$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft File: BH7xoc9llmNJhmdnZVZI7vkRDFo.mft (raw, json) Hash identifier: VBnLpRRNfdWtXfh8FcrAOo9KKlTk3xr8cBPr5RCAkh0= Subject key identifier: E7:2D:25:E5:76:10:CB:76:53:89:97:DE:F3:1D:73:C2:03:C2:4D:4C Authority key identifier: 04:7E:F1:A1:CF:65:96:63:49:86:67:67:65:56:48:EE:F9:11:0C:5A Certificate issuer: /CN=A91CE4C1/serialNumber=047EF1A1CF65966349866767655648EEF9110C5A Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft Manifest number: 8A Signing time: Mon 27 Oct 2025 08:59:42 +0000 Manifest this update: Mon 27 Oct 2025 08:59:41 +0000 Manifest next update: Mon 03 Nov 2025 08:59:41 +0000 Files and hashes: 1: BH7xoc9llmNJhmdnZVZI7vkRDFo.crl (hash: rSqwYe3LCHtvgH87ah0OIJVq7IC1Y/aPqQUcGHcvlkE=) 2: 459E12EAE9C611EFB8012F10C4F9AE02.roa (hash: /RmfZz46so9ge+fbPNaFv77MZSPZTzTOQnyx59sNwag=) 3: FB4C0514E9C311EFADA7270AC4F9AE02.roa (hash: b+8Vf+1PI1yNyvvstVRxJPifoMZ8KqBIQc0NBIzO5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.crl rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 08:59:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE4C1, serialNumber=047EF1A1CF65966349866767655648EEF9110C5A Validity Not Before: Oct 27 08:59:41 2025 GMT Not After : Nov 3 08:59:41 2025 GMT Subject: CN=68ff347e-42f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fa:66:10:5c:74:d4:2a:3d:9c:9e:1b:9a:a4: b6:65:4d:f5:13:5b:23:ee:8c:7c:37:12:b4:c9:f3: 72:68:7b:71:f5:ab:11:5a:23:df:63:8f:8f:d8:b2: c5:7c:49:6e:5a:f1:12:34:e1:39:ca:87:bd:73:4b: 8f:3e:4e:d0:84:d2:ee:22:f9:b3:ef:c5:4b:eb:29: 93:1a:98:95:21:2e:3c:08:5d:97:9b:5f:49:e3:2e: 1e:a9:d0:d5:47:ff:d8:9c:bc:b8:f4:cc:77:8a:db: e1:c0:d3:35:cc:48:f8:0c:f1:f1:03:29:51:d4:49: 77:a4:e0:fb:0f:c1:eb:20:42:dc:7b:af:e7:6f:7b: 14:38:c6:0a:4e:eb:02:c6:a9:12:8d:4b:64:ff:f8: 87:26:00:1a:be:9e:58:53:54:49:bd:2c:b3:b7:70: a4:7b:30:d2:8c:1e:d5:7c:d6:b8:0a:3b:a5:91:63: a6:b4:2e:80:3e:34:52:06:9f:7a:28:b3:8e:3e:7d: bc:79:81:f6:20:de:82:a5:2c:0f:02:5b:19:e5:92: ec:58:71:5f:84:6b:1a:cb:db:07:e4:59:e9:82:3d: 58:39:7c:c7:d2:b1:22:9f:61:70:63:97:1a:05:b7: 68:e5:95:09:fb:92:20:e3:82:7e:03:84:83:e9:f3: 9b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:2D:25:E5:76:10:CB:76:53:89:97:DE:F3:1D:73:C2:03:C2:4D:4C X509v3 Authority Key Identifier: keyid:04:7E:F1:A1:CF:65:96:63:49:86:67:67:65:56:48:EE:F9:11:0C:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:6c:0e:d2:56:9b:e6:c6:06:62:32:da:a3:18:75:48:df:37: 16:51:8a:0b:a5:85:f5:02:9b:a4:26:82:da:ed:e9:37:9e:a8: a8:ed:13:ad:30:0d:cd:77:7a:76:ae:05:96:68:c7:bf:f6:88: 59:f2:da:12:37:4e:e5:e3:da:b9:b4:4d:84:ca:26:3d:e0:6b: ca:31:d0:56:bf:fc:74:a6:cd:75:d8:db:d5:7a:38:ac:ce:84: 76:d3:8c:88:84:ce:7a:48:66:bf:8b:ff:67:6c:02:c1:0f:10: 39:ae:04:3a:69:99:6e:1b:5f:eb:0b:15:23:33:43:e4:43:ac: 3f:33:35:12:68:fc:7d:ca:11:6a:3b:84:06:85:9c:d8:e4:b1: e9:0e:f2:b2:c9:e5:94:1c:f1:c6:92:38:58:25:6b:83:ef:49: d3:55:e1:ea:e9:64:b4:65:7e:40:4d:45:3f:e5:a9:36:4b:b5: 24:f8:be:32:e9:bf:c1:6f:ee:1d:fb:32:38:70:46:90:2b:f7: cd:75:84:53:08:34:02:7c:0d:c7:12:ee:33:22:5d:7c:b3:f0: 3e:61:f9:7b:7e:b1:7e:26:5f:0c:46:ba:ec:b3:91:5b:a0:c1: 0f:af:ea:e2:0a:4d:68:e6:02:c4:04:5b:13:1f:6c:06:a4:5d: 2b:98:12:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0QzExMTAvBgNVBAUTKDA0N0VGMUExQ0Y2NTk2NjM0OTg2Njc2NzY1NTY0OEVF RjkxMTBDNUEwHhcNMjUxMDI3MDg1OTQxWhcNMjUxMTAzMDg1OTQxWjAYMRYwFAYD VQQDEw02OGZmMzQ3ZS00MmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvpmEFx01Co9nJ4bmqS2ZU31E1sj7ox8NxK0yfNyaHtx9asRWiPfY4+P2LLF fEluWvESNOE5yoe9c0uPPk7QhNLuIvmz78VL6ymTGpiVIS48CF2Xm19J4y4eqdDV R//YnLy49Mx3itvhwNM1zEj4DPHxAylR1El3pOD7D8HrIELce6/nb3sUOMYKTusC xqkSjUtk//iHJgAavp5YU1RJvSyzt3CkezDSjB7VfNa4CjulkWOmtC6APjRSBp96 KLOOPn28eYH2IN6CpSwPAlsZ5ZLsWHFfhGsay9sH5Fnpgj1YOXzH0rEin2FwY5ca Bbdo5ZUJ+5Ig44J+A4SD6fObCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOctJeV2 EMt2U4mX3vMdc8IDwk1MMB8GA1UdIwQYMBaAFAR+8aHPZZZjSYZnZ2VWSO75EQxa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTRDMS8zNjQ0ODg3QUU5 QkIxMUVGQkFBQzlENzBDNEY5QUUwMi9CSDd4b2M5bGxtTkpobWRuWlZaSTd2a1JE Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JIN3hvYzlsbG1OSmhtZG5aVlpJN3ZrUkRGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTRDMS8zNjQ0ODg3QUU5QkIxMUVGQkFBQzlENzBDNEY5QUUwMi9CSDd4b2M5bGxt TkpobWRuWlZaSTd2a1JERm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3bA7SVpvmxgZiMtqjGHVI3zcWUYoLpYX1ApukJoLa7ek3nqio7ROt MA3Nd3p2rgWWaMe/9ohZ8toSN07l49q5tE2EyiY94GvKMdBWv/x0ps112NvVejis zoR204yIhM56SGa/i/9nbALBDxA5rgQ6aZluG1/rCxUjM0PkQ6w/MzUSaPx9yhFq O4QGhZzY5LHpDvKyyeWUHPHGkjhYJWuD70nTVeHq6WS0ZX5ATUU/5ak2S7Uk+L4y 6b/Bb+4d+zI4cEaQK/fNdYRTCDQCfA3HEu4zIl18s/A+Yfl7frF+Jl8MRrrss5Fb oMEPr+riCk1o5gLEBFsTH2wGpF0rmBKn -----END CERTIFICATE-----Generated at Mon Oct 27 23:14:36 2025 by rpki-client