$ rpki-client -vvf rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft File: bywgdVh2TqtQ74UGb3hZDOWxxWE.mft (raw, json) Hash identifier: yzRJDY39adth5ehb6HnTLS/EMuhoDX/dzcjSbM4SJUU= Subject key identifier: 4D:7C:B6:58:25:BC:34:3D:2A:C2:D6:39:1E:45:8D:C9:F8:D5:08:94 Authority key identifier: 6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 Certificate issuer: /CN=A91995D5/serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Certificate serial: 10F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft Manifest number: 10EA Signing time: Sun 02 Nov 2025 17:18:29 +0000 Manifest this update: Sun 02 Nov 2025 17:18:29 +0000 Manifest next update: Sun 09 Nov 2025 17:18:29 +0000 Files and hashes: 1: bywgdVh2TqtQ74UGb3hZDOWxxWE.crl (hash: ShELhKXlNgdfUbDysPPlAHjdl/geAddTDVs5Lm7Gm/c=) 2: ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa (hash: NcGX1+0f22h9EnvK4Hf3V559zCSmDIlERyuyLCtuDE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4338 (0x10f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91995D5, serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Validity Not Before: Nov 2 17:18:29 2025 GMT Not After : Nov 9 17:18:29 2025 GMT Subject: CN=69079265-9e3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:04:8d:de:f8:7c:fc:d0:66:a8:6b:6d:a2:05: 62:c7:03:5d:74:a6:f0:48:00:c2:e4:24:e6:0e:b4: a7:d2:4c:59:14:0a:f8:24:43:23:6b:9f:e9:32:cb: d9:71:e3:ae:83:a8:77:2b:8b:63:eb:f3:40:42:6c: 27:a8:b9:b6:47:1e:6e:68:92:55:b5:ae:e1:0e:c9: 7a:d8:73:03:60:7b:a9:03:7b:79:20:de:7d:c2:4f: 3f:ce:46:a1:67:0a:2d:e7:80:77:3b:3e:28:26:df: 51:48:fa:0b:a7:bc:a4:dd:bc:95:be:72:18:a2:df: df:72:d1:b6:42:9a:41:0f:98:f3:a2:2a:13:cb:68: 35:9e:b0:4b:ab:b9:9a:5b:21:35:20:26:e7:55:91: 3a:f9:55:72:69:cc:d8:81:b6:a4:58:1f:72:28:c6: 93:e1:11:4c:e6:89:3a:85:85:e7:9e:66:bb:08:22: bb:a8:53:00:ba:75:ff:b8:ea:2f:32:c1:b9:56:90: 89:43:79:e6:c3:92:ec:53:e8:27:0b:1e:ba:c5:be: 1b:c3:1e:01:34:c2:9c:a8:e8:fd:79:d3:c5:d0:30: 8c:88:fc:1a:ed:e9:fe:f0:57:38:e3:92:0b:28:ce: b1:6b:36:ce:78:8d:a5:26:20:44:1f:b8:34:e7:95: ca:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7C:B6:58:25:BC:34:3D:2A:C2:D6:39:1E:45:8D:C9:F8:D5:08:94 X509v3 Authority Key Identifier: keyid:6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:bc:bb:4c:63:59:57:dc:57:52:b3:14:1a:1c:7a:16:2d:f0: b4:f6:1c:30:33:ea:71:12:81:d3:b7:63:55:20:17:8d:da:3d: 08:70:22:e8:27:6e:c0:b5:4a:97:88:3a:93:41:7b:f6:f6:2f: 18:7b:8c:71:a9:da:59:de:45:9d:5c:81:d9:e6:59:98:02:fe: b0:f7:13:71:fb:df:c1:e8:63:e0:21:f2:81:c8:a3:16:85:c0: b4:f2:7d:08:a7:81:75:08:e2:d8:e1:40:93:a6:e9:d1:cb:ea: 2a:2d:ec:bf:42:cd:0b:b1:90:91:1e:0c:08:79:e6:79:c7:e0: f3:ac:ef:85:c0:e7:05:3d:34:2d:da:e9:a1:73:e6:09:d2:f6: e2:b0:ab:73:6b:e0:d3:2f:bc:87:b3:77:a4:5e:0d:d1:fe:be: 88:f2:11:7b:d3:2c:1d:63:8a:39:7e:f8:54:a7:da:bf:c6:0b: f7:17:27:87:2f:3d:8f:68:b0:48:39:34:61:1e:4c:d2:22:22: e5:93:12:a8:84:da:84:40:d6:bc:93:92:4d:ca:c6:18:8d:f4: 05:ec:86:1d:33:1b:5f:b3:f1:ae:56:c9:c3:c1:8b:a7:5d:09: 85:33:b2:19:ed:62:ec:79:7c:d5:89:ca:98:e9:0e:40:f0:c4: 02:10:16:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk1RDUxMTAvBgNVBAUTKDZGMkMyMDc1NTg3NjRFQUI1MEVGODUwNjZGNzg1OTBD RTVCMUM1NjEwHhcNMjUxMTAyMTcxODI5WhcNMjUxMTA5MTcxODI5WjAYMRYwFAYD VQQDEw02OTA3OTI2NS05ZTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwASN3vh8/NBmqGttogVixwNddKbwSADC5CTmDrSn0kxZFAr4JEMja5/pMsvZ ceOug6h3K4tj6/NAQmwnqLm2Rx5uaJJVta7hDsl62HMDYHupA3t5IN59wk8/zkah Zwot54B3Oz4oJt9RSPoLp7yk3byVvnIYot/fctG2QppBD5jzoioTy2g1nrBLq7ma WyE1ICbnVZE6+VVyaczYgbakWB9yKMaT4RFM5ok6hYXnnma7CCK7qFMAunX/uOov MsG5VpCJQ3nmw5LsU+gnCx66xb4bwx4BNMKcqOj9edPF0DCMiPwa7en+8Fc445IL KM6xazbOeI2lJiBEH7g055XKsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE18tlgl vDQ9KsLWOR5Fjcn41QiUMB8GA1UdIwQYMBaAFG8sIHVYdk6rUO+FBm94WQzlscVh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTVENS8xNjNCMUU3QzJB QUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRxdFE3NFVHYjNoWkRPV3h4 V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5d2dkVmgyVHF0UTc0VUdiM2haRE9XeHhXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTVENS8xNjNCMUU3QzJBQUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRx dFE3NFVHYjNoWkRPV3h4V0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgvLtMY1lX3FdSsxQaHHoWLfC09hwwM+pxEoHTt2NVIBeN2j0IcCLo J27AtUqXiDqTQXv29i8Ye4xxqdpZ3kWdXIHZ5lmYAv6w9xNx+9/B6GPgIfKByKMW hcC08n0Ip4F1COLY4UCTpunRy+oqLey/Qs0LsZCRHgwIeeZ5x+DzrO+FwOcFPTQt 2umhc+YJ0vbisKtza+DTL7yHs3ekXg3R/r6I8hF70ywdY4o5fvhUp9q/xgv3FyeH Lz2PaLBIOTRhHkzSIiLlkxKohNqEQNa8k5JNysYYjfQF7IYdMxtfs/GuVsnDwYun XQmFM7IZ7WLseXzVicqY6Q5A8MQCEBY0 -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:06 2025 by rpki-client