$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json) Hash identifier: qkFf/6739Z3v6wz1R9aDKrU6nt/Xo71+zgxP0QwgHQY= Subject key identifier: 3B:BF:8B:29:5C:87:61:C3:08:FD:74:0A:EE:16:59:3A:92:03:D6:B9 Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft Manifest number: 01D3 Signing time: Wed 05 Nov 2025 02:59:33 +0000 Manifest this update: Wed 05 Nov 2025 02:59:33 +0000 Manifest next update: Wed 12 Nov 2025 02:59:33 +0000 Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: +mYz34egtN1ipUr12YM6WF5PGeShZEsOqhSXcdlfBWU=) 2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: Q3/I4xZV8CvWyhr+A+P9zzW5K8pcc6S3V6pLPjC2BoQ=) 3: EA22589E373C11F0909EF25DC4F9AE02.roa (hash: pK7K0oDGB09OEHam5uLFYf312YyVDqFKY5nBRiwk3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:59:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79, serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: Nov 5 02:59:33 2025 GMT Not After : Nov 12 02:59:33 2025 GMT Subject: CN=690abd95-9131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:64:1e:99:e1:bf:8a:90:fb:ac:2c:ae:b9:20: 58:7b:5d:fb:58:29:d9:1c:9f:f4:05:7e:9c:15:9d: af:87:83:25:21:85:ef:ad:7f:cb:9a:c1:e2:a0:df: 07:d0:68:9b:09:b0:07:2c:82:9c:68:ec:ec:a7:00: 77:3c:01:78:0e:9e:ac:a4:39:a6:7b:09:4b:38:73: 76:c8:c0:7b:91:14:02:03:55:c2:3c:5b:95:12:22: c2:5a:82:b6:6e:11:f1:cc:30:9a:8a:ee:4c:c1:9d: 19:9b:60:6d:76:75:72:6c:1f:c0:4a:dd:4f:40:fc: 93:4e:66:fc:b0:d5:ff:7e:d2:a6:b2:48:d3:46:63: c1:01:6b:fe:11:b1:b8:47:4c:f5:94:fd:9b:e9:a2: e6:66:4b:8c:ca:6b:f2:52:19:0d:42:38:6f:23:4e: e8:1f:39:6b:92:90:e7:45:c5:86:ab:b2:a7:8b:c0: ae:7e:28:f4:be:44:14:c5:72:28:21:c7:74:e0:f2: 5a:45:50:ea:6c:88:51:09:ab:fd:e3:6a:99:22:42: 32:27:f6:2e:00:7e:e6:19:22:17:72:57:8f:2b:2c: e6:df:cc:17:2b:4f:59:06:44:16:0d:b8:76:32:fa: d9:7f:74:78:7a:1e:98:85:f4:83:4b:1b:d5:c3:38: 9c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BF:8B:29:5C:87:61:C3:08:FD:74:0A:EE:16:59:3A:92:03:D6:B9 X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:7b:07:0e:e1:ed:e2:c2:c9:62:5d:fc:11:ea:ca:10:4d:a5: c9:06:93:d4:eb:04:22:46:86:09:5c:7e:72:53:d0:2f:3b:5d: 36:07:2e:4a:32:ca:f8:52:98:c2:05:73:35:c7:73:54:58:81: df:cb:df:a8:f9:82:50:c1:48:8c:6e:50:1a:81:4e:71:8c:ef: 81:7e:7a:1d:d6:db:c2:03:8c:de:cf:6d:95:5c:a8:f3:89:57: 23:f0:98:fe:cc:9c:7b:9b:fd:2a:13:96:36:4c:26:c2:d0:dd: eb:5f:61:55:8e:5c:dd:c4:23:9c:16:07:17:59:ef:d7:6d:74: fe:07:54:0e:67:c8:11:4e:22:e9:08:48:8d:97:ee:7a:99:ee: 32:25:1d:18:f4:2e:b9:0c:5a:65:db:eb:4f:1d:1c:45:e0:1e: 02:f3:4c:ba:e6:89:ba:dd:a6:1d:cf:50:c7:85:b6:b4:10:8a: ea:d1:78:cb:89:6e:c9:18:0b:e4:ed:d1:8d:11:4f:41:a6:f2: 4a:df:bd:f3:bd:63:b9:50:34:8f:5c:59:aa:78:04:88:26:84: f0:8c:17:66:5b:e3:b7:56:10:3c:08:81:55:ba:43:66:56:22: 22:02:88:d4:ea:b5:d6:65:26:cc:95:1c:42:84:60:33:7f:1d: e8:55:9f:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjUxMTA1MDI1OTMzWhcNMjUxMTEyMDI1OTMzWjAYMRYwFAYD VQQDEw02OTBhYmQ5NS05MTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GQemeG/ipD7rCyuuSBYe137WCnZHJ/0BX6cFZ2vh4MlIYXvrX/LmsHioN8H 0GibCbAHLIKcaOzspwB3PAF4Dp6spDmmewlLOHN2yMB7kRQCA1XCPFuVEiLCWoK2 bhHxzDCaiu5MwZ0Zm2BtdnVybB/ASt1PQPyTTmb8sNX/ftKmskjTRmPBAWv+EbG4 R0z1lP2b6aLmZkuMymvyUhkNQjhvI07oHzlrkpDnRcWGq7Kni8Cufij0vkQUxXIo Icd04PJaRVDqbIhRCav942qZIkIyJ/YuAH7mGSIXclePKyzm38wXK09ZBkQWDbh2 MvrZf3R4eh6YhfSDSxvVwzic5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDu/iylc h2HDCP10Cu4WWTqSA9a5MB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1 NTA3X1RiVEhGQ0tFVkhjMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrewcO4e3iwsliXfwR6soQTaXJBpPU6wQiRoYJXH5yU9AvO102By5K Msr4UpjCBXM1x3NUWIHfy9+o+YJQwUiMblAagU5xjO+Bfnod1tvCA4zez22VXKjz iVcj8Jj+zJx7m/0qE5Y2TCbC0N3rX2FVjlzdxCOcFgcXWe/XbXT+B1QOZ8gRTiLp CEiNl+56me4yJR0Y9C65DFpl2+tPHRxF4B4C80y65om63aYdz1DHhba0EIrq0XjL iW7JGAvk7dGNEU9BpvJK373zvWO5UDSPXFmqeASIJoTwjBdmW+O3VhA8CIFVukNm ViIiAojU6rXWZSbMlRxChGAzfx3oVZ+C -----END CERTIFICATE-----Generated at Thu Nov 6 03:05:34 2025 by rpki-client