$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: wdULL7nsdv6CJhFXgk3bopcBx2tXMXotlPIB3UtpRbE= Subject key identifier: F2:94:59:4E:6C:FE:F9:C2:17:16:4C:F0:08:85:E3:58:01:98:D0:21 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: C9 Signing time: Mon 03 Nov 2025 05:48:56 +0000 Manifest this update: Mon 03 Nov 2025 05:48:55 +0000 Manifest next update: Mon 10 Nov 2025 05:48:55 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: ZRkaerZipE/qUn4Qi10TifbGXqMVs4ow8QC8zmd8xqw=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 2f3u95lJSNskCNREu+ioXj6oMF+zHFPqIr2DagPPIWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Nov 3 05:48:55 2025 GMT Not After : Nov 10 05:48:55 2025 GMT Subject: CN=69084247-3729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f4:47:60:fa:ae:5b:f9:60:5f:cc:d0:c5:92: 90:6f:fa:a4:fb:f7:0a:4b:4c:00:e7:b6:21:96:03: 9c:9f:a2:1d:0a:c3:5b:a7:f9:26:06:f5:17:24:4b: 7c:b6:39:40:f9:fa:8a:73:ca:26:23:17:fc:a8:1e: 92:0b:25:c7:6d:4b:eb:46:56:2b:2a:14:52:67:5c: e7:4c:d0:e5:71:ca:67:65:2a:88:99:bf:fd:85:0d: b2:ef:4b:0a:dd:b0:02:09:42:57:09:ca:43:19:e8: f5:8e:15:6a:3f:d2:6d:52:34:7e:e5:7c:47:26:ae: 22:e9:c9:63:d0:ff:7d:5e:9d:7d:49:ee:b3:a2:9a: 73:e6:fa:a2:60:25:bf:16:16:e3:6d:dd:79:60:88: e6:a2:c9:81:7f:d1:bc:64:d0:ba:ae:21:8e:ec:03: 4c:fa:e2:a6:a2:ee:e2:45:17:58:81:6f:cd:8b:a7: d2:b8:23:98:99:ac:c4:b1:0d:8b:49:b5:da:5c:09: 5f:ac:7c:cd:98:fe:6d:25:25:13:ea:1e:b8:1f:ad: d6:4a:21:6f:d6:4e:b7:c6:8c:c9:dc:20:ce:a8:98: 0a:d8:28:94:56:45:48:8a:e0:2f:8b:74:54:ad:99: ed:1c:4b:bf:03:4e:d6:2a:55:6f:a1:50:d0:89:6b: f3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:94:59:4E:6C:FE:F9:C2:17:16:4C:F0:08:85:E3:58:01:98:D0:21 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:e7:09:ed:95:d1:f8:ca:44:1a:ae:1f:91:d6:ef:b3:2c:5a: 2f:09:ce:2f:c1:7d:60:96:50:8f:ca:f3:4e:b5:7f:54:54:02: 11:60:05:0c:f8:57:f8:7f:17:3b:38:85:26:e3:7a:ca:ab:1a: ef:ac:52:2a:e5:f5:df:bd:16:1d:9d:ad:2d:c5:44:db:3b:db: 36:97:f2:1e:c0:89:b0:03:9a:41:54:a6:df:d0:ae:71:c6:5a: bf:af:44:bd:8c:83:da:b5:5d:e8:8e:65:8d:64:d4:aa:14:87: 2c:59:83:6f:08:40:88:56:42:6d:9c:8e:9b:3d:f3:f0:8e:8f: ce:15:27:9d:26:6b:75:4c:58:7e:fa:9e:01:e7:95:f2:0d:6a: 1f:92:5b:42:1f:56:3e:e4:a4:03:1f:aa:12:7c:ab:dc:90:12: bf:ec:1e:4a:e7:5f:a8:df:15:e7:7c:5a:75:fe:c8:cb:4a:63: a7:ff:fe:26:6c:f3:22:d0:e0:41:a0:56:4e:c8:fe:4c:b6:be: f6:82:5a:3a:8f:96:87:29:76:e2:58:ca:90:03:cc:ca:17:54: de:35:28:2c:cb:3a:93:e7:09:58:07:8d:8d:50:07:c6:ca:6d: 8c:e5:59:3d:c5:01:c3:e6:60:12:33:b4:b6:be:94:6a:33:f4: 36:fd:99:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUxMTAzMDU0ODU1WhcNMjUxMTEwMDU0ODU1WjAYMRYwFAYD VQQDEw02OTA4NDI0Ny0zNzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfRHYPquW/lgX8zQxZKQb/qk+/cKS0wA57YhlgOcn6IdCsNbp/kmBvUXJEt8 tjlA+fqKc8omIxf8qB6SCyXHbUvrRlYrKhRSZ1znTNDlccpnZSqImb/9hQ2y70sK 3bACCUJXCcpDGej1jhVqP9JtUjR+5XxHJq4i6clj0P99Xp19Se6zoppz5vqiYCW/ Fhbjbd15YIjmosmBf9G8ZNC6riGO7ANM+uKmou7iRRdYgW/Ni6fSuCOYmazEsQ2L SbXaXAlfrHzNmP5tJSUT6h64H63WSiFv1k63xozJ3CDOqJgK2CiUVkVIiuAvi3RU rZntHEu/A07WKlVvoVDQiWvzXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKUWU5s /vnCFxZM8AiF41gBmNAhMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX5wntldH4ykQarh+R1u+zLFovCc4vwX1gllCPyvNOtX9UVAIRYAUM +Ff4fxc7OIUm43rKqxrvrFIq5fXfvRYdna0txUTbO9s2l/IewImwA5pBVKbf0K5x xlq/r0S9jIPatV3ojmWNZNSqFIcsWYNvCECIVkJtnI6bPfPwjo/OFSedJmt1TFh+ +p4B55XyDWofkltCH1Y+5KQDH6oSfKvckBK/7B5K51+o3xXnfFp1/sjLSmOn//4m bPMi0OBBoFZOyP5Mtr72glo6j5aHKXbiWMqQA8zKF1TeNSgsyzqT5wlYB42NUAfG ym2M5Vk9xQHD5mASM7S2vpRqM/Q2/Zk6 -----END CERTIFICATE-----Generated at Tue Nov 4 12:55:13 2025 by rpki-client