$ rpki-client -vvf rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft File: Bzzm268iYrP6YRXW_6ezNCFe-g0.mft (raw, json) Hash identifier: uO9NPYp4B4+p/rZwPiSiG6m2dhYSxh1Y+XLnyHcIRzo= Subject key identifier: 8F:80:C7:B5:98:11:55:C3:FC:B2:2A:47:D0:93:0A:39:E7:51:95:3E Authority key identifier: 07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D Certificate issuer: /CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft Manifest number: 066A Signing time: Sun 02 Nov 2025 22:34:32 +0000 Manifest this update: Sun 02 Nov 2025 22:34:32 +0000 Manifest next update: Sun 09 Nov 2025 22:34:32 +0000 Files and hashes: 1: Bzzm268iYrP6YRXW_6ezNCFe-g0.crl (hash: wZiXGD1ttPzCoplCVcWk5rQboyNTPyHG+DzlTgEpQws=) 2: A80223709F4411EB92132051C4F9AE02.roa (hash: x3MhCffNjPE2g6AmezXK16941rD0tDaIk9FU7i8nfrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:34:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859C2, serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Validity Not Before: Nov 2 22:34:32 2025 GMT Not After : Nov 9 22:34:32 2025 GMT Subject: CN=6907dc78-8bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:98:e2:b9:07:e7:f0:f6:e9:80:22:8e:89:0c: b2:26:2d:01:64:d7:26:3f:df:be:66:04:3a:8d:1a: 29:47:1f:8a:b8:63:f1:82:e1:5f:fc:e8:4f:4c:b1: fd:82:91:7e:df:4c:0a:6d:dc:8a:55:52:36:c7:58: 08:2c:99:1d:8c:bd:be:b2:a5:f6:8e:4f:84:ac:41: 5e:ab:05:a1:14:59:8e:a4:cc:55:fa:1d:b7:90:d5: 5f:02:ca:ee:a0:dc:85:ef:f8:24:c6:10:18:9b:ed: 96:84:fd:27:8c:34:e6:b4:d2:04:21:1e:d0:15:1a: 32:7c:33:83:58:b0:94:72:cd:06:72:a0:3f:8e:65: f2:87:45:0d:66:4b:de:9a:14:39:e1:56:07:56:af: 0f:e3:57:ee:16:0a:c5:44:13:2a:d5:b3:1c:e6:f2: ac:a5:79:91:be:8a:ef:1c:ca:4d:28:52:8c:63:36: 36:19:8d:c1:11:69:93:66:82:e4:0c:20:2a:08:4c: af:6b:ab:f2:67:de:a7:e1:d9:ab:6f:11:34:1d:0f: af:53:ef:78:d5:16:15:9d:38:e2:35:c6:4c:b2:95: 52:e4:4d:ae:bf:eb:7a:81:30:eb:d3:e4:7f:31:e6: 13:68:f0:10:7c:2e:88:f7:52:08:ec:77:1c:3a:c4: 78:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:80:C7:B5:98:11:55:C3:FC:B2:2A:47:D0:93:0A:39:E7:51:95:3E X509v3 Authority Key Identifier: keyid:07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:0c:3e:d2:68:76:fa:0a:b8:fe:f2:ef:a4:e8:21:ef:26:18: 10:7c:0d:56:45:a1:cb:54:05:9f:5e:83:73:4c:de:cc:a2:0f: e8:4a:09:b8:24:fb:ff:79:5e:16:0b:ae:5d:67:d9:0a:91:74: 63:d0:90:b5:eb:a6:15:9b:6d:e8:89:0f:24:f8:e9:1a:33:8c: 95:97:b2:86:73:3a:69:3b:a3:55:64:45:47:fa:39:a6:c6:2c: 00:a3:fb:d4:fa:94:3b:3b:9d:d7:b1:f8:77:8c:89:29:8b:38: af:52:d1:b2:5e:16:95:16:79:80:61:95:b7:ba:de:97:d6:7e: 70:d3:17:20:2c:7c:37:ca:d5:1b:a0:cc:4c:9c:a8:a3:bd:7b: af:8f:2a:38:0f:b2:dc:ff:66:35:3e:70:e4:39:c4:50:bc:33: b9:4f:dd:5d:e1:6a:22:1b:1b:e2:54:18:ee:5d:14:d0:54:20: ac:97:99:e9:e9:af:c4:f7:73:d2:40:47:f9:a8:10:09:30:52: 75:68:9f:6c:05:ea:7a:3c:25:32:db:45:a3:d5:33:a1:11:de: 4c:97:e1:b2:98:bb:1d:ce:87:0f:20:07:83:70:d2:f5:02:3b: ba:2c:12:af:fd:e5:37:66:a1:dd:b8:32:fe:df:ad:d0:6f:ed: af:5b:b3:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QzIxMTAvBgNVBAUTKDA3M0NFNkRCQUYyMjYyQjNGQTYxMTVENkZGQTdCMzM0 MjE1RUZBMEQwHhcNMjUxMTAyMjIzNDMyWhcNMjUxMTA5MjIzNDMyWjAYMRYwFAYD VQQDEw02OTA3ZGM3OC04YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7JjiuQfn8PbpgCKOiQyyJi0BZNcmP9++ZgQ6jRopRx+KuGPxguFf/OhPTLH9 gpF+30wKbdyKVVI2x1gILJkdjL2+sqX2jk+ErEFeqwWhFFmOpMxV+h23kNVfAsru oNyF7/gkxhAYm+2WhP0njDTmtNIEIR7QFRoyfDODWLCUcs0GcqA/jmXyh0UNZkve mhQ54VYHVq8P41fuFgrFRBMq1bMc5vKspXmRvorvHMpNKFKMYzY2GY3BEWmTZoLk DCAqCEyva6vyZ96n4dmrbxE0HQ+vU+941RYVnTjiNcZMspVS5E2uv+t6gTDr0+R/ MeYTaPAQfC6I91II7HccOsR4IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+Ax7WY EVXD/LIqR9CTCjnnUZU+MB8GA1UdIwQYMBaAFAc85tuvImKz+mEV1v+nszQhXvoN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlDMi9FN0MwMjIzRTlG NDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVlyUDZZUlhXXzZlek5DRmUt ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6em0yNjhpWXJQNllSWFdfNmV6TkNGZS1nMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlDMi9FN0MwMjIzRTlGNDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVly UDZZUlhXXzZlek5DRmUtZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/DD7SaHb6Crj+8u+k6CHvJhgQfA1WRaHLVAWfXoNzTN7Mog/oSgm4 JPv/eV4WC65dZ9kKkXRj0JC166YVm23oiQ8k+OkaM4yVl7KGczppO6NVZEVH+jmm xiwAo/vU+pQ7O53Xsfh3jIkpizivUtGyXhaVFnmAYZW3ut6X1n5w0xcgLHw3ytUb oMxMnKijvXuvjyo4D7Lc/2Y1PnDkOcRQvDO5T91d4WoiGxviVBjuXRTQVCCsl5np 6a/E93PSQEf5qBAJMFJ1aJ9sBep6PCUy20Wj1TOhEd5Ml+GymLsdzocPIAeDcNL1 Aju6LBKv/eU3ZqHduDL+363Qb+2vW7N+ -----END CERTIFICATE-----Generated at Tue Nov 4 16:33:31 2025 by rpki-client