$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: Xixrt8SS69lrwcR41Fn3si+Rqq2Gl2QqhIIK6ofg+v8= Subject key identifier: A9:46:07:2F:3A:B8:C0:CD:82:45:97:71:B0:DA:89:47:33:CC:E9:6C Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 0795 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 078A Signing time: Sat 18 Oct 2025 22:53:30 +0000 Manifest this update: Sat 18 Oct 2025 22:53:30 +0000 Manifest next update: Sat 25 Oct 2025 22:53:30 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: ewMdBg1GEAeOq6G6zm+5feXGNRq0VysWVtSWFyiVxRE=) 2: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (hash: D1qcgVGZql5RrIKafCkI4bM9fu5CZK6G546UdqksHKg=) 3: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: 9PkY3r845C6Gg3gR8AKgajQ8wsvmdGvtBQ6YZXFN9yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Oct 18 22:53:30 2025 GMT Not After : Oct 25 22:53:30 2025 GMT Subject: CN=68f41a6a-1827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:24:92:d3:ec:b9:bc:c3:2b:5e:31:95:2e:3d: b4:a8:aa:f0:20:93:90:da:3d:27:4d:e1:1d:05:e5: f9:be:3d:e0:43:7c:94:73:1b:42:ba:4e:7b:50:37: 63:f9:fb:a7:d9:a6:5c:52:01:06:5b:48:ba:1c:52: aa:b4:b9:df:37:4e:77:47:ab:a5:e9:06:ef:ac:a9: f0:c4:1d:89:f8:d1:55:e9:24:de:c9:b1:1f:49:dc: 6c:fb:d2:3f:75:2c:6c:4a:0f:80:5a:85:4b:13:49: e0:ae:e0:49:84:8c:2f:bf:1b:0f:41:32:33:16:e4: 0d:a2:f6:11:6e:29:87:90:5f:03:ab:74:e2:c0:a3: cd:2c:9b:a7:79:52:f7:d1:ad:d7:93:72:90:98:22: 37:0a:4f:e7:a5:a6:cc:fb:37:b1:f6:e2:0a:ab:6f: cb:c7:48:0c:b7:75:b5:19:a9:93:94:e5:02:f9:32: 4f:ae:cf:e2:fe:6f:db:63:07:14:19:bf:a7:48:5e: b2:ea:2c:0a:08:f7:45:76:08:04:15:c0:0e:0c:10: 7c:f4:1a:b8:88:cf:94:68:66:18:f6:8b:da:90:5a: f4:74:da:dd:33:76:84:d8:cb:a4:20:06:83:b4:07: e1:de:31:4b:74:4f:af:c8:14:9f:f5:19:8e:8b:9d: c6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:46:07:2F:3A:B8:C0:CD:82:45:97:71:B0:DA:89:47:33:CC:E9:6C X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:76:67:8f:12:d3:f9:d5:59:da:e7:f0:a4:4c:67:7d:23:39: 67:af:06:b6:a8:9d:92:cc:30:cd:af:38:a7:08:cc:1e:d6:d0: f8:3f:0d:7e:d2:9e:68:89:2a:3d:63:cf:03:0c:37:5d:94:3f: fc:05:2b:dc:75:2e:e6:65:e8:43:93:d5:b8:8b:c7:9e:b7:88: ac:f0:8d:55:c2:10:eb:e7:a5:1b:90:c7:b8:77:83:8d:8c:22: 97:9e:ee:cc:0b:8b:3f:24:37:be:c4:b3:7e:12:d5:57:d8:37: c7:00:0d:05:6a:a5:48:40:6f:be:87:6e:81:07:a1:e1:32:ef: d7:04:4c:d7:37:6b:f5:16:c5:d3:8f:bc:a8:d0:43:8e:a3:39: c4:21:cc:a8:ca:76:6e:99:13:87:b9:7e:29:a8:de:2d:a9:36: 07:0f:3a:c4:ff:f2:7a:50:aa:56:1c:56:2b:46:c1:52:ee:2f: 5e:59:3d:87:58:8e:69:1f:3e:4b:65:b5:54:20:f5:24:8f:0f: 7d:1d:56:f2:7a:0a:d0:a2:64:5e:40:9f:a8:53:cd:c3:5a:69: 7e:c7:ac:1d:9c:55:a0:4a:d8:c4:d8:81:94:98:ce:df:08:6d: ed:f4:f8:50:a5:4d:3e:90:58:92:24:79:ef:f6:16:d0:03:b0: 51:49:2e:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUxMDE4MjI1MzMwWhcNMjUxMDI1MjI1MzMwWjAYMRYwFAYD VQQDEw02OGY0MWE2YS0xODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCSS0+y5vMMrXjGVLj20qKrwIJOQ2j0nTeEdBeX5vj3gQ3yUcxtCuk57UDdj +fun2aZcUgEGW0i6HFKqtLnfN053R6ul6QbvrKnwxB2J+NFV6STeybEfSdxs+9I/ dSxsSg+AWoVLE0ngruBJhIwvvxsPQTIzFuQNovYRbimHkF8Dq3TiwKPNLJuneVL3 0a3Xk3KQmCI3Ck/npabM+zex9uIKq2/Lx0gMt3W1GamTlOUC+TJPrs/i/m/bYwcU Gb+nSF6y6iwKCPdFdggEFcAODBB89Bq4iM+UaGYY9ovakFr0dNrdM3aE2MukIAaD tAfh3jFLdE+vyBSf9RmOi53GKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlGBy86 uMDNgkWXcbDaiUczzOlsMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgdmePEtP51Vna5/CkTGd9Izlnrwa2qJ2SzDDNrzinCMwe1tD4Pw1+ 0p5oiSo9Y88DDDddlD/8BSvcdS7mZehDk9W4i8eet4is8I1VwhDr56UbkMe4d4ON jCKXnu7MC4s/JDe+xLN+EtVX2DfHAA0FaqVIQG++h26BB6HhMu/XBEzXN2v1FsXT j7yo0EOOoznEIcyoynZumROHuX4pqN4tqTYHDzrE//J6UKpWHFYrRsFS7i9eWT2H WI5pHz5LZbVUIPUkjw99HVbyegrQomReQJ+oU83DWml+x6wdnFWgStjE2IGUmM7f CG3t9PhQpU0+kFiSJHnv9hbQA7BRSS7B -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:42 2025 by rpki-client