$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft (raw, json) Hash identifier: GbkO5xT53p65s0eppjeyJYIeM6GZ1l9Qkft2DupK0wg= Subject key identifier: 0F:90:CD:7A:90:70:57:09:65:77:C4:B5:10:FD:9B:46:A1:CE:7D:CC Authority key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 Certificate issuer: /CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Certificate serial: 06AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft Manifest number: 06A2 Signing time: Tue 04 Nov 2025 20:13:08 +0000 Manifest this update: Tue 04 Nov 2025 20:13:08 +0000 Manifest next update: Tue 11 Nov 2025 20:13:08 +0000 Files and hashes: 1: bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl (hash: ce0HLkNvUcYsCWJKLcM8QQirV462IFC83k2ZjdQ8hFI=) 2: 815931708D5411EB9DA31875C4F9AE02.roa (hash: wkR9MpAoedittpXX5DyOaKSrmisF/2g7AwvLAD2b1Jc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1706 (0x6aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDDA7, serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Validity Not Before: Nov 4 20:13:08 2025 GMT Not After : Nov 11 20:13:08 2025 GMT Subject: CN=690a5e54-98a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dd:4f:01:14:29:dc:72:6e:37:9e:4e:a8:24: 22:de:a2:ab:51:5f:ae:0d:5b:60:f8:d4:a0:f8:43: 61:a9:4b:2a:69:8c:55:3e:55:fb:88:17:aa:a3:72: 62:6d:c3:a9:e1:72:1a:6b:ac:99:09:cf:f5:d8:e3: 5d:f3:5b:34:fb:40:0b:e3:60:e2:e0:3a:e3:0d:ec: be:18:53:8d:ff:9e:08:29:c7:5d:ee:24:00:89:97: 5d:b1:16:4f:da:9c:76:63:06:14:1e:be:3d:cb:e0: 65:73:1a:6c:85:f5:5e:c6:29:84:44:77:28:ce:0d: 33:ee:3d:6e:e9:23:62:50:5f:3e:c1:e9:51:9a:28: ec:c1:d8:fa:c4:ad:0c:89:70:fc:ba:9f:6f:31:d0: 46:9e:c0:e2:ef:48:89:39:3e:a5:86:96:e9:d9:fe: 56:f8:72:f6:8b:49:cf:99:35:3d:33:fa:26:7b:e8: 64:d4:12:ca:57:3c:04:30:4a:8c:47:6e:be:81:72: 71:e3:00:f2:f0:c6:9d:1f:a2:ca:67:50:17:cd:d4: 4f:ca:88:a0:9c:6c:50:19:c2:8e:d7:f7:7c:bf:53: cf:07:13:f7:ba:c0:60:f8:1c:14:03:ce:a7:5b:d0: f8:34:29:10:54:59:e2:6f:a8:db:2a:74:8a:07:0a: 88:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:90:CD:7A:90:70:57:09:65:77:C4:B5:10:FD:9B:46:A1:CE:7D:CC X509v3 Authority Key Identifier: keyid:6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:06:f3:09:c7:62:6a:ee:81:78:51:0f:4e:5f:b1:72:77:ed: 26:03:16:df:09:17:6a:c6:9c:b7:01:f5:37:3f:9c:37:31:56: 34:68:a5:83:65:b8:bd:ca:3a:f1:7e:3c:3b:a7:97:d6:91:93: 1c:ee:bd:23:50:e3:b8:35:03:1a:65:c9:2e:5d:e9:b5:1f:8a: 51:cc:fe:74:41:92:9f:7a:90:a2:d2:2d:28:84:d7:0c:9f:37: 78:f1:ca:f4:da:37:7d:97:67:87:2d:8f:cb:9c:70:e6:f4:b2: 83:4f:b4:a6:a4:76:7d:5b:f2:62:3a:af:e4:33:72:53:e4:ea: f7:2e:06:5a:4b:aa:ac:1d:a9:35:3c:dd:b2:34:f9:43:fb:fb: 3b:76:89:bd:80:d4:7d:d5:13:07:26:b4:66:7d:d1:77:9a:b9: ba:ae:ab:83:7d:dd:4c:59:db:ed:dd:cb:56:18:64:9d:ae:39: e6:aa:d6:8b:fd:2c:5b:3d:3f:ea:58:fe:5a:43:22:5c:f6:46: 40:6e:9b:67:92:db:20:fa:12:4d:77:4a:e6:1d:f0:35:59:56: ac:25:ba:26:3a:e2:67:ed:3e:13:fa:b9:2f:f2:94:67:1b:fc: 4b:f2:40:65:a7:30:eb:a1:a6:25:97:ac:d0:8d:ed:e5:2a:01: da:05:e6:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REREQTcxMTAvBgNVBAUTKDZFM0Y2QTRDQkQyQzc2NTFCNDkwRUI2NDkwNEJCRkYx RjQ2MjAxRDUwHhcNMjUxMTA0MjAxMzA4WhcNMjUxMTExMjAxMzA4WjAYMRYwFAYD VQQDEw02OTBhNWU1NC05OGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzN1PARQp3HJuN55OqCQi3qKrUV+uDVtg+NSg+ENhqUsqaYxVPlX7iBeqo3Ji bcOp4XIaa6yZCc/12ONd81s0+0AL42Di4DrjDey+GFON/54IKcdd7iQAiZddsRZP 2px2YwYUHr49y+BlcxpshfVeximERHcozg0z7j1u6SNiUF8+welRmijswdj6xK0M iXD8up9vMdBGnsDi70iJOT6lhpbp2f5W+HL2i0nPmTU9M/ome+hk1BLKVzwEMEqM R26+gXJx4wDy8MadH6LKZ1AXzdRPyoignGxQGcKO1/d8v1PPBxP3usBg+BwUA86n W9D4NCkQVFnib6jbKnSKBwqIawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+QzXqQ cFcJZXfEtRD9m0ahzn3MMB8GA1UdIwQYMBaAFG4/aky9LHZRtJDrZJBLv/H0YgHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERERBNy8zQzk1MzE5QzhE NTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2RsRzBrT3Rra0V1XzhmUmlB ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JqOXFUTDBzZGxHMGtPdGtrRXVfOGZSaUFkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RERBNy8zQzk1MzE5QzhENTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2Rs RzBrT3Rra0V1XzhmUmlBZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6BvMJx2Jq7oF4UQ9OX7Fyd+0mAxbfCRdqxpy3AfU3P5w3MVY0aKWD Zbi9yjrxfjw7p5fWkZMc7r0jUOO4NQMaZckuXem1H4pRzP50QZKfepCi0i0ohNcM nzd48cr02jd9l2eHLY/LnHDm9LKDT7SmpHZ9W/JiOq/kM3JT5Or3LgZaS6qsHak1 PN2yNPlD+/s7dom9gNR91RMHJrRmfdF3mrm6rquDfd1MWdvt3ctWGGSdrjnmqtaL /SxbPT/qWP5aQyJc9kZAbptnktsg+hJNd0rmHfA1WVasJbomOuJn7T4T+rkv8pRn G/xL8kBlpzDroaYll6zQje3lKgHaBeaW -----END CERTIFICATE-----Generated at Wed Nov 5 03:55:08 2025 by rpki-client