$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft File: BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft (raw, json) Hash identifier: Tiv7EQTFq6O/icWnOpcjNF6nQWbzpb2RaTT67z3kEpw= Subject key identifier: D9:1E:3A:EF:85:1B:C9:73:8C:C8:B1:34:A5:92:BE:F0:09:08:8F:DF Authority key identifier: 06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C Certificate issuer: /CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Certificate serial: 16E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft Manifest number: 16C9 Signing time: Sun 02 Nov 2025 16:40:07 +0000 Manifest this update: Sun 02 Nov 2025 16:40:07 +0000 Manifest next update: Sun 09 Nov 2025 16:40:07 +0000 Files and hashes: 1: BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl (hash: ibK7SFPb3S7BCeYTT918Trr8roJLtk6Mn5AndNlsnuA=) 2: 091435C84FA911EFB86F4D40C4F9AE02.roa (hash: e5jgIESXFxNT6NU+78fDrpwylXFQS920y6o/aeQL2pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5858 (0x16e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CE8, serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Validity Not Before: Nov 2 16:40:07 2025 GMT Not After : Nov 9 16:40:07 2025 GMT Subject: CN=69078967-be32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ab:cd:5c:92:7a:34:17:47:9b:3f:1b:f7:d3: 05:b5:f5:f9:5f:ee:99:e2:00:99:25:35:12:34:ec: 3b:15:5b:5d:95:8b:6e:05:b9:8d:a6:99:a6:cd:f9: a1:8c:90:83:62:e9:69:e2:6c:90:5e:3b:d0:7c:a8: 85:41:76:61:40:90:5e:26:96:c6:ff:92:04:8e:0c: 29:68:12:45:a2:e6:a6:f9:68:46:da:ef:5b:84:3b: 99:89:ff:0e:f4:04:fb:74:46:47:2f:3f:bd:49:49: 17:c4:5e:22:18:24:14:23:9d:a1:ab:1b:65:b9:a3: d3:b3:af:0d:40:eb:b8:a1:09:54:4f:88:07:0b:57: de:f5:f2:a5:79:62:1d:94:a6:5d:6b:1a:66:e7:c4: 26:2d:a6:e8:70:92:df:7b:e2:42:80:d8:77:3b:20: 2d:b7:6f:71:b2:b7:84:13:bb:42:8d:14:92:8f:0e: f8:05:58:5e:c6:5d:5e:1c:91:a7:ec:fb:ea:f6:de: f9:dd:f8:59:9c:2f:7e:ca:3f:0c:39:8e:17:92:ae: 95:f3:65:52:da:bd:eb:92:14:14:4b:c8:54:6f:85: e1:a1:fe:9c:87:c9:ca:6f:cd:7a:cc:7c:44:8f:7f: 2f:7f:7b:b1:c5:e4:dd:ba:93:67:96:3a:d5:d9:5a: 33:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:1E:3A:EF:85:1B:C9:73:8C:C8:B1:34:A5:92:BE:F0:09:08:8F:DF X509v3 Authority Key Identifier: keyid:06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b1:29:36:f9:e9:f3:94:66:b4:1f:39:aa:1e:a9:e2:b4:89: 3b:78:13:ec:65:fe:08:47:6f:d2:4e:6c:f8:f0:b1:62:6e:3d: 7f:69:7e:88:c3:38:60:51:60:f6:33:72:85:8f:a8:54:0e:16: f0:94:14:b4:24:27:ac:c7:df:f0:62:72:21:db:68:6c:28:d1: 3e:94:d3:d1:14:db:79:4f:78:4f:05:2e:cd:dd:70:e8:3a:ea: ae:6c:92:15:a4:b1:3f:a2:e7:16:02:16:78:dd:7f:70:c6:80: 74:bb:d3:ca:49:33:c0:02:5b:24:49:74:a5:45:3d:e4:52:bf: 06:fc:f0:79:ee:23:76:eb:0d:f7:13:2f:30:46:b3:f0:a4:f5: 9d:74:9f:5c:0c:33:ec:5c:4b:7f:59:05:f8:70:31:66:14:3d: 27:03:1d:b8:5e:38:84:b1:65:88:82:ca:81:c1:4d:29:ba:3c: 33:32:0d:cd:f4:92:22:a1:cd:ea:92:18:cd:7d:f6:98:83:13: bb:34:00:24:4f:21:e3:ea:47:ec:9f:19:28:ba:67:e5:87:63: 80:5e:30:31:1c:d8:da:ec:1e:3f:fe:d1:bb:34:52:82:4c:b0: e5:33:84:1c:27:1c:72:60:42:f5:1e:b1:1b:db:26:9f:78:fa: b5:54:b7:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRTgxMTAvBgNVBAUTKDA2QzYyN0Q5QzMxMkM3QjQ3RDFDM0E1M0I0NDc1NUEx MEE2ODQ4N0MwHhcNMjUxMTAyMTY0MDA3WhcNMjUxMTA5MTY0MDA3WjAYMRYwFAYD VQQDEw02OTA3ODk2Ny1iZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKvNXJJ6NBdHmz8b99MFtfX5X+6Z4gCZJTUSNOw7FVtdlYtuBbmNppmmzfmh jJCDYulp4myQXjvQfKiFQXZhQJBeJpbG/5IEjgwpaBJFouam+WhG2u9bhDuZif8O 9AT7dEZHLz+9SUkXxF4iGCQUI52hqxtluaPTs68NQOu4oQlUT4gHC1fe9fKleWId lKZdaxpm58QmLabocJLfe+JCgNh3OyAtt29xsreEE7tCjRSSjw74BVhexl1eHJGn 7Pvq9t753fhZnC9+yj8MOY4Xkq6V82VS2r3rkhQUS8hUb4Xhof6ch8nKb816zHxE j38vf3uxxeTdupNnljrV2VozIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkeOu+F G8lzjMixNKWSvvAJCI/fMB8GA1UdIwQYMBaAFAbGJ9nDEse0fRw6U7RHVaEKaEh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENFOC85MDBEMjY0NjA2 NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3UjlIRHBUdEVkVm9RcG9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzWW4yY01TeDdSOUhEcFR0RWRWb1Fwb1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENFOC85MDBEMjY0NjA2NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3 UjlIRHBUdEVkVm9RcG9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTsSk2+enzlGa0HzmqHqnitIk7eBPsZf4IR2/STmz48LFibj1/aX6I wzhgUWD2M3KFj6hUDhbwlBS0JCesx9/wYnIh22hsKNE+lNPRFNt5T3hPBS7N3XDo OuqubJIVpLE/oucWAhZ43X9wxoB0u9PKSTPAAlskSXSlRT3kUr8G/PB57iN26w33 Ey8wRrPwpPWddJ9cDDPsXEt/WQX4cDFmFD0nAx24XjiEsWWIgsqBwU0pujwzMg3N 9JIioc3qkhjNffaYgxO7NAAkTyHj6kfsnxkoumflh2OAXjAxHNja7B4//tG7NFKC TLDlM4QcJxxyYEL1HrEb2yafePq1VLc2 -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:15 2025 by rpki-client