$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft File: Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft (raw, json) Hash identifier: g58VAX6VuMY3iiiltjwGdY6gPjw2EhhiyMUX17fcBoQ= Subject key identifier: 31:14:11:5E:BD:83:4D:6B:FE:3B:1C:DB:63:25:3C:F1:B3:EF:99:A0 Authority key identifier: 06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 Certificate issuer: /CN=A91F6E7D/serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Certificate serial: 0A0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft Manifest number: 0A07 Signing time: Tue 04 Nov 2025 19:54:48 +0000 Manifest this update: Tue 04 Nov 2025 19:54:48 +0000 Manifest next update: Tue 11 Nov 2025 19:54:48 +0000 Files and hashes: 1: Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl (hash: YdAZxwzQeDMa7SvZvxch7bkE+Ol12g2trabDs+TbolY=) 2: 401EA996B5B511EABB640052C4F9AE02.roa (hash: rjAdNfdV9AdfawHfPlvLtufzt08XjVklPQmY9MfBrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2574 (0xa0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E7D, serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Validity Not Before: Nov 4 19:54:48 2025 GMT Not After : Nov 11 19:54:48 2025 GMT Subject: CN=690a5a08-d6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cd:b8:16:3c:0c:3b:b2:d1:af:a3:dc:49:dc: 50:3e:d3:2b:cb:be:47:9d:62:fc:99:0d:ed:b4:f2: 7c:4e:2a:3b:33:bc:bb:c1:0c:76:6a:bc:0e:ef:94: e3:3d:b3:2e:79:0e:f1:a4:c1:20:e2:de:bf:33:74: 6b:3f:1c:ba:45:fc:58:58:3c:0e:d7:b4:79:5a:ce: 27:10:57:08:4a:18:5f:bb:13:e1:4a:1e:bc:01:08: f5:33:9b:2a:26:8b:9e:c0:60:7c:42:cc:f1:87:af: 83:09:7c:7b:06:67:49:4d:3e:fa:1b:70:7e:7f:b3: 06:c7:9a:2e:fb:1d:0c:c3:89:1e:9d:90:0e:c4:6e: c0:8a:2f:b4:f3:9c:f7:6a:8a:6f:5e:9d:85:20:d4: 2f:e7:69:56:83:99:14:e0:df:c8:49:fd:b8:0c:4a: cd:ca:50:be:0c:1b:63:b8:7b:ed:ec:f1:fa:ae:1a: 93:7f:e8:05:27:19:4b:65:cc:04:b2:b7:31:49:c7: 75:06:13:c2:97:6c:59:ad:ba:06:7c:2a:a2:97:98: d8:65:8f:d7:be:42:ad:83:93:1d:4b:cd:22:1e:d9: 83:40:15:a0:09:cc:5f:48:f8:ce:2b:7a:aa:e6:d6: 2f:84:d2:06:5d:97:c6:6a:94:03:a8:13:83:e9:0b: 31:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:14:11:5E:BD:83:4D:6B:FE:3B:1C:DB:63:25:3C:F1:B3:EF:99:A0 X509v3 Authority Key Identifier: keyid:06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:35:29:8f:93:b5:b8:5b:e7:b5:ee:e6:29:fb:13:e3:4c:a6: 09:21:f3:2e:a1:6b:79:95:95:70:26:dd:7f:b0:2c:41:22:97: 32:7e:ec:fa:2b:6b:be:7a:2a:85:6d:fa:a8:dd:88:86:93:90: 8c:a8:63:cb:fc:d6:04:2c:1e:af:88:8f:36:4e:b5:7a:88:97: 6c:8e:10:9a:70:40:0e:9a:1a:75:de:1f:c6:91:3f:4c:1d:31: 67:d5:bc:18:46:d1:6c:e5:a6:4f:c2:67:6a:2a:e7:87:09:da: 53:11:08:34:e4:d3:59:eb:ea:a7:f8:1d:fe:81:a1:77:5a:52: 79:2a:d0:a0:f0:a5:df:a2:2c:03:55:ed:ff:e5:a3:c9:5e:67: ab:4f:0c:f3:aa:6b:2f:22:27:68:98:83:1e:d7:83:e0:69:38: 31:12:98:fa:b0:75:d0:db:67:ef:e8:9b:1b:99:10:24:58:26: ae:4a:b9:95:9b:d6:04:fc:4b:e1:7e:c6:d3:63:bb:3c:8f:57: e7:08:9c:b4:ba:75:85:55:d1:5d:e1:f4:08:fc:15:a9:c6:a4: 02:24:23:90:32:27:a3:05:c1:1b:e3:91:0c:16:b3:84:ad:a0: a2:8d:e0:25:4a:8d:da:27:0b:28:d9:ed:ac:ee:2f:6c:e4:47: fd:53:3b:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFN0QxMTAvBgNVBAUTKDA2REY1MkQyOTE1MDNEMEUyQjExNzJEMzg1QzJCMTg3 Nzk0Qzc5QzcwHhcNMjUxMTA0MTk1NDQ4WhcNMjUxMTExMTk1NDQ4WjAYMRYwFAYD VQQDEw02OTBhNWEwOC1kNmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqM24FjwMO7LRr6PcSdxQPtMry75HnWL8mQ3ttPJ8Tio7M7y7wQx2arwO75Tj PbMueQ7xpMEg4t6/M3RrPxy6RfxYWDwO17R5Ws4nEFcIShhfuxPhSh68AQj1M5sq JouewGB8Qszxh6+DCXx7BmdJTT76G3B+f7MGx5ou+x0Mw4kenZAOxG7Aii+085z3 aopvXp2FINQv52lWg5kU4N/ISf24DErNylC+DBtjuHvt7PH6rhqTf+gFJxlLZcwE srcxScd1BhPCl2xZrboGfCqil5jYZY/XvkKtg5MdS80iHtmDQBWgCcxfSPjOK3qq 5tYvhNIGXZfGapQDqBOD6QsxjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEUEV69 g01r/jsc22MlPPGz75mgMB8GA1UdIwQYMBaAFAbfUtKRUD0OKxFy04XCsYd5THnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU3RC8xNzU5RTRDODgz ODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBRNHJFWExUaGNLeGgzbE1l Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J0OVMwcEZRUFE0ckVYTFRoY0t4aDNsTWVjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkU3RC8xNzU5RTRDODgzODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBR NHJFWExUaGNLeGgzbE1lY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfNSmPk7W4W+e17uYp+xPjTKYJIfMuoWt5lZVwJt1/sCxBIpcyfuz6 K2u+eiqFbfqo3YiGk5CMqGPL/NYELB6viI82TrV6iJdsjhCacEAOmhp13h/GkT9M HTFn1bwYRtFs5aZPwmdqKueHCdpTEQg05NNZ6+qn+B3+gaF3WlJ5KtCg8KXfoiwD Ve3/5aPJXmerTwzzqmsvIidomIMe14PgaTgxEpj6sHXQ22fv6JsbmRAkWCauSrmV m9YE/EvhfsbTY7s8j1fnCJy0unWFVdFd4fQI/BWpxqQCJCOQMiejBcEb45EMFrOE raCijeAlSo3aJwso2e2s7i9s5Ef9Uzvy -----END CERTIFICATE-----Generated at Wed Nov 5 05:17:41 2025 by rpki-client