$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft File: bKwrcgiF6COCTBln7fw2Psh0do0.mft (raw, json) Hash identifier: YE35wUa7VK2Hk3tVOstjp4SlOx4CCWvg7A2m6nT2lyg= Subject key identifier: BC:5E:71:80:0C:89:34:8A:15:8C:05:54:93:DF:62:01:EB:E9:36:FE Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 049D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft Manifest number: 0498 Signing time: Sun 02 Nov 2025 23:59:07 +0000 Manifest this update: Sun 02 Nov 2025 23:59:06 +0000 Manifest next update: Sun 09 Nov 2025 23:59:06 +0000 Files and hashes: 1: bKwrcgiF6COCTBln7fw2Psh0do0.crl (hash: u9I2w07OwGE28e0mqk0s+4Dr4I4oHmypKrth0ZjX+ew=) 2: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (hash: /NgK3u5jqw1d//qoTXrGcCnkIoepRe7WzeoPLGdtL+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2, serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: Nov 2 23:59:06 2025 GMT Not After : Nov 9 23:59:06 2025 GMT Subject: CN=6907f04a-6d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:36:52:a7:36:f9:16:6d:f8:6d:9c:72:67:b9: 98:a7:2f:92:4a:e1:9e:2d:ff:8b:e9:20:57:96:d0: 40:39:58:16:be:4c:b8:98:81:bc:ab:f9:e0:44:a4: fa:a9:a9:00:bd:10:5a:85:27:35:13:ed:8a:f0:ef: 71:4f:01:21:ce:e0:2d:9a:d8:63:3b:ad:27:05:c9: 99:e1:f4:c4:a7:3e:75:89:52:7e:fe:42:31:52:1a: 2c:1e:1f:63:ea:75:3c:78:d8:3b:7e:cb:ee:bf:07: b8:0b:3b:b2:b0:d2:5a:6b:58:18:2f:dc:29:18:67: 3f:dd:45:86:98:08:f1:42:f7:92:58:02:f4:cb:ec: 05:2e:73:ca:ec:ae:bd:c4:eb:69:80:26:e6:1b:62: aa:d4:93:d1:3c:ef:6c:7c:24:eb:c9:42:5f:e4:2e: cc:ab:bd:bf:11:a6:87:21:0a:46:d9:a0:22:48:90: ee:0a:8b:9b:76:ca:1a:48:58:d8:1a:71:31:be:b3: ea:ac:bf:c8:30:40:77:fb:49:f8:ca:51:30:e1:05: d3:c1:26:61:01:ab:c5:6b:de:87:57:06:93:80:f7: 87:1c:29:34:bd:1a:4d:63:8f:c3:0c:46:0a:72:64: 32:32:e6:10:0f:48:0d:eb:b8:af:24:7f:19:85:54: 62:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5E:71:80:0C:89:34:8A:15:8C:05:54:93:DF:62:01:EB:E9:36:FE X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:c5:1b:c7:12:dc:6d:44:48:a0:1a:91:87:ee:56:5f:36:92: ce:ca:98:42:c1:59:d3:a8:ca:fa:71:7f:71:f1:8b:1c:36:a8: 96:05:15:8f:13:92:12:24:04:a1:52:63:01:b6:23:54:ca:ff: 28:66:f7:e3:8c:f9:f0:dd:ff:f7:07:a4:e7:b9:c1:87:d1:65: ba:fb:36:ec:45:91:b5:1e:8a:14:d7:9a:c6:a2:25:09:56:15: 42:d6:66:11:9a:e1:69:8e:5e:c8:2f:1d:24:35:48:e6:0a:98: ea:cf:c3:27:da:32:b9:31:b7:ce:51:49:f6:4e:51:a2:c1:10: 8d:6d:68:29:b0:a2:ba:c7:e9:ea:1e:4b:84:b2:8d:70:f3:cc: 27:f5:5b:aa:4e:e2:16:24:96:f1:45:7c:79:c8:e1:14:d4:0d: c0:c4:03:ae:54:e7:ea:75:f5:3a:c9:be:e8:bd:99:8c:9f:50: 78:33:18:8e:13:30:3a:d2:93:1a:ee:c2:6f:78:9b:a4:c9:09: 8e:20:3b:d8:55:40:51:fb:46:5b:c9:f1:0d:a1:23:b3:f0:a4: 2c:2f:53:9d:6e:d7:f1:b7:44:dc:c4:96:41:b4:32:c8:d8:63: fb:9d:11:c5:ec:7f:0e:45:c3:15:1b:64:82:db:8f:ed:6a:83: 1b:94:d6:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjUxMTAyMjM1OTA2WhcNMjUxMTA5MjM1OTA2WjAYMRYwFAYD VQQDEw02OTA3ZjA0YS02ZDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DZSpzb5Fm34bZxyZ7mYpy+SSuGeLf+L6SBXltBAOVgWvky4mIG8q/ngRKT6 qakAvRBahSc1E+2K8O9xTwEhzuAtmthjO60nBcmZ4fTEpz51iVJ+/kIxUhosHh9j 6nU8eNg7fsvuvwe4CzuysNJaa1gYL9wpGGc/3UWGmAjxQveSWAL0y+wFLnPK7K69 xOtpgCbmG2Kq1JPRPO9sfCTryUJf5C7Mq72/EaaHIQpG2aAiSJDuCoubdsoaSFjY GnExvrPqrL/IMEB3+0n4ylEw4QXTwSZhAavFa96HVwaTgPeHHCk0vRpNY4/DDEYK cmQyMuYQD0gN67ivJH8ZhVRiLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxecYAM iTSKFYwFVJPfYgHr6Tb+MB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJBMi8xNEZFQzJFQzU3OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZD T0NUQmxuN2Z3MlBzaDBkbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcxRvHEtxtREigGpGH7lZfNpLOyphCwVnTqMr6cX9x8YscNqiWBRWP E5ISJAShUmMBtiNUyv8oZvfjjPnw3f/3B6TnucGH0WW6+zbsRZG1HooU15rGoiUJ VhVC1mYRmuFpjl7ILx0kNUjmCpjqz8Mn2jK5MbfOUUn2TlGiwRCNbWgpsKK6x+nq HkuEso1w88wn9VuqTuIWJJbxRXx5yOEU1A3AxAOuVOfqdfU6yb7ovZmMn1B4MxiO EzA60pMa7sJveJukyQmOIDvYVUBR+0ZbyfENoSOz8KQsL1Odbtfxt0TcxJZBtDLI 2GP7nRHF7H8ORcMVG2SC24/taoMblNbY -----END CERTIFICATE-----Generated at Tue Nov 4 16:30:19 2025 by rpki-client