$ rpki-client -vvf rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft File: bbZgfaaV3QngKYA6L_JiWtiDguM.mft (raw, json) Hash identifier: 9E1S7B9r66FWJhPCJg5glIfKnGORswa770AAJt/xcdk= Subject key identifier: 1E:E0:4A:54:1B:CD:F9:3C:54:91:3E:1C:08:C3:BD:F4:B9:1C:95:5E Authority key identifier: 6D:B6:60:7D:A6:95:DD:09:E0:29:80:3A:2F:F2:62:5A:D8:83:82:E3 Certificate issuer: /CN=A91643F8/serialNumber=6DB6607DA695DD09E029803A2FF2625AD88382E3 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft Manifest number: D3 Signing time: Wed 05 Nov 2025 05:51:45 +0000 Manifest this update: Wed 05 Nov 2025 05:51:44 +0000 Manifest next update: Wed 12 Nov 2025 05:51:44 +0000 Files and hashes: 1: bbZgfaaV3QngKYA6L_JiWtiDguM.crl (hash: FgWJXyBd7w+Wi1cw75wsl50X7LMwBxlsh4LQhkAoEnM=) 2: F2F0E3FE882E11EFB58CD069C4F9AE02.roa (hash: LLMFfpd/hOZPtrpRcrn1k8tmtQOd8WCmuw0OVbODbIo=) 3: 50A6B6427C6B11EFAB9AB658C4F9AE02.roa (hash: BsH1QXXdR63B8qNDLxP6migCbs5bygzeNgwy6naNCOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.crl rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91643F8, serialNumber=6DB6607DA695DD09E029803A2FF2625AD88382E3 Validity Not Before: Nov 5 05:51:44 2025 GMT Not After : Nov 12 05:51:44 2025 GMT Subject: CN=690ae5f0-9c48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:9b:f4:ff:1a:47:f9:4c:b3:57:1e:13:ad: 11:8a:b3:9d:07:fe:46:38:c8:47:c0:4e:66:d6:5e: a8:ea:d0:49:d0:72:9c:af:87:a2:c2:e3:34:9c:e1: 3a:29:67:27:b7:e6:40:13:e5:55:e6:b1:c4:25:8b: 79:78:3b:e3:8f:66:6f:51:ab:b0:5c:85:7a:55:06: 88:f3:1f:16:61:96:8b:e9:7d:2a:9a:40:92:fd:73: 6b:70:4c:7c:0c:18:13:15:00:97:9e:5e:18:b1:1c: c1:d6:b9:c8:24:3c:c0:f4:cc:fd:c3:87:66:18:75: c0:5d:b5:4e:7e:00:1e:6a:b2:a8:eb:d5:7c:cf:55: 0f:89:1d:49:48:e4:7c:d6:ff:32:f6:f0:d6:eb:02: 28:17:9d:16:4d:5f:b2:ae:82:23:10:74:ae:3d:22: 26:25:c6:87:bd:94:de:2c:27:fe:7a:bc:19:56:ca: be:30:6a:49:a2:20:9d:16:8f:6d:80:5a:24:8b:0c: 3f:cc:71:c1:17:16:f6:46:03:c7:2b:fa:7f:8a:2f: df:4f:01:c4:ef:df:91:1b:7f:11:d1:48:07:08:c5: 4e:08:2e:f4:f7:2e:21:61:a2:f5:e5:26:4c:b3:6e: 7b:ae:ca:48:71:2b:62:4d:ea:3f:da:c5:6f:c5:cd: f7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E0:4A:54:1B:CD:F9:3C:54:91:3E:1C:08:C3:BD:F4:B9:1C:95:5E X509v3 Authority Key Identifier: keyid:6D:B6:60:7D:A6:95:DD:09:E0:29:80:3A:2F:F2:62:5A:D8:83:82:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:17:94:9e:27:5c:b4:fd:5d:4c:4c:7b:16:de:bf:3a:f8:2d: 87:49:6a:3c:0f:89:81:20:bc:85:be:d9:fe:c5:3d:59:99:3f: 1d:88:fc:e7:23:ea:75:9f:d6:9c:5a:a0:4c:55:7b:08:09:43: a3:82:c6:58:52:63:e6:34:44:87:02:67:33:69:cf:59:f4:2b: aa:02:de:f2:1d:8d:1f:40:2b:9b:78:c4:c7:a3:91:af:e2:02: 94:0c:36:07:b3:0c:2c:f7:43:cf:a7:2d:2c:b1:31:ba:b8:e1: ea:39:22:74:86:01:8f:86:26:7a:60:d9:5d:7a:89:a9:f7:51: 12:d5:39:ff:91:79:01:5e:5c:91:ac:af:31:f4:8d:f1:3d:9e: e4:d4:26:65:71:71:0e:a1:d2:b5:2c:87:b7:04:e3:a6:4a:57: cf:12:c9:19:9e:75:00:de:9c:24:17:2a:53:0f:42:02:c8:f7: 2c:3e:10:75:77:94:48:8e:d1:7d:ac:ad:73:00:81:90:bd:f8: a0:d3:f2:6d:9c:a6:cc:23:55:2f:73:21:63:95:81:30:e0:fc: 8d:03:ee:25:57:6b:fb:6b:6e:16:9a:96:da:3a:9d:6e:7a:4b: 3d:cd:63:1b:cf:22:bb:7b:c5:21:db:02:9e:f8:c9:47:a3:ba: ae:52:e6:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQzRjgxMTAvBgNVBAUTKDZEQjY2MDdEQTY5NUREMDlFMDI5ODAzQTJGRjI2MjVB RDg4MzgyRTMwHhcNMjUxMTA1MDU1MTQ0WhcNMjUxMTEyMDU1MTQ0WjAYMRYwFAYD VQQDEw02OTBhZTVmMC05YzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjeb9P8aR/lMs1ceE60RirOdB/5GOMhHwE5m1l6o6tBJ0HKcr4eiwuM0nOE6 KWcnt+ZAE+VV5rHEJYt5eDvjj2ZvUauwXIV6VQaI8x8WYZaL6X0qmkCS/XNrcEx8 DBgTFQCXnl4YsRzB1rnIJDzA9Mz9w4dmGHXAXbVOfgAearKo69V8z1UPiR1JSOR8 1v8y9vDW6wIoF50WTV+yroIjEHSuPSImJcaHvZTeLCf+erwZVsq+MGpJoiCdFo9t gFokiww/zHHBFxb2RgPHK/p/ii/fTwHE79+RG38R0UgHCMVOCC709y4hYaL15SZM s257rspIcStiTeo/2sVvxc334QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7gSlQb zfk8VJE+HAjDvfS5HJVeMB8GA1UdIwQYMBaAFG22YH2mld0J4CmAOi/yYlrYg4Lj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDNGOC9GNzkwQ0M1QTdD NkExMUVGOUE2ODg4NTdDNEY5QUUwMi9iYlpnZmFhVjNRbmdLWUE2TF9KaVd0aURn dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiWmdmYWFWM1FuZ0tZQTZMX0ppV3RpRGd1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDNGOC9GNzkwQ0M1QTdDNkExMUVGOUE2ODg4NTdDNEY5QUUwMi9iYlpnZmFhVjNR bmdLWUE2TF9KaVd0aURndU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyF5SeJ1y0/V1MTHsW3r86+C2HSWo8D4mBILyFvtn+xT1ZmT8diPzn I+p1n9acWqBMVXsICUOjgsZYUmPmNESHAmczac9Z9CuqAt7yHY0fQCubeMTHo5Gv 4gKUDDYHswws90PPpy0ssTG6uOHqOSJ0hgGPhiZ6YNldeomp91ES1Tn/kXkBXlyR rK8x9I3xPZ7k1CZlcXEOodK1LIe3BOOmSlfPEskZnnUA3pwkFypTD0ICyPcsPhB1 d5RIjtF9rK1zAIGQvfig0/JtnKbMI1UvcyFjlYEw4PyNA+4lV2v7a24WmpbaOp1u eks9zWMbzyK7e8Uh2wKe+MlHo7quUubm -----END CERTIFICATE-----Generated at Wed Nov 5 13:33:21 2025 by rpki-client