$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft File: BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft (raw, json) Hash identifier: ukyv7szev7XkuVIGRGSRSyN9/eDSTrOkRY8tbuvRVmQ= Subject key identifier: 74:8D:F8:BE:79:AF:90:98:69:9E:12:A1:C0:DF:6A:33:E5:B0:02:FF Authority key identifier: 06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C Certificate issuer: /CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Certificate serial: 16E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft Manifest number: 16CB Signing time: Thu 06 Nov 2025 16:13:49 +0000 Manifest this update: Thu 06 Nov 2025 16:13:48 +0000 Manifest next update: Thu 13 Nov 2025 16:13:48 +0000 Files and hashes: 1: BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl (hash: cPOfjXWch+MPNxYSYl8YhkTfqN8zrsqryC/G+KudESQ=) 2: 091435C84FA911EFB86F4D40C4F9AE02.roa (hash: e5jgIESXFxNT6NU+78fDrpwylXFQS920y6o/aeQL2pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 16:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5860 (0x16e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CE8, serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Validity Not Before: Nov 6 16:13:48 2025 GMT Not After : Nov 13 16:13:48 2025 GMT Subject: CN=690cc93c-999c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b5:1b:0d:41:68:f3:01:f1:59:11:1a:e9:6c: e8:a3:b7:82:9f:48:01:31:cc:e6:15:0b:a3:9b:00: 1d:20:5f:2c:93:5a:28:53:1f:98:27:b8:9f:5a:2e: 0d:ee:41:fa:d1:bf:45:a0:03:c8:db:8c:f9:1d:50: 45:6e:0d:d8:dc:e0:0b:69:8b:5e:e1:69:8b:38:21: 53:d0:3f:04:f8:05:f0:dd:b8:c0:94:45:88:cf:c8: a1:bd:b6:51:53:ae:4b:8e:80:1d:84:51:6b:a0:91: 99:53:2c:cc:9d:8e:81:f4:0c:2d:96:c8:9a:5e:85: 7d:f6:72:85:71:8a:d1:2c:3e:b6:78:67:86:9f:f4: b6:cb:4a:87:6b:23:88:f9:20:4a:77:b0:40:7a:46: 6d:82:09:3b:70:b8:28:74:c6:64:82:b6:7c:fe:06: bf:6b:41:97:b7:86:5b:3f:11:d6:32:4d:d5:4f:d3: 09:d7:49:a1:d2:65:f9:06:6e:ac:f8:65:6e:67:92: 16:bb:3e:ff:ad:03:91:b1:73:81:10:2f:4f:c4:4e: 6c:b0:96:9f:bc:b5:98:e2:3f:3d:76:7f:1d:df:09: 76:4c:40:83:d1:4f:42:e9:84:a0:b5:a2:1a:90:9b: b6:9f:16:9b:c6:96:67:74:d8:c9:2a:dd:5f:d9:55: 47:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8D:F8:BE:79:AF:90:98:69:9E:12:A1:C0:DF:6A:33:E5:B0:02:FF X509v3 Authority Key Identifier: keyid:06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:38:bc:b8:0e:a9:b2:b1:e0:4c:c5:cc:c3:f4:d8:91:f7:da: 0a:a0:e2:2f:c1:f7:96:36:c7:fc:e3:d8:73:f0:d2:85:a0:02: b2:c3:44:69:f6:b9:ea:b0:5a:5d:06:58:9c:67:10:6d:76:26: 2e:2f:57:9e:cb:c3:bd:00:55:27:51:98:f9:ad:fc:f7:15:a9: db:ee:63:30:39:29:4b:20:3b:5c:65:d2:eb:8e:1c:54:30:fb: e0:4d:20:42:63:c3:48:52:3c:aa:49:4a:f9:3a:1e:d5:19:37: 71:fa:ea:9a:50:d4:ab:b6:81:6e:09:91:8e:6a:04:b7:a5:24: 59:4c:9f:af:e8:dd:c2:2a:4f:53:3b:29:c3:ee:5c:f3:f5:23: c8:e8:83:b8:09:f3:f4:61:11:17:6f:fb:c7:da:2b:ba:c9:31: 6d:ac:99:d9:40:da:ce:2b:86:14:16:48:10:41:25:f9:eb:a0: c3:e0:c4:d3:14:c5:b2:6f:61:b7:9d:26:fd:5c:22:1e:05:1b: f3:17:48:b8:4e:17:d6:71:91:4b:8b:8d:86:3b:d9:8c:dd:18: 9a:63:6f:cd:91:ed:b7:ef:3c:13:0d:4d:42:a4:48:b2:6b:96: 03:1f:0f:40:0c:a4:76:86:2c:8a:47:f1:51:5f:23:36:b2:c6: 1b:6b:c6:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRTgxMTAvBgNVBAUTKDA2QzYyN0Q5QzMxMkM3QjQ3RDFDM0E1M0I0NDc1NUEx MEE2ODQ4N0MwHhcNMjUxMTA2MTYxMzQ4WhcNMjUxMTEzMTYxMzQ4WjAYMRYwFAYD VQQDEw02OTBjYzkzYy05OTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LUbDUFo8wHxWREa6Wzoo7eCn0gBMczmFQujmwAdIF8sk1ooUx+YJ7ifWi4N 7kH60b9FoAPI24z5HVBFbg3Y3OALaYte4WmLOCFT0D8E+AXw3bjAlEWIz8ihvbZR U65LjoAdhFFroJGZUyzMnY6B9AwtlsiaXoV99nKFcYrRLD62eGeGn/S2y0qHayOI +SBKd7BAekZtggk7cLgodMZkgrZ8/ga/a0GXt4ZbPxHWMk3VT9MJ10mh0mX5Bm6s +GVuZ5IWuz7/rQORsXOBEC9PxE5ssJafvLWY4j89dn8d3wl2TECD0U9C6YSgtaIa kJu2nxabxpZndNjJKt1f2VVHTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSN+L55 r5CYaZ4SocDfajPlsAL/MB8GA1UdIwQYMBaAFAbGJ9nDEse0fRw6U7RHVaEKaEh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENFOC85MDBEMjY0NjA2 NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3UjlIRHBUdEVkVm9RcG9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzWW4yY01TeDdSOUhEcFR0RWRWb1Fwb1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENFOC85MDBEMjY0NjA2NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3 UjlIRHBUdEVkVm9RcG9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9OLy4DqmyseBMxczD9NiR99oKoOIvwfeWNsf849hz8NKFoAKyw0Rp 9rnqsFpdBlicZxBtdiYuL1eey8O9AFUnUZj5rfz3Fanb7mMwOSlLIDtcZdLrjhxU MPvgTSBCY8NIUjyqSUr5Oh7VGTdx+uqaUNSrtoFuCZGOagS3pSRZTJ+v6N3CKk9T OynD7lzz9SPI6IO4CfP0YREXb/vH2iu6yTFtrJnZQNrOK4YUFkgQQSX566DD4MTT FMWyb2G3nSb9XCIeBRvzF0i4ThfWcZFLi42GO9mM3RiaY2/Nke237zwTDU1CpEiy a5YDHw9ADKR2hiyKR/FRXyM2ssYba8Ye -----END CERTIFICATE-----Generated at Fri Nov 7 16:34:39 2025 by rpki-client