$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft File: BRnee0hmA7e6W2bauYkgP98ttJQ.mft (raw, json) Hash identifier: tzX27tyhgc5HWr0i+kiitGZRd8FcbSlDHsaYUCyLRAo= Subject key identifier: B4:15:BD:2C:FE:1A:F3:A9:B8:4A:5C:9E:C2:A2:03:27:9C:03:38:61 Authority key identifier: 05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 Certificate issuer: /CN=A91912DD/serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Certificate serial: 0C62 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft Manifest number: 0C5B Signing time: Tue 04 Nov 2025 16:45:01 +0000 Manifest this update: Tue 04 Nov 2025 16:45:01 +0000 Manifest next update: Tue 11 Nov 2025 16:45:01 +0000 Files and hashes: 1: BRnee0hmA7e6W2bauYkgP98ttJQ.crl (hash: AhVUdG0L0ewtepR3BfUCluyN/3j0Sh6vKvFmKpYBJxY=) 2: 05BE20062C5811EAA90F4B0EC4F9AE02.roa (hash: KZLdlP1OQSAqnUANoQynhHKfuaNstAKbyzLi1TUSbtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD, serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Validity Not Before: Nov 4 16:45:01 2025 GMT Not After : Nov 11 16:45:01 2025 GMT Subject: CN=690a2d8d-2599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6e:8e:5a:dc:9b:04:95:5c:76:da:6d:dd:9d: 1d:56:e3:3f:dd:71:91:a0:4a:ec:e8:cf:80:2e:c0: 8c:0b:3c:a2:bf:4d:14:af:58:dd:54:2c:c6:e6:ec: f9:a4:37:a7:d1:a0:5c:42:c3:a1:08:92:fb:39:32: 8b:04:f2:b2:ad:48:fd:9e:de:2a:e1:34:0c:d1:24: 67:ba:50:a0:4f:52:b2:4c:0b:cf:8f:a0:33:dc:ab: 07:58:28:0f:cd:61:bb:10:5d:6b:e3:ff:78:70:43: a3:9e:d7:66:bd:19:6a:ea:e5:6f:c8:6b:d4:64:0c: 93:e7:3d:e4:b9:67:f9:52:be:a2:12:a1:f3:d7:63: e6:74:a8:39:4c:00:0c:a8:25:92:36:b2:c8:aa:d9: 34:e8:2e:f6:e7:a3:42:97:20:bd:c2:31:6e:bd:e3: 54:38:ca:f0:54:0e:a7:b8:ac:58:d8:be:b2:2e:c2: 44:9e:22:4e:59:e8:5a:66:46:7a:4c:bb:9c:0b:e5: e7:45:62:a0:44:c0:cc:6f:77:36:34:87:5a:cc:e0: 16:a9:73:78:a1:07:9c:ac:e4:5f:4b:fa:1f:9e:23: 55:c1:fa:68:ec:74:5c:46:c9:5a:80:2d:24:62:72: d5:ff:e3:21:16:88:40:42:0f:a8:8b:75:09:06:9c: 90:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:15:BD:2C:FE:1A:F3:A9:B8:4A:5C:9E:C2:A2:03:27:9C:03:38:61 X509v3 Authority Key Identifier: keyid:05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:3d:da:f7:e1:31:5c:32:9c:e2:11:a9:45:33:63:ee:b7:20: bd:77:34:4a:5c:53:c2:df:42:61:c5:51:1e:da:c1:1e:5a:bc: ba:1d:c0:e9:47:67:e7:18:b5:62:49:95:65:66:9c:b1:eb:16: 31:7d:f4:1e:2e:b7:69:f6:74:f1:c0:67:34:85:dd:d1:6e:61: 1a:b1:f2:55:81:85:b4:f3:d6:c7:cc:47:59:80:e1:cc:ab:4f: 15:c5:5b:a1:0a:80:c2:ec:e3:e3:aa:f7:8b:03:fc:b1:13:03: 7e:bd:1e:bd:ae:1e:38:14:c1:bd:8f:1c:b6:0c:40:80:cb:dc: 1f:42:66:2b:77:51:15:e2:16:5e:12:4b:df:7a:6f:ac:f2:1b: ca:24:ab:7e:9f:14:4f:1c:9f:63:48:09:08:bb:7a:46:de:cc: b7:b5:2c:d5:6f:6e:c3:ea:6a:f4:5c:d3:9e:05:8e:a2:45:57: a9:1b:c3:18:d6:d8:87:21:4a:19:b8:ab:6f:71:61:90:2a:8d: cd:77:fd:e2:61:a1:fe:ca:1f:4a:6f:c4:f8:fe:2b:20:75:fc: 23:d1:de:04:ef:f1:71:b8:79:3c:b9:02:31:56:b7:0d:b9:7c: ae:5f:17:86:4e:ea:85:3e:8d:55:a0:ef:5e:48:a0:a3:a3:e3: 15:d8:7c:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKDA1MTlERTdCNDg2NjAzQjdCQTVCNjZEQUI5ODkyMDNG REYyREI0OTQwHhcNMjUxMTA0MTY0NTAxWhcNMjUxMTExMTY0NTAxWjAYMRYwFAYD VQQDEw02OTBhMmQ4ZC0yNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz26OWtybBJVcdtpt3Z0dVuM/3XGRoErs6M+ALsCMCzyiv00Ur1jdVCzG5uz5 pDen0aBcQsOhCJL7OTKLBPKyrUj9nt4q4TQM0SRnulCgT1KyTAvPj6Az3KsHWCgP zWG7EF1r4/94cEOjntdmvRlq6uVvyGvUZAyT5z3kuWf5Ur6iEqHz12PmdKg5TAAM qCWSNrLIqtk06C7256NClyC9wjFuveNUOMrwVA6nuKxY2L6yLsJEniJOWehaZkZ6 TLucC+XnRWKgRMDMb3c2NIdazOAWqXN4oQecrORfS/ofniNVwfpo7HRcRslagC0k YnLV/+MhFohAQg+oi3UJBpyQAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQVvSz+ GvOpuEpcnsKiAyecAzhhMB8GA1UdIwQYMBaAFAUZ3ntIZgO3ultm2rmJID/fLbSU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC9EQjRBNkNGQzEw RDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3ZTZXMmJhdVlrZ1A5OHR0 SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JSbmVlMGhtQTdlNlcyYmF1WWtnUDk4dHRKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTJERC9EQjRBNkNGQzEwRDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3 ZTZXMmJhdVlrZ1A5OHR0SlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYPdr34TFcMpziEalFM2PutyC9dzRKXFPC30JhxVEe2sEeWry6HcDp R2fnGLViSZVlZpyx6xYxffQeLrdp9nTxwGc0hd3RbmEasfJVgYW089bHzEdZgOHM q08VxVuhCoDC7OPjqveLA/yxEwN+vR69rh44FMG9jxy2DECAy9wfQmYrd1EV4hZe Ekvfem+s8hvKJKt+nxRPHJ9jSAkIu3pG3sy3tSzVb27D6mr0XNOeBY6iRVepG8MY 1tiHIUoZuKtvcWGQKo3Nd/3iYaH+yh9Kb8T4/isgdfwj0d4E7/FxuHk8uQIxVrcN uXyuXxeGTuqFPo1VoO9eSKCjo+MV2Hxp -----END CERTIFICATE-----Generated at Thu Nov 6 02:56:49 2025 by rpki-client