$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft File: bLOCDaWkqEstlAm98H8lRf5tCxE.mft (raw, json) Hash identifier: z7nn0CykOxFUZNDvatBVui/rWes/QZYEC6Io4G38/3c= Subject key identifier: D5:B0:C6:CC:AD:46:F4:C5:B7:74:3D:E0:BF:44:33:A5:29:8E:B2:F4 Authority key identifier: 6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 Certificate issuer: /CN=A91CB063/serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft Manifest number: 94 Signing time: Wed 05 Nov 2025 06:39:47 +0000 Manifest this update: Wed 05 Nov 2025 06:39:46 +0000 Manifest next update: Wed 12 Nov 2025 06:39:46 +0000 Files and hashes: 1: bLOCDaWkqEstlAm98H8lRf5tCxE.crl (hash: uwwibsyUFdOtxiBh7OTEzqJ+NXdzf03+e57mUDRh/g8=) 2: 3D3827F2D6EE11EFB955866CC4F9AE02.roa (hash: 4d4Ou4cSb0acdXH9Bn2waQ4IMkbvtakYfcIPMGQdXao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Validity Not Before: Nov 5 06:39:46 2025 GMT Not After : Nov 12 06:39:46 2025 GMT Subject: CN=690af132-02c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:df:f0:96:70:fd:b6:39:de:46:4d:91:87:69: 23:55:28:cd:db:f0:5d:11:92:4f:fd:cc:51:27:68: 68:4d:2d:25:bd:21:23:2d:99:e4:c8:19:0a:d4:8c: 4b:84:98:5c:32:cb:c1:fd:5a:96:4a:7c:31:f7:73: d1:a2:d7:e9:83:6c:5c:1a:1f:59:1e:07:ca:5e:eb: 73:a1:95:c8:22:08:11:30:4e:1b:ac:b1:c3:b0:c3: 91:69:08:69:23:29:f7:53:ff:8d:10:de:c3:27:5f: 77:d4:54:f5:8f:f4:48:55:c5:f5:a2:05:0b:76:10: 36:f0:ba:62:a3:70:ab:66:23:9a:0f:78:0c:63:34: 73:ad:13:d3:37:8f:d5:e9:40:dd:0e:ad:25:21:7b: f4:4c:3d:00:19:3a:d8:1c:cc:80:37:f6:27:9f:45: 32:f8:ae:0d:d6:1a:87:54:db:69:c7:d5:6d:9f:00: 02:de:af:5b:fd:eb:d9:49:40:03:70:63:cb:44:9c: 08:8d:1d:71:9b:3f:3b:9e:d0:fc:15:02:4c:23:10: 53:0f:d7:40:30:7d:f4:4a:98:41:17:81:c4:30:22: 29:03:7c:22:fc:3a:e4:1b:2c:99:56:51:9e:28:3c: 19:1c:ad:db:82:e1:c4:60:8c:47:ea:19:6d:96:12: 32:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B0:C6:CC:AD:46:F4:C5:B7:74:3D:E0:BF:44:33:A5:29:8E:B2:F4 X509v3 Authority Key Identifier: keyid:6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:e1:78:99:a9:86:82:48:d4:6c:49:82:4b:34:bb:f8:c7:ef: c0:30:58:4c:10:8a:fe:ba:7f:60:48:da:1b:42:2d:c2:fa:b6: f9:87:51:c1:4b:3b:5e:b4:5d:08:26:16:6b:5e:0c:27:7d:4b: 69:fa:16:21:c8:06:f9:87:78:00:c2:44:f9:9f:f8:28:2f:a5: c9:cf:4c:c2:e1:39:11:3a:4d:00:82:31:c6:ef:15:d7:56:58: d8:31:54:9c:92:59:60:0d:de:52:fe:5e:06:ae:f7:b4:6c:13: a2:29:20:dd:3f:6e:50:2e:50:01:cf:b7:2b:d4:3d:f4:41:c6: 57:2f:2c:88:49:ae:d4:a0:42:57:4b:c5:49:7b:2c:a1:14:66: db:1d:65:87:b6:5e:d5:99:2f:3e:65:e9:55:9a:08:5b:6b:3a: cc:6d:63:6c:24:13:30:9a:57:78:a0:5c:55:ff:76:de:da:2f: 36:12:7a:d8:11:28:fb:9d:0e:b3:44:c0:03:29:db:61:82:ad: 9e:c3:ab:c7:f1:9b:bd:a0:7a:34:84:d2:3a:61:52:a1:92:56: 88:b9:25:0a:fd:82:50:a0:ca:85:5e:c5:b8:dc:59:72:9f:4c: d7:9f:ab:4d:c9:56:0c:98:a0:e3:bf:51:e1:f5:7a:8d:28:8e: 82:b9:98:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IwNjMxMTAvBgNVBAUTKDZDQjM4MjBEQTVBNEE4NEIyRDk0MDlCREYwN0YyNTQ1 RkU2RDBCMTEwHhcNMjUxMTA1MDYzOTQ2WhcNMjUxMTEyMDYzOTQ2WjAYMRYwFAYD VQQDEw02OTBhZjEzMi0wMmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9/wlnD9tjneRk2Rh2kjVSjN2/BdEZJP/cxRJ2hoTS0lvSEjLZnkyBkK1IxL hJhcMsvB/VqWSnwx93PRotfpg2xcGh9ZHgfKXutzoZXIIggRME4brLHDsMORaQhp Iyn3U/+NEN7DJ1931FT1j/RIVcX1ogULdhA28Lpio3CrZiOaD3gMYzRzrRPTN4/V 6UDdDq0lIXv0TD0AGTrYHMyAN/Ynn0Uy+K4N1hqHVNtpx9VtnwAC3q9b/evZSUAD cGPLRJwIjR1xmz87ntD8FQJMIxBTD9dAMH30SphBF4HEMCIpA3wi/DrkGyyZVlGe KDwZHK3bguHEYIxH6hltlhIymwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWwxsyt RvTFt3Q94L9EM6UpjrL0MB8GA1UdIwQYMBaAFGyzgg2lpKhLLZQJvfB/JUX+bQsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjA2My82QzBGOTYxMEQ2 RUQxMUVGOUQ5QkYzNkFDNEY5QUUwMi9iTE9DRGFXa3FFc3RsQW05OEg4bFJmNXRD eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMT0NEYVdrcUVzdGxBbTk4SDhsUmY1dEN4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjA2My82QzBGOTYxMEQ2RUQxMUVGOUQ5QkYzNkFDNEY5QUUwMi9iTE9DRGFXa3FF c3RsQW05OEg4bFJmNXRDeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC4XiZqYaCSNRsSYJLNLv4x+/AMFhMEIr+un9gSNobQi3C+rb5h1HB SztetF0IJhZrXgwnfUtp+hYhyAb5h3gAwkT5n/goL6XJz0zC4TkROk0AgjHG7xXX VljYMVSckllgDd5S/l4Grve0bBOiKSDdP25QLlABz7cr1D30QcZXLyyISa7UoEJX S8VJeyyhFGbbHWWHtl7VmS8+ZelVmghbazrMbWNsJBMwmld4oFxV/3be2i82EnrY ESj7nQ6zRMADKdthgq2ew6vH8Zu9oHo0hNI6YVKhklaIuSUK/YJQoMqFXsW43Fly n0zXn6tNyVYMmKDjv1Hh9XqNKI6CuZjV -----END CERTIFICATE-----Generated at Wed Nov 5 11:45:08 2025 by rpki-client