:e8:32:bd: e7:31:21:16:52:f5:10:e3:11:ed:58:4e:63:57:e8: 4c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:AF:AF:D7:02:9E:C3:9E:AA:DF:26:A0:3E:55:CD:75:9A:E6:C0:64 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e9:94:7d:7d:4a:be:3f:01:31:4e:72:e8:ad:36:36:b3:97: 7f:dc:7d:93:e7:2a:88:c6:07:7c:84:36:ea:56:bd:2c:c3:b3: 10:0d:d8:3a:b3:a8:b6:e1:d2:ca:cd:8d:7d:21:9d:ea:22:8a: fc:3d:d9:27:bb:e3:78:50:f4:13:d9:3e:e8:c1:04:04:64:cd: 72:07:dc:1b:64:8c:28:49:15:82:47:7d:72:39:64:1e:f4:df: 24:58:6e:d6:0e:83:ae:d6:c2:bf:6c:05:5d:4f:dd:3b:72:46: 4e:c0:81:00:05:52:50:80:06:ca:ba:95:25:00:27:42:de:95: 08:d0:88:0d:62:ce:5f:5a:9f:35:03:cd:aa:a1:4c:2b:53:d6: d9:32:8d:f6:03:14:27:dc:c5:4d:c0:81:aa:1e:02:b7:49:b2: c8:42:c5:34:f0:32:c8:ce:bd:64:6b:26:4f:44:cc:bb:32:da: e2:90:a3:5c:ee:de:56:a2:68:cc:ed:60:f7:26:20:0e:31:b8: c1:96:7c:8f:f8:35:69:98:5b:68:8d:7a:74:b1:83:98:d3:a0: 63:f1:e0:59:bc:fc:af:1b:92:8f:94:32:59:be:23:23:e6:f5: 61:77:c2:c3:1e:98:b2:ae:6a:7d:ac:38:2d:7c:29:b1:40:2b: 85:42:a3:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUxMTAyMjAxMTI4WhcNMjUxMTA5MjAxMTI4WjAYMRYwFAYD VQQDEw02OTA3YmFmMC00YzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzYTVjy4f67tNLp0Og5vrLOEMDg0u1kj/0sMPUfc0KCw7YKYH6Zo6yomGYc4 sa20XLgvZkCZ0ydRAng44lWQeoG22XD3MlWDU2UuOrQ4MrvEJgUpODl8Wlmo+Tpf BZAkbk6iqHc/7btWwP6VqliHYP5eXmZVDUPreNoNX2D5KGKUIrJ4TTewY9M8WFSW 82gLL1LOGmldweb5M6yk2WtyUsj+utM9m0P6y5akncnm1THBaI71maSOuWo0C/SN VcbhL20q5aZ3yVvhPYXuWaCY9C3bthq3t7bP4m/xG1BP3aIkYAmWipm2gcPnQXPo Mr3nMSEWUvUQ4xHtWE5jV+hMSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFevr9cC nsOeqt8moD5VzXWa5sBkMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS6ZR9fUq+PwExTnLorTY2s5d/3H2T5yqIxgd8hDbqVr0sw7MQDdg6 s6i24dLKzY19IZ3qIor8Pdknu+N4UPQT2T7owQQEZM1yB9wbZIwoSRWCR31yOWQe 9N8kWG7WDoOu1sK/bAVdT907ckZOwIEABVJQgAbKupUlACdC3pUI0IgNYs5fWp81 A82qoUwrU9bZMo32AxQn3MVNwIGqHgK3SbLIQsU08DLIzr1kayZPRMy7MtrikKNc 7t5WomjM7WD3JiAOMbjBlnyP+DVpmFtojXp0sYOY06Bj8eBZvPyvG5KPlDJZviMj 5vVhd8LDHpiyrmp9rDgtfCmxQCuFQqNe -----END CERTIFICATE-----Generated at Mon Nov 3 15:08:14 2025 by rpki-client