$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: wbzvzw6v/lTXT157KiS1arDEDJIVhjS1pyK9U/V/S1U= Subject key identifier: C3:D5:74:69:FA:1C:BC:0C:A4:77:C5:6A:15:82:73:71:7E:95:5D:FE Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 1797 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 177C Signing time: Tue 04 Nov 2025 16:41:24 +0000 Manifest this update: Tue 04 Nov 2025 16:41:23 +0000 Manifest next update: Tue 11 Nov 2025 16:41:23 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: u9reUCPYnUbpJoGim7ayyTNKPGwWfOQALO/PKtfa5fY=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6039 (0x1797) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Nov 4 16:41:23 2025 GMT Not After : Nov 11 16:41:23 2025 GMT Subject: CN=690a2cb3-94b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:70:55:57:f9:8a:f0:31:ba:fd:b4:7f:8c:1a: 5f:22:fa:f6:ea:df:67:99:65:f2:36:7d:6d:fc:76: 1d:d1:52:1c:e1:94:f0:a3:bc:e4:53:c4:92:70:c1: 61:1f:04:c4:e4:67:0e:6e:0d:8e:62:22:2a:45:ae: e5:00:f5:7c:2c:64:98:87:9c:5d:31:15:72:87:38: de:71:6c:13:63:bc:f4:55:80:ab:48:31:75:9d:b0: 57:e4:57:ff:76:61:af:2f:a7:81:f9:83:13:4c:3d: f9:10:bc:40:ea:79:1c:9c:df:8a:cf:a7:6d:c3:2d: f8:ab:2d:b2:64:8d:dc:6e:77:84:ad:36:88:4f:c3: fe:11:10:64:fb:9c:73:10:1e:b7:43:4e:fc:ec:ce: 05:c8:e6:02:86:3d:ec:8b:35:ef:d8:cb:76:e3:b8: 43:bb:77:47:7c:dd:7a:aa:cf:79:2d:4b:60:5f:b8: 2e:e2:be:51:37:56:bc:eb:69:c2:ff:7f:62:a8:b3: fc:62:a0:51:fe:c8:f4:d5:e7:0e:fb:ad:8b:d8:3e: 39:26:8b:19:53:5f:81:fd:8c:4f:47:66:30:6b:f4: 87:f5:89:f4:d6:4c:53:ce:2a:50:6d:b9:21:c6:cf: 3e:a1:9f:55:70:7f:5a:23:e5:31:0c:93:4a:25:14: 33:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D5:74:69:FA:1C:BC:0C:A4:77:C5:6A:15:82:73:71:7E:95:5D:FE X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:15:7d:31:95:b3:3b:59:d2:f4:fc:99:91:bb:78:97:35:df: 35:bf:13:48:f2:3e:3c:b3:60:12:37:f3:a0:37:d0:f9:95:d5: c2:88:fe:64:f8:69:d1:fc:35:76:75:a4:b8:b0:4c:ba:f5:f4: f4:b1:4d:ef:f4:05:7d:33:fe:57:70:df:07:eb:0e:97:02:ff: 6a:e0:27:33:3b:60:ba:fd:06:40:a3:42:66:b2:2a:27:6a:92: 03:5c:f6:f1:bc:81:96:70:be:02:ec:f2:91:c4:3e:b4:72:d4: 0e:80:fa:9b:4b:d2:49:3b:0a:0d:33:5f:00:77:92:8e:f6:49: 91:ed:a2:a1:f2:1e:8d:ec:76:e1:51:44:f1:0f:d7:2e:e1:cf: 0e:db:5f:9c:8c:4f:28:d2:29:45:f5:48:e3:73:d9:7e:12:57: 07:2e:77:eb:a3:57:67:a4:37:7d:61:5c:8c:be:1c:ef:5f:10: db:34:85:68:cd:c3:c4:eb:fd:b0:49:1a:3f:b2:52:dc:9c:48: b5:58:c1:6b:7a:74:80:9e:c4:cc:1c:b9:1a:31:c4:31:73:2b: 41:84:91:8f:d1:ce:ab:b6:d3:6c:45:e7:28:cb:c4:1b:ac:d9: e2:35:65:86:f2:46:35:64:f6:1b:0f:32:5c:4f:57:c3:de:b8: 17:a6:8d:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUxMTA0MTY0MTIzWhcNMjUxMTExMTY0MTIzWjAYMRYwFAYD VQQDEw02OTBhMmNiMy05NGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnBVV/mK8DG6/bR/jBpfIvr26t9nmWXyNn1t/HYd0VIc4ZTwo7zkU8SScMFh HwTE5GcObg2OYiIqRa7lAPV8LGSYh5xdMRVyhzjecWwTY7z0VYCrSDF1nbBX5Ff/ dmGvL6eB+YMTTD35ELxA6nkcnN+Kz6dtwy34qy2yZI3cbneErTaIT8P+ERBk+5xz EB63Q0787M4FyOYChj3sizXv2Mt247hDu3dHfN16qs95LUtgX7gu4r5RN1a862nC /39iqLP8YqBR/sj01ecO+62L2D45JosZU1+B/YxPR2Ywa/SH9Yn01kxTzipQbbkh xs8+oZ9VcH9aI+UxDJNKJRQzYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPVdGn6 HLwMpHfFahWCc3F+lV3+MB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFFX0xlbM7WdL0/JmRu3iXNd81vxNI8j48s2ASN/OgN9D5ldXCiP5k +GnR/DV2daS4sEy69fT0sU3v9AV9M/5XcN8H6w6XAv9q4CczO2C6/QZAo0Jmsion apIDXPbxvIGWcL4C7PKRxD60ctQOgPqbS9JJOwoNM18Ad5KO9kmR7aKh8h6N7Hbh UUTxD9cu4c8O21+cjE8o0ilF9Ujjc9l+ElcHLnfro1dnpDd9YVyMvhzvXxDbNIVo zcPE6/2wSRo/slLcnEi1WMFrenSAnsTMHLkaMcQxcytBhJGP0c6rttNsRecoy8Qb rNniNWWG8kY1ZPYbDzJcT1fD3rgXpo0Y -----END CERTIFICATE-----Generated at Wed Nov 5 19:19:03 2025 by rpki-client