$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft File: BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft (raw, json) Hash identifier: UwPXmigoGv1ApGf27WhK1czRt39Iq71bMqUHvzY6yxk= Subject key identifier: A4:76:F7:53:CA:02:F5:FE:CD:A1:45:A9:61:0F:91:B1:E5:E3:38:69 Authority key identifier: 04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 Certificate issuer: /CN=A91B4AA0/serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Certificate serial: 0861 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft Manifest number: 0855 Signing time: Tue 04 Nov 2025 20:47:59 +0000 Manifest this update: Tue 04 Nov 2025 20:47:58 +0000 Manifest next update: Tue 11 Nov 2025 20:47:58 +0000 Files and hashes: 1: BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl (hash: J1vuSnHY26eoH9T+p6dKiLQf0wr8F/6zXBcXRfEsAxE=) 2: 02F863F6C09211EC8950E57AC4F9AE02.roa (hash: CW8cYbzHOyc7H5WlbPNiikLuHtC0kPX2gHGH/bCo7qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2145 (0x861) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4AA0, serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Validity Not Before: Nov 4 20:47:58 2025 GMT Not After : Nov 11 20:47:58 2025 GMT Subject: CN=690a667e-a16d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:64:cc:0c:81:ea:d4:8f:66:e9:9a:99:34: cc:b2:85:59:02:ca:16:66:9b:8d:3c:1d:7d:68:6a: 31:39:e3:f4:30:f3:7e:8f:77:d7:06:30:bc:f6:42: fe:6f:cb:26:18:ba:e7:04:4a:7a:40:64:0a:c5:25: 42:3a:55:5b:80:60:bf:00:60:28:85:56:58:99:bb: a7:b7:34:b7:ff:09:55:f0:f3:43:e2:fa:3f:f0:e0: 91:6f:fa:fe:33:e1:fa:41:67:48:96:64:d6:bd:2e: d2:fa:99:c2:55:84:91:b0:91:f7:f9:5a:d8:ae:84: 62:04:ce:1c:86:e1:23:05:92:71:f3:f7:e3:a5:f2: 61:d1:1e:21:2a:76:63:89:9f:88:91:b6:7c:7c:16: 0f:02:7a:43:d8:ea:93:41:c0:8e:f5:8e:78:ea:7a: 67:af:11:0f:74:63:4e:fa:70:57:c3:88:94:94:dd: cd:d6:69:e8:3d:ae:9e:20:76:d4:c9:26:10:c4:08: 44:46:f6:e4:f4:5e:e7:7d:fa:ba:08:1a:b7:4f:d9: e7:ab:86:68:a7:95:41:a4:8c:a2:1e:f1:f3:8f:71: a1:9c:95:4e:74:a2:1d:41:af:1c:c0:99:40:ed:50: d6:62:7d:79:75:74:1d:66:65:2e:a1:3c:13:10:7b: b6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:76:F7:53:CA:02:F5:FE:CD:A1:45:A9:61:0F:91:B1:E5:E3:38:69 X509v3 Authority Key Identifier: keyid:04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:48:33:41:2e:fc:02:07:f3:26:30:e4:31:a8:83:a5:22:de: 43:14:ab:89:fe:d6:e1:73:fb:fe:2a:e0:e8:73:ff:9d:31:14: cd:4d:26:34:82:7b:3c:92:bb:e4:0b:84:0b:68:9a:65:9c:fc: e0:7f:9c:42:4a:65:13:26:ee:21:5a:d1:ed:8c:04:58:74:65: cc:0f:b9:9a:a1:d0:b3:9c:ca:51:87:0e:bf:4b:85:0d:3c:48: 49:97:71:a5:15:2c:76:6d:6a:8c:3a:94:53:76:e0:22:ae:b8: d4:63:83:8b:dc:67:2a:c8:3d:dc:7c:d6:46:f2:78:7f:84:67: df:09:bd:5b:33:de:f5:1d:95:07:19:a3:ae:7d:89:24:8b:c9: 29:b5:93:30:7f:1c:ca:89:93:b8:15:21:57:1c:48:92:83:8a: b6:ab:f2:61:8f:71:71:c8:d7:30:d2:bf:e7:58:b7:0e:14:c6: 46:7d:2a:24:36:1c:74:3d:2e:1f:7e:17:b0:e1:ce:c5:d0:17: 82:57:a5:02:d0:39:f5:bf:f4:72:8c:06:c3:68:57:f1:59:d8: 58:60:df:7e:5e:ab:92:74:c6:dc:3f:c3:ff:82:8e:d3:47:ba: 44:bf:00:b5:7c:3e:3e:10:36:93:56:6e:cd:ef:ad:53:ff:3c: 08:4f:e2:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRBQTAxMTAvBgNVBAUTKDA0Q0Y1N0YyQTdGRkNBNzJDMDc0NjhBOEM2RDVGMjQ1 MTdGRjQ2QjkwHhcNMjUxMTA0MjA0NzU4WhcNMjUxMTExMjA0NzU4WjAYMRYwFAYD VQQDEw02OTBhNjY3ZS1hMTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxn1kzAyB6tSPZumamTTMsoVZAsoWZpuNPB19aGoxOeP0MPN+j3fXBjC89kL+ b8smGLrnBEp6QGQKxSVCOlVbgGC/AGAohVZYmbuntzS3/wlV8PND4vo/8OCRb/r+ M+H6QWdIlmTWvS7S+pnCVYSRsJH3+VrYroRiBM4chuEjBZJx8/fjpfJh0R4hKnZj iZ+IkbZ8fBYPAnpD2OqTQcCO9Y546npnrxEPdGNO+nBXw4iUlN3N1mnoPa6eIHbU ySYQxAhERvbk9F7nffq6CBq3T9nnq4Zop5VBpIyiHvHzj3GhnJVOdKIdQa8cwJlA 7VDWYn15dXQdZmUuoTwTEHu2lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKR291PK AvX+zaFFqWEPkbHl4zhpMB8GA1UdIwQYMBaAFATPV/Kn/8pywHRoqMbV8kUX/0a5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEFBMC8xMDQxRTVFQUUy QzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3luTEFkR2lveHRYeVJSZl9S cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JNOVg4cWZfeW5MQWRHaW94dFh5UlJmX1Jyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEFBMC8xMDQxRTVFQUUyQzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3lu TEFkR2lveHRYeVJSZl9ScmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKSDNBLvwCB/MmMOQxqIOlIt5DFKuJ/tbhc/v+KuDoc/+dMRTNTSY0 gns8krvkC4QLaJplnPzgf5xCSmUTJu4hWtHtjARYdGXMD7maodCznMpRhw6/S4UN PEhJl3GlFSx2bWqMOpRTduAirrjUY4OL3GcqyD3cfNZG8nh/hGffCb1bM971HZUH GaOufYkki8kptZMwfxzKiZO4FSFXHEiSg4q2q/Jhj3FxyNcw0r/nWLcOFMZGfSok Nhx0PS4ffhew4c7F0BeCV6UC0Dn1v/RyjAbDaFfxWdhYYN9+XquSdMbcP8P/go7T R7pEvwC1fD4+EDaTVm7N761T/zwIT+L/ -----END CERTIFICATE-----Generated at Wed Nov 5 08:01:16 2025 by rpki-client