$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft File: RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft (raw, json) Hash identifier: bJW3WfnqDKkvc40RMm0iWmyotZPqzonXmpSHOHfaFcI= Subject key identifier: 20:2C:8D:49:C6:76:57:96:E8:CA:23:F1:F5:0B:2C:35:FA:A6:6F:86 Authority key identifier: 44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78 Certificate issuer: /CN=A91E5C49/serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078 Certificate serial: 07B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft Manifest number: 0F64 Signing time: Fri 24 Oct 2025 22:15:03 +0000 Manifest this update: Fri 24 Oct 2025 22:15:03 +0000 Manifest next update: Fri 31 Oct 2025 22:15:03 +0000 Files and hashes: 1: RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl (hash: JyHWcRZIjgwrTexyxFvN8Lo+A7GZAKuxXRyKkbub5r0=) 2: 84FDF25A396711ED8AF52966C4F9AE02.roa (hash: hkxmNGokisQG0mbBKypviapB/RNUZ9nsMjdRwBRak9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 22:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1977 (0x7b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5C49, serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078 Validity Not Before: Oct 24 22:15:03 2025 GMT Not After : Oct 31 22:15:03 2025 GMT Subject: CN=68fbfa67-53ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ef:ec:97:93:77:1e:80:1e:7a:8f:eb:9f:82: 85:46:5d:fa:b4:a1:03:33:3d:89:7f:f9:b9:97:41: 51:fd:40:1c:37:6d:5f:cd:95:1a:0c:ef:68:5b:aa: 1a:d3:00:48:65:80:cc:10:cc:76:70:74:4a:7e:cd: 1e:74:2c:ee:92:47:00:ae:b5:c4:b1:cd:da:95:3f: ad:2f:8a:1b:35:d1:21:6b:31:8d:4b:c8:48:70:56: 02:16:b3:72:1d:cb:14:b2:0b:d9:89:10:1f:6c:c8: 36:62:11:d7:06:d1:5c:3f:76:48:10:b5:01:48:d8: 24:7e:a9:92:dc:69:8b:c0:8d:56:63:96:94:9b:d3: 15:26:1c:ae:b8:03:31:25:44:42:be:9d:28:ec:82: c8:6b:76:d0:3f:82:32:cd:53:a0:db:2e:1c:7d:d4: e8:f2:be:46:a1:c2:9b:b2:9e:16:6b:8d:1a:49:fe: da:2e:66:2c:7a:d4:31:20:92:cb:d9:9d:06:ff:92: ab:d6:b5:9d:29:2a:36:5d:58:d1:9e:92:dc:ea:2c: 2b:82:97:fb:14:e7:e4:d7:fb:26:af:27:92:54:4d: 3d:7d:68:8a:6a:8a:21:5c:cd:20:90:17:76:cf:51: 60:95:c2:1f:d8:a5:79:f0:56:4f:da:37:4f:3d:16: 6f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2C:8D:49:C6:76:57:96:E8:CA:23:F1:F5:0B:2C:35:FA:A6:6F:86 X509v3 Authority Key Identifier: keyid:44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:56:67:72:87:2d:b7:e1:df:92:a8:47:13:81:2d:d2:38:ac: 2b:ea:ce:ee:05:63:0f:f0:8b:a5:ea:83:52:b1:ec:44:7e:6b: 97:b2:49:dd:c7:77:9e:e9:3b:6d:17:de:51:ba:48:f0:72:93: 4e:12:8b:c3:db:47:d9:b5:a3:e7:d9:e0:ef:d9:25:ad:96:16: 82:bf:ed:52:fa:ed:fb:e6:62:53:ca:42:2b:bb:e5:ba:31:3e: 7c:bb:50:12:4d:ec:75:b1:48:4f:df:2f:1b:ed:7f:f8:4d:88: ae:f0:e0:0e:9a:f6:2d:3a:29:03:29:61:8e:5b:fb:14:c3:00: c2:b6:2a:62:45:80:68:b1:9d:3a:90:20:3c:1b:ef:ac:31:80: cc:db:1b:03:00:69:42:41:47:7c:3f:21:49:b5:51:85:0e:4e: 08:94:d1:6b:70:5b:94:2f:9d:31:3a:a8:96:13:59:d4:6b:37: cb:98:85:fb:a4:63:b0:35:da:85:b7:6d:d0:b1:82:22:36:04: 3f:95:6d:e6:e8:71:8b:36:e4:15:9a:e4:0d:e8:59:ee:29:05: 3f:3a:63:ab:59:81:32:b8:5d:a5:fa:26:92:57:dd:80:9f:cc: 97:3e:7d:92:aa:26:3d:56:b3:ce:c2:57:5f:85:1c:ba:2e:59: cd:af:ce:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVDNDkxMTAvBgNVBAUTKDQ0MTZFODk4NThEQTY3N0IwQ0RBMzNCODdCMkU4QzhB RkQxQzYwNzgwHhcNMjUxMDI0MjIxNTAzWhcNMjUxMDMxMjIxNTAzWjAYMRYwFAYD VQQDEw02OGZiZmE2Ny01M2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxO/sl5N3HoAeeo/rn4KFRl36tKEDMz2Jf/m5l0FR/UAcN21fzZUaDO9oW6oa 0wBIZYDMEMx2cHRKfs0edCzukkcArrXEsc3alT+tL4obNdEhazGNS8hIcFYCFrNy HcsUsgvZiRAfbMg2YhHXBtFcP3ZIELUBSNgkfqmS3GmLwI1WY5aUm9MVJhyuuAMx JURCvp0o7ILIa3bQP4IyzVOg2y4cfdTo8r5GocKbsp4Wa40aSf7aLmYsetQxIJLL 2Z0G/5Kr1rWdKSo2XVjRnpLc6iwrgpf7FOfk1/smryeSVE09fWiKaoohXM0gkBd2 z1FglcIf2KV58FZP2jdPPRZv3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAsjUnG dleW6Moj8fULLDX6pm+GMB8GA1UdIwQYMBaAFEQW6JhY2md7DNozuHsujIr9HGB4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUM0OS84QTg3RUZDMjFB NDgxMUVCOEYxNDMyNDZDNEY5QUUwMi9SQmJvbUZqYVozc00yak80ZXk2TWl2MGNZ SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCYm9tRmphWjNzTTJqTzRleTZNaXYwY1lIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUM0OS84QTg3RUZDMjFBNDgxMUVCOEYxNDMyNDZDNEY5QUUwMi9SQmJvbUZqYVoz c00yak80ZXk2TWl2MGNZSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcVmdyhy234d+SqEcTgS3SOKwr6s7uBWMP8Iul6oNSsexEfmuXsknd x3ee6TttF95RukjwcpNOEovD20fZtaPn2eDv2SWtlhaCv+1S+u375mJTykIru+W6 MT58u1ASTex1sUhP3y8b7X/4TYiu8OAOmvYtOikDKWGOW/sUwwDCtipiRYBosZ06 kCA8G++sMYDM2xsDAGlCQUd8PyFJtVGFDk4IlNFrcFuUL50xOqiWE1nUazfLmIX7 pGOwNdqFt23QsYIiNgQ/lW3m6HGLNuQVmuQN6FnuKQU/OmOrWYEyuF2l+iaSV92A n8yXPn2SqiY9VrPOwldfhRy6LlnNr84/ -----END CERTIFICATE-----Generated at Sat Oct 25 03:30:17 2025 by rpki-client