$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: 5sOzgsoGvc/2SfINebqee8NcHZRY1o1W0obbmbrZ6JI= Subject key identifier: 08:BC:30:2E:2B:15:ED:CB:A4:2C:67:E1:6F:AA:C6:9B:27:9E:0B:BC Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 0148 Signing time: Sat 23 Aug 2025 04:31:59 +0000 Manifest this update: Sat 23 Aug 2025 04:31:58 +0000 Manifest next update: Sat 30 Aug 2025 04:31:58 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: 8Z88BWlV4VC5tGM6N04bSWOJyxdBUPDMLbBmfR8jgR0=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: 5GVQ1bIBa+U3v3tASIB7alCOpvULFOKmUN8ptv6R1ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Aug 23 04:31:58 2025 GMT Not After : Aug 30 04:31:58 2025 GMT Subject: CN=68a9443e-bc7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f6:0f:4a:c2:3c:75:fa:31:78:13:4b:88:e0: 59:c7:27:9c:f9:f6:ca:bc:bf:66:1f:5c:3b:6e:31: 97:97:eb:83:cc:0c:7d:d2:eb:fc:b6:d3:ce:bb:1a: 0b:1b:f3:9a:fc:bf:ec:66:c6:8d:2b:9f:ec:47:b6: 0e:21:15:6b:33:ba:5c:17:6f:30:60:d7:73:c7:41: 08:37:8f:8a:57:77:8d:c2:a1:69:b3:78:0d:53:13: 66:9b:74:54:cb:f5:1d:34:51:fb:ca:20:99:12:04: d6:22:9f:ec:dc:99:e4:ea:df:39:e9:71:e3:03:a7: a8:3f:96:94:03:20:dd:36:c7:9c:0d:3d:9e:a9:06: ba:3b:75:b5:2a:18:77:d3:f3:fb:05:c8:03:5c:95: 45:c1:96:92:3e:9a:13:a4:97:89:e4:46:f4:b6:b6: fb:99:95:30:f5:63:77:99:a9:a0:b9:cb:22:e4:dc: 0e:b7:41:d6:fe:4b:39:d2:3c:9e:b2:0d:ca:de:72: 4e:db:98:0d:43:ff:51:38:d1:7e:49:8c:f2:3d:23: b2:c4:33:30:5f:87:96:10:37:66:7f:95:14:9e:8d: 37:93:c7:e8:3f:98:a0:fe:05:8e:cb:38:12:5d:eb: 09:75:6b:ce:36:dd:06:e9:f3:1e:3d:1e:7e:34:34: ed:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:BC:30:2E:2B:15:ED:CB:A4:2C:67:E1:6F:AA:C6:9B:27:9E:0B:BC X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:77:08:cb:87:c1:27:ca:9b:b7:dd:a4:78:fd:89:9e:71:14: 8d:6b:b5:84:85:04:f6:96:86:58:84:e5:e7:00:ef:ec:69:b3: 4d:61:95:e5:0c:b0:ce:b8:67:2d:0d:2b:5b:31:83:ab:74:30: 19:a4:d0:9e:d6:65:06:30:20:28:23:72:9a:cc:4b:42:dc:71: 20:08:cb:0d:dc:5d:71:aa:57:46:13:5b:1a:d7:f9:2f:96:24: 10:05:68:ba:28:2c:2b:22:32:98:e7:a6:a2:47:61:19:b6:ed: f2:2c:b6:b0:a0:8f:9c:3c:b5:02:f5:3e:66:18:b5:75:b6:93: 9d:45:8b:ce:28:ff:ba:47:c8:7c:17:20:39:59:7f:98:96:51: 12:3d:16:1d:97:45:2f:c1:69:62:24:bd:a8:65:71:20:a6:41: 59:53:8c:46:80:e2:df:80:89:9d:ce:3f:05:b4:df:be:17:d3: 23:8b:00:c9:0f:1d:0d:f2:d5:b9:3a:3c:35:8e:3c:e1:22:fc: 05:19:f9:34:99:23:5b:82:e6:05:a6:e2:85:a3:c4:a5:f2:74: c4:d9:fc:6d:d0:e6:f1:12:7e:bc:9b:3c:55:dc:41:3e:fb:7d: bc:f3:d7:5e:90:d1:96:a9:f6:45:cd:12:c8:29:d2:99:33:94: b4:70:d6:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUwODIzMDQzMTU4WhcNMjUwODMwMDQzMTU4WjAYMRYwFAYD VQQDEw02OGE5NDQzZS1iYzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fYPSsI8dfoxeBNLiOBZxyec+fbKvL9mH1w7bjGXl+uDzAx90uv8ttPOuxoL G/Oa/L/sZsaNK5/sR7YOIRVrM7pcF28wYNdzx0EIN4+KV3eNwqFps3gNUxNmm3RU y/UdNFH7yiCZEgTWIp/s3Jnk6t856XHjA6eoP5aUAyDdNsecDT2eqQa6O3W1Khh3 0/P7BcgDXJVFwZaSPpoTpJeJ5Eb0trb7mZUw9WN3mamgucsi5NwOt0HW/ks50jye sg3K3nJO25gNQ/9RONF+SYzyPSOyxDMwX4eWEDdmf5UUno03k8foP5ig/gWOyzgS XesJdWvONt0G6fMePR5+NDTt/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAi8MC4r Fe3LpCxn4W+qxpsnngu8MB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDsdwjLh8Enypu33aR4/YmecRSNa7WEhQT2loZYhOXnAO/sabNNYZXl DLDOuGctDStbMYOrdDAZpNCe1mUGMCAoI3KazEtC3HEgCMsN3F1xqldGE1sa1/kv liQQBWi6KCwrIjKY56aiR2EZtu3yLLawoI+cPLUC9T5mGLV1tpOdRYvOKP+6R8h8 FyA5WX+YllESPRYdl0UvwWliJL2oZXEgpkFZU4xGgOLfgImdzj8FtN++F9MjiwDJ Dx0N8tW5Ojw1jjzhIvwFGfk0mSNbguYFpuKFo8Sl8nTE2fxt0ObxEn68mzxV3EE+ +32889dekNGWqfZFzRLIKdKZM5S0cNaX -----END CERTIFICATE-----Generated at Sat Aug 23 14:28:45 2025 by rpki-client