$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft File: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft (raw, json) Hash identifier: f+C9Hezy/218IYHjW4XOwN/3/oBHNLHnW2/uy+hdyLI= Subject key identifier: 35:53:7B:A4:8A:95:CD:36:DE:2C:A1:F9:0F:59:D7:50:34:9E:A2:9D Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0D01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft Manifest number: 0CC9 Signing time: Tue 04 Nov 2025 18:26:26 +0000 Manifest this update: Tue 04 Nov 2025 18:26:25 +0000 Manifest next update: Tue 11 Nov 2025 18:26:25 +0000 Files and hashes: 1: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl (hash: NNBECE7etJEBnDSiLpMGa58G5vSjPXnpiTS6gCYlJfo=) 2: 12561046368911EEA0CB766BC4F9AE02.roa (hash: ZsNiLxfxjjXIOR9efOK6g19RpsthQOBE4XYCmM1hnq8=) 3: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (hash: UuY5qtUwk8Dlu801YZxvnO/xKQaWGop0bKAvOOHuar0=) 4: 2FC3DE84B15B11EB8CCCD624C4F9AE02.roa (hash: e/Kuo5QdtsaM/mztDHYG4XkizjKIPPrgUEb1ap1W45w=) 5: 22E63812221211EF9624DB0CC4F9AE02.roa (hash: tEtTFQOPTziC3M/Up8UOSv6VFGJx+4dP/cUQCVWj4l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3329 (0xd01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: Nov 4 18:26:25 2025 GMT Not After : Nov 11 18:26:25 2025 GMT Subject: CN=690a4551-25d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ac:30:f3:9a:6f:df:8f:81:32:82:ff:4e:b8: 38:91:c5:57:40:1e:81:b5:f5:78:b2:a6:0d:0b:b2: 7a:a3:f7:b1:5b:3b:b6:33:01:bb:f1:ac:d0:a8:4b: 50:a0:a6:2e:18:e9:4e:37:ad:23:32:6e:4e:81:39: 69:f1:fe:e3:38:31:da:c8:e4:6f:ac:68:51:e4:c1: 0e:46:4a:e8:18:f9:66:ca:d6:9f:d3:22:25:f4:2a: f4:ad:ba:0f:85:73:51:12:bc:57:e9:c9:ca:b7:1f: 2a:09:51:19:63:0d:09:03:97:da:a7:ad:a4:1d:a7: d9:a5:ef:f7:fd:55:9b:13:53:19:e3:64:10:3d:6b: b6:c3:94:77:7c:d8:80:4a:64:3b:1c:c4:fd:53:67: 8e:af:7f:45:d3:93:11:3e:f8:1e:fa:17:fe:1f:12: 5c:35:16:2e:cb:5f:0e:86:4f:16:ac:bb:32:48:4d: 76:4c:64:51:1f:b6:41:46:78:1a:c5:c6:b9:74:9c: 6e:95:31:a3:a3:26:6c:3a:2b:1b:71:9f:17:3f:ca: 01:a3:c5:65:9a:a4:89:1a:79:68:f7:f9:05:05:29: 4b:b1:7d:bf:c2:10:39:f2:b9:f4:6d:63:3b:b5:98: 01:03:79:eb:48:4b:3b:b0:b9:b0:8d:55:ed:ef:25: be:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:53:7B:A4:8A:95:CD:36:DE:2C:A1:F9:0F:59:D7:50:34:9E:A2:9D X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:d7:9e:ee:61:b8:fd:9b:7f:34:53:01:d3:2e:d7:57:ea:68: 5b:f1:82:1b:4a:98:55:4d:48:ac:cd:cd:09:b4:af:76:31:e2: 3c:d9:ec:88:9a:5a:a7:45:d9:cf:74:8d:07:a8:05:cb:6d:eb: d8:7c:91:8a:1b:3a:03:51:02:bb:0c:57:8a:28:16:55:42:c0: 87:c6:a8:97:0c:52:48:47:02:e1:05:69:75:24:c4:7a:48:c4: d2:9c:83:36:02:8c:e9:8d:6f:34:52:37:a3:4d:c2:37:26:b1: e9:b1:f9:13:c7:20:dc:0c:21:c9:2e:2c:42:a0:48:c1:01:98: cf:c8:06:a3:8b:09:c6:e0:ee:12:da:dd:74:34:9b:08:a3:51: 77:1d:1c:d3:5f:8a:c1:32:a3:02:f9:c2:93:42:d7:f6:86:73: b9:c8:ef:4a:78:77:cc:f4:df:4c:09:5b:f5:2f:56:3e:7e:ec: ef:36:aa:4d:fa:45:74:c1:38:66:d9:98:4a:dc:f2:84:29:04: 59:d2:26:bc:cf:82:ea:54:c9:cf:72:81:6e:9a:99:5c:63:f5: 50:52:3b:68:96:0a:7d:ea:0a:c4:da:d3:3b:22:5c:00:a4:75: 1a:c2:ab:c2:b3:97:1f:b8:43:45:83:80:e1:1d:d6:84:f5:be: 13:0b:5c:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjUxMTA0MTgyNjI1WhcNMjUxMTExMTgyNjI1WjAYMRYwFAYD VQQDEw02OTBhNDU1MS0yNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26ww85pv34+BMoL/Trg4kcVXQB6BtfV4sqYNC7J6o/exWzu2MwG78azQqEtQ oKYuGOlON60jMm5OgTlp8f7jODHayORvrGhR5MEORkroGPlmytaf0yIl9Cr0rboP hXNRErxX6cnKtx8qCVEZYw0JA5fap62kHafZpe/3/VWbE1MZ42QQPWu2w5R3fNiA SmQ7HMT9U2eOr39F05MRPvge+hf+HxJcNRYuy18Ohk8WrLsySE12TGRRH7ZBRnga xca5dJxulTGjoyZsOisbcZ8XP8oBo8VlmqSJGnlo9/kFBSlLsX2/whA58rn0bWM7 tZgBA3nrSEs7sLmwjVXt7yW+4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVTe6SK lc023iyh+Q9Z11A0nqKdMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkE4MC9COThFODFENjA1QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3kt Q0dqY0M0X0tJOVNsOEgxM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1157uYbj9m380UwHTLtdX6mhb8YIbSphVTUiszc0JtK92MeI82eyI mlqnRdnPdI0HqAXLbevYfJGKGzoDUQK7DFeKKBZVQsCHxqiXDFJIRwLhBWl1JMR6 SMTSnIM2AozpjW80UjejTcI3JrHpsfkTxyDcDCHJLixCoEjBAZjPyAajiwnG4O4S 2t10NJsIo1F3HRzTX4rBMqMC+cKTQtf2hnO5yO9KeHfM9N9MCVv1L1Y+fuzvNqpN +kV0wThm2ZhK3PKEKQRZ0ia8z4LqVMnPcoFumplcY/VQUjtolgp96grE2tM7IlwA pHUawqvCs5cfuENFg4DhHdaE9b4TC1z+ -----END CERTIFICATE-----Generated at Thu Nov 6 02:43:24 2025 by rpki-client