$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: ExWSY9yQW1WuOq8f1VVeo7bn+6WorF6mLmgRYHylNlo= Subject key identifier: 7A:48:08:8E:A9:A4:F1:55:18:97:D5:0F:F3:1E:D7:F4:0C:D7:5C:D3 Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 06D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 06CF Signing time: Tue 04 Nov 2025 22:12:02 +0000 Manifest this update: Tue 04 Nov 2025 22:12:02 +0000 Manifest next update: Tue 11 Nov 2025 22:12:02 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: 7HSkqkuORimQNUTWt8mS0Scta+HhmNKWAHJ//OAWTF8=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: Nov 4 22:12:02 2025 GMT Not After : Nov 11 22:12:02 2025 GMT Subject: CN=690a7a32-54c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:79:5f:81:f9:5d:f3:69:14:a1:97:cc:e6:38: 79:58:86:33:94:35:1e:80:e9:02:f5:00:23:1c:06: 20:eb:4e:31:4b:c9:98:a1:b8:db:6c:cb:b0:f5:00: 89:b5:ea:81:1d:e4:fd:84:53:4e:39:d7:bb:73:45: 51:45:a3:e9:09:82:58:5d:a3:a4:e7:7a:b1:73:d8: 05:ef:7d:f0:c0:1b:f3:d0:fa:01:ce:57:f7:41:96: 7e:20:c1:dd:7f:bd:88:95:ef:93:90:22:12:20:b6: 87:4a:1c:22:23:e2:2d:4d:49:fa:68:f4:f3:1d:0a: 4b:01:16:4e:5e:dc:4f:61:68:91:93:2c:f8:3b:38: 49:31:63:17:c8:98:16:87:c1:1e:b1:e5:16:be:ed: 3e:d8:c8:a4:fb:85:bb:de:be:a3:f7:4b:d6:52:1a: 3d:5b:3d:2f:b7:bb:3b:d2:65:b4:89:df:15:22:a4: 68:e1:66:e0:4d:c3:b8:29:f9:ba:c8:0f:18:c4:ee: 6b:7e:2b:9e:55:9a:a1:5d:b7:8b:15:09:b2:cf:1f: ac:a6:4e:f3:5e:5f:83:83:1d:da:4c:ba:22:d5:70: e1:27:e1:a9:be:88:ee:56:5d:ef:01:de:15:4e:55: 34:3e:41:04:3e:b1:c0:c3:6e:e3:ed:20:fd:32:34: dd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:48:08:8E:A9:A4:F1:55:18:97:D5:0F:F3:1E:D7:F4:0C:D7:5C:D3 X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:76:c7:56:aa:db:b6:c7:f6:33:4c:29:8a:58:ca:e9:fb:37: b2:e6:3c:8d:59:c5:c5:b8:bc:50:a7:82:5d:79:ac:b2:14:81: 6c:d8:c0:dd:79:2a:b5:a2:1e:89:72:b7:cb:7b:56:43:5f:4d: 4b:fd:fa:87:cd:ad:6b:c2:eb:22:1d:98:fa:e6:2d:db:a3:70: 5b:0d:ec:c5:22:51:91:3b:38:af:f2:1f:36:9a:99:9f:d7:c9: ea:20:42:5b:d9:2a:f3:b5:34:f6:76:e0:26:1f:9c:c3:ad:6a: 7b:24:65:9a:8e:b8:43:2d:98:7b:bc:67:78:48:d5:96:3e:61: c1:83:2e:37:8b:e7:f8:7d:ce:87:f0:f2:b1:fa:26:4b:8e:61: 69:d4:68:2a:34:bc:76:f0:99:30:52:6a:72:8e:08:0f:a1:ae: 72:5e:fc:74:55:79:43:b5:d5:9c:11:31:e7:c6:92:83:d5:71: d9:d7:fb:32:fc:aa:7e:6e:22:9d:bd:8c:60:d9:5f:92:be:dd: ba:6e:55:57:f5:54:d0:eb:c9:4a:66:12:10:c3:f0:2c:65:89: 95:d1:fa:b7:3c:2d:67:f6:03:97:f4:87:06:15:13:02:1e:6b: 59:9c:10:eb:79:e6:2d:53:bf:eb:1e:17:f2:b4:85:4a:5e:8a: a0:8b:cc:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUxMTA0MjIxMjAyWhcNMjUxMTExMjIxMjAyWjAYMRYwFAYD VQQDEw02OTBhN2EzMi01NGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Xlfgfld82kUoZfM5jh5WIYzlDUegOkC9QAjHAYg604xS8mYobjbbMuw9QCJ teqBHeT9hFNOOde7c0VRRaPpCYJYXaOk53qxc9gF733wwBvz0PoBzlf3QZZ+IMHd f72Ile+TkCISILaHShwiI+ItTUn6aPTzHQpLARZOXtxPYWiRkyz4OzhJMWMXyJgW h8EeseUWvu0+2Mik+4W73r6j90vWUho9Wz0vt7s70mW0id8VIqRo4WbgTcO4Kfm6 yA8YxO5rfiueVZqhXbeLFQmyzx+spk7zXl+Dgx3aTLoi1XDhJ+GpvojuVl3vAd4V TlU0PkEEPrHAw27j7SD9MjTdowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpICI6p pPFVGJfVD/Me1/QM11zTMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBedsdWqtu2x/YzTCmKWMrp+zey5jyNWcXFuLxQp4JdeayyFIFs2MDd eSq1oh6JcrfLe1ZDX01L/fqHza1rwusiHZj65i3bo3BbDezFIlGROziv8h82mpmf 18nqIEJb2SrztTT2duAmH5zDrWp7JGWajrhDLZh7vGd4SNWWPmHBgy43i+f4fc6H 8PKx+iZLjmFp1GgqNLx28JkwUmpyjggPoa5yXvx0VXlDtdWcETHnxpKD1XHZ1/sy /Kp+biKdvYxg2V+Svt26blVX9VTQ68lKZhIQw/AsZYmV0fq3PC1n9gOX9IcGFRMC HmtZnBDreeYtU7/rHhfytIVKXoqgi8z/ -----END CERTIFICATE-----Generated at Wed Nov 5 11:47:50 2025 by rpki-client