$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: L4qAUY64knHKwcRRrG4UTWpoy8touyb3IkoBEv32BiI= Subject key identifier: E1:05:5E:FC:D9:B2:42:3B:93:E3:8D:39:7C:44:65:F2:CA:68:CB:22 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F7C Signing time: Tue 04 Nov 2025 17:39:08 +0000 Manifest this update: Tue 04 Nov 2025 17:39:08 +0000 Manifest next update: Tue 11 Nov 2025 17:39:08 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: jBsjiT7DQY2xNqF5HiWJrUeR3pCn5/dJVVLmet1mXSU=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3973 (0xf85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Nov 4 17:39:08 2025 GMT Not After : Nov 11 17:39:08 2025 GMT Subject: CN=690a3a3c-9cfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:16:02:e4:99:3f:d7:5f:b7:c9:32:ba:36:58: 97:08:03:39:24:61:b0:c3:4e:c5:dd:88:39:3a:9f: 43:47:80:75:9f:df:a9:8c:0a:12:cb:42:53:17:6c: 82:16:fd:0d:33:32:4b:e5:71:7e:d9:23:1f:85:f3: 32:7d:05:2b:3a:9f:f2:c1:33:40:a2:56:7b:db:83: 5e:86:4c:14:bf:bd:75:1a:0c:10:c1:b3:4f:92:ce: fb:4c:a1:c7:fb:79:50:2a:72:78:8d:a3:f9:ee:41: 81:fa:38:ce:77:41:b3:e4:2d:9a:3a:cc:3e:59:32: c2:4e:fe:55:23:ad:6e:83:f4:08:92:08:dc:d3:c4: 06:0e:69:22:2b:73:16:88:aa:96:2c:bc:6b:f7:c6: 22:dd:cd:9f:f9:92:87:9b:59:07:71:69:69:d9:a2: c1:27:38:b6:ae:aa:07:96:e4:c3:95:f2:f4:40:7e: 71:e7:f5:64:25:77:8a:5f:3c:04:c2:65:6d:9d:40: 9a:cc:2b:e7:54:ec:dd:f3:47:df:de:3d:6f:e6:bb: 98:48:c6:49:47:d5:c2:b0:a1:8a:aa:f0:38:fe:0f: e0:41:4d:07:d5:d0:83:ac:39:c4:46:10:42:8f:aa: 68:2b:b9:44:5a:7c:fa:fb:44:a8:ce:db:3c:89:16: 01:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:05:5E:FC:D9:B2:42:3B:93:E3:8D:39:7C:44:65:F2:CA:68:CB:22 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:71:13:76:0b:c5:2a:61:24:eb:f0:0a:77:39:7b:96:5a:ce: 29:e2:3c:8a:ff:fc:bf:2e:11:62:11:d4:3d:78:09:62:ec:65: 2c:c5:10:69:4e:79:fa:cb:c8:c9:9e:63:44:eb:c6:f3:6b:4b: 7d:6b:38:2d:fd:0e:41:47:b8:4a:a6:45:ff:53:3e:9e:e9:32: b8:41:4f:74:8e:d7:0b:77:c3:e0:e8:bc:7d:6c:b2:bf:0f:59: b7:84:c7:0f:b9:95:80:2a:5b:90:e7:c1:52:fc:37:2d:7c:1f: 73:7a:36:64:c2:86:be:ad:b7:ee:a3:a9:f8:30:13:fb:cd:7d: 7c:ad:72:81:18:fe:db:4b:88:f8:19:81:25:40:a9:87:e7:d3: 43:e8:f0:4d:a7:89:9a:76:55:26:33:b4:01:ab:c4:86:60:69: 87:68:f4:00:a5:5e:68:30:71:64:d4:e2:79:86:00:ca:ff:57: 69:d1:ab:df:fb:e5:2e:81:6f:f1:f2:89:7b:b4:90:ec:0f:35: 85:73:55:ba:2c:90:c0:6c:73:a6:20:e2:bb:4f:8f:ba:20:4b: 4a:60:34:07:bf:c5:83:8e:d3:9a:02:eb:65:7d:a4:11:9d:8a: d1:14:0a:65:d4:4e:e5:a3:67:19:c6:33:14:a5:94:2a:da:b8: 79:55:a8:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUxMTA0MTczOTA4WhcNMjUxMTExMTczOTA4WjAYMRYwFAYD VQQDEw02OTBhM2EzYy05Y2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BYC5Jk/11+3yTK6NliXCAM5JGGww07F3Yg5Op9DR4B1n9+pjAoSy0JTF2yC Fv0NMzJL5XF+2SMfhfMyfQUrOp/ywTNAolZ724NehkwUv711GgwQwbNPks77TKHH +3lQKnJ4jaP57kGB+jjOd0Gz5C2aOsw+WTLCTv5VI61ug/QIkgjc08QGDmkiK3MW iKqWLLxr98Yi3c2f+ZKHm1kHcWlp2aLBJzi2rqoHluTDlfL0QH5x5/VkJXeKXzwE wmVtnUCazCvnVOzd80ff3j1v5ruYSMZJR9XCsKGKqvA4/g/gQU0H1dCDrDnERhBC j6poK7lEWnz6+0Sozts8iRYBrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEFXvzZ skI7k+ONOXxEZfLKaMsiMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZcRN2C8UqYSTr8Ap3OXuWWs4p4jyK//y/LhFiEdQ9eAli7GUsxRBp Tnn6y8jJnmNE68bza0t9azgt/Q5BR7hKpkX/Uz6e6TK4QU90jtcLd8Pg6Lx9bLK/ D1m3hMcPuZWAKluQ58FS/DctfB9zejZkwoa+rbfuo6n4MBP7zX18rXKBGP7bS4j4 GYElQKmH59ND6PBNp4madlUmM7QBq8SGYGmHaPQApV5oMHFk1OJ5hgDK/1dp0avf ++UugW/x8ol7tJDsDzWFc1W6LJDAbHOmIOK7T4+6IEtKYDQHv8WDjtOaAutlfaQR nYrRFApl1E7lo2cZxjMUpZQq2rh5Vahr -----END CERTIFICATE-----Generated at Wed Nov 5 02:45:15 2025 by rpki-client