$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: rZIPWzguIwhT7xxJ/BDSfBg9UY8/WyZ5qHvpwIstym8= Subject key identifier: 58:9D:80:B2:03:1B:9F:D3:B3:BB:2E:11:32:6C:66:C6:ED:70:4B:13 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: C2 Signing time: Thu 23 Oct 2025 07:55:43 +0000 Manifest this update: Thu 23 Oct 2025 07:55:42 +0000 Manifest next update: Thu 30 Oct 2025 07:55:42 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: FX7YXPN7qxxNFb3rOmnr6LUA4Zx0mVFm01zRfrwNLPc=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 2f3u95lJSNskCNREu+ioXj6oMF+zHFPqIr2DagPPIWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Oct 23 07:55:42 2025 GMT Not After : Oct 30 07:55:42 2025 GMT Subject: CN=68f9df7f-e7c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e6:41:79:45:f4:35:e1:e7:5e:16:04:3f:98: 8f:17:a6:82:eb:33:18:fb:87:bc:94:2a:26:fb:35: 98:b3:78:7c:db:7c:38:5e:6f:bf:9e:b6:01:88:fe: a1:0a:a0:6e:86:28:91:2d:cd:da:43:db:fc:67:1d: 7e:10:22:6f:01:58:84:70:de:9e:d1:1e:36:0e:40: 48:63:9a:21:3c:eb:77:bd:f2:7a:14:cc:ed:2b:52: 7e:d0:7e:f3:c5:f3:24:68:33:a5:56:b4:04:20:59: 6f:cb:ae:c1:33:fe:1c:8d:b1:bf:45:c8:a1:61:af: 8a:94:80:e3:bb:fb:3a:8c:ef:20:e9:c9:0b:c6:fa: a0:1a:8b:3f:7b:91:40:dd:67:92:b4:16:36:23:b5: b0:90:a7:0d:e0:51:e9:e2:29:a6:9e:c3:22:b7:f2: e5:d3:12:23:07:e2:1f:fe:b7:c9:0f:e3:f2:07:de: e5:d9:97:2c:65:48:3b:97:94:8e:c2:94:2d:a3:78: f1:d2:8a:fe:19:55:3c:c2:de:ed:56:20:ff:ab:d8: 78:9b:37:cd:45:03:74:ae:52:11:0f:07:45:f7:e7: c1:c3:5b:eb:06:d0:98:90:90:1f:d4:3d:3e:db:8a: 98:47:45:f0:b4:3d:7a:bb:fc:03:18:e8:85:94:b5: c8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:9D:80:B2:03:1B:9F:D3:B3:BB:2E:11:32:6C:66:C6:ED:70:4B:13 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:96:23:98:80:b8:1d:f7:fc:83:35:56:e8:d0:f0:6b:40:60: d1:ac:ac:a8:57:66:7a:9c:d5:73:56:39:53:32:ff:42:3f:b3: fa:59:56:d4:ac:b5:83:89:fd:fd:d0:69:c0:a4:0e:3e:94:03: fd:08:7f:f4:b8:74:7f:51:a2:ec:cc:f8:4c:60:e8:14:43:12: bc:c7:dc:94:a2:3b:8a:15:bb:f9:69:ba:4f:94:b8:44:6a:04: 20:42:65:5a:c8:7a:be:4a:f9:8c:1e:3e:55:13:8e:67:1f:76: 7b:c9:32:4e:2e:69:fe:6f:c9:0b:7c:56:5a:b8:a7:00:f3:02: 49:47:0b:9d:db:ff:04:39:b6:b7:52:c2:ea:f7:70:28:5b:8c: 0c:be:16:04:b8:8d:c5:3c:47:99:3c:d0:cf:1e:71:10:c3:5b: 4a:ea:19:da:05:3e:cb:38:11:47:28:ac:29:d9:65:a5:10:26: 22:d1:41:1b:11:56:2b:df:67:c0:65:27:c3:97:ca:14:97:d6: 32:e1:fc:60:e3:57:2d:9a:06:6f:19:25:fa:00:5f:af:04:1f: 02:69:b1:d1:e8:fa:14:21:2b:6a:7d:9b:e8:6e:af:51:20:c5: e0:6a:04:ef:80:74:03:5c:bb:98:cf:6e:0d:2d:12:57:16:63: 88:5e:e8:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUxMDIzMDc1NTQyWhcNMjUxMDMwMDc1NTQyWjAYMRYwFAYD VQQDEw02OGY5ZGY3Zi1lN2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeZBeUX0NeHnXhYEP5iPF6aC6zMY+4e8lCom+zWYs3h823w4Xm+/nrYBiP6h CqBuhiiRLc3aQ9v8Zx1+ECJvAViEcN6e0R42DkBIY5ohPOt3vfJ6FMztK1J+0H7z xfMkaDOlVrQEIFlvy67BM/4cjbG/RcihYa+KlIDju/s6jO8g6ckLxvqgGos/e5FA 3WeStBY2I7WwkKcN4FHp4immnsMit/Ll0xIjB+If/rfJD+PyB97l2ZcsZUg7l5SO wpQto3jx0or+GVU8wt7tViD/q9h4mzfNRQN0rlIRDwdF9+fBw1vrBtCYkJAf1D0+ 24qYR0XwtD16u/wDGOiFlLXIPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFidgLID G5/Ts7suETJsZsbtcEsTMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeliOYgLgd9/yDNVbo0PBrQGDRrKyoV2Z6nNVzVjlTMv9CP7P6WVbU rLWDif390GnApA4+lAP9CH/0uHR/UaLszPhMYOgUQxK8x9yUojuKFbv5abpPlLhE agQgQmVayHq+SvmMHj5VE45nH3Z7yTJOLmn+b8kLfFZauKcA8wJJRwud2/8EOba3 UsLq93AoW4wMvhYEuI3FPEeZPNDPHnEQw1tK6hnaBT7LOBFHKKwp2WWlECYi0UEb EVYr32fAZSfDl8oUl9Yy4fxg41ctmgZvGSX6AF+vBB8CabHR6PoUIStqfZvobq9R IMXgagTvgHQDXLuYz24NLRJXFmOIXugo -----END CERTIFICATE-----Generated at Fri Oct 24 21:18:31 2025 by rpki-client