$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: l6Shwl7oWshFiVYH/mmNGPI6UvkESR95Ai0PVGZLsO8= Subject key identifier: 82:B5:BB:6B:85:7C:7B:81:26:64:89:F8:D2:C2:70:50:F7:8C:9F:32 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 0722 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 0704 Signing time: Tue 04 Nov 2025 21:38:50 +0000 Manifest this update: Tue 04 Nov 2025 21:38:49 +0000 Manifest next update: Tue 11 Nov 2025 21:38:49 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: i7hQU0k4f7eMTYPby6VoUp6U4YMH5UVXaFxSqIgZwMg=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: StZZUcpTqb1W1S9eXsQ5qcrkA/Ri8svuc1kgwSxho5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Nov 4 21:38:49 2025 GMT Not After : Nov 11 21:38:49 2025 GMT Subject: CN=690a7269-ff03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d3:25:e2:9a:40:25:b3:dd:6b:41:2c:aa:d4: a2:ec:16:c3:ad:62:cf:08:dc:2a:40:63:5a:c8:00: 7e:38:4f:28:8c:09:df:6e:c7:49:c9:ff:5e:ca:f4: ee:62:1c:02:56:1c:34:34:4c:46:75:16:34:fd:24: ea:2d:7c:56:c1:80:8f:3d:f4:cb:1f:62:d4:f4:6b: db:ac:7a:81:d5:5d:85:fd:bf:45:fb:ac:1b:46:b6: 76:bd:78:de:4c:3c:ae:3a:06:0b:9e:23:24:1a:5d: 89:fc:ed:1e:6c:76:92:91:01:cf:3d:dd:82:83:b5: 65:fe:07:7f:19:88:30:97:63:aa:a5:3b:74:db:8f: 55:1f:8a:a0:9a:de:75:1d:b5:41:51:86:42:bf:e9: 23:28:91:46:ad:ee:da:69:d7:97:1b:e1:50:0a:2e: 7d:7d:73:45:56:55:0d:71:91:2d:d4:f1:ef:6f:28: 8a:00:f6:00:a2:4c:2b:4e:60:62:9d:1e:75:88:5b: 83:1d:7c:f2:8d:65:4f:c1:de:fd:00:74:8e:b3:1f: f1:de:2f:2f:4a:bb:35:f1:0d:43:85:ac:64:18:d8: 87:b2:fa:d6:45:53:2e:97:24:e1:e6:a7:ab:ab:db: 45:b6:29:42:1c:ff:84:42:79:43:07:38:7a:0e:1a: db:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B5:BB:6B:85:7C:7B:81:26:64:89:F8:D2:C2:70:50:F7:8C:9F:32 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:a9:af:87:a0:39:54:10:07:17:72:0c:c3:2f:67:c9:97:c6: a7:0e:35:08:49:3a:b5:e8:d6:1b:db:ee:bc:9e:ac:11:ef:11: e1:8e:ed:bb:e6:4c:e8:a3:5b:44:3c:e1:a3:29:e9:a3:43:ea: d8:c8:0f:7c:7d:ac:c0:fd:8f:35:e0:5f:79:0c:e0:bd:74:4a: a4:97:83:25:df:ee:00:dc:77:2a:6a:3f:e0:28:74:48:52:40: ac:5b:92:25:47:8c:51:24:30:ec:9d:4f:5f:f8:f2:a9:56:5f: 1e:b4:68:c2:2a:e7:d1:bd:f4:e0:c1:10:3b:37:2f:fd:eb:d3: b0:e4:b2:80:e8:b3:fb:89:d9:37:00:9b:b6:ee:8b:6d:a0:19: d2:f1:60:fb:2b:85:53:a9:7c:20:9d:92:1a:2b:7d:63:a4:85: 81:26:ef:32:87:0b:0c:ae:37:c4:53:cc:f8:60:2f:0b:93:29: 39:d1:15:61:01:b6:6f:3f:05:12:20:a1:72:13:2d:b4:b2:04: e0:47:d0:ce:2b:39:de:14:4d:7c:4d:5d:67:98:47:c9:93:11: 76:0d:6d:f6:fd:0e:e2:c7:ae:18:83:28:8f:c4:9e:9c:70:cd: b1:75:6f:80:2f:da:d7:a0:2a:27:d3:bd:6a:0e:53:f4:26:c3: ba:09:0e:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUxMTA0MjEzODQ5WhcNMjUxMTExMjEzODQ5WjAYMRYwFAYD VQQDEw02OTBhNzI2OS1mZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9Ml4ppAJbPda0EsqtSi7BbDrWLPCNwqQGNayAB+OE8ojAnfbsdJyf9eyvTu YhwCVhw0NExGdRY0/STqLXxWwYCPPfTLH2LU9GvbrHqB1V2F/b9F+6wbRrZ2vXje TDyuOgYLniMkGl2J/O0ebHaSkQHPPd2Cg7Vl/gd/GYgwl2OqpTt0249VH4qgmt51 HbVBUYZCv+kjKJFGre7aadeXG+FQCi59fXNFVlUNcZEt1PHvbyiKAPYAokwrTmBi nR51iFuDHXzyjWVPwd79AHSOsx/x3i8vSrs18Q1DhaxkGNiHsvrWRVMulyTh5qer q9tFtilCHP+EQnlDBzh6DhrbkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIK1u2uF fHuBJmSJ+NLCcFD3jJ8yMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoqa+HoDlUEAcXcgzDL2fJl8anDjUISTq16NYb2+68nqwR7xHhju27 5kzoo1tEPOGjKemjQ+rYyA98fazA/Y814F95DOC9dEqkl4Ml3+4A3Hcqaj/gKHRI UkCsW5IlR4xRJDDsnU9f+PKpVl8etGjCKufRvfTgwRA7Ny/969Ow5LKA6LP7idk3 AJu27ottoBnS8WD7K4VTqXwgnZIaK31jpIWBJu8yhwsMrjfEU8z4YC8Lkyk50RVh AbZvPwUSIKFyEy20sgTgR9DOKzneFE18TV1nmEfJkxF2DW32/Q7ix64YgyiPxJ6c cM2xdW+AL9rXoCon071qDlP0JsO6CQ4j -----END CERTIFICATE-----Generated at Wed Nov 5 13:34:14 2025 by rpki-client