$ rpki-client -vvf rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft File: BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft (raw, json) Hash identifier: aKX+utPf1sQqJWYzaktwr5r8md+FKKzavqwMVh1AP/A= Subject key identifier: 5A:9B:51:F6:6B:77:17:C1:78:83:0B:E5:47:6E:08:2D:CF:3F:0B:2A Authority key identifier: 04:A8:F2:8F:52:7E:18:91:67:AC:C9:03:0C:BE:DA:D8:A9:C4:17:B9 Certificate issuer: /CN=A9120BC1/serialNumber=04A8F28F527E189167ACC9030CBEDAD8A9C417B9 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft Manifest number: 18 Signing time: Sun 19 Oct 2025 11:26:09 +0000 Manifest this update: Sun 19 Oct 2025 11:26:08 +0000 Manifest next update: Sun 26 Oct 2025 11:26:08 +0000 Files and hashes: 1: BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl (hash: AQL2P20QlmAbdITLkn+xsZ5KKbfeUE2JG8sGm7EZfGg=) 2: 309260868C7311F0A82E0E57C4F9AE02.roa (hash: xvOCoFGuwQpaZXzaiPWTPYcNvcs6Rl0rLNu2ZBBzhNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120BC1, serialNumber=04A8F28F527E189167ACC9030CBEDAD8A9C417B9 Validity Not Before: Oct 19 11:26:08 2025 GMT Not After : Oct 26 11:26:08 2025 GMT Subject: CN=68f4cad1-d5c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b3:46:80:b4:62:a7:4e:75:88:bb:5e:cb:ac: 2b:02:e8:5a:d0:f4:49:99:36:bd:b6:83:ec:5d:27: 6a:6d:5f:c7:98:ec:cf:09:11:7f:9d:87:c3:a3:0f: 93:29:ca:70:b0:70:a9:14:fc:17:4d:38:fd:f4:b3: a5:72:00:d7:1a:92:cf:97:ae:80:7e:50:31:ec:26: 92:f6:90:86:70:39:18:c7:75:ab:75:1c:27:4e:3e: 29:c8:20:a1:1b:87:bd:c7:23:f1:07:3c:bd:13:52: b0:7a:24:a0:56:2e:ee:cc:e5:8f:27:7b:57:ba:4e: 65:1d:99:51:47:41:1d:a5:3d:9f:aa:73:2b:48:a2: 81:9c:63:c9:29:dd:38:90:3b:28:c7:93:0b:0e:d4: 4f:56:85:a2:1f:c5:60:a5:87:b9:c3:10:f8:ba:04: 16:e0:99:44:26:2b:2a:d7:72:28:d4:2b:58:d4:55: 6a:62:38:a5:91:4c:14:2f:5e:9c:57:27:da:00:a5: 39:6f:24:85:f7:e6:bc:6a:df:9c:e8:4f:dc:ae:71: 9c:8e:76:76:bd:c5:fe:7a:a4:41:29:51:3d:20:5a: 82:9b:cc:fc:29:02:b8:1b:a0:95:ae:f7:d1:d0:af: e9:8b:07:09:48:3c:c2:f9:7c:65:ac:e1:cc:fd:c3: 69:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:9B:51:F6:6B:77:17:C1:78:83:0B:E5:47:6E:08:2D:CF:3F:0B:2A X509v3 Authority Key Identifier: keyid:04:A8:F2:8F:52:7E:18:91:67:AC:C9:03:0C:BE:DA:D8:A9:C4:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:ca:db:3f:c2:82:e6:8a:22:53:67:3d:90:b2:d2:c8:f4:d3: a0:75:fa:8e:96:cb:8d:87:6d:8a:fa:4c:32:03:73:b6:30:3e: 3b:44:d0:ef:34:07:91:a0:a4:21:de:18:2c:ca:36:db:9e:6a: 94:56:21:ca:87:1e:6b:a8:92:89:38:b8:88:fc:e5:d4:d5:9e: 78:19:26:b8:94:0e:f3:27:52:54:86:c2:46:15:30:f2:f2:5c: fd:31:ba:12:0e:a9:58:00:fb:88:19:ac:0f:cf:99:f3:ad:b3: a9:3c:cb:a4:3d:51:1a:3d:25:9b:ae:61:be:0f:74:f8:a1:1f: 0e:f8:4c:12:09:13:8b:b5:f5:ae:07:da:08:79:e5:cb:88:6e: e5:1d:2a:da:4e:d4:b6:9f:c8:f7:8b:cc:1d:16:b5:14:40:14: 99:3b:be:83:b7:27:43:9a:6d:38:d9:7c:35:66:36:3f:98:9d: 74:72:2f:50:dc:0b:d4:ba:ff:88:95:03:f4:d6:02:fc:2b:11: 8e:7c:32:94:04:2c:60:15:e4:0c:b4:dd:c1:91:d8:55:f7:b6: 27:ed:7a:f6:c7:b9:23:b0:e2:47:51:2c:ec:70:d4:16:fd:0c: fb:5f:1c:7f:b1:16:72:f9:1f:0a:f5:be:db:f4:8c:9d:e9:de: a8:a5:0f:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEJDMTExMC8GA1UEBRMoMDRBOEYyOEY1MjdFMTg5MTY3QUNDOTAzMENCRURBRDhB OUM0MTdCOTAeFw0yNTEwMTkxMTI2MDhaFw0yNTEwMjYxMTI2MDhaMBgxFjAUBgNV BAMTDTY4ZjRjYWQxLWQ1YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDds0aAtGKnTnWIu17LrCsC6FrQ9EmZNr22g+xdJ2ptX8eY7M8JEX+dh8OjD5Mp ynCwcKkU/BdNOP30s6VyANcaks+XroB+UDHsJpL2kIZwORjHdat1HCdOPinIIKEb h73HI/EHPL0TUrB6JKBWLu7M5Y8ne1e6TmUdmVFHQR2lPZ+qcytIooGcY8kp3TiQ OyjHkwsO1E9WhaIfxWClh7nDEPi6BBbgmUQmKyrXcijUK1jUVWpiOKWRTBQvXpxX J9oApTlvJIX35rxq35zoT9yucZyOdna9xf56pEEpUT0gWoKbzPwpArgboJWu99HQ r+mLBwlIPML5fGWs4cz9w2lvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWptR9mt3 F8F4gwvlR24ILc8/CyowHwYDVR0jBBgwFoAUBKjyj1J+GJFnrMkDDL7a2KnEF7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwQkMxL0RBQzYwMzg4OEM3 MjExRjBBMkIwQUU1NkM0RjlBRTAyL0JLanlqMUotR0pGbnJNa0RETDdhMktuRUY3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktqeWoxSi1HSkZuck1rRERMN2EyS25FRjdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw QkMxL0RBQzYwMzg4OEM3MjExRjBBMkIwQUU1NkM0RjlBRTAyL0JLanlqMUotR0pG bnJNa0RETDdhMktuRUY3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFPK2z/CguaKIlNnPZCy0sj006B1+o6Wy42HbYr6TDIDc7YwPjtE0O80 B5GgpCHeGCzKNtueapRWIcqHHmuokok4uIj85dTVnngZJriUDvMnUlSGwkYVMPLy XP0xuhIOqVgA+4gZrA/PmfOts6k8y6Q9URo9JZuuYb4PdPihHw74TBIJE4u19a4H 2gh55cuIbuUdKtpO1LafyPeLzB0WtRRAFJk7voO3J0OabTjZfDVmNj+YnXRyL1Dc C9S6/4iVA/TWAvwrEY58MpQELGAV5Ay03cGR2FX3tiftevbHuSOw4kdRLOxw1Bb9 DPtfHH+xFnL5Hwr1vtv0jJ3p3qilD+0= -----END CERTIFICATE-----Generated at Mon Oct 20 08:27:02 2025 by rpki-client