$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: LxG0RV+l4tFfZP5joVuiEoTpthpNlsjZSHnOM1TRnTo= Subject key identifier: 32:19:FB:89:0E:49:9D:41:39:1E:68:19:49:73:78:DC:56:75:DC:EB Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 05DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 05D5 Signing time: Tue 04 Nov 2025 23:05:20 +0000 Manifest this update: Tue 04 Nov 2025 23:05:19 +0000 Manifest next update: Tue 11 Nov 2025 23:05:19 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: zrLXPgRiK1C2N5wyXUy3jm93KknEvRBGglUYNduS39U=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: /8hy3Bbn1TLOvORzZ60crKTvCR9C6tYBcsWimqCiQa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: Nov 4 23:05:19 2025 GMT Not After : Nov 11 23:05:19 2025 GMT Subject: CN=690a86b0-68b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f6:29:45:bb:66:dc:63:3f:b9:90:76:a6:48: c5:c0:e6:4c:fc:80:b3:e4:ce:4b:03:b9:b4:37:d4: e7:74:a9:a5:1e:ff:40:11:69:26:90:81:e7:f5:8f: 70:6e:9a:0e:e6:64:c7:cf:6b:15:2a:04:ea:c4:9b: 2c:e6:c0:89:10:aa:c5:60:92:01:db:9b:17:4c:fc: 20:5f:da:07:a8:0f:72:5d:69:70:33:d6:5a:35:2b: c8:ee:be:97:d4:c5:95:72:1c:c5:08:b6:e9:b8:50: 6e:36:6d:86:f9:88:9b:3f:c5:0f:23:49:aa:f8:be: 88:eb:a9:65:16:df:29:b1:1e:0b:ef:3a:59:00:68: 7c:99:db:82:35:f6:0e:78:21:f2:24:5d:5a:89:ad: 4f:a8:7d:fb:c7:ca:80:62:87:94:3f:00:99:38:ea: 5b:37:4c:a5:83:a3:8d:cc:a4:cb:d5:9a:26:60:7e: c6:94:f5:23:0f:82:c5:34:bf:e4:1b:2e:4b:75:24: 2f:72:04:b7:0b:d6:1e:05:cb:ad:a6:0a:96:ee:92: 95:36:f0:51:42:8b:ba:34:e8:b5:3e:4f:1a:80:ec: 04:fb:64:68:85:c5:34:e0:cd:57:b6:10:4d:42:65: 49:27:17:55:12:1d:61:d9:8f:0f:6d:d5:51:c8:7f: 16:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:19:FB:89:0E:49:9D:41:39:1E:68:19:49:73:78:DC:56:75:DC:EB X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:0e:f8:25:9c:ec:72:65:d7:47:cd:1b:b6:24:9c:44:dd:5d: 03:f1:42:62:0e:45:59:29:f2:bc:a1:b8:ea:09:dd:e0:ba:6c: bc:7a:2d:c8:eb:22:32:60:7a:f0:63:90:d6:56:bd:22:dd:dc: ce:80:21:ed:03:85:1b:b3:92:1e:c1:a4:72:d6:dd:49:a8:ee: 3b:98:71:6b:b6:ef:21:7a:e6:10:51:1c:57:78:66:90:58:6f: 7a:42:95:88:fa:4b:76:82:23:ba:9d:74:7a:d7:a2:c3:9d:02: f9:20:a2:93:9c:90:a0:c2:7a:39:c1:1f:18:fe:14:1d:43:cc: af:69:eb:f4:d7:e3:2a:d5:62:e2:50:c5:74:0f:8e:95:be:7f: d1:92:a3:57:37:e4:bd:41:cd:9d:86:89:a3:38:4c:75:9a:d0: d1:2b:ef:93:51:38:94:69:5b:5a:a1:fe:ec:d2:1d:b7:2b:4f: 57:00:da:65:ca:f7:0a:e5:1b:95:81:65:ad:4f:75:c7:b2:e7: db:a3:d3:85:93:2d:b9:0b:64:d4:0b:70:28:7b:95:3f:fe:23: 4d:e8:cd:15:52:57:e7:fb:c8:96:d5:7a:16:8f:6b:3e:11:0c: 07:96:27:45:c8:5a:3f:38:3e:78:4d:90:82:34:63:19:20:37: 36:1a:71:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUxMTA0MjMwNTE5WhcNMjUxMTExMjMwNTE5WjAYMRYwFAYD VQQDEw02OTBhODZiMC02OGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfYpRbtm3GM/uZB2pkjFwOZM/ICz5M5LA7m0N9TndKmlHv9AEWkmkIHn9Y9w bpoO5mTHz2sVKgTqxJss5sCJEKrFYJIB25sXTPwgX9oHqA9yXWlwM9ZaNSvI7r6X 1MWVchzFCLbpuFBuNm2G+YibP8UPI0mq+L6I66llFt8psR4L7zpZAGh8mduCNfYO eCHyJF1aia1PqH37x8qAYoeUPwCZOOpbN0ylg6ONzKTL1ZomYH7GlPUjD4LFNL/k Gy5LdSQvcgS3C9YeBcutpgqW7pKVNvBRQou6NOi1Pk8agOwE+2RohcU04M1XthBN QmVJJxdVEh1h2Y8PbdVRyH8WBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIZ+4kO SZ1BOR5oGUlzeNxWddzrMB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdDvglnOxyZddHzRu2JJxE3V0D8UJiDkVZKfK8objqCd3gumy8ei3I 6yIyYHrwY5DWVr0i3dzOgCHtA4Ubs5IewaRy1t1JqO47mHFrtu8heuYQURxXeGaQ WG96QpWI+kt2giO6nXR616LDnQL5IKKTnJCgwno5wR8Y/hQdQ8yvaev01+Mq1WLi UMV0D46Vvn/RkqNXN+S9Qc2dhomjOEx1mtDRK++TUTiUaVtaof7s0h23K09XANpl yvcK5RuVgWWtT3XHsufbo9OFky25C2TUC3Aoe5U//iNN6M0VUlfn+8iW1XoWj2s+ EQwHlidFyFo/OD54TZCCNGMZIDc2GnGG -----END CERTIFICATE-----Generated at Wed Nov 5 11:53:35 2025 by rpki-client