$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft File: BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json) Hash identifier: 32p35zJH51XyBaTXutyU4yBJBxJyoc96KNjl0oCk+CY= Subject key identifier: A6:75:1D:1E:35:AC:0A:E1:F3:A7:3F:38:40:AE:B7:D2:39:A3:30:61 Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF Certificate issuer: /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft Manifest number: 08 Signing time: Fri 17 Oct 2025 11:56:24 +0000 Manifest this update: Fri 17 Oct 2025 11:56:23 +0000 Manifest next update: Fri 24 Oct 2025 11:56:23 +0000 Files and hashes: 1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: rhn1o85uBHnMEuCrBzE5kjo9/uDBpPFYJibUkpbGtoA=) 2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: u+cn9UutTPsBz+rSTM9fD/qL+39w/7zRbkPYbDsgfs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Validity Not Before: Oct 17 11:56:23 2025 GMT Not After : Oct 24 11:56:23 2025 GMT Subject: CN=68f22ee8-ac6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:06:d8:b2:d8:bb:42:c9:d5:54:02:ee:e0:f2: a1:a0:94:f1:77:87:d2:86:bd:59:2c:06:7f:a3:70: 6c:fb:63:16:ec:bf:c2:9d:a5:38:df:72:e2:87:05: 4e:c2:28:e7:56:9b:c5:1e:b0:3a:b6:3f:fe:8a:05: 5e:05:f6:4f:76:fc:22:18:a5:15:e4:35:9f:84:aa: fd:cd:b3:2c:57:58:c8:dd:22:d4:92:03:8f:60:18: 45:40:31:58:87:49:a8:c9:a3:be:c5:b7:a7:61:23: 10:1b:44:45:6f:50:26:d2:c3:2e:31:54:5c:8c:78: 6f:06:d0:0b:d7:c5:fe:0b:12:f8:e8:11:c7:5a:a9: 9e:b4:24:c9:01:c1:f7:d1:00:6c:c2:f2:ef:cc:38: 66:69:3b:30:a1:af:53:f5:fa:b8:8c:26:ba:08:40: 67:b5:68:9f:ce:10:03:e4:f4:2f:00:5f:0e:ee:5e: e3:e4:f8:12:d6:0c:0e:54:15:c1:66:7d:6f:71:28: 26:08:28:f4:70:a3:22:ab:cd:49:17:30:da:6d:f7: f3:5a:a7:41:61:b9:69:93:49:fb:cd:15:e9:2f:97: 59:00:5b:cc:cf:1f:86:53:84:7c:c2:96:65:76:be: ac:74:86:c5:e3:5b:0d:da:be:c2:bd:1e:b4:27:cf: 24:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:75:1D:1E:35:AC:0A:E1:F3:A7:3F:38:40:AE:B7:D2:39:A3:30:61 X509v3 Authority Key Identifier: keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:8a:9d:c4:31:ed:7d:51:c8:64:a5:4e:51:b0:6a:fc:59:48: ba:df:f0:6a:86:8b:b2:e1:93:06:90:0c:1e:91:85:95:70:0d: 88:45:b2:1b:cb:43:cd:63:6a:b1:10:07:01:e7:f2:5d:b5:a3: 0b:fb:7c:b6:d2:be:d0:70:94:a5:33:5a:1c:44:02:4e:4f:f3: 6c:df:e8:c7:f6:08:c7:76:7d:f5:21:7d:cd:a6:9f:b8:9a:e3: de:92:62:6e:d4:a4:e4:ff:2f:ad:1b:3c:5b:15:55:c1:42:27: 57:d2:e0:b4:f9:26:da:9b:d0:a1:a9:f5:85:67:5a:7c:1d:a7: ce:86:bf:e2:03:b3:3b:35:6c:72:46:5b:52:42:a2:96:48:3d: f2:43:bc:fc:0f:4a:ab:ed:38:14:06:ed:ba:e9:de:66:f1:a1: 25:ca:53:ab:f7:bf:8d:b6:28:88:30:c2:3b:33:b1:23:d7:1d: 06:0d:4f:2f:3b:36:cc:12:00:71:7a:59:95:c4:84:d0:bd:5d: 5f:13:2b:10:6d:93:6d:eb:78:ec:8d:62:c0:86:1c:4d:cb:97: 4b:49:fa:0b:3a:de:a4:71:cd:e7:df:b6:5c:2a:8f:90:5b:11: 8a:ee:b5:0f:73:3b:89:94:7e:53:50:d8:9a:40:d3:95:46:a8: e3:1b:a2:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoMDQ1OUJCRjdDQjg0QzE3RUVENTFCNjhDRUFEOTQxOTU3 RDc4NUZBRjAeFw0yNTEwMTcxMTU2MjNaFw0yNTEwMjQxMTU2MjNaMBgxFjAUBgNV BAMTDTY4ZjIyZWU4LWFjNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBBtiy2LtCydVUAu7g8qGglPF3h9KGvVksBn+jcGz7Yxbsv8KdpTjfcuKHBU7C KOdWm8UesDq2P/6KBV4F9k92/CIYpRXkNZ+Eqv3NsyxXWMjdItSSA49gGEVAMViH SajJo77Ft6dhIxAbREVvUCbSwy4xVFyMeG8G0AvXxf4LEvjoEcdaqZ60JMkBwffR AGzC8u/MOGZpOzChr1P1+riMJroIQGe1aJ/OEAPk9C8AXw7uXuPk+BLWDA5UFcFm fW9xKCYIKPRwoyKrzUkXMNpt9/Nap0FhuWmTSfvNFekvl1kAW8zPH4ZThHzClmV2 vqx0hsXjWw3avsK9HrQnzyQNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpnUdHjWs CuHzpz84QK630jmjMGEwHwYDVR0jBBgwFoAUBFm798uEwX7tUbaM6tlBlX14X68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzU3MzAxNTlBQTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3dFViYU02dGxCbFgxNFg2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkZtNzk4dUV3WDd0VWJhTTZ0bEJsWDE0WDY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG QkE5LzU3MzAxNTlBQTc3NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3 dFViYU02dGxCbFgxNFg2OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHGKncQx7X1RyGSlTlGwavxZSLrf8GqGi7LhkwaQDB6RhZVwDYhFshvL Q81jarEQBwHn8l21owv7fLbSvtBwlKUzWhxEAk5P82zf6Mf2CMd2ffUhfc2mn7ia 496SYm7UpOT/L60bPFsVVcFCJ1fS4LT5Jtqb0KGp9YVnWnwdp86Gv+IDszs1bHJG W1JCopZIPfJDvPwPSqvtOBQG7brp3mbxoSXKU6v3v422KIgwwjszsSPXHQYNTy87 NswSAHF6WZXEhNC9XV8TKxBtk23reOyNYsCGHE3Ll0tJ+gs63qRxzefftlwqj5Bb EYrutQ9zO4mUflNQ2JpA05VGqOMbouQ= -----END CERTIFICATE-----Generated at Sat Oct 18 23:29:08 2025 by rpki-client