$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft File: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft (raw, json) Hash identifier: 0L0rsZ5dsbMiXUKfc1Al0GQ8HVxoH6hQgxj8OoW213U= Subject key identifier: 92:D3:61:61:E9:E8:54:AE:30:10:C2:12:B9:38:CB:45:32:AB:96:69 Authority key identifier: F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 Certificate issuer: /CN=A9121D73/serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Certificate serial: 0BF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft Manifest number: 0BE7 Signing time: Sat 18 Oct 2025 19:42:40 +0000 Manifest this update: Sat 18 Oct 2025 19:42:40 +0000 Manifest next update: Sat 25 Oct 2025 19:42:40 +0000 Files and hashes: 1: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl (hash: TNxXiKm7c31b/9tKqNaMRIGVGlQtthctrp5ebZG6Ywo=) 2: 01A8B084262811EA8269E33EC4F9AE02.roa (hash: 3edR8k68PlyDLwSNioDrZi097Di1Z0qsLBIpivE7sS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3057 (0xbf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D73, serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Validity Not Before: Oct 18 19:42:40 2025 GMT Not After : Oct 25 19:42:40 2025 GMT Subject: CN=68f3edb0-61f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fd:77:af:d5:a6:44:bb:bb:a9:7e:d0:84:2c: 1d:88:69:b8:af:fa:53:b2:d7:7c:09:0e:7c:5e:c7: 71:4f:f5:63:59:5c:6e:76:09:b4:ce:e7:28:f6:72: ca:ac:cb:2b:9e:d0:4e:e8:7f:75:c1:31:bd:d9:58: c9:aa:27:da:d5:61:cc:bb:ee:db:93:ba:26:06:cd: 2c:f8:b5:79:8e:e9:fe:e7:06:e9:4d:3f:05:9f:79: f4:e5:97:9a:2f:1d:c5:4c:4a:89:ea:9b:41:bb:70: d6:ce:7a:15:27:79:7f:71:ae:ee:bd:4b:7b:51:b4: 50:2e:c4:46:ff:e5:a5:e7:a3:08:bd:aa:d6:ed:c7: 7f:3f:57:c0:aa:0d:d1:29:37:54:2e:f3:cc:cb:68: a2:3a:4c:2d:12:12:0d:f4:ff:12:2d:b0:71:85:ec: b0:41:b5:c7:2f:ca:37:b0:51:26:6d:01:7d:0c:3f: c6:fe:61:fa:80:2e:3f:6a:fb:9a:67:64:fb:e2:5f: a1:9d:6e:fb:1a:ab:91:88:57:ce:72:dc:91:c5:dd: 27:ae:b0:c3:c2:00:51:86:e2:58:65:47:6a:cf:83: 27:c2:6d:50:b4:fd:81:0b:bc:c9:c0:32:b5:6a:e5: 35:99:1d:f0:bb:be:d1:ec:3c:85:d1:cb:7a:2f:14: ca:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D3:61:61:E9:E8:54:AE:30:10:C2:12:B9:38:CB:45:32:AB:96:69 X509v3 Authority Key Identifier: keyid:F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b3:a4:8d:c1:5f:8d:22:6e:76:8f:d0:ab:4d:a5:20:fa:09: d2:c2:95:2c:3f:6a:b4:ea:6b:61:1c:8a:f6:c0:9f:68:ff:3d: 6c:99:90:95:57:a7:3e:ea:fe:d0:f6:df:7a:f6:30:3e:7b:e8: 59:61:8c:b7:10:bc:11:2c:7c:75:a1:b1:74:d4:fc:cb:20:93: 3f:53:48:a9:80:79:d9:b4:6b:43:9e:f8:f8:e5:d1:ae:56:13: 86:65:77:1e:c0:21:ff:77:b9:d2:26:10:fa:8b:de:19:89:18: e0:be:e8:ed:c9:89:75:9e:25:3d:c5:ce:68:b1:71:0c:b3:66: 0e:3d:b5:3b:a6:2c:56:0f:08:36:f5:9f:9a:dc:45:26:f0:c2: c4:b7:75:fc:6e:f6:1a:7d:1f:6c:ab:69:cb:ad:bf:e0:b7:72: 47:4b:fc:28:f4:c3:a1:36:d5:ba:08:7c:be:33:49:49:4f:64: ec:55:92:6a:72:df:ca:8a:2f:c4:7a:7b:fc:71:ee:bb:3f:41: 0d:2d:52:4f:e4:2c:ab:ee:68:1c:a0:17:9e:e5:0e:75:6f:b4: 1e:e6:b6:05:ff:24:51:4e:54:ed:75:36:76:ec:a5:ad:e1:72: 77:8c:79:c2:62:ec:e8:14:3e:27:63:cb:e4:30:11:12:ec:0d: de:30:82:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFENzMxMTAvBgNVBAUTKEY5Qjk3NTE2MUZFMkVBMzdFMEU0NjJBRDVGNUI4QTc0 MjgwMTM0RTYwHhcNMjUxMDE4MTk0MjQwWhcNMjUxMDI1MTk0MjQwWjAYMRYwFAYD VQQDEw02OGYzZWRiMC02MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAov13r9WmRLu7qX7QhCwdiGm4r/pTstd8CQ58XsdxT/VjWVxudgm0zuco9nLK rMsrntBO6H91wTG92VjJqifa1WHMu+7bk7omBs0s+LV5jun+5wbpTT8Fn3n05Zea Lx3FTEqJ6ptBu3DWznoVJ3l/ca7uvUt7UbRQLsRG/+Wl56MIvarW7cd/P1fAqg3R KTdULvPMy2iiOkwtEhIN9P8SLbBxheywQbXHL8o3sFEmbQF9DD/G/mH6gC4/avua Z2T74l+hnW77GquRiFfOctyRxd0nrrDDwgBRhuJYZUdqz4Mnwm1QtP2BC7zJwDK1 auU1mR3wu77R7DyF0ct6LxTKZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLTYWHp 6FSuMBDCErk4y0Uyq5ZpMB8GA1UdIwQYMBaAFPm5dRYf4uo34ORirV9binQoATTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQ3My81Q0M2NkJENDI2 MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZqZmc1R0t0WDF1S2RDZ0JO T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ibDFGaF9pNmpmZzVHS3RYMXVLZENnQk5PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUQ3My81Q0M2NkJENDI2MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZq Zmc1R0t0WDF1S2RDZ0JOT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAds6SNwV+NIm52j9CrTaUg+gnSwpUsP2q06mthHIr2wJ9o/z1smZCV V6c+6v7Q9t969jA+e+hZYYy3ELwRLHx1obF01PzLIJM/U0ipgHnZtGtDnvj45dGu VhOGZXcewCH/d7nSJhD6i94ZiRjgvujtyYl1niU9xc5osXEMs2YOPbU7pixWDwg2 9Z+a3EUm8MLEt3X8bvYafR9sq2nLrb/gt3JHS/wo9MOhNtW6CHy+M0lJT2TsVZJq ct/Kii/Eenv8ce67P0ENLVJP5Cyr7mgcoBee5Q51b7Qe5rYF/yRRTlTtdTZ27KWt 4XJ3jHnCYuzoFD4nY8vkMBES7A3eMIIX -----END CERTIFICATE-----Generated at Mon Oct 20 19:31:09 2025 by rpki-client