$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: fgLh5ULX3ZSnnaFog9d7b8DD1TC95oz5oBHL5sTKfNY= Subject key identifier: A6:9B:F2:1A:AF:E8:96:32:C6:54:02:47:05:30:9D:1D:E4:8C:02:62 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 040D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 03D9 Signing time: Mon 03 Nov 2025 00:42:16 +0000 Manifest this update: Mon 03 Nov 2025 00:42:15 +0000 Manifest next update: Mon 10 Nov 2025 00:42:15 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: GXpR4nIAdRKEXRcibuY47NEBNtX/pLBKUq9Rw2oKxO4=) 2: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: uzprXmLZAeVeFEFGMakzKpKMKq1iIlqcTuQSaK0YrGo=) 3: AD17704445F611EE97DF317CC4F9AE02.roa (hash: sdrVSjIs8Qd6YgjT3RuNMeG76kE1PDfBoWYkgwiCgcM=) 4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: r7+Epywiay/UAmGWjEXTbZ6MxuYjSj6zJi2sl5IN5FE=) 5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: YgWtLAFjeyb8EUf6jgk5P6z3rHF4ij9vs7WYRKlGxPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Nov 3 00:42:15 2025 GMT Not After : Nov 10 00:42:15 2025 GMT Subject: CN=6907fa68-449d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7b:14:c5:cd:8d:bb:72:b4:65:f5:41:19:94: 6c:6f:a9:f3:4c:a3:58:14:51:66:2b:18:bf:03:5c: f9:a7:06:4f:80:29:3d:8e:a6:c9:03:14:a7:8b:b4: 78:30:00:1b:8c:01:42:ae:c2:bf:95:6b:43:54:e4: 2d:94:6c:b0:33:12:32:e3:5f:4b:80:04:c1:6d:fb: ae:8d:89:a4:9d:de:57:5b:fd:28:e9:36:06:40:80: 32:73:50:6a:8d:59:ea:95:06:a8:37:76:38:0d:b0: af:42:58:96:5e:25:cc:ed:f0:50:f6:e7:d7:74:c1: 61:fe:02:e4:7a:1c:c3:79:e6:32:e4:37:95:d8:23: 15:81:5c:82:7b:96:f0:59:ae:a8:c0:42:0c:ea:9b: 02:6a:25:fb:2e:c2:2a:69:2e:51:d9:00:02:4b:26: 0c:ac:54:94:12:dd:1e:69:73:46:7e:99:bf:a6:16: 18:d0:4a:70:d9:d6:cb:5d:3d:16:c0:d0:60:3e:cb: 59:c0:63:a0:05:53:03:e8:fa:27:ca:81:e8:22:92: 28:ce:a1:33:34:98:38:1b:ca:ea:60:66:c8:b9:e5: 34:13:8d:00:25:01:66:dc:02:44:31:29:82:4b:92: 6a:23:fb:74:32:63:37:06:44:78:6b:64:8f:00:46: 95:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9B:F2:1A:AF:E8:96:32:C6:54:02:47:05:30:9D:1D:E4:8C:02:62 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:16:cf:bd:de:0c:cc:3e:e1:94:74:0b:5a:21:f0:72:2d:62: 45:bd:e4:51:6e:c5:9e:c9:4a:41:8e:c4:a5:0e:57:34:95:fe: 94:58:19:ab:6e:e7:2e:7d:ba:41:bf:ba:18:a8:2a:a7:e7:e0: 40:ea:f8:5a:5b:48:f6:cb:1a:99:04:1b:35:f9:d5:80:fd:a4: 98:aa:3b:62:74:8d:2e:24:5a:5d:58:ea:dc:cd:04:50:9e:be: a5:87:ed:19:36:c5:83:c2:74:40:23:d2:9f:d0:ad:21:09:f5: 7e:ef:6e:7e:42:40:af:8e:5c:2c:92:38:2f:5d:55:5e:57:77: 25:51:59:bd:16:30:6f:b2:93:eb:bb:c1:ae:d7:79:01:eb:76: 85:cc:1b:cf:7b:09:9c:6a:80:83:b9:9d:7f:8f:98:39:4d:eb: 0e:78:98:a9:51:1b:7e:00:6a:37:ed:1d:94:eb:4d:52:ac:57: 37:20:09:53:1a:9d:21:b3:d7:c6:bf:00:23:57:b6:9f:12:f9: 08:f8:2d:f8:d3:65:0d:d6:86:d9:6a:a4:73:5a:22:df:3c:5d: f4:95:34:3a:e7:83:a3:ff:4a:be:70:44:56:de:f3:5c:16:f9: e9:b4:f0:e8:e1:be:be:f2:7d:fb:f6:4c:21:05:06:97:45:44: 3b:ec:ee:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUxMTAzMDA0MjE1WhcNMjUxMTEwMDA0MjE1WjAYMRYwFAYD VQQDEw02OTA3ZmE2OC00NDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunsUxc2Nu3K0ZfVBGZRsb6nzTKNYFFFmKxi/A1z5pwZPgCk9jqbJAxSni7R4 MAAbjAFCrsK/lWtDVOQtlGywMxIy419LgATBbfuujYmknd5XW/0o6TYGQIAyc1Bq jVnqlQaoN3Y4DbCvQliWXiXM7fBQ9ufXdMFh/gLkehzDeeYy5DeV2CMVgVyCe5bw Wa6owEIM6psCaiX7LsIqaS5R2QACSyYMrFSUEt0eaXNGfpm/phYY0Epw2dbLXT0W wNBgPstZwGOgBVMD6PonyoHoIpIozqEzNJg4G8rqYGbIueU0E40AJQFm3AJEMSmC S5JqI/t0MmM3BkR4a2SPAEaVcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKab8hqv 6JYyxlQCRwUwnR3kjAJiMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDFs+93gzMPuGUdAtaIfByLWJFveRRbsWeyUpBjsSlDlc0lf6UWBmr bucufbpBv7oYqCqn5+BA6vhaW0j2yxqZBBs1+dWA/aSYqjtidI0uJFpdWOrczQRQ nr6lh+0ZNsWDwnRAI9Kf0K0hCfV+725+QkCvjlwskjgvXVVeV3clUVm9FjBvspPr u8Gu13kB63aFzBvPewmcaoCDuZ1/j5g5TesOeJipURt+AGo37R2U601SrFc3IAlT Gp0hs9fGvwAjV7afEvkI+C3402UN1obZaqRzWiLfPF30lTQ654Oj/0q+cERW3vNc FvnptPDo4b6+8n379kwhBQaXRUQ77O4g -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:02 2025 by rpki-client