$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: 3yDtze6LconJoMYuQ18O0wGxadMSiva6y3sW2dkZe00= Subject key identifier: 0C:D6:53:6B:76:4B:07:52:AA:8E:A0:F0:EF:3D:69:2A:B1:FC:6B:88 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0C8A Signing time: Tue 04 Nov 2025 19:19:42 +0000 Manifest this update: Tue 04 Nov 2025 19:19:41 +0000 Manifest next update: Tue 11 Nov 2025 19:19:41 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: bJgF7QXTcJ0ePhC7CHWXhPGIRY7c8J+QFKTuSTF3QvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2906 (0xb5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Nov 4 19:19:41 2025 GMT Not After : Nov 11 19:19:41 2025 GMT Subject: CN=690a51cd-81d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:2f:d1:d6:1b:6b:00:17:d9:7f:3d:4e:a4:60: 64:ef:42:1e:6a:e3:28:49:9f:20:19:59:53:31:dc: c7:d6:d9:68:f6:eb:83:76:cd:5d:eb:c8:9c:68:ef: fb:10:44:56:2b:9e:7b:ab:0d:63:e0:d3:21:4b:26: 93:08:b9:08:1e:74:32:53:aa:29:5b:e5:2e:39:3f: ed:b2:d2:20:b6:09:a6:2c:45:55:d9:b4:4f:be:59: fb:6c:4a:c3:53:ea:ac:ef:1d:02:8a:ba:a8:4d:1a: 46:55:21:5c:54:8a:55:20:8d:1b:27:10:10:80:74: 28:cc:73:4b:09:61:50:8a:0c:36:c4:9f:ec:53:42: 81:4f:62:af:3b:8b:a6:ab:ec:ae:ab:93:28:55:3f: af:9e:7a:bf:29:bf:28:e7:32:2c:2f:04:d9:b7:28: fc:b6:f2:24:b3:6c:17:80:73:37:d2:a7:1a:bb:1a: b9:22:b4:62:6c:60:1a:17:42:5e:9e:7b:dc:e8:ba: 52:af:2e:8c:77:3f:5a:69:03:89:e7:14:a0:43:bb: 69:f7:0c:b4:51:0a:ef:da:f0:9f:f6:c9:fa:fe:83: e3:89:51:67:5d:7b:4a:1c:b2:df:1d:f5:f2:4f:f0: 8d:20:ce:0d:34:a6:8f:b0:5e:9f:f8:9a:dd:85:f5: f2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D6:53:6B:76:4B:07:52:AA:8E:A0:F0:EF:3D:69:2A:B1:FC:6B:88 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:25:43:17:a3:37:2d:e9:38:ce:96:11:87:6b:38:1b:19:b7: 34:24:be:18:2b:46:c4:d3:76:96:ff:f1:66:b6:de:98:58:8d: b9:19:2e:e4:83:a8:8e:39:0c:a9:e7:4f:25:50:fe:ca:c6:84: ab:a8:d8:df:bc:90:22:cd:12:7f:4c:1f:21:6f:05:6c:8b:f2: 49:e1:95:9d:19:10:df:01:91:b7:b0:50:db:7d:62:0f:ae:3e: 00:5a:ec:73:4b:4e:0c:50:e8:2b:e9:7d:80:0d:ff:36:88:78: e6:02:df:d9:9f:7d:dc:d8:1e:2c:f8:33:4e:4c:d5:2d:57:44: 8d:99:ed:30:4a:16:18:e2:07:07:1b:a6:92:18:fa:2a:5a:f0: 52:6e:be:8f:f1:18:38:ca:95:c3:2f:d0:62:e4:53:85:13:d3: f9:20:7a:fa:00:c3:c9:00:d6:63:3c:20:5b:bd:24:2e:ba:06: 43:bb:99:52:ef:8b:48:46:d4:06:64:e0:e4:1e:ee:64:bf:40: 95:2e:17:64:b7:2e:81:48:41:80:c2:a5:66:5a:42:0c:9f:4c: a0:be:89:5f:d6:80:69:9f:d8:b2:1c:7f:73:28:5c:b2:67:2a: e8:1c:74:ef:62:6b:11:51:ae:89:08:cf:99:27:bc:50:b3:97: f8:b0:6f:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUxMTA0MTkxOTQxWhcNMjUxMTExMTkxOTQxWjAYMRYwFAYD VQQDEw02OTBhNTFjZC04MWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+y/R1htrABfZfz1OpGBk70IeauMoSZ8gGVlTMdzH1tlo9uuDds1d68icaO/7 EERWK557qw1j4NMhSyaTCLkIHnQyU6opW+UuOT/tstIgtgmmLEVV2bRPvln7bErD U+qs7x0CirqoTRpGVSFcVIpVII0bJxAQgHQozHNLCWFQigw2xJ/sU0KBT2KvO4um q+yuq5MoVT+vnnq/Kb8o5zIsLwTZtyj8tvIks2wXgHM30qcauxq5IrRibGAaF0Je nnvc6LpSry6Mdz9aaQOJ5xSgQ7tp9wy0UQrv2vCf9sn6/oPjiVFnXXtKHLLfHfXy T/CNIM4NNKaPsF6f+JrdhfXycQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzWU2t2 SwdSqo6g8O89aSqx/GuIMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2JUMXozct6TjOlhGHazgbGbc0JL4YK0bE03aW//Fmtt6YWI25GS7k g6iOOQyp508lUP7KxoSrqNjfvJAizRJ/TB8hbwVsi/JJ4ZWdGRDfAZG3sFDbfWIP rj4AWuxzS04MUOgr6X2ADf82iHjmAt/Zn33c2B4s+DNOTNUtV0SNme0wShYY4gcH G6aSGPoqWvBSbr6P8Rg4ypXDL9Bi5FOFE9P5IHr6AMPJANZjPCBbvSQuugZDu5lS 74tIRtQGZODkHu5kv0CVLhdkty6BSEGAwqVmWkIMn0ygvolf1oBpn9iyHH9zKFyy ZyroHHTvYmsRUa6JCM+ZJ7xQs5f4sG/R -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:52 2025 by rpki-client