$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: HstODTPZEcwc/sJXhY/yecJzVeeQxQlRQasi+GvdOk4= Subject key identifier: C4:A7:48:EC:BA:6B:0C:73:5E:96:17:C1:41:63:CA:62:A3:F1:B7:10 Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 266F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 2655 Signing time: Tue 04 Nov 2025 15:46:16 +0000 Manifest this update: Tue 04 Nov 2025 15:46:16 +0000 Manifest next update: Tue 11 Nov 2025 15:46:16 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: 5erVbepEBG9ijhCN9fpBrBAxG4lYW9MOdRJBEAAOJWg=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: IwUXo20n+V2B2SbXh2brhMIgczh2mlcm0AjnKKmeoo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9839 (0x266f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Nov 4 15:46:16 2025 GMT Not After : Nov 11 15:46:16 2025 GMT Subject: CN=690a1fc8-ca6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:10:58:00:99:19:37:ec:40:17:c9:19:f1:d7: c7:76:a1:51:39:49:0d:a7:df:f2:e4:49:df:2c:85: b8:ed:08:68:f9:9c:be:40:1f:bd:20:24:12:54:03: 75:be:2e:aa:60:5e:51:58:0d:f2:15:5b:7d:8a:7c: 82:04:94:1b:5f:14:75:86:cc:6f:60:97:ae:8e:51: 1a:eb:f1:78:cb:1a:2b:76:f4:5b:fc:b0:66:b0:fc: 0a:a3:b6:2f:23:45:db:85:9a:39:02:2e:57:0f:40: 00:9f:3c:0c:4e:76:8c:3f:86:59:d3:2b:bd:4c:61: 67:41:76:35:21:98:bd:5b:5f:3b:d0:e3:b5:95:89: 6b:92:dd:a2:ca:ef:74:30:a8:71:84:fa:b4:41:7b: 78:03:73:63:fe:8d:09:cf:22:6b:f2:ec:7c:25:b1: 1b:58:ea:51:56:c5:e6:58:ef:5e:57:c5:d9:4f:1e: ef:e1:34:21:79:63:1d:f8:5b:ef:4d:9e:34:a8:d3: 4b:5c:1c:a2:5a:95:14:c2:1b:4b:b4:a8:ea:f4:6c: 7b:a4:48:c9:52:d8:df:91:30:af:35:5c:b2:eb:12: 27:fd:2c:f6:cc:5d:b8:0a:10:83:f3:1a:b4:b4:b6: 99:35:f6:bc:71:be:cd:3e:8f:d0:e3:90:32:d1:dc: 19:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A7:48:EC:BA:6B:0C:73:5E:96:17:C1:41:63:CA:62:A3:F1:B7:10 X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:6d:1d:b7:55:98:eb:a5:d9:e5:ac:3a:d7:a7:68:a6:d4:a5: 1b:af:16:f4:9f:08:15:23:e9:a8:14:b0:f0:a1:cb:26:b7:56: e4:da:19:87:77:2e:f6:4a:09:9f:d9:f7:6d:93:93:fc:0d:36: cd:14:a2:18:a9:59:63:1d:5f:46:8d:3c:b4:c5:30:9e:81:9c: 59:0d:6e:22:71:c6:3b:9b:b2:4a:d4:7c:86:3d:b5:6b:61:da: 31:71:bf:23:9a:7d:c3:1d:e6:b6:72:68:a8:b9:6b:0a:86:e8: 3e:58:74:34:a8:3a:8b:a8:36:d3:c1:6d:1c:62:79:ec:f6:15: d9:2a:f8:02:71:8c:53:e1:74:98:6c:8f:6f:b9:18:61:02:0e: 70:d5:d9:ea:4f:78:1d:14:4e:63:a7:a5:15:40:e4:3e:c4:1b: c7:c6:ae:ed:12:42:f5:b5:0c:f6:2b:05:22:c5:ae:13:83:c9: c7:18:85:8d:25:51:3d:3e:38:55:dd:08:7e:4c:45:be:14:6e: ea:20:07:44:b9:55:10:91:3f:d1:13:05:1c:c7:84:c6:ba:ec: 65:3e:e9:b6:5b:55:6b:97:5f:e3:b4:5c:91:96:42:d9:3b:23: c2:01:83:36:e9:09:03:88:1a:30:da:ab:2e:76:4d:38:73:7e: f7:c8:87:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUxMTA0MTU0NjE2WhcNMjUxMTExMTU0NjE2WjAYMRYwFAYD VQQDEw02OTBhMWZjOC1jYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BBYAJkZN+xAF8kZ8dfHdqFROUkNp9/y5EnfLIW47Qho+Zy+QB+9ICQSVAN1 vi6qYF5RWA3yFVt9inyCBJQbXxR1hsxvYJeujlEa6/F4yxordvRb/LBmsPwKo7Yv I0XbhZo5Ai5XD0AAnzwMTnaMP4ZZ0yu9TGFnQXY1IZi9W1870OO1lYlrkt2iyu90 MKhxhPq0QXt4A3Nj/o0JzyJr8ux8JbEbWOpRVsXmWO9eV8XZTx7v4TQheWMd+Fvv TZ40qNNLXByiWpUUwhtLtKjq9Gx7pEjJUtjfkTCvNVyy6xIn/Sz2zF24ChCD8xq0 tLaZNfa8cb7NPo/Q45Ay0dwZlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSnSOy6 awxzXpYXwUFjymKj8bcQMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5bR23VZjrpdnlrDrXp2im1KUbrxb0nwgVI+moFLDwocsmt1bk2hmH dy72Sgmf2fdtk5P8DTbNFKIYqVljHV9GjTy0xTCegZxZDW4iccY7m7JK1HyGPbVr Ydoxcb8jmn3DHea2cmiouWsKhug+WHQ0qDqLqDbTwW0cYnns9hXZKvgCcYxT4XSY bI9vuRhhAg5w1dnqT3gdFE5jp6UVQOQ+xBvHxq7tEkL1tQz2KwUixa4Tg8nHGIWN JVE9PjhV3Qh+TEW+FG7qIAdEuVUQkT/REwUcx4TGuuxlPum2W1Vrl1/jtFyRlkLZ OyPCAYM26QkDiBow2qsudk04c373yIc2 -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:22 2025 by rpki-client