$ rpki-client -vvf rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft File: 0ba-fNUVRYE-wxdmgHrN2YepD98.mft (raw, json) Hash identifier: LsXR1k/vi/nf3DCXDZWzMKRGWCc5J2YCjNIDBolcXno= Subject key identifier: 51:E4:30:06:34:59:60:9D:23:F5:59:1A:70:2D:E1:2E:3D:F9:56:C3 Authority key identifier: D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF Certificate issuer: /CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Certificate serial: 093E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft Manifest number: 0931 Signing time: Tue 04 Nov 2025 20:19:38 +0000 Manifest this update: Tue 04 Nov 2025 20:19:37 +0000 Manifest next update: Tue 11 Nov 2025 20:19:37 +0000 Files and hashes: 1: 0ba-fNUVRYE-wxdmgHrN2YepD98.crl (hash: p3D7DgXzLxc4e41IPglat+WJGfiaxy/hU6u/4GmjQgE=) 2: 3BEF1820AFBA11EA8449B980C4F9AE02.roa (hash: bj4egIAAlTEUd+3GyfnPFN1nOaWoeA00wwzQy3Jloew=) 3: F4757B1018C811EB94A5327AC4F9AE02.roa (hash: j+7FuDdUw+7PzuykOYS3riW81hh3FFiLyNobRrPETRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2366 (0x93e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915418F, serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Validity Not Before: Nov 4 20:19:37 2025 GMT Not After : Nov 11 20:19:37 2025 GMT Subject: CN=690a5fda-223f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bc:2b:44:7f:f5:48:1f:07:7f:eb:72:3c:67: 4c:b2:28:56:13:cd:96:ac:b5:c9:f0:49:f4:a4:65: c1:88:0c:21:1e:12:d0:c8:5d:e0:3b:b0:de:58:3c: 58:9c:5c:2e:db:b9:e5:6b:d1:c8:64:ca:66:81:2f: e0:d7:43:35:f1:6d:93:10:e5:d5:ae:12:c2:39:a7: 31:49:4d:14:f7:60:65:9e:1c:a1:7f:42:28:e3:03: b9:2b:74:1e:3c:26:4f:8b:7a:2c:0e:52:f7:72:c6: 73:f5:05:47:81:24:f5:5a:84:06:0e:0c:b2:e0:07: 76:7c:f2:d2:bd:32:33:9e:23:85:fa:c2:fa:c1:8b: 10:90:b8:7a:a6:a5:c7:e3:08:f9:54:86:da:66:e1: c1:fa:98:92:fa:81:6f:e9:70:82:69:14:7b:9d:a1: 00:02:1e:cc:11:6a:32:62:7d:9c:c7:20:52:a5:2a: f5:f0:6f:c7:ba:ef:e2:35:a7:e0:96:87:3b:58:49: cc:7b:15:f3:c5:6e:6e:50:39:f5:56:62:43:43:b3: a3:48:86:61:90:92:f9:de:2c:5d:df:c3:9c:80:d4: c7:f6:67:38:4a:31:d9:e4:3e:df:7c:22:29:7b:26: 9d:9c:bb:c8:f6:06:43:6b:d4:4b:6c:6e:6f:4b:97: 93:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E4:30:06:34:59:60:9D:23:F5:59:1A:70:2D:E1:2E:3D:F9:56:C3 X509v3 Authority Key Identifier: keyid:D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:b3:e2:5c:04:65:5a:b5:40:e2:ca:c5:98:fe:fc:df:0c:48: 22:08:1a:98:0b:d8:a5:b4:f7:e3:78:0a:c2:92:5e:43:c1:99: 1e:5d:86:c8:6c:19:83:e0:b2:95:c5:4c:cd:d5:6b:98:8a:eb: 0e:5f:b5:c1:16:52:a5:65:00:da:82:b3:7f:92:c8:e4:d4:58: a6:e8:e8:4e:20:22:88:40:62:58:87:e2:db:4f:82:d1:23:28: 78:46:13:1b:3f:58:0a:31:68:c6:ef:9d:e1:35:1d:4f:c6:92: fe:00:b2:80:97:36:c2:f3:56:95:1f:d3:f4:ad:e2:8f:e5:ca: d7:ef:85:e1:d6:04:d5:15:dc:1e:5c:1f:fa:ae:61:b2:9e:1f: c9:80:c5:c3:66:33:11:5b:ae:01:3f:4d:e8:86:0c:37:8d:8c: fd:bd:78:2c:62:29:32:ed:85:a7:72:c2:ef:27:43:cc:d5:6d: ca:e1:af:b6:b5:db:6e:86:6f:17:3f:44:67:a0:42:18:d3:f5: 7c:ba:8c:51:10:a0:2b:65:ea:74:48:b8:7b:f7:cf:e1:72:1e: 51:d9:37:b0:c0:3b:12:fa:10:99:64:3f:99:4e:18:80:60:66: a6:71:c6:f6:e1:9a:99:d5:11:45:cd:0b:f7:e5:9f:b7:40:0c: 6e:a7:56:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQxOEYxMTAvBgNVBAUTKEQxQjZCRTdDRDUxNTQ1ODEzRUMzMTc2NjgwN0FDREQ5 ODdBOTBGREYwHhcNMjUxMTA0MjAxOTM3WhcNMjUxMTExMjAxOTM3WjAYMRYwFAYD VQQDEw02OTBhNWZkYS0yMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37wrRH/1SB8Hf+tyPGdMsihWE82WrLXJ8En0pGXBiAwhHhLQyF3gO7DeWDxY nFwu27nla9HIZMpmgS/g10M18W2TEOXVrhLCOacxSU0U92Blnhyhf0Io4wO5K3Qe PCZPi3osDlL3csZz9QVHgST1WoQGDgyy4Ad2fPLSvTIzniOF+sL6wYsQkLh6pqXH 4wj5VIbaZuHB+piS+oFv6XCCaRR7naEAAh7MEWoyYn2cxyBSpSr18G/Huu/iNafg loc7WEnMexXzxW5uUDn1VmJDQ7OjSIZhkJL53ixd38OcgNTH9mc4SjHZ5D7ffCIp eyadnLvI9gZDa9RLbG5vS5eTxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHkMAY0 WWCdI/VZGnAt4S49+VbDMB8GA1UdIwQYMBaAFNG2vnzVFUWBPsMXZoB6zdmHqQ/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDE4Ri83NUI5MEQyNEFG QjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZRS13eGRtZ0hyTjJZZXBE OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBiYS1mTlVWUllFLXd4ZG1nSHJOMlllcEQ5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDE4Ri83NUI5MEQyNEFGQjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZ RS13eGRtZ0hyTjJZZXBEOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWs+JcBGVatUDiysWY/vzfDEgiCBqYC9iltPfjeArCkl5DwZkeXYbI bBmD4LKVxUzN1WuYiusOX7XBFlKlZQDagrN/ksjk1Fim6OhOICKIQGJYh+LbT4LR Iyh4RhMbP1gKMWjG753hNR1PxpL+ALKAlzbC81aVH9P0reKP5crX74Xh1gTVFdwe XB/6rmGynh/JgMXDZjMRW64BP03ohgw3jYz9vXgsYiky7YWncsLvJ0PM1W3K4a+2 tdtuhm8XP0RnoEIY0/V8uoxREKArZep0SLh798/hch5R2TewwDsS+hCZZD+ZThiA YGamccb24ZqZ1RFFzQv35Z+3QAxup1Y3 -----END CERTIFICATE-----Generated at Wed Nov 5 09:59:54 2025 by rpki-client