$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: zQ3GCftBHdHqcb0Efa45VCJPdiJdU/86b7GqDcjzGD0= Subject key identifier: E6:3A:9F:E8:4D:1D:D0:46:B3:E0:FD:C5:2F:8D:E2:08:B6:F6:76:2F Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 0184 Signing time: Mon 03 Nov 2025 03:36:19 +0000 Manifest this update: Mon 03 Nov 2025 03:36:18 +0000 Manifest next update: Mon 10 Nov 2025 03:36:18 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: QhqMv7xjUE0nfyEIDITxCLruB6InsGX80JfHNy3pbKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Nov 3 03:36:18 2025 GMT Not After : Nov 10 03:36:18 2025 GMT Subject: CN=69082332-d283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:36:78:a2:62:f1:11:96:a5:37:4c:89:e0:9f: 84:7f:ed:27:25:83:48:05:26:56:8e:d8:db:bb:b8: 29:e9:e5:ea:88:70:10:18:4d:77:66:cc:f2:4d:94: 41:60:79:a7:62:68:4f:d8:29:0d:3a:59:d8:00:5c: af:a4:b2:c4:ec:12:bb:cd:0c:4d:0b:4d:55:70:4f: 67:38:e3:14:1d:6c:af:50:80:6e:c4:07:9f:1f:aa: d3:77:e4:1e:e5:63:85:94:2f:bf:49:1f:a0:f8:ce: f1:dd:ba:4d:da:e7:0a:81:e5:f4:1d:dd:72:35:5b: 00:55:f8:31:79:d3:d3:99:e7:5e:6a:5a:56:65:d3: eb:cf:44:2c:1b:1f:6d:34:70:5c:4c:ad:27:45:26: c8:e6:5f:db:b9:e8:47:76:05:2b:6f:be:0f:fe:3d: 4d:87:b5:ba:fa:36:2a:ae:9b:50:f8:45:13:b3:64: 73:22:a5:9f:c9:4d:14:15:e3:6b:53:35:d6:c8:85: e4:7f:51:89:bf:ae:c5:1b:70:44:8f:78:5a:d1:5e: 1b:27:5b:cc:1c:44:08:1f:c4:bd:88:c0:32:ea:5b: bc:16:cf:32:c4:25:06:ce:0e:1b:7c:9e:b9:d7:f2: 74:57:1d:5d:53:d5:51:0c:61:c5:16:4c:9a:28:55: 2e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3A:9F:E8:4D:1D:D0:46:B3:E0:FD:C5:2F:8D:E2:08:B6:F6:76:2F X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c6:d2:2f:2b:73:48:43:4c:9b:80:f0:59:79:f5:90:51:43: 80:0b:da:2b:8d:70:f9:fb:89:78:49:3b:6d:28:e2:1c:d3:65: c1:7e:52:e8:de:8a:ac:d1:eb:c4:b3:37:3d:62:da:4f:8c:34: 13:42:77:a7:89:88:50:7c:22:40:b0:0f:7a:0e:bf:65:47:77: 16:e5:dc:8c:cc:57:dd:cf:6b:6d:a0:bf:7c:8b:fd:95:fb:d6: ca:da:37:6e:44:8d:41:6f:50:cf:28:a0:89:c9:f3:cd:7e:02: d3:d1:83:52:67:be:2d:ab:67:98:6f:d3:f9:a1:d8:c8:b2:bc: 31:cd:47:e8:b1:14:ab:2b:7f:0e:4f:b6:2d:aa:72:48:07:1c: 7b:2b:4a:18:5b:ab:ad:a2:15:84:43:92:57:7c:ca:52:47:36: 38:a8:93:9d:8b:cd:86:d2:d0:d4:b5:c7:91:64:6d:36:a0:94: 5b:af:22:7c:4e:fc:2f:a6:57:f9:50:38:e0:56:09:28:d9:4f: 23:98:6b:47:2e:ee:2a:9d:0f:6c:8d:35:9f:34:2c:f1:3b:d4: c1:82:6d:94:ae:ba:95:c2:c2:70:42:3a:40:56:4c:9f:35:f7: 94:2a:7f:37:a0:43:62:8b:2a:87:fa:8e:24:bf:75:90:bd:cb: cb:a8:52:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUxMTAzMDMzNjE4WhcNMjUxMTEwMDMzNjE4WjAYMRYwFAYD VQQDEw02OTA4MjMzMi1kMjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTZ4omLxEZalN0yJ4J+Ef+0nJYNIBSZWjtjbu7gp6eXqiHAQGE13ZszyTZRB YHmnYmhP2CkNOlnYAFyvpLLE7BK7zQxNC01VcE9nOOMUHWyvUIBuxAefH6rTd+Qe 5WOFlC+/SR+g+M7x3bpN2ucKgeX0Hd1yNVsAVfgxedPTmedealpWZdPrz0QsGx9t NHBcTK0nRSbI5l/buehHdgUrb74P/j1Nh7W6+jYqrptQ+EUTs2RzIqWfyU0UFeNr UzXWyIXkf1GJv67FG3BEj3ha0V4bJ1vMHEQIH8S9iMAy6lu8Fs8yxCUGzg4bfJ65 1/J0Vx1dU9VRDGHFFkyaKFUuxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOY6n+hN HdBGs+D9xS+N4gi29nYvMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPxtIvK3NIQ0ybgPBZefWQUUOAC9orjXD5+4l4STttKOIc02XBflLo 3oqs0evEszc9YtpPjDQTQneniYhQfCJAsA96Dr9lR3cW5dyMzFfdz2ttoL98i/2V +9bK2jduRI1Bb1DPKKCJyfPNfgLT0YNSZ74tq2eYb9P5odjIsrwxzUfosRSrK38O T7YtqnJIBxx7K0oYW6utohWEQ5JXfMpSRzY4qJOdi82G0tDUtceRZG02oJRbryJ8 Tvwvplf5UDjgVgko2U8jmGtHLu4qnQ9sjTWfNCzxO9TBgm2UrrqVwsJwQjpAVkyf NfeUKn83oENiiyqH+o4kv3WQvcvLqFJm -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:13 2025 by rpki-client