$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: K4S1LYBDCh1M7WYc2eK5Fb2JTd+BN8wnsrJ4iSAwY2U= Subject key identifier: C5:59:71:11:5F:D1:C9:DA:14:2B:0F:9B:F9:8C:EE:B5:6B:1B:6A:53 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0DA4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0D82 Signing time: Tue 04 Nov 2025 18:02:15 +0000 Manifest this update: Tue 04 Nov 2025 18:02:14 +0000 Manifest next update: Tue 11 Nov 2025 18:02:14 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: sPp0++0Mq612xQyR1583ZlCsEOF4hpJLYZJ7r+lp40Q=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: tsWCAJh3hDUuF0jt3mDhnNo48pJ1cTxWnbkE+ZQXBxw=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: BThAKf2icEZsZqpXgnFl9VpqvpRKYGs7e0515Blb0yw=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: zpETj3vTU+4JGJFNH2bJangxDJpoV//my0UXRjaLeMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3492 (0xda4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Nov 4 18:02:14 2025 GMT Not After : Nov 11 18:02:14 2025 GMT Subject: CN=690a3fa7-ae69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:38:89:78:0f:f6:ed:f3:2c:4c:05:eb:32:a0: b2:b7:bd:98:02:b1:2b:99:de:ac:5f:75:6a:48:d9: 63:e0:57:87:f5:f9:d9:ea:ea:17:a7:a9:89:b0:18: b5:7f:7f:7e:09:a5:6b:95:62:a2:f6:6f:19:0e:0f: 1a:59:9f:c0:77:7f:40:14:f9:58:56:e5:17:e0:79: bd:fd:14:11:06:3a:87:07:e8:16:41:30:a6:d3:fe: e1:21:f9:9b:78:15:4c:2f:13:48:c4:e6:9f:34:fe: 06:45:6f:f0:38:3e:15:a1:7e:1a:5f:b0:e4:c1:c5: 44:71:96:2a:ef:a5:a7:6f:00:1d:e8:4d:66:3f:76: 77:bc:87:65:05:a2:8f:38:48:c8:28:c3:ec:db:ee: 12:c7:bb:b7:6d:54:a2:7d:13:97:74:5e:5e:99:1b: f5:36:37:ae:31:10:5b:64:29:90:3d:50:9b:57:f5: e3:ad:74:6b:51:9b:e6:8b:09:64:6c:6d:00:c1:1f: 6a:81:4c:d9:3d:18:26:80:52:ad:7e:e1:14:1d:a1: 92:ea:fb:07:25:fa:47:1c:9c:36:de:67:74:dc:14: 39:f5:8b:2d:fe:1b:2b:69:1f:6b:f1:41:c3:81:74: dc:64:0e:28:29:a5:66:62:ad:09:c4:20:a5:26:97: 95:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:59:71:11:5F:D1:C9:DA:14:2B:0F:9B:F9:8C:EE:B5:6B:1B:6A:53 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:4d:d8:44:30:cf:35:a0:4e:b3:51:c7:8a:99:ef:df:d4:80: 06:cc:21:ab:32:29:5c:e7:db:af:6d:ae:1d:88:0e:86:af:3b: 34:9d:6a:00:f9:4f:ff:4d:9a:0b:1d:fd:42:14:61:0e:22:38: bb:96:a6:d0:68:6f:38:73:82:f6:77:39:08:03:b4:b5:18:81: 37:7a:52:b1:93:5f:73:b1:2f:14:3a:42:af:4e:31:d3:63:43: 65:16:66:7c:33:01:fc:d2:b1:31:16:5d:5c:93:d3:47:ea:2e: 3e:5d:d4:c6:7c:26:c3:c1:8f:df:bf:89:96:1d:aa:a3:cc:6f: d6:57:5c:05:3f:30:6f:14:dc:77:7c:96:d7:91:9e:f3:02:c6: 06:38:2e:ae:92:68:6e:40:61:72:0a:a2:39:86:4e:03:0a:f3: 14:4e:a5:9e:f2:9e:e4:99:1f:1f:74:04:b0:26:af:74:2e:b2: ae:21:5e:e3:75:5d:68:da:f8:4f:6a:a9:ec:0b:85:0b:11:ee: 9b:38:f6:a8:34:1d:af:f7:95:50:cd:fb:4d:98:bf:59:4f:8e: 3c:92:e4:b8:ee:39:63:7f:e5:b3:e0:96:56:18:8d:5f:13:06: 6c:39:2a:4c:c7:7d:0d:e7:0f:26:25:e9:08:50:72:a5:73:ec: 09:55:b7:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUxMTA0MTgwMjE0WhcNMjUxMTExMTgwMjE0WjAYMRYwFAYD VQQDEw02OTBhM2ZhNy1hZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DiJeA/27fMsTAXrMqCyt72YArErmd6sX3VqSNlj4FeH9fnZ6uoXp6mJsBi1 f39+CaVrlWKi9m8ZDg8aWZ/Ad39AFPlYVuUX4Hm9/RQRBjqHB+gWQTCm0/7hIfmb eBVMLxNIxOafNP4GRW/wOD4VoX4aX7DkwcVEcZYq76WnbwAd6E1mP3Z3vIdlBaKP OEjIKMPs2+4Sx7u3bVSifROXdF5emRv1NjeuMRBbZCmQPVCbV/XjrXRrUZvmiwlk bG0AwR9qgUzZPRgmgFKtfuEUHaGS6vsHJfpHHJw23md03BQ59Yst/hsraR9r8UHD gXTcZA4oKaVmYq0JxCClJpeVTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVZcRFf 0cnaFCsPm/mM7rVrG2pTMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/TdhEMM81oE6zUceKme/f1IAGzCGrMilc59uvba4diA6Grzs0nWoA +U//TZoLHf1CFGEOIji7lqbQaG84c4L2dzkIA7S1GIE3elKxk19zsS8UOkKvTjHT Y0NlFmZ8MwH80rExFl1ck9NH6i4+XdTGfCbDwY/fv4mWHaqjzG/WV1wFPzBvFNx3 fJbXkZ7zAsYGOC6ukmhuQGFyCqI5hk4DCvMUTqWe8p7kmR8fdASwJq90LrKuIV7j dV1o2vhPaqnsC4ULEe6bOPaoNB2v95VQzftNmL9ZT448kuS47jljf+Wz4JZWGI1f EwZsOSpMx30N5w8mJekIUHKlc+wJVbf/ -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:12 2025 by rpki-client