$ rpki-client -vvf rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft File: BXtTd0A4JnigePW_KExyZ5S50TQ.mft (raw, json) Hash identifier: cGLzmhJTE/aXY/9euzA0YppnzXC+aAixkuo74lDCTE8= Subject key identifier: FB:01:C9:4A:1A:BE:F1:FC:6E:04:E0:9F:25:2F:94:54:DE:51:83:BD Authority key identifier: 05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 Certificate issuer: /CN=A91992FA/serialNumber=057B537740382678A078F5BF284C726794B9D134 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft Manifest number: 86 Signing time: Wed 05 Nov 2025 06:50:23 +0000 Manifest this update: Wed 05 Nov 2025 06:50:22 +0000 Manifest next update: Wed 12 Nov 2025 06:50:22 +0000 Files and hashes: 1: BXtTd0A4JnigePW_KExyZ5S50TQ.crl (hash: oAUvao3DWhbYH+7aI6UH87v2hD5nwk3TN4FKiOGW/6I=) 2: CF5EEDA6894411F0BE628977C4F9AE02.roa (hash: 17QpSjP3T4fN2iFoeGDXqVvnkQ3k4lIOqR9Kwrs2UKY=) 3: 44A28FACEFEC11EF80EC123DC4F9AE02.roa (hash: kIHtM5yk/7E77z9qFDfBUJpQm2RMukSPxAc1zKCnuxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91992FA, serialNumber=057B537740382678A078F5BF284C726794B9D134 Validity Not Before: Nov 5 06:50:22 2025 GMT Not After : Nov 12 06:50:22 2025 GMT Subject: CN=690af3af-26ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f6:9e:8e:7f:02:ad:64:36:ff:9d:ff:cc:24: 8c:0d:2e:9d:fc:a0:e4:cb:88:f0:36:bc:49:69:0d: 3d:26:da:b8:03:d6:e9:c1:55:50:75:b0:40:8f:98: a7:1e:4d:4c:cc:3e:f5:ac:24:05:d4:f9:19:20:a0: 41:77:de:fc:2e:bf:92:61:3d:c9:0f:ed:1f:1c:ba: 2c:6a:d4:09:9d:6b:19:bb:f0:63:f4:47:ca:d9:9d: e1:c8:37:e8:fe:7a:56:f3:15:3c:65:1d:f4:3a:18: 47:70:a9:56:3f:6f:3d:39:5c:af:09:f0:27:62:35: 71:6d:bd:7c:49:81:29:0c:2b:06:c4:1d:e7:9b:9c: 00:d9:27:5e:92:28:ec:d1:6a:92:8b:41:9a:0f:4b: 33:fb:93:45:29:9a:ff:d1:44:bd:bb:61:12:85:50: 4e:5b:31:65:0a:d9:ab:aa:73:b2:13:b1:38:50:0d: a1:9f:97:ce:4f:af:5f:c2:33:5f:fe:49:02:52:e1: ce:7b:32:d6:04:ca:b5:92:64:28:2e:29:73:12:be: cd:a3:ce:29:d8:43:b4:dc:c9:79:22:af:da:f2:ab: 34:ed:4e:40:88:85:d7:a8:41:5c:10:7f:1c:1c:a1: 63:f9:66:80:00:a7:92:3f:8b:a1:39:d1:f4:81:44: 3b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:01:C9:4A:1A:BE:F1:FC:6E:04:E0:9F:25:2F:94:54:DE:51:83:BD X509v3 Authority Key Identifier: keyid:05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:22:a1:8c:61:f8:61:5c:1f:15:bc:a7:35:3d:9f:f2:17:ab: be:27:ac:89:b2:fe:e0:49:31:99:89:48:9d:6d:01:63:77:29: fb:b4:4c:64:a7:dd:60:24:69:99:5a:74:63:cc:c7:2c:af:f1: 8e:f4:77:bd:f3:0e:4d:51:45:ee:1b:00:39:fb:b8:78:fc:59: 0e:63:78:07:15:87:5a:12:53:86:82:b2:73:bd:f2:9b:1e:7e: 54:a6:37:bf:c2:07:a5:8c:d3:b5:59:8d:8f:27:18:2d:b7:00: 8c:01:60:d9:02:5c:43:84:10:31:5b:46:22:96:7e:1a:8a:29: a0:89:bf:4e:fe:7f:93:f0:fe:2e:e4:14:2c:44:03:27:28:42: 91:28:44:ea:1b:b0:47:81:b4:ac:f2:99:7f:40:50:c3:4c:6e: 85:2e:6b:a7:3d:ef:1c:88:58:5a:bb:6e:b0:31:74:ce:70:84: 16:74:0d:e4:18:69:77:8d:9e:31:ae:b1:59:d9:8a:f2:c2:4e: d3:6a:1a:8d:f2:6d:76:84:91:39:03:c3:84:9c:5b:58:b9:3b: 77:69:d2:7c:49:05:2f:fa:f7:55:3a:67:fc:bf:cd:8b:cd:33: b6:bc:14:5e:ca:6d:e5:dd:05:0c:aa:d2:1a:56:ac:50:50:03: ec:7a:01:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyRkExMTAvBgNVBAUTKDA1N0I1Mzc3NDAzODI2NzhBMDc4RjVCRjI4NEM3MjY3 OTRCOUQxMzQwHhcNMjUxMTA1MDY1MDIyWhcNMjUxMTEyMDY1MDIyWjAYMRYwFAYD VQQDEw02OTBhZjNhZi0yNmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufaejn8CrWQ2/53/zCSMDS6d/KDky4jwNrxJaQ09Jtq4A9bpwVVQdbBAj5in Hk1MzD71rCQF1PkZIKBBd978Lr+SYT3JD+0fHLosatQJnWsZu/Bj9EfK2Z3hyDfo /npW8xU8ZR30OhhHcKlWP289OVyvCfAnYjVxbb18SYEpDCsGxB3nm5wA2Sdekijs 0WqSi0GaD0sz+5NFKZr/0US9u2EShVBOWzFlCtmrqnOyE7E4UA2hn5fOT69fwjNf /kkCUuHOezLWBMq1kmQoLilzEr7No84p2EO03Ml5Iq/a8qs07U5AiIXXqEFcEH8c HKFj+WaAAKeSP4uhOdH0gUQ7iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsByUoa vvH8bgTgnyUvlFTeUYO9MB8GA1UdIwQYMBaAFAV7U3dAOCZ4oHj1vyhMcmeUudE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTJGQS9GQTQ2RTBEMkVF MDMxMUVGOUMyQjhBNDlDNEY5QUUwMi9CWHRUZDBBNEpuaWdlUFdfS0V4eVo1UzUw VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYdFRkMEE0Sm5pZ2VQV19LRXh5WjVTNTBUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTJGQS9GQTQ2RTBEMkVFMDMxMUVGOUMyQjhBNDlDNEY5QUUwMi9CWHRUZDBBNEpu aWdlUFdfS0V4eVo1UzUwVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwIqGMYfhhXB8VvKc1PZ/yF6u+J6yJsv7gSTGZiUidbQFjdyn7tExk p91gJGmZWnRjzMcsr/GO9He98w5NUUXuGwA5+7h4/FkOY3gHFYdaElOGgrJzvfKb Hn5Upje/wgeljNO1WY2PJxgttwCMAWDZAlxDhBAxW0Yiln4aiimgib9O/n+T8P4u 5BQsRAMnKEKRKETqG7BHgbSs8pl/QFDDTG6FLmunPe8ciFhau26wMXTOcIQWdA3k GGl3jZ4xrrFZ2Yrywk7TahqN8m12hJE5A8OEnFtYuTt3adJ8SQUv+vdVOmf8v82L zTO2vBReym3l3QUMqtIaVqxQUAPsegG2 -----END CERTIFICATE-----Generated at Wed Nov 5 15:50:42 2025 by rpki-client