$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: b33GBZoOXfRF4INEZVZ4Bt9AwFknay+9pYNc/fLOpmY= Subject key identifier: 30:DE:94:13:0E:92:B2:11:D8:B2:1C:FE:C8:E6:E6:E0:BC:67:47:F3 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0EED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0EE3 Signing time: Sun 02 Nov 2025 17:38:44 +0000 Manifest this update: Sun 02 Nov 2025 17:38:43 +0000 Manifest next update: Sun 09 Nov 2025 17:38:43 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: kd45vg+NBlYYI79Ga5IENwie2LbFIogHwynm5HqrSmc=) 2: DA481A0CB61811F0ABB14C31C4F9AE02.roa (hash: T3+CRirqLtz1Ta4crR0HI+okuEb0BcJI1bh/9/iVPTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3821 (0xeed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Nov 2 17:38:43 2025 GMT Not After : Nov 9 17:38:43 2025 GMT Subject: CN=69079723-b583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c5:a4:be:ae:24:71:f0:d9:e2:d8:68:55:e4: 9b:53:1d:36:9a:f8:85:91:f9:7c:ec:0f:4c:c5:6e: 4a:84:a4:b2:37:11:36:3f:32:e9:77:f8:46:d4:8e: 8b:58:64:be:37:b2:38:dc:f5:51:c1:3a:a6:3e:fc: 0f:70:37:36:6e:ce:e1:05:a6:a5:c4:c9:35:7b:3d: bd:f0:96:90:c3:46:57:fb:d6:bc:03:7a:c1:5c:1d: 0a:9e:2c:a0:d0:12:fc:45:c3:9e:de:1d:dc:c5:df: f1:16:2e:94:5d:99:f1:fe:04:f0:cc:7a:5b:db:4b: 34:42:15:e4:63:8f:cf:59:ce:66:51:81:06:58:c6: f2:bc:c8:3e:ac:58:b2:a6:c4:9f:31:ec:ee:72:4c: bb:91:35:6a:04:4e:16:f6:cc:e1:fe:94:58:bb:29: e6:b4:1a:46:3a:35:41:88:e4:bf:8e:9f:f7:20:18: b8:90:5e:d6:89:bf:7c:de:12:b3:87:98:b2:45:a3: 2b:b2:96:90:24:b7:66:23:70:6f:ce:08:19:da:e9: d5:5d:fa:fc:03:78:43:ec:ff:3a:98:6f:7a:c0:34: b0:ae:14:b7:f8:0d:55:ce:10:06:ae:92:58:07:6e: af:a1:55:c3:da:7e:bb:69:15:b4:9d:7b:93:0f:b3: fa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DE:94:13:0E:92:B2:11:D8:B2:1C:FE:C8:E6:E6:E0:BC:67:47:F3 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:da:98:b4:c5:b7:9d:11:24:5c:f8:11:79:ed:34:78:de:d2: fd:ac:c3:90:c7:f3:7c:61:58:81:0f:78:f4:09:b7:89:40:2c: 80:e2:fe:16:e1:c8:dc:da:f5:c7:d4:e1:e2:1f:17:77:72:4b: fd:57:70:64:17:d1:c6:4c:5e:a1:a1:64:1c:13:0d:36:ad:ed: 86:3b:92:5e:3e:11:ef:c7:46:82:be:52:12:5c:f3:57:ec:36: b9:b9:56:4a:a2:ef:9d:f4:e4:78:68:bd:9c:bd:7f:f8:df:4b: c1:57:4a:94:21:5c:54:a5:5c:d4:c3:bf:0f:5d:52:29:09:70: 54:b4:f4:64:6f:95:8d:96:d6:cf:56:62:cc:5a:49:8b:de:ee: 88:e6:58:07:29:c2:12:e6:c7:8a:54:48:28:f5:4f:5e:f6:16: 16:41:6d:cd:77:bd:5c:cc:b5:c0:a2:49:cf:54:ec:d3:3e:2d: 37:c6:3b:a1:d0:f6:c8:1b:05:95:72:6d:d6:96:5e:64:db:c1: 26:37:7e:50:55:d8:49:28:49:7b:9d:6b:61:f9:44:b4:db:41: 64:0f:8c:4b:56:36:32:df:a8:eb:44:32:01:d5:57:89:8e:88: ad:3c:7c:bf:5d:74:e6:3b:b8:a0:e0:75:55:4a:73:79:2e:c7: d4:4c:57:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUxMTAyMTczODQzWhcNMjUxMTA5MTczODQzWjAYMRYwFAYD VQQDEw02OTA3OTcyMy1iNTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cWkvq4kcfDZ4thoVeSbUx02mviFkfl87A9MxW5KhKSyNxE2PzLpd/hG1I6L WGS+N7I43PVRwTqmPvwPcDc2bs7hBaalxMk1ez298JaQw0ZX+9a8A3rBXB0Kniyg 0BL8RcOe3h3cxd/xFi6UXZnx/gTwzHpb20s0QhXkY4/PWc5mUYEGWMbyvMg+rFiy psSfMezucky7kTVqBE4W9szh/pRYuynmtBpGOjVBiOS/jp/3IBi4kF7Wib983hKz h5iyRaMrspaQJLdmI3BvzggZ2unVXfr8A3hD7P86mG96wDSwrhS3+A1VzhAGrpJY B26voVXD2n67aRW0nXuTD7P6nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDelBMO krIR2LIc/sjm5uC8Z0fzMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR2pi0xbedESRc+BF57TR43tL9rMOQx/N8YViBD3j0CbeJQCyA4v4W 4cjc2vXH1OHiHxd3ckv9V3BkF9HGTF6hoWQcEw02re2GO5JePhHvx0aCvlISXPNX 7Da5uVZKou+d9OR4aL2cvX/430vBV0qUIVxUpVzUw78PXVIpCXBUtPRkb5WNltbP VmLMWkmL3u6I5lgHKcIS5seKVEgo9U9e9hYWQW3Nd71czLXAoknPVOzTPi03xjuh 0PbIGwWVcm3Wll5k28EmN35QVdhJKEl7nWth+US020FkD4xLVjYy36jrRDIB1VeJ joitPHy/XXTmO7ig4HVVSnN5LsfUTFeo -----END CERTIFICATE-----Generated at Tue Nov 4 08:05:54 2025 by rpki-client