$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: 9UOZhgLlL6l7/rgzifgJnIaW8kU8VpxR/Al+hkM6wwY= Subject key identifier: 0E:E0:36:5F:D2:24:77:90:92:70:48:86:54:21:9C:C5:AA:B6:84:90 Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: 0148 Signing time: Wed 05 Nov 2025 04:28:36 +0000 Manifest this update: Wed 05 Nov 2025 04:28:35 +0000 Manifest next update: Wed 12 Nov 2025 04:28:35 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: TEEWOWsxx8ETnEnfyI0vBpx+G6Yk29Q1BGQQqd/49e8=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: pARn59mvC3EFmnc54zsYhH0vh0pFsHJXtSQmvirMetQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: Nov 5 04:28:35 2025 GMT Not After : Nov 12 04:28:35 2025 GMT Subject: CN=690ad274-51e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1b:86:ab:d0:79:a8:4a:1c:d9:7a:46:8d:14: cd:b3:be:09:21:8f:6a:98:e4:34:48:c2:0c:a9:61: cb:0f:91:cc:9a:2f:5a:36:98:3f:bf:ef:ec:51:27: dc:f6:94:e2:a3:21:35:50:ff:20:ab:47:ae:b2:87: 8e:62:60:a5:b6:83:ad:67:da:68:82:89:5e:29:c1: 6b:49:74:0f:f9:1b:a7:c3:68:68:03:53:f9:c8:2b: fd:64:64:4d:3c:97:bb:4d:da:cc:6b:ce:2d:9d:17: 5b:24:ad:3e:a0:e5:a7:4b:ab:06:e2:dc:6f:2b:ac: c3:8f:f9:2b:d0:b0:da:50:e7:a3:59:dd:e7:ee:78: b9:de:e9:02:fd:6b:23:79:ae:93:2a:2b:df:15:e5: da:e8:7f:65:4d:98:f9:2c:69:2f:0a:71:b6:98:06: 5f:69:74:b1:eb:ab:32:f7:90:6f:ca:a2:60:ea:31: 79:e9:8e:a7:70:6e:b1:ae:09:3d:10:1a:37:43:6a: 36:33:f7:cc:4d:1a:80:a6:0d:60:d7:c1:58:57:49: e5:75:43:f9:fb:07:62:c1:6d:0d:98:f1:de:fd:4a: 97:c7:43:ed:59:7b:38:cf:c7:cb:34:67:c9:2b:ee: 4a:33:33:aa:f1:46:3e:ed:c0:8d:d2:95:3d:64:8c: 28:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:E0:36:5F:D2:24:77:90:92:70:48:86:54:21:9C:C5:AA:B6:84:90 X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:dc:18:1c:9f:28:19:4b:30:51:54:d9:21:7a:00:6a:5d:6f: ec:c4:47:37:d7:ab:a2:b1:db:de:1f:70:bc:a8:4c:b9:b1:8d: c9:fd:01:a7:55:16:70:3b:e5:40:e0:a9:76:ff:03:f3:ac:2a: 25:b0:ce:42:63:e5:b2:a4:cc:8e:80:c0:4f:f1:c3:e5:7d:05: 83:f0:09:c2:51:43:30:fd:89:cb:82:57:21:56:7a:1f:7c:20: bd:e5:9a:a3:28:12:56:64:c1:fd:04:40:15:e7:c5:4b:86:90: 45:06:82:5a:cd:a0:75:8e:94:91:eb:f8:89:da:31:e0:24:84: fa:f4:bd:7c:e1:c6:ec:b3:a6:49:15:5c:fd:83:0b:4a:9d:95: e2:aa:07:41:39:47:68:8e:ab:63:56:7a:ad:b8:91:73:c1:26: ba:56:db:a2:8a:10:f9:c9:3a:d5:22:65:2d:1c:67:0b:be:69: 30:69:88:f6:c7:3e:11:b0:03:b0:c3:5d:eb:b8:12:23:cc:33: 69:7d:be:35:a4:bf:10:75:12:1a:e0:fb:b7:16:2f:d7:6e:16: 61:29:9a:2e:b8:37:21:27:43:94:0c:23:80:68:2e:76:a6:a4: e5:01:75:72:40:e7:58:92:12:16:41:d3:3f:2a:ec:8e:9f:29: 7e:0c:16:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjUxMTA1MDQyODM1WhcNMjUxMTEyMDQyODM1WjAYMRYwFAYD VQQDEw02OTBhZDI3NC01MWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphuGq9B5qEoc2XpGjRTNs74JIY9qmOQ0SMIMqWHLD5HMmi9aNpg/v+/sUSfc 9pTioyE1UP8gq0eusoeOYmCltoOtZ9pogoleKcFrSXQP+Runw2hoA1P5yCv9ZGRN PJe7TdrMa84tnRdbJK0+oOWnS6sG4txvK6zDj/kr0LDaUOejWd3n7ni53ukC/Wsj ea6TKivfFeXa6H9lTZj5LGkvCnG2mAZfaXSx66sy95BvyqJg6jF56Y6ncG6xrgk9 EBo3Q2o2M/fMTRqApg1g18FYV0nldUP5+wdiwW0NmPHe/UqXx0PtWXs4z8fLNGfJ K+5KMzOq8UY+7cCN0pU9ZIwodwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7gNl/S JHeQknBIhlQhnMWqtoSQMB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq3BgcnygZSzBRVNkhegBqXW/sxEc316uisdveH3C8qEy5sY3J/QGn VRZwO+VA4Kl2/wPzrColsM5CY+WypMyOgMBP8cPlfQWD8AnCUUMw/YnLglchVnof fCC95ZqjKBJWZMH9BEAV58VLhpBFBoJazaB1jpSR6/iJ2jHgJIT69L184cbss6ZJ FVz9gwtKnZXiqgdBOUdojqtjVnqtuJFzwSa6VtuiihD5yTrVImUtHGcLvmkwaYj2 xz4RsAOww13ruBIjzDNpfb41pL8QdRIa4Pu3Fi/XbhZhKZouuDchJ0OUDCOAaC52 pqTlAXVyQOdYkhIWQdM/KuyOnyl+DBZn -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:16 2025 by rpki-client