$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: hNHTewGw9XUTyNzyypebWUdg1GfZ8P6o/TfXcjNGF5E= Subject key identifier: BC:AB:41:BA:52:A4:56:7F:94:49:9F:9D:94:6C:45:FB:8C:28:6F:1E Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0C88 Signing time: Sun 02 Nov 2025 19:12:23 +0000 Manifest this update: Sun 02 Nov 2025 19:12:23 +0000 Manifest next update: Sun 09 Nov 2025 19:12:23 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: Ya9vvgeN3SDl6r0wtS7rtBq0NX97MSNo+JeCVlECBcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2905 (0xb59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Nov 2 19:12:23 2025 GMT Not After : Nov 9 19:12:23 2025 GMT Subject: CN=6907ad17-38f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b5:87:9d:da:61:4d:7f:2c:85:3e:47:53:1c: f7:13:66:08:03:54:22:54:69:d0:4a:ee:8e:d5:fb: 97:21:18:a4:ba:d9:62:7f:22:ca:b2:12:b4:c2:ac: 15:85:c7:06:28:e3:7b:4c:57:0b:75:c7:85:bc:f4: 6c:68:b6:62:97:4e:21:b4:50:4c:00:9d:e2:fa:3c: da:d4:76:7e:a3:fc:c7:fc:2f:b9:57:55:51:9a:67: 5a:ec:82:15:d2:4b:47:25:12:be:12:02:17:2e:b6: 01:3d:ca:2a:30:df:5a:4f:cf:f0:57:03:57:52:29: a9:52:cb:04:3e:c4:92:a9:a1:b5:61:83:48:66:47: a5:14:d0:b6:af:e7:f3:17:46:34:05:21:f9:11:a4: 14:13:f6:f7:5d:d0:fd:31:84:10:48:58:a4:76:79: 7f:f5:16:69:6e:5a:f8:42:64:42:38:c8:3a:85:8d: ab:40:01:ca:a1:5e:9a:6c:e7:3c:77:00:12:00:97: 28:86:c2:e0:a6:ca:20:f3:5e:27:7a:3c:ac:49:20: 18:f0:64:61:9f:ba:ff:4f:12:bb:7d:eb:5c:9a:5a: 00:b1:ce:9c:9c:2b:98:43:5c:99:e1:a1:37:06:2d: d2:12:d4:3c:39:8c:c3:c2:82:13:10:27:02:8b:49: 8e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:AB:41:BA:52:A4:56:7F:94:49:9F:9D:94:6C:45:FB:8C:28:6F:1E X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:74:c5:7c:8c:9b:5a:67:63:7a:49:eb:e0:04:45:91:62:d7: 57:7e:c1:76:1c:63:3d:42:3c:9b:f5:cc:cd:97:72:ff:55:48: 5f:32:2f:d8:bb:e4:33:27:27:b3:58:97:58:2f:29:eb:75:e2: 59:e6:b5:de:28:e4:31:47:db:6e:be:b7:0a:c7:df:f5:2e:11: 2d:a5:d0:ea:3b:45:9f:5c:77:8e:78:c0:fa:bb:fb:d6:79:f7: c2:31:49:2b:1c:38:89:ef:f1:12:b5:81:05:57:b8:4a:8f:44: 62:b9:2e:e5:0f:0e:4e:38:94:af:d9:60:ca:51:cd:80:df:43: 68:7d:cb:60:b2:43:b8:75:5b:dc:30:c4:d5:8b:e1:1c:6e:4f: c6:4a:4a:b8:20:45:c0:77:c7:70:14:4e:f1:fe:ba:2c:2b:bf: 06:76:ca:d5:ca:0f:55:38:fa:ff:67:6e:d0:a3:0e:f4:e8:2b: fc:08:17:10:4e:b0:84:df:08:37:42:cd:ff:c8:82:18:34:00: f5:5c:b4:2f:e1:4c:f7:9c:65:89:73:d9:33:25:29:b4:f4:91: f0:e8:4c:16:ed:c8:c4:37:b1:ec:5c:29:98:c3:1c:9c:ae:ca: 4a:32:fa:9c:27:07:bf:91:16:d8:a4:56:d5:d1:a1:53:4c:8e: f2:e3:dd:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUxMTAyMTkxMjIzWhcNMjUxMTA5MTkxMjIzWjAYMRYwFAYD VQQDEw02OTA3YWQxNy0zOGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrWHndphTX8shT5HUxz3E2YIA1QiVGnQSu6O1fuXIRikutlifyLKshK0wqwV hccGKON7TFcLdceFvPRsaLZil04htFBMAJ3i+jza1HZ+o/zH/C+5V1VRmmda7IIV 0ktHJRK+EgIXLrYBPcoqMN9aT8/wVwNXUimpUssEPsSSqaG1YYNIZkelFNC2r+fz F0Y0BSH5EaQUE/b3XdD9MYQQSFikdnl/9RZpblr4QmRCOMg6hY2rQAHKoV6abOc8 dwASAJcohsLgpsog814nejysSSAY8GRhn7r/TxK7fetcmloAsc6cnCuYQ1yZ4aE3 Bi3SEtQ8OYzDwoITECcCi0mOmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyrQbpS pFZ/lEmfnZRsRfuMKG8eMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcdMV8jJtaZ2N6SevgBEWRYtdXfsF2HGM9Qjyb9czNl3L/VUhfMi/Y u+QzJyezWJdYLynrdeJZ5rXeKOQxR9tuvrcKx9/1LhEtpdDqO0WfXHeOeMD6u/vW effCMUkrHDiJ7/EStYEFV7hKj0RiuS7lDw5OOJSv2WDKUc2A30NofctgskO4dVvc MMTVi+Ecbk/GSkq4IEXAd8dwFE7x/rosK78GdsrVyg9VOPr/Z27Qow706Cv8CBcQ TrCE3wg3Qs3/yIIYNAD1XLQv4Uz3nGWJc9kzJSm09JHw6EwW7cjEN7HsXCmYwxyc rspKMvqcJwe/kRbYpFbV0aFTTI7y493O -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:30 2025 by rpki-client