$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: kZWVM3RVS6x7eU7FiXeKsLgS1xOt+yDXd4gerIGdM+Q= Subject key identifier: FD:D9:CD:EF:9D:93:4B:DF:B0:B7:EA:28:4B:DD:76:E1:FE:EA:5A:ED Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 08B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0AD3 Signing time: Tue 04 Nov 2025 20:36:05 +0000 Manifest this update: Tue 04 Nov 2025 20:36:04 +0000 Manifest next update: Tue 11 Nov 2025 20:36:04 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: X91apvmw1KrSqXr/VVIhA+MNDAA3UJQt2H5IFvmttNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2226 (0x8b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: Nov 4 20:36:04 2025 GMT Not After : Nov 11 20:36:04 2025 GMT Subject: CN=690a63b4-7194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9e:93:13:4e:5a:98:59:72:a2:37:0d:f0:8c: e6:25:32:4d:31:99:ce:d3:f7:c8:c4:da:a1:1a:b3: 8f:e8:34:70:ea:f9:4b:c4:82:b2:1f:a3:e3:6d:b2: 94:01:5c:d5:e0:3a:52:d8:f0:5f:65:ea:95:60:34: 1d:1e:40:3e:33:62:7c:15:d4:3a:bf:cd:84:5e:a9: a2:ca:76:58:b6:31:4e:33:ec:e7:ca:4d:f8:95:1e: 04:9d:44:8d:76:5e:09:2b:d3:64:af:78:e4:6f:b0: 2e:7e:da:00:72:4d:e1:9e:15:a2:44:e2:34:62:c3: 39:c5:dd:5d:43:42:69:4b:57:ee:74:15:88:dc:70: 67:31:df:57:79:c0:f7:b4:6a:98:df:a9:7b:7d:89: b3:0a:b3:2c:d7:35:34:40:56:49:15:8e:7a:8e:93: ac:fb:6b:79:fa:95:c0:13:e8:3d:88:cc:ca:1c:f2: cd:89:dc:29:a9:ea:8c:1d:f0:ec:d4:3f:01:04:1e: 72:d7:87:33:66:9e:b9:31:13:4d:ec:d9:6c:0b:c3: 66:fe:47:be:f0:4d:e6:45:c1:6b:f1:ee:26:af:a9: bc:fa:75:66:3e:d4:dd:55:79:a4:ca:12:46:43:fb: 69:71:94:95:f4:09:9e:ac:dd:ba:2f:5b:3e:ca:c4: 8f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D9:CD:EF:9D:93:4B:DF:B0:B7:EA:28:4B:DD:76:E1:FE:EA:5A:ED X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:3f:30:10:6c:de:db:76:d9:8c:3c:03:41:14:5d:36:8d:b6: 13:81:52:f5:c5:0c:7d:c5:ef:73:d8:80:63:2d:15:0e:27:52: ba:70:11:29:03:50:47:70:4c:a5:76:1d:19:89:9e:0b:81:3b: e5:46:ed:e2:1e:9a:dd:73:6b:68:b4:10:11:54:fb:94:18:21: f0:c8:22:3e:75:cc:67:42:77:77:4d:fb:4c:6c:75:25:72:37: 91:ca:cc:35:bf:d7:1b:d1:74:ca:ae:b8:ab:bc:68:7e:15:90: 47:59:63:b4:41:33:e9:3c:77:a1:63:60:33:74:6c:dd:78:4a: 12:89:1e:6e:a9:27:05:60:29:0c:4f:1a:d4:5a:8b:b2:84:1f: e6:f4:b3:32:5c:2e:96:1c:ae:31:58:0c:9b:76:65:f5:75:b7: d0:91:83:d6:b4:dd:4b:2f:6e:48:92:c5:ca:a6:ec:55:e7:f3: 3e:50:32:a0:4b:c1:d2:45:06:0f:e1:1f:6c:45:8a:90:fb:f1: 74:20:5d:79:71:72:e3:55:da:fc:40:0f:98:c6:11:18:cb:ac: 72:ff:c7:e6:48:ff:c5:c5:b7:b2:0b:6b:97:09:f2:45:d6:4f: fb:95:c5:c7:23:b6:39:dc:74:1b:ea:27:1e:c0:68:95:5c:a6: f0:e6:05:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjUxMTA0MjAzNjA0WhcNMjUxMTExMjAzNjA0WjAYMRYwFAYD VQQDEw02OTBhNjNiNC03MTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJ6TE05amFlyojcN8IzmJTJNMZnO0/fIxNqhGrOP6DRw6vlLxIKyH6PjbbKU AVzV4DpS2PBfZeqVYDQdHkA+M2J8FdQ6v82EXqmiynZYtjFOM+znyk34lR4EnUSN dl4JK9Nkr3jkb7AuftoAck3hnhWiROI0YsM5xd1dQ0JpS1fudBWI3HBnMd9XecD3 tGqY36l7fYmzCrMs1zU0QFZJFY56jpOs+2t5+pXAE+g9iMzKHPLNidwpqeqMHfDs 1D8BBB5y14czZp65MRNN7NlsC8Nm/ke+8E3mRcFr8e4mr6m8+nVmPtTdVXmkyhJG Q/tpcZSV9AmerN26L1s+ysSPWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3Zze+d k0vfsLfqKEvdduH+6lrtMB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+PzAQbN7bdtmMPANBFF02jbYTgVL1xQx9xe9z2IBjLRUOJ1K6cBEp A1BHcEyldh0ZiZ4LgTvlRu3iHprdc2totBARVPuUGCHwyCI+dcxnQnd3TftMbHUl cjeRysw1v9cb0XTKrrirvGh+FZBHWWO0QTPpPHehY2AzdGzdeEoSiR5uqScFYCkM TxrUWouyhB/m9LMyXC6WHK4xWAybdmX1dbfQkYPWtN1LL25IksXKpuxV5/M+UDKg S8HSRQYP4R9sRYqQ+/F0IF15cXLjVdr8QA+YxhEYy6xy/8fmSP/FxbeyC2uXCfJF 1k/7lcXHI7Y53HQb6icewGiVXKbw5gXZ -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:27 2025 by rpki-client