$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft File: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft (raw, json) Hash identifier: eiA+RNu3eZei/Y6pMll8DdSDXtF3vbKQRz62HEbh3Pg= Subject key identifier: B3:F6:1A:12:DE:9D:B3:A5:59:8C:3D:D6:B2:68:9C:D9:9E:3C:FB:A5 Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0B65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft Manifest number: 0B5E Signing time: Tue 04 Nov 2025 19:13:19 +0000 Manifest this update: Tue 04 Nov 2025 19:13:18 +0000 Manifest next update: Tue 11 Nov 2025 19:13:18 +0000 Files and hashes: 1: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl (hash: 54qBSJgej69mICjUyn5zyXM1GpayiDplFErscvElpDg=) 2: 494B4070419C11EAAE836772C4F9AE02.roa (hash: Y3JTz6x7Gh76YU/+03lkuBO3MY94CeW1sP7iPG9gZfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A, serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Validity Not Before: Nov 4 19:13:18 2025 GMT Not After : Nov 11 19:13:18 2025 GMT Subject: CN=690a504e-c0ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8a:cd:5c:cd:97:2c:b0:00:31:04:76:a3:a7: 82:ce:4e:34:2e:f9:68:34:97:d2:b0:f4:3f:97:e6: 23:2f:07:c9:bb:c6:9d:25:95:72:61:81:5b:f0:42: d7:07:fe:d1:5d:5f:ba:53:0f:dc:f4:32:a7:0a:b3: 62:82:1a:3c:fb:d6:88:15:8a:f9:99:d1:23:a1:e4: 82:f7:72:ce:a8:23:74:08:ee:26:7a:5d:c3:7d:b8: 40:71:08:2d:2c:cc:9e:39:54:c0:16:d4:c3:cb:af: 8e:e3:38:32:ef:9c:40:f7:3d:40:6c:c7:01:40:83: 2e:b2:23:8a:0b:f5:1a:b8:87:0c:b1:32:c7:71:1d: 6b:e1:df:66:6b:7a:18:ba:5a:94:57:1d:2d:d6:43: b8:2c:e5:a1:ec:4f:ff:ee:b0:4a:46:12:5e:78:4e: f6:eb:fe:09:a3:bb:19:4f:eb:d0:f2:5b:e9:6e:0b: e3:6f:26:12:ae:6a:d4:5e:b4:fd:50:d2:87:76:cb: 6d:87:f6:4b:12:72:59:d5:05:b9:ea:96:04:2a:1a: a0:ac:f2:df:07:1c:c7:df:29:56:4a:dc:c9:ce:ce: a2:c5:81:6c:64:be:82:48:9a:1e:da:38:b0:41:3a: ac:f8:30:08:04:82:ac:84:b9:0f:15:41:22:48:3e: 7d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F6:1A:12:DE:9D:B3:A5:59:8C:3D:D6:B2:68:9C:D9:9E:3C:FB:A5 X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:a3:26:98:3d:95:52:bb:95:bf:ae:e0:fa:17:35:e5:ad:58: 9f:73:52:49:17:12:05:c9:b0:33:ad:f1:41:99:7b:10:e1:cd: 72:88:e7:8e:69:62:48:7f:65:5c:5c:9e:7c:34:74:7a:30:4a: b1:fe:2c:44:0d:34:93:30:9c:b7:89:ee:cb:b0:3c:94:48:f0: 6e:3a:3b:81:d4:d6:77:fc:21:26:7e:26:27:d9:3a:ad:8e:a9: f9:2d:d8:06:dc:9c:bc:e8:cd:3b:4b:1d:d7:ba:95:1b:f5:9a: 5e:78:dd:b3:fb:76:85:98:21:a9:7a:c8:de:82:f3:94:51:94: 6f:88:ad:ec:b0:50:f9:b5:24:1b:35:4b:a9:33:48:ba:0e:63: c2:58:ae:e7:87:01:2d:dd:b9:9f:dd:3e:2a:eb:26:36:05:a4: 74:a1:d5:15:10:04:9a:bc:b1:55:52:e8:13:2e:6f:8f:c5:d6: ad:3f:a3:76:d5:de:32:4d:a7:3b:62:a0:9a:f2:17:7a:02:f6: 19:d9:b0:6d:d6:67:3a:42:03:26:32:e6:b8:0d:ac:00:aa:92: cb:60:f1:a8:ac:b8:60:5f:4e:b8:38:bb:b3:83:c1:ba:54:d4: 18:e3:08:ba:e6:31:43:c7:0c:81:d4:2c:06:da:7e:47:bc:84: 0a:87:ba:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjUxMTA0MTkxMzE4WhcNMjUxMTExMTkxMzE4WjAYMRYwFAYD VQQDEw02OTBhNTA0ZS1jMGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4rNXM2XLLAAMQR2o6eCzk40LvloNJfSsPQ/l+YjLwfJu8adJZVyYYFb8ELX B/7RXV+6Uw/c9DKnCrNigho8+9aIFYr5mdEjoeSC93LOqCN0CO4mel3DfbhAcQgt LMyeOVTAFtTDy6+O4zgy75xA9z1AbMcBQIMusiOKC/UauIcMsTLHcR1r4d9ma3oY ulqUVx0t1kO4LOWh7E//7rBKRhJeeE726/4Jo7sZT+vQ8lvpbgvjbyYSrmrUXrT9 UNKHdstth/ZLEnJZ1QW56pYEKhqgrPLfBxzH3ylWStzJzs6ixYFsZL6CSJoe2jiw QTqs+DAIBIKshLkPFUEiSD59nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLP2GhLe nbOlWYw91rJonNmePPulMB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDI1QS8wMjRDMjRGODQxNkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNw Qmc1Ynd3QloxY1FpRFh3dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGoyaYPZVSu5W/ruD6FzXlrVifc1JJFxIFybAzrfFBmXsQ4c1yiOeO aWJIf2VcXJ58NHR6MEqx/ixEDTSTMJy3ie7LsDyUSPBuOjuB1NZ3/CEmfiYn2Tqt jqn5LdgG3Jy86M07Sx3XupUb9ZpeeN2z+3aFmCGpesjegvOUUZRviK3ssFD5tSQb NUupM0i6DmPCWK7nhwEt3bmf3T4q6yY2BaR0odUVEASavLFVUugTLm+PxdatP6N2 1d4yTac7YqCa8hd6AvYZ2bBt1mc6QgMmMua4DawAqpLLYPGorLhgX064OLuzg8G6 VNQY4wi65jFDxwyB1CwG2n5HvIQKh7ou -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:39 2025 by rpki-client