$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: jKgo+uEWwDzdICh/CoxWpTHRM5+oprk8VEHWUFx8OgU= Subject key identifier: 44:96:C4:0F:4F:52:11:56:B4:5C:0D:F9:7C:14:BD:CC:5E:70:9C:60 Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 0806 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 07FE Signing time: Sun 02 Nov 2025 20:57:04 +0000 Manifest this update: Sun 02 Nov 2025 20:57:04 +0000 Manifest next update: Sun 09 Nov 2025 20:57:04 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: Iane0aZIO8bTFkurlxAMm/uoCq5U6EMCu4koKdWGclU=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: rdYM8QlFVAEWi173xe8sRij+RLkJG7jr88ybpEhjd18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2054 (0x806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881, serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Nov 2 20:57:04 2025 GMT Not After : Nov 9 20:57:04 2025 GMT Subject: CN=6907c5a0-bba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b5:90:40:a8:31:dc:22:cc:56:21:f1:54:5f: 2c:e6:e8:ba:0d:1f:a0:aa:b5:d2:b0:8d:70:10:98: b6:d6:1b:12:01:dc:38:48:c3:f0:9a:70:cd:cf:c7: 43:b4:20:ae:ba:08:0f:8b:9d:ec:1d:df:13:55:31: 08:c7:f8:26:2a:fd:f7:9c:6a:67:71:64:6a:b9:33: e1:c0:74:88:3c:ac:8b:c7:20:b0:f9:d8:d3:05:9d: cb:94:7a:50:ff:b5:c5:39:ca:f9:40:3c:4c:81:93: 07:82:47:f5:b4:6e:c8:4c:9d:32:d8:4c:87:b1:95: e8:76:3f:48:01:59:15:ba:14:a8:d5:3b:22:6a:26: 1b:26:1f:cb:97:e5:20:f7:2d:74:97:9b:2a:0f:b8: af:f5:78:14:26:72:87:40:30:cc:41:09:b3:3a:73: cf:b4:78:2d:99:e2:86:1f:bd:59:b2:62:f8:cc:72: 30:2a:c2:bf:91:7f:a7:dd:b3:b3:fa:74:bf:d0:9f: f3:d3:5f:70:e5:43:99:13:e2:65:a2:5e:9c:56:27: 77:dc:06:79:9f:20:3b:da:16:4e:5e:64:5e:66:a6: 9a:08:2c:d5:77:19:65:78:49:82:37:59:bb:57:9a: f2:4f:59:87:5b:62:d1:52:9b:c9:8b:0f:44:2b:d4: 48:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:96:C4:0F:4F:52:11:56:B4:5C:0D:F9:7C:14:BD:CC:5E:70:9C:60 X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:e1:1a:14:e0:af:a2:ce:68:f5:24:c4:cf:bf:10:91:7b:cb: 60:7e:66:a7:1b:db:b4:12:0d:16:e8:89:2e:7e:30:a9:7d:3b: 83:85:ca:a8:3b:30:f7:d2:f0:b8:62:57:bc:a1:e8:1a:bb:33: 8f:3f:a1:ce:45:35:c9:30:4a:ae:c9:4f:d2:f0:e2:4a:2c:67: 01:11:3f:75:83:59:4e:00:e5:57:69:32:0c:45:ff:59:ee:bb: 0d:09:71:1a:df:75:51:13:f6:ab:24:ae:5f:01:88:a9:d6:23: 78:3a:e8:f1:e5:4a:81:1c:76:87:5e:30:4b:62:6e:ad:de:eb: 16:82:df:cd:73:15:1d:f0:20:df:08:b1:1b:dd:82:67:8d:b2: 22:5a:68:10:fd:09:5e:74:9f:f7:c5:21:1e:dd:93:6c:ec:ed: 35:61:22:b1:91:d4:ec:d9:69:68:79:df:cc:c6:8b:89:f8:b4: 0a:c4:6b:65:d1:84:cd:9f:84:1c:81:05:61:f3:41:cb:09:9a: 58:01:f5:c4:dc:2b:9a:75:97:4c:d8:ab:e7:96:8d:af:38:54: 7b:c2:71:9a:10:06:87:34:7d:06:90:68:e3:6a:7f:8c:49:39: ae:63:99:f2:56:52:4b:b2:a3:56:1d:54:1d:28:c9:4f:d9:b1: 5a:0c:a7:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjUxMTAyMjA1NzA0WhcNMjUxMTA5MjA1NzA0WjAYMRYwFAYD VQQDEw02OTA3YzVhMC1iYmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LWQQKgx3CLMViHxVF8s5ui6DR+gqrXSsI1wEJi21hsSAdw4SMPwmnDNz8dD tCCuuggPi53sHd8TVTEIx/gmKv33nGpncWRquTPhwHSIPKyLxyCw+djTBZ3LlHpQ /7XFOcr5QDxMgZMHgkf1tG7ITJ0y2EyHsZXodj9IAVkVuhSo1TsiaiYbJh/Ll+Ug 9y10l5sqD7iv9XgUJnKHQDDMQQmzOnPPtHgtmeKGH71ZsmL4zHIwKsK/kX+n3bOz +nS/0J/z019w5UOZE+Jlol6cVid33AZ5nyA72hZOXmReZqaaCCzVdxlleEmCN1m7 V5ryT1mHW2LRUpvJiw9EK9RICQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESWxA9P UhFWtFwN+XwUvcxecJxgMB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF4RoU4K+izmj1JMTPvxCRe8tgfmanG9u0Eg0W6IkufjCpfTuDhcqo OzD30vC4Yle8oegauzOPP6HORTXJMEquyU/S8OJKLGcBET91g1lOAOVXaTIMRf9Z 7rsNCXEa33VRE/arJK5fAYip1iN4Oujx5UqBHHaHXjBLYm6t3usWgt/NcxUd8CDf CLEb3YJnjbIiWmgQ/QledJ/3xSEe3ZNs7O01YSKxkdTs2Wloed/MxouJ+LQKxGtl 0YTNn4QcgQVh80HLCZpYAfXE3CuadZdM2Kvnlo2vOFR7wnGaEAaHNH0GkGjjan+M STmuY5nyVlJLsqNWHVQdKMlP2bFaDKeC -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:24 2025 by rpki-client