$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: Rf2Od63v7Vd8qH5yZr2uzNnp7k2/gfy13RKe7g0Fahs= Subject key identifier: 34:73:D3:7C:F3:36:20:3F:31:1D:AB:CB:FE:59:76:5A:AE:63:40:31 Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 159D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 1589 Signing time: Tue 28 Oct 2025 16:43:05 +0000 Manifest this update: Tue 28 Oct 2025 16:43:05 +0000 Manifest next update: Tue 04 Nov 2025 16:43:05 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: agmrZiJpxNZZD/FcB9+rOGaat2Z74ywdL14T0R0XVT8=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: 4omxKGchAtANINcKNMUv81DprGm9m6mhlkl3cRG7vXI=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: b5yX1QAOSGwKLnK6fw3PZvYuW4+NY2un1A6EM1jEmyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 16:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5533 (0x159d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Oct 28 16:43:05 2025 GMT Not After : Nov 4 16:43:05 2025 GMT Subject: CN=6900f299-0b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1e:14:5f:d6:b2:aa:25:df:e1:6b:74:43:11: 2a:7e:cc:5a:53:40:0f:c9:22:0c:3e:b9:0b:ae:0c: 4d:a8:b3:9b:dd:eb:4d:d3:bc:9f:7c:fe:53:be:21: fa:25:53:c1:95:69:bc:2a:2d:41:eb:25:40:68:98: 6f:00:9c:22:74:3b:81:0c:68:c0:51:1b:f2:37:c9: 1c:60:f3:ff:fe:09:1d:7c:06:c3:46:49:4e:fb:40: a9:03:3b:46:0c:56:41:24:ec:84:3f:b8:56:75:6f: f0:52:21:4c:22:3b:7f:06:38:9a:fb:93:64:e6:4d: 4d:5e:0c:a1:cc:36:bf:4d:90:bb:77:9a:cc:ab:10: bf:2e:73:8a:f9:58:cc:0a:21:12:fc:1d:bc:6d:e2: 87:1d:52:b7:fb:ce:e5:52:1d:e6:46:97:f6:a7:08: 24:5e:87:42:e6:15:1e:a2:4a:08:7e:6d:04:9e:61: 5f:c7:2d:74:03:d9:3b:47:4a:a7:64:1e:2e:06:2a: ee:ee:09:3a:22:96:97:e8:0b:d2:7a:c5:62:c7:32: 94:3d:8b:58:4a:3b:6c:9e:bb:b3:27:88:9c:ba:d0: 53:1d:0d:b7:b8:d4:6d:c0:f8:fd:84:ac:cb:9c:26: 8e:78:32:aa:26:dc:4c:ee:e3:e2:5b:a5:0d:1f:58: 87:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:73:D3:7C:F3:36:20:3F:31:1D:AB:CB:FE:59:76:5A:AE:63:40:31 X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:68:43:09:ad:11:66:cc:1b:4e:d1:e3:a1:be:e5:f5:76:42: bc:44:c2:99:6a:70:77:50:ad:b7:31:5e:2a:4a:01:56:77:7a: 93:ae:b1:bc:17:98:0f:9f:bd:af:15:5b:24:4c:3c:fc:cf:f2: 58:dd:df:ce:86:49:9a:c6:d3:ff:ca:c3:44:02:b4:e0:64:e6: c6:a1:ec:6d:a1:58:95:32:87:9b:73:03:a3:f6:da:c9:95:00: 8b:76:e7:4b:14:91:59:6e:59:19:b5:84:0a:7b:65:04:e5:cd: 88:a3:43:40:ef:f0:cb:3c:46:b4:d5:4d:6c:6b:02:45:93:42: 92:57:0d:4b:29:78:67:b8:71:c9:47:6d:fa:2b:2b:29:a0:fe: 61:cd:a8:99:69:b2:ae:ee:d5:c8:84:71:28:64:d3:fc:a8:b4: c9:c2:2a:cd:30:4c:7e:96:5b:74:88:92:a6:f6:a2:dd:72:48: e8:a8:22:63:38:b0:13:a7:0b:1e:8f:52:2b:46:f0:a7:42:33: cb:bf:84:ba:80:68:95:b8:84:ef:22:a5:d1:46:04:dc:c2:24: 83:e0:0c:68:23:db:63:df:6a:71:25:6f:fb:9e:e2:c0:c6:87: 72:fa:88:40:5c:5c:63:e9:1f:fe:a6:fe:2e:bb:43:cc:c6:0b: 44:43:9d:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUxMDI4MTY0MzA1WhcNMjUxMTA0MTY0MzA1WjAYMRYwFAYD VQQDEw02OTAwZjI5OS0wYjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsB4UX9ayqiXf4Wt0QxEqfsxaU0APySIMPrkLrgxNqLOb3etN07yffP5TviH6 JVPBlWm8Ki1B6yVAaJhvAJwidDuBDGjAURvyN8kcYPP//gkdfAbDRklO+0CpAztG DFZBJOyEP7hWdW/wUiFMIjt/Bjia+5Nk5k1NXgyhzDa/TZC7d5rMqxC/LnOK+VjM CiES/B28beKHHVK3+87lUh3mRpf2pwgkXodC5hUeokoIfm0EnmFfxy10A9k7R0qn ZB4uBiru7gk6IpaX6AvSesVixzKUPYtYSjtsnruzJ4icutBTHQ23uNRtwPj9hKzL nCaOeDKqJtxM7uPiW6UNH1iHgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRz03zz NiA/MR2ry/5ZdlquY0AxMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5aEMJrRFmzBtO0eOhvuX1dkK8RMKZanB3UK23MV4qSgFWd3qTrrG8 F5gPn72vFVskTDz8z/JY3d/OhkmaxtP/ysNEArTgZObGoextoViVMoebcwOj9trJ lQCLdudLFJFZblkZtYQKe2UE5c2Io0NA7/DLPEa01U1sawJFk0KSVw1LKXhnuHHJ R236KyspoP5hzaiZabKu7tXIhHEoZNP8qLTJwirNMEx+llt0iJKm9qLdckjoqCJj OLATpwsej1IrRvCnQjPLv4S6gGiVuITvIqXRRgTcwiSD4AxoI9tj32pxJW/7nuLA xody+ohAXFxj6R/+pv4uu0PMxgtEQ51L -----END CERTIFICATE-----Generated at Tue Oct 28 20:42:07 2025 by rpki-client