$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json) Hash identifier: LTEJ8ADSzB+CjIujlZlCI7UtqVZk9t1raOEqWjf6i4U= Subject key identifier: B5:D1:F1:92:10:AB:69:29:14:19:AE:00:43:B9:E9:E4:67:CF:B4:46 Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft Manifest number: AD Signing time: Mon 03 Nov 2025 06:12:50 +0000 Manifest this update: Mon 03 Nov 2025 06:12:49 +0000 Manifest next update: Mon 10 Nov 2025 06:12:49 +0000 Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: Is/tIsD34IySuZLlpqPGA9+IZ2RGt6WyH9eL0nVjPgE=) 2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: QpBoEt1C2EBI43s0+/uUFeo0zNr6mDnCWlKa7GcSILU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Nov 3 06:12:49 2025 GMT Not After : Nov 10 06:12:49 2025 GMT Subject: CN=690847e1-f1f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ed:48:05:63:db:90:13:db:a8:6a:14:5a:ba: 5a:95:7d:5f:36:ea:e4:b9:03:4c:46:f8:8f:b7:ac: 5f:37:0e:3d:75:f3:07:e5:28:fc:c1:95:98:c4:02: f8:2c:a6:2c:d6:f2:29:2d:03:bd:95:0d:8c:48:28: 28:db:15:81:10:5a:f1:ec:d5:94:e1:69:52:16:8b: ec:bd:e4:72:89:5d:fe:02:f9:bc:b0:6b:61:19:05: 55:be:59:63:38:b9:3c:18:94:9f:44:24:4a:38:d9: 6a:8c:d5:7b:74:26:c5:04:da:e0:fb:c2:55:9c:38: a7:8b:33:6d:83:a5:fc:17:dd:e8:93:36:58:c5:46: a8:aa:d9:d1:9c:21:8b:73:5b:f4:fc:6d:44:e0:b2: ea:e9:0e:a2:7c:69:07:43:86:77:fd:7d:23:d1:bc: 56:9d:ce:4d:d6:b4:ce:d8:2f:a0:60:ea:b6:59:67: b7:d1:bd:23:fa:73:33:cb:7e:e4:04:ca:8b:f6:66: 16:79:1a:05:1e:b9:45:be:25:60:46:e3:ed:52:b6: 4d:28:42:df:07:c6:b2:d8:30:12:9e:e0:25:ef:ab: dd:3a:76:bd:c1:83:30:a4:c7:a8:ab:d3:71:66:be: f9:7b:5f:3f:22:93:d9:24:29:4c:50:bd:e1:58:01: b8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D1:F1:92:10:AB:69:29:14:19:AE:00:43:B9:E9:E4:67:CF:B4:46 X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:fc:4e:f1:69:7c:94:cd:f0:ac:45:3a:7c:9a:b4:dc:ac:05: 45:59:03:c6:7f:b4:c6:b5:49:0a:49:09:10:28:c1:6d:f3:61: 26:d5:0f:e2:1a:9c:8e:87:ea:a3:71:68:fb:4b:9c:a3:96:7d: c6:19:72:52:70:35:81:05:fd:f6:2c:0c:69:c1:fe:3b:d9:de: 2e:59:f2:3b:0d:73:fe:92:fc:5b:27:10:d2:f9:f9:9c:4a:82: 97:7d:df:c6:65:a1:cf:ec:1e:1c:fa:9c:d4:61:a7:a9:df:32: 22:b7:55:b1:50:70:2c:d3:4d:e1:30:1e:ff:b1:94:29:17:77: 02:c7:94:a3:37:82:6a:77:6e:e4:5e:b6:c5:19:cd:73:56:31: d1:d3:cd:f5:e7:51:9d:28:26:e1:02:a9:52:e2:b5:06:2f:65: 38:c0:7b:1b:36:d3:3d:36:53:6b:11:6a:6b:ee:9a:1e:f9:51: ee:29:21:4b:aa:11:28:7f:9f:45:7f:44:07:8e:d3:16:8c:76: 0e:f6:4d:b6:f5:8b:46:91:ce:0b:7a:61:fe:06:92:ed:05:04: db:0a:35:c5:06:8e:5f:83:36:63:39:6f:31:68:ce:30:1d:e4: 20:cc:64:e8:f0:48:30:a3:fc:8a:ee:43:d2:7a:2e:c5:c7:c1: d7:4a:bd:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKDZGM0UwMjYyMDBENTUzOUYyN0UwRjNBQTUwRDMyMEEy NDUyOEQ1N0QwHhcNMjUxMTAzMDYxMjQ5WhcNMjUxMTEwMDYxMjQ5WjAYMRYwFAYD VQQDEw02OTA4NDdlMS1mMWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+1IBWPbkBPbqGoUWrpalX1fNurkuQNMRviPt6xfNw49dfMH5Sj8wZWYxAL4 LKYs1vIpLQO9lQ2MSCgo2xWBEFrx7NWU4WlSFovsveRyiV3+Avm8sGthGQVVvllj OLk8GJSfRCRKONlqjNV7dCbFBNrg+8JVnDinizNtg6X8F93okzZYxUaoqtnRnCGL c1v0/G1E4LLq6Q6ifGkHQ4Z3/X0j0bxWnc5N1rTO2C+gYOq2WWe30b0j+nMzy37k BMqL9mYWeRoFHrlFviVgRuPtUrZNKELfB8ay2DASnuAl76vdOna9wYMwpMeoq9Nx Zr75e18/IpPZJClMUL3hWAG4fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXR8ZIQ q2kpFBmuAEO56eRnz7RGMB8GA1UdIwQYMBaAFG8+AmIA1VOfJ+DzqlDTIKJFKNV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS9GRkYyRTZBOEI2 MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1OG40UE9xVU5NZ29rVW8x WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS9GRkYyRTZBOEI2MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1 OG40UE9xVU5NZ29rVW8xWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn/E7xaXyUzfCsRTp8mrTcrAVFWQPGf7TGtUkKSQkQKMFt82Em1Q/i GpyOh+qjcWj7S5yjln3GGXJScDWBBf32LAxpwf472d4uWfI7DXP+kvxbJxDS+fmc SoKXfd/GZaHP7B4c+pzUYaep3zIit1WxUHAs003hMB7/sZQpF3cCx5SjN4Jqd27k XrbFGc1zVjHR083151GdKCbhAqlS4rUGL2U4wHsbNtM9NlNrEWpr7poe+VHuKSFL qhEof59Ff0QHjtMWjHYO9k229YtGkc4LemH+BpLtBQTbCjXFBo5fgzZjOW8xaM4w HeQgzGTo8Egwo/yK7kPSei7Fx8HXSr3q -----END CERTIFICATE-----Generated at Tue Nov 4 21:30:29 2025 by rpki-client